Cybersecurity in the Marine Transportation System

Document Headings Document headings vary by document type but may contain the following: the agency or agencies that issued and signed a document the number of the CFR title and the number of each part the document amends, proposes to amend, or is directly related to the agency docket number / agency internal file number the RIN which identifies each regulatory action listed in the Unified Agenda of Federal Regulatory and Deregulatory Actions See the Document Drafting Handbook for more details. Department of Homeland Security Coast Guard 33 CFR Parts 101 and 160 [Docket No. USCG-2022-0802] RIN 1625-AC77 AGENCY: Coast Guard, DHS. ACTION: Final rule; request for comments. SUMMARY: The Coast Guard is updating its maritime security regulations by establishing minimum cybersecurity requirements for U.S.-flagged vessels, Outer Continental Shelf facilities, and facilities subject to the Maritime Transportation Security Act of 2002 regulations. This final rule addresses current and emerging cybersecurity threats in the marine transportation system by adding minimum cybersecurity requirements to help detect risks and respond to and recover from cybersecurity incidents. These include requirements to develop and maintain a Cybersecurity Plan, designate a Cybersecurity Officer, and take various measures to maintain cybersecurity within the marine transportation system. The Coast Guard is also seeking comments on a potential delay for the implementation periods for U.S.-flagged vessels. DATES: This final rule is effective July 16, 2025. Comment period for solicited comments: Comments on a potential 2-to-5-year delay for the implementation periods for U.S.-flagged vessels in Section VII of this preamble must be submitted by March 18, 2025. ADDRESSES: Docket: To view documents mentioned in this preamble as being available in the docket, go to www.regulations.gov , type USCG-2022-0802 in the search box, and click “Search.” Next, in the Document Type column, select &ldqu…