Optima Cyber

Yes. Since January 2021, the IMO requires that cyber risk management is integrated into the Safety Management System (SMS) of every vessel. Compliance is verified during the annual Document of Compliance (DOC) audit. Non-compliance can result in detentions and audit findings.

A single vessel assessment typically takes two to four weeks, depending on vessel type and system complexity. This includes onboard survey time (usually two to three days), analysis, and report preparation. Fleet-wide programs are scheduled to minimize operational disruption and can often be coordinated with scheduled dry docking or port calls.

Yes. Our assessments cover both Information Technology (IT) systems -- such as administrative networks, email, and business applications -- and Operational Technology (OT) systems -- such as ECDIS, AIS, engine monitoring, cargo control, and power management. The intersection of IT and OT is where the most critical vulnerabilities exist on vessels.

Yes. We offer both onboard and remote training delivery. Remote sessions are conducted via video conference and are designed to accommodate crew rotation schedules. We also provide training materials and quick-reference guides that remain onboard for ongoing crew reference between formal training sessions.

Three things. First, maritime context -- our team understands vessel operations, classification requirements, and the regulatory environment, not just IT security frameworks. Second, integration -- we work alongside Optima's other service lines (compliance, fleet management, ESG) to embed cybersecurity into your broader operational strategy. Third, independence -- we do not sell security hardware or software, so our recommendations are always vendor-neutral and tailored to your operation.