Maritime Cybersecurity Consultant
Overview
CyberSurv is seeking an experienced Maritime Cybersecurity Consultant with deep knowledge of 33 CFR 101 Subpart F and the U.S. Coast Guard (USCG) Cybersecurity Final Rule. This contractor will support maritime and port-related clients by conducting cybersecurity assessments, advising on regulatory compliance, and helping organizations strengthen their cyber posture in alignment with USCG expectations.
This role is ideal for a former USCG professional, maritime security consultant, or cybersecurity practitioner who has hands-on experience working with MTSA-regulated facilities, vessels, and port operations.
Key Responsibilities
• Conduct cybersecurity risk assessments for maritime facilities and vessels in alignment with 33 CFR 101 Subpart F
• Evaluate client cybersecurity programs against the USCG Final Rule and applicable NVIC guidance
• Support development and review of:
• Facility Security Plans (FSPs)
• Cyber Risk Management documentation
• Incident response and reporting procedures
• Identify gaps, risks, and remediation recommendations consistent with Coast Guard expectations
• Participate in client briefings, tabletop exercises, and readiness reviews
• Support preparation for USCG inspections, audits, and compliance reviews
• Collaborate with CyberSurv vCSO and compliance teams on integrated cyber and regulatory engagements
• Provide clear, defensible written findings and executive-level summaries
Required Qualifications
• Demonstrated experience with 33 CFR 101 Subpart F
• Strong working knowledge of the USCG Cybersecurity Final Rule
• Experience conducting cybersecurity assessments within the maritime or port industry
• Familiarity with MTSA-regulated environments, including:
• Ports
• Terminals
• Maritime facilities
• Vessel operations
• Understanding of cyber risk management concepts as applied to operational technology (OT) and maritime systems
• Ability to communicate effectively with:
• Facility Security Officers (FSOs)
• Port leadership
• Compliance and operational stakeholders
• Strong documentation and reporting skills
Preferred Qualifications
• Prior service with the U.S. Coast Guard or direct experience supporting USCG inspections
• Experience with related frameworks (NIST CSF, NIST 800-53/171, ISO 27001)
• Experience conducting tabletop exercises or incident response planning
• Maritime security, port security, or critical infrastructure background
• Certifications such as CISSP, CISM, CRISC, or maritime security credentials (preferred, not required)
Engagement Details
• Contract, project-based and/or retainer opportunities
• Flexible workload depending on client demand
• Competitive contractor rates based on experience
• Opportunity for long-term collaboration as CyberSurv expands maritime offerings
Why CyberSurv
CyberSurv is a veteran-led, AI-driven cybersecurity firm focused on verified trust, continuous cyber hygiene, and regulatory-aligned security. We work closely with defense, maritime, and regulated-industry clients to translate complex requirements into practical, defensible outcomes.
Apply tot his job
Apply To this Job
CyberSurv is seeking an experienced Maritime Cybersecurity Consultant with deep knowledge of 33 CFR 101 Subpart F and the U.S. Coast Guard (USCG) Cybersecurity Final Rule. This contractor will support maritime and port-related clients by conducting cybersecurity assessments, advising on regulatory compliance, and helping organizations strengthen their cyber posture in alignment with USCG expectations.
This role is ideal for a former USCG professional, maritime security consultant, or cybersecurity practitioner who has hands-on experience working with MTSA-regulated facilities, vessels, and port operations.
Key Responsibilities
• Conduct cybersecurity risk assessments for maritime facilities and vessels in alignment with 33 CFR 101 Subpart F
• Evaluate client cybersecurity programs against the USCG Final Rule and applicable NVIC guidance
• Support development and review of:
• Facility Security Plans (FSPs)
• Cyber Risk Management documentation
• Incident response and reporting procedures
• Identify gaps, risks, and remediation recommendations consistent with Coast Guard expectations
• Participate in client briefings, tabletop exercises, and readiness reviews
• Support preparation for USCG inspections, audits, and compliance reviews
• Collaborate with CyberSurv vCSO and compliance teams on integrated cyber and regulatory engagements
• Provide clear, defensible written findings and executive-level summaries
Required Qualifications
• Demonstrated experience with 33 CFR 101 Subpart F
• Strong working knowledge of the USCG Cybersecurity Final Rule
• Experience conducting cybersecurity assessments within the maritime or port industry
• Familiarity with MTSA-regulated environments, including:
• Ports
• Terminals
• Maritime facilities
• Vessel operations
• Understanding of cyber risk management concepts as applied to operational technology (OT) and maritime systems
• Ability to communicate effectively with:
• Facility Security Officers (FSOs)
• Port leadership
• Compliance and operational stakeholders
• Strong documentation and reporting skills
Preferred Qualifications
• Prior service with the U.S. Coast Guard or direct experience supporting USCG inspections
• Experience with related frameworks (NIST CSF, NIST 800-53/171, ISO 27001)
• Experience conducting tabletop exercises or incident response planning
• Maritime security, port security, or critical infrastructure background
• Certifications such as CISSP, CISM, CRISC, or maritime security credentials (preferred, not required)
Engagement Details
• Contract, project-based and/or retainer opportunities
• Flexible workload depending on client demand
• Competitive contractor rates based on experience
• Opportunity for long-term collaboration as CyberSurv expands maritime offerings
Why CyberSurv
CyberSurv is a veteran-led, AI-driven cybersecurity firm focused on verified trust, continuous cyber hygiene, and regulatory-aligned security. We work closely with defense, maritime, and regulated-industry clients to translate complex requirements into practical, defensible outcomes.
Apply tot his job
Apply To this Job