WASHINGTON, USA – Seaports are vital to the robustness of the U.S. economy, facilitating approximately $2.3 trillion in international trade and transporting around 1.6 billion tons of goods annually through nearly 45,000 vessels.
To ensure these essential operations run smoothly, over 300 U.S. seaports depend on advanced information technology (IT) and operational technology (OT) systems. These systems are critical for daily activities and are increasingly vulnerable to cyber threats, including hacking and malware attacks, as highlighted by security experts.
In response to this pressing issue, funding from the Infrastructure Investment and Jobs Act has enabled the development of a cutting-edge seaport platform. This initiative, spearheaded by key government agencies, allows operators to safely simulate cyber-attack scenarios and enhances their skills in threat detection and cyber defense.
Cybersecurity risks to seaport operations are serious national security concerns due to the country’s heavy reliance on these ports for the movement of goods. Even brief disruptions can lead to significant negative impacts across regional and national supply chains, underscoring the importance of robust cyber defenses.
A major disruption at a U.S. seaport could halt shipments via road, rail, or pipelines for extended periods, leading to potential financial losses in the millions or even billions. To mitigate such risks, a dedicated team is working to bolster the security of this critical infrastructure, preparing frontline workers to effectively respond to cyber threats.
The new seaport platform will become part of an extensive training and research program, providing a collaborative environment for various stakeholders, including government agencies, manufacturers, and cybersecurity experts. This platform offers a laboratory-setting that replicates critical infrastructure processes, allowing professionals to safely explore the impacts of cyberattacks.
Participants will have the opportunity to identify vulnerabilities within IT and OT systems and develop effective countermeasures. Currently, nine similar platforms are operational across national laboratories, focusing on different critical infrastructure systems, including wastewater treatment and electric transmission.
As new training tools for seaport cybersecurity are developed, a demonstration of the platform has already been conducted, showcasing both typical operations and potential cyberattack scenarios.
The upcoming simulated cyberattack scenarios, expected to launch by next summer, will be accessible to various stakeholders for their training and research needs.
CISA remains committed to enhancing the security of the nation’s critical infrastructure, emphasizing the need for continuous collaboration and education in cybersecurity efforts.
In the coming years, efforts will expand to build additional testing platforms and enhance access to existing resources, including partnerships with academic institutions. This initiative aims to empower critical infrastructure operators and increase overall preparedness against potential cyber threats.
