Menu
close
Call +44 (0)20 3005 4440
Intersys Logo
+44 (0)20 3005 4440
Menu
Close

Managed IT Support

A Reasonable, Fixed Monthly Fee for All Your IT Needs
Managed IT Support Provider

Consulting Services

The High Level IT Consulting Services You Need to Transform Your Business
Get IT Consulting Services

Cyber Security

A Comprehensive Range of Cyber Security Services for Robust, Industry-Leading Protection
Get Cyber Security Services

IT Solutions

Whatever your IT needs, we'll create a tailormade solution for you
Get IT Solutions

Superyacht Cyber Security

Superyacht designers, builders and owners – stay IACS compliant and protect your investment, crew and operations with superyacht cyber security from Intersys. We have over 30 years of experience delivering comprehensive and discreet services to highly regulated industries.

As featured in The TimesMicrosoft Solutions Partner - Modern Work Logo

Robust Services From a Cyber Security Leader

Superyachts have become major cyber targets, yet nearly 70% of owners lack full awareness of cyber vulnerabilities.

The consequence of an attack can include crippling ransomware incursions, loss of income, reputational damage to owners or guests and, since 2024 and the introduction of IACS Unified Requirement (UR) E26, serious compliance breaches.

ISO27001-certified Intersys can help designers, builders and owners take a robust and fully compliant approach to superyacht cyber security. With 30 years in the industry working in highly regulated environments, we ensure ongoing robust security across all access points, according to globally recognised NIST standards.

Superyacht Cyber Attacks: a Unique Vulnerability

Superyachts run on sophisticated, deeply interconnected digital systems – and the vulnerabilities are everywhere.

Multiple contractors install specialist equipment, each bringing their own remote access points. Guests connect to onboard networks, widening the attack surface. Crew members rarely receive meaningful cyber security training. For a criminal looking for a high-value, low-resistance target, a superyacht can be hard to resist.

The consequences of an attack go far beyond anything seen in a typical corporate breach. Superyachts merge IT with operational technology (OT) in a single environment, which means cyber criminals aren't just threatening data – they're threatening the vessel itself. Navigation and communications, propulsion and steering, safety and emergency systems: all are potentially within reach. So too is the welfare of everyone on board.

IACS UR E26 – a Compliance Requirement and a Call to Action

Shipowners, designers, system integrators and suppliers have all been traditionally underprepared for cyber attacks. However, the introduction of IACS UR E26 sets a minimum cyber resilience requirement – and should be a spur to action. Cyber security on superyachts is now auditable and inspectable and can no longer be judged on ‘best efforts’.

Insurers are also increasingly scrutinising cyber security provision when underwriting risk; and owners and clients demand cyber protection to ensure compliance, privacy and reputation.

Intersys Superyacht Cyber Security: Meeting Globally Recognised IT Standards

Intersys provides comprehensive, 24/7 and compliant cyber security services to superyachts, monitoring for risks and responding swiftly to incidents. Our approach aligns maritime cyber requirements with the globally recognised NIST Cyber Security Framework.

1

IDENTIFY – Discovery and Risk Visibility

Inventory of all IT and OT computer-based systems.
Mapping of dependencies, data flows and access paths.
Identification of technical and personnel responsibilities.

2

PROTECT – Risk Reduction and Safeguards

Risk assessments aligned to yacht operations.
Practical, proportionate security controls.
Clear guidance on acceptable versus unacceptable risk

3

DETECT – Continuous Monitoring

Detection of unusual or malicious activity.
Early identification of incidents before safety or operations are impacted.

4

RESPOND – Incident and Breach Response

Clearly defined response procedures.
Rapid containment to minimise disruption.
Support for onboard and onshore teams.

5

RECOVER – Resilience and Restoration

Tested backup and recovery processes.
Business continuity and disaster recovery planning.
Confidence that systems can actually be restored – not just backed up.

Superyacht Cyber Security in Action

Work with Intersys and you’ll see the following superyacht cyber security measures employed to protect your crew, guests and assets:
  • Confidential and discreet initial assessments and periodic cyber resilience reviews
  • Close collaboration with operation crews and your IT teams to implement cyber security measures
  • Time-limited access to systems for third-party contractors
  • Regular reviews of user credentials and access rights
  • Incident response planning and training, to ensure readiness in the event of an attack
  • Cyber security training for crews 
  • Supply chain due diligence, to ensure your partners meet cyber risk standards

Onshore Cyber Security: Securing the Superyacht Ecosystem

Cyber attacks don’t just begin at sea. We can apply the same internationally approved cyber security standards to secure your entire ecosystem. This can include shipyards and refit yards, owners’ representatives and agents, charter brokers and management companies, and onshore operational and supply chain systems.

Intersys Cyber Security: Comprehensive, Highly Recommended Cyber Security

For more than 30 years, Intersys has provided cyber security services to highly regulated industries across the globe, including pharmaceuticals and life sciences, financial services, fintech, education, and mining and engineering. Our comprehensive cyber security services are highly approved by clients and we are renowned for our friendly service, professionalism and discretion. Our client retention rate is 94% compared to an industry average of 77%. Our average client relationship is 8.6 years
See some Intersys case studies

Common questions answered

What does IACS UR E26 means for superyacht owners?
IACS UR E26 sets minimum cyber resilience standards for ships, covering obligations for shipowners, designers, shipyards, system integrators and suppliers. Starting from 1 January 2024, UR E26 became a legal requirement for all classed luxury superyachts. It means superyacht cyber security must be built into new builds and major refits and, critically, it must be evidenced. Where any computer-based system is excluded from compliance scope, a formal risk assessment is required to justify that decision. Compliance is auditable, inspectable and no longer a matter of ‘best efforts’.
What is the risk profile for superyachts and what are the common vulnerabilities?
Superyachts sit at the intersection of IT and operational technology – navigation, propulsion, safety systems and guest networks often share the same digital environment. Nearly 70% of owners lack full awareness of their cyber vulnerabilities. Common weaknesses include third-party systems installed without consistent security standards, remote contractor access with no expiry controls, crew devices connecting to vessel networks and guests inadvertently widening the attack surface. Critically, in over 80% of cases, the entry point is human error – not a technical flaw.
What are the common challenges for superyacht cyber security?
The core challenge is complexity. Superyachts carry extensive operational technology – navigation, hydraulics, access control, galley systems – much of it designed before modern cyber threats existed. Many exposed systems, including GPS and NMEA2000 equipment, are discoverable online. Crew behaviour introduces significant risk, particularly the use of personal devices on vessel networks. There is also minimal regulatory oversight for private yachts under 500GT, meaning many vessels operate without structured protection. Owners often assume basic firewalls are sufficient; in practice, attacks routinely exploit outdated integrations and poor access hygiene.
What are jamming and spoofing, and why should I be concerned?
Jamming involves flooding GPS frequencies with interference, preventing a vessel's navigation systems from receiving authentic satellite signals. Spoofing is more sophisticated: false signals are transmitted to make a vessel appear to be somewhere it isn't. Basic jamming devices are cheaply available, making this a widely accessible threat. For superyacht crews navigating coastal waters or geopolitically sensitive regions, the risk is real and growing.
What are the potential consequences of a major cyber security incident on a superyacht?
The consequences can extend well beyond the vessel. GPS spoofing and jamming can undermine a bridge crew's ability to navigate safely, while ransomware can disable lighting or navigation mid-passage. Onshore, charter income can be disrupted, owners may face GDPR liability if guest data is exposed, and reputational damage can affect the owner and their family. The IMO reports that cyber intrusions can go undetected for up to 197 days, meaning a vessel may be compromised long before any visible signs emerge.
Can you give me some examples of maritime and superyacht cyber security incidents and their consequences?
In 2025, GPS jamming escalated dramatically – over 13,000 vessels were impacted in Q2 alone, with navigation systems showing vessels hundreds of miles from their true positions. In one incident, a contractor's infected USB stick compromised a vessel's ballast management system, causing hazardous trim adjustments in port. The 2017 NotPetya attack on Maersk resulted in estimated losses of $300 million and brought global port operations to a halt. In March 2025, a supply chain attack paralysed communications across 116 vessels simultaneously.
What makes Intersys uniquely qualified to help us?
Founded in 1996 by Matthew Geyman, Intersys was built on a "service not sales" philosophy, a principle that still defines how it works today. Now a 50-strong team serving over 145 clients, including FTSE 100 organisations, Intersys operates at a size that enables both genuine expertise and attentive, personal service. The firm is ISO 27001:2022 certified, follows the NIST Cyber Security Framework, and has deep experience in highly regulated industries including financial services, insurance and maritime. Intersys clients are ten times less likely to suffer a cyber attack than the national average.
Is Intersys well known in cyber security circles?
Yes. Intersys is a prominent voice on cyber security, with senior leaders quoted in publications including The GuardianCommercial Risk, and the Insurance Times. Managing Director Matthew Geyman has been interviewed by Cybersecurity Magazine on the evolving threat landscape facing the insurance industry and the firm has expanded internationally, with operations now serving clients in India, Australia, South Africa and beyond. Intersys holds ISO 27001:2022 certification and has won multiple industry awards, including Best Remote Working Support Solution at the European IT & Software Excellence Awards. More recently, it was recognised at the Insurance Times Awards and the European Captive Review Awards.

Talk to Us Now

Speak to an expert in superyacht cyber security – or request a free risk assessment.
linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram