US’ busiest container logistics hub, Port of Los Angeles, has contracted IBM to design and operate a cyber resilience centre (CRC) to improve its cyber-security readiness
Under a multi-year agreement, IBM will use its cloud security and technology to improve defences across the port’s supply chain ecosystem, using the CRC to detect threats and help port stakeholders protect against malicious cyber incidents.
IBM’s involvement comes as the Port of Los Angeles invests in digital infrastructure to improve cargo efficiency and information flow throughout the supply chain.
IBM’s CRC will be a maritime security intelligence and operations centre (SIOC) to automate threat collaboration and extend its reach beyond traditional maritime stakeholders. They can contribute threat data to the CRC and benefit from the more extensive and accumulated threat intelligence made available to them.
“CRC will provide an early warning system to further defend the port and its stakeholders against cyber threats,” said Port of Los Angeles executive director Gene Seroka.
“This will result in greater collective knowledge, enhanced data sharing throughout our port ecosystem, and will help to maintain the flow of critical cargo,” he said.
This US$6.8M, three-year agreement includes IBM security software and services to design, install, operate and maintain the CRC, which will use IBM Cloud Pak for security, X-Force threat intelligence and IBM Security SOAR (for security orchestration, automation and response).
These will facilitate automated response playbooks of security events and collaboration among port stakeholders to bolster defences.
IBM will also co-operate with TruStar to leverage its enterprise intelligence management platform for stakeholders to automate and distribute intelligence among the Port of Los Angeles stakeholders.
Port of Los Angeles is an important container hub for the US west coast. On 7 December, it had 16 container ships and two tankers in the port.
This investment comes just weeks after US west coast Port of Kennewick was forced to rebuild its digital files from offline backups after being struck by ransomware. Cyber criminals locked the port administration out of its own server, bypassing firewalls and antivirus software.
It also comes as container lines are fighting their own battles against cyber threats.
In some cases malware gets through their defences and causes server issues for some of the largest shipping groups. Maritime cyber victims include major container lines such as MSC and CMA CGM, cruise ship owner Carnival and IMO’s offices and servers.
Cyber security and infrastructure digitalisation is being discussed in depth during Riviera’s Vessel Optimisation Webinar Week, 7-11 December 2020 - use this link to access more details and register for these webinars