Photo of Julie Maurer

Julie Maurer

With a career-long emphasis on supply chain and complex commercial litigation issues, Julie provides a full suite of legal services to clients, with a special focus upon the transportation, cargo, and logistics industries. With 20+ years as a transportation logistics attorney and litigator, Julie handles all legal matters for transportation/transportation-adjacent companies, including contract drafting and analysis, day-to-day legal consultations, regulatory advice, and complex litigation, often involving lost, damaged, or delayed cargo.

Contact:Read more about Julie Maurer
Forward part of cargo ship.

Key point: The US Coast Guard’s new cybersecurity rule will transform the security standards and reporting requirements for vessels and marine facilities nationwide over the next three years.

On July 16, 2025, the US Coast Guard’s (USCG) final rule, Cybersecurity in the Marine Transportation System, codified at 33 C.F.R. § 101.600 et seq., went into effect. The final rule establishes cybersecurity requirements for the critical infrastructure owners and operators (CI/OO) of regulated entities (e.g., U.S.-flagged vessels, Outer Continental Shelf (OCS) facilities, and facilities regulated under the Maritime Transportation Security Act of 2002). See 90 Fed. Reg. 6298 (Jan. 17, 2025). These entities were already required to have a Vessel or Facility Security Plan (VSP/FSP) as defined by 33 C.F.R. §§ 104-106. Under the final rule, the CI/OO for these entities have incident reporting obligations, must develop Cybersecurity and Cyber Incident Response Plans, and designate a Cybersecurity Officer charged with implementing the plans. The regulation will be introduced in stages over the next three years, with certain provisions taking effect immediately.