Cybersecurity Enhancement Project

Within the framework of the Enhancing Cybersecurity for Small and Medium Enterprises 2023 proposal, co-funded by the European Regional Development Fund and through the Research and Innovation Foundation (RIF), Dromon Bureau of Shipping was certified under the Cyber-Hygiene Framework for SMEs by the Cyprus National Cyber Security Coordination Center.

Project Objectives

Dromon Bureau of Shipping Limited (DBS) was committed to providing top-tier certification and compliance services for ship management companies, ensuring the highest standards of safety, navigation, and legal compliance. To maintain trust and uphold its reputation in a competitive market, DBS recognized the need to strengthen its cybersecurity infrastructure.

The primary goal of this project was to protect DBS’s data, systems, and infrastructure from cyber threats, ensuring business continuity and reinforcing its brand trust. The project aimed to increase the cybersecurity resilience of SMEs and reduce the risk of data loss or breaches. DBS achieved certification under the Cyber-Hygiene Framework for SMEs by NCC-CY, with a potential roadmap toward ISO:27001:2022 certification.

Upon assessing the current state of DBS’s cybersecurity, a proposal was conducted with various actions to strengthen both software and hardware resilience. These measures positioned the company as a more secure and resilient entity in an ever-evolving digital landscape, safeguarding hardware, software, and critical research/business data from theft or breaches. This was considered essential for DBS to meet the Cyber-Hygiene Framework and ensure a robust, secure infrastructure.

Actions and Benefits

To enhance cybersecurity, DBS implemented a range of actions that aligned with the objectives of the funding call:

  1. Security Policy & Training: Development of comprehensive security policies, staff training, and phishing simulations.
  2. Software & Network Security: Regular penetration testing, advanced threat intelligence, firewall upgrades, and intrusion detection systems.
  3. Access Control: Implementation of privileged access management, multi-factor authentication, and centralized password management.
  4. Incident Response: Deployment of a Security Information and Event Management (SIEM) system for real-time threat monitoring.
  5. Data Protection: Establishment of a data privacy framework, including a Data Loss Prevention (DLP) program.
  6. Business Continuity: Implementation of a Business Continuity Framework and risk assessments.

These measures safeguarded DBS’s infrastructure, protected proprietary data, and minimized business disruption in the event of a cyber-attack.

Impact and Value

The project significantly improved DBS’s cybersecurity posture, enhancing its operational efficiency, reliability, and ability to respond to threats. Key benefits included:

  • Visibility & Reputation: Achieving Cyber-Hygiene Certification served as a visible testament to DBS’s commitment to cybersecurity, differentiating it in the market and building customer trust.
  • Business Continuity & Risk Mitigation: Enhanced cybersecurity protected both DBS and its clients from data breaches and financial losses.
  • Sector-Wide Impact: Upgrading DBS’s cybersecurity also benefited the broader Cyprus Shipping Services sector, which contributes significantly to the national GDP.

The project’s outcomes enhanced DBS’s competitiveness, enabled sustainable growth, and paved the way for continued innovation in the digital realm.

Conclusion

This cybersecurity enhancement project was a strategic move towards strengthening DBS’s cybersecurity resilience and achieving long-term benefits. By addressing critical gaps and aligning with the objectives of the funding scheme, DBS positioned itself for a successful transformation in a rapidly evolving digital landscape.

The Project NCC-CY-ENTERPRISES/1223(B)/0036 is co-funded by the European Regional Development Fund and through the Research and Innovation Foundation.