Surgecraft Offshore

Vigilus performed an onboard maritime cybersecurity assessment for an offshore vessel, evaluating IT and OT environments, documenting vulnerabilities, and helping the client chart a path toward IMO 2021 compliance.

Industries

Maritime,
Cybersecurity

Services

Penetration Testing,
Cybersecurity,
Vulnerability Assessments

Platforms

Vessel IT/OT Environment,
Network Infrastructure,
On-Premise Systems

About the project

To protect the client’s identity and honor confidentiality requirements, identifying names and specific operational details have been changed. The core cybersecurity work, process, and expertise reflected here are representative of Vigilus’ real maritime security experience.

Surgecraft Offshore needed to assess and strengthen the cybersecurity posture of an offshore vessel while working toward IMO 2021 cyber compliance. Unlike a traditional office network, the vessel environment included a distinct mix of IT systems, operational technology, physical constraints, satellite connectivity, and onboard infrastructure.

Vigilus conducted an onboard cybersecurity assessment designed specifically for the maritime environment. Our team evaluated the vessel’s network, server room security, endpoints, wireless exposure, and IT/OT touchpoints using industry-standard security tooling and hands-on inspection.

The engagement produced a clear findings report that documented vulnerabilities, prioritized remediation paths, and gave the client practical guidance for improving vessel security. The result was a stronger cybersecurity posture and a clearer route toward maritime cyber compliance.

What we did

Conducted an onboard cybersecurity assessment in a live vessel environment.

Evaluated vessel IT and OT systems with maritime-specific operational constraints in mind.

Assessed network exposure, endpoint security, wireless risks, and server room controls.

Used tools including Kali Linux, Metasploit, airmon-ng, Nessus Pro, and Ethernet-based inspection workflows.

Prioritized high-value vulnerabilities that could affect vessel operations, compliance, or security posture.

Mapped findings to IMO 2021 cyber compliance expectations.

Worked around satellite connectivity limitations and dry dock time constraints.

Produced a detailed findings report with remediation guidance for vessel stakeholders.

Helped the client improve its readiness against maritime cyber threats.

Testimonials

"Vigilus understood that our vessel was not just another corporate network. Their team adapted quickly to the onboard environment, identified practical risks, and gave us a clear path toward improving our maritime cybersecurity posture."

― Testimonial 1

"The assessment was thorough, well-organized, and grounded in the realities of vessel operations. The findings report helped our team prioritize remediation work without losing sight of compliance and operational continuity."

― Testimonial 2

"Vigilus brought the right mix of cybersecurity expertise and maritime awareness. Their work gave us confidence in our IMO 2021 compliance efforts and helped us better understand the risks across our IT and OT systems."

Surgecraft Offshore

About the project

What we did

Testimonials

"Vigilus understood that our vessel was not just another corporate network. Their team adapted quickly to the onboard environment, identified practical risks, and gave us a clear path toward improving our maritime cybersecurity posture."

― Testimonial 1

"The assessment was thorough, well-organized, and grounded in the realities of vessel operations. The findings report helped our team prioritize remediation work without losing sight of compliance and operational continuity."

― Testimonial 2

"Vigilus brought the right mix of cybersecurity expertise and maritime awareness. Their work gave us confidence in our IMO 2021 compliance efforts and helped us better understand the risks across our IT and OT systems."

― Testimonial 3

Browse more projects

Valtara Parish Schools

Solvionix Phishing Campaign