The first step in understanding risk is always to have a comprehensive model of the thing that is being protected. This varies across different types of facility and jurisdiction, but at a high level, can be derived by understanding the stakeholders a port has and the ways that interaction occur. In their 2019 report ‘Good Practises for cybersecurity in the maritime sector’ ENISA identified the following high-level overview of port stakeholders:

[To read the entire report, please fill out the form to get your free copy]