Advanced Security Management System for Critical Infrastructures

The maritime sector is critical in terms of economic activities and eommercial impaet not only for the European society but more importantly for the Mediterranean EU Member States, especially under the current economic turmoil. Commereial ports are the main gateways and face increased requirements, responsibilities and needs in view of a secure and sustainable maritime digital environment. Therefore, they have to rely on complicated and advanced facilities, ICT infrastrueture and trustworthy e-maritime serviees in order to optimize their operations. This paper aims at alleviating this gap on the basis of a holistic approach that addresses the security of the dual nature of ports' Critical Information Infrastructures (CIIs). In particular, it introduces a collaborative security management system (CYSM system), which enables ports' operators to: (a) model physical and cyber assets and interdependeneies; (b) analyse and manage internal / external / interdependent physical and cyber threats / vulnerabilities; and (c) evaluate / manage physical and cyber risks against the requirements speeified in the ISPS Code and ISO27001.