This page is intended to provide a repository of links to guidance that has been accepted as Best Management Practices (BMP) within the maritime security industry. To be included on this page, the practice must undergo a critical review, be made available to the public at no cost, and address a specific issue. These are divided into a number of categories:

  • Documents (ranging from pamphlets to white papers);
  • Databases (on a range of topics); or
  • Websites (that are intended as community portals).

These links are checked once per month. If you find one has moved, please let us know so we can adjust it. If you feel that you have found a Best Practice document, please add it as a comment under this page. We will ask you for some assistance in reviewing it and, once the review is complete, then it will be posted on this page.

Warning

the blind adoption of best practices is NOT recommended. Each security control or measure should be founded upon an assessment of risk and should also consider operational impacts. Best practices in one environment do not necessarily translate into best practices in all environments and in all cases.

 

General

International Maritime Organization Landing Page for Maritime Security: the IMO, as an international body, often acts as the source of conventions and other agreements that influence maritime security, including nation-state laws and regulations.

Anti-Piracy

The International Chamber of Shipping’s Global Counter Piracy Guidance for Companies, Masters, and Seafarers: The ICC provides guidance across the industry with respect to preventing maritime crime in many forms. This site looks at guidance that focuses on anti-piracy (acts of violence or depredation against a ship or crew for private ends) guidance.

Autonomous Shipping

The International Maritime Organization’s page for Autonomous Shipping: this provides a launching point for those looking to advance their knowledge of Maritime Autonomous Surface Shipping.

Cyber

International Maritime Organization Cyber Risk: this is an evolving topic in the maritime security space. T’he IMO webpage provides a launching point for those looking at cyber security related issues in the maritime domain.

National Institute for Standards and Technology (NIST): an element within the USA Department of Commerce, this entity provides guidance across several issues. This link is to their publication search page.

National Institute for Standards and Technology (NIST) Cybersecurity Framework: This provides the initial structure for cyber security risk management (refer to NIST SP 800-37, 800-53) that has been identified as an acceptable option by the IMO.

National Institute for Standards and Technology (NIST) Publication List: The Computer Security Resource Center provides a list of the NIST Special Publications (SP).