Dr. Öğr.

Üyesi Burak ZİNCİR

 What is the ISPS Code?

ISPS or the International Ship

and Port Facility Security Code
is an essential maritime
regulation for the safety and
security of ships, ports, cargo
and crew.
Before the ISPS code, the SOLAS primary
focus was the safety of the ship at sea. As
security and safety are entirely different
topics, new amendments were made in
SOLAS and the Chapter XI, which contains
measures to enhance maritime safety, by
renaming to Chapter XI-1 and a new
Chapter XI-2 was added with additional
focus on maritime security.
The ISPS code was implemented by IMO on July 1st 2004 as a
comprehensive set of measurements for international
security by prescribing responsibilities to a government
authority, port authority, shipping companies and seafarers.

It applies to the ships doing international voyages which

include passenger ships & cargo ships of 500 GT and above.
Main Aim of ISPS code in Shipping
The ISPS code mainly
looks after the • To monitor the activity of people and cargo operation
security aspects of • To detect the different security threats onboard
the ship, seafarers, vessel and in port and implement the measure as per
the situation
ports and port
workers, to ensure • To provide a security level to the ship and derive
various duties and functions at the different security
preventive measures level
can be taken if a
security threat is • To establish the respective roles and responsibilities
of the contracting governments, agencies, local
determined. The main administrations and the shipping and port industries
aim of
• To build and implement roles and responsibilities for
the International Code port state officer and onboard officers to tackle
for the Security of maritime security threat at the international level
Ships and of Port
Facilities (ISPS) is as
follows:
• To collect data from all over the maritime industry concerning security threats
and implementing ways to tackle the same
• To ensure the exchange of collected security-
related information data with worldwide port and ship owners network
• To provide a methodology for security assessments so as to have in place plan
s and procedures to react to changing security levels
• To find the shortcomings in the ship security and port security plan and measu
re to improve them
What Are The Security Levels Under ISPS Code?

The security levels under the ISPS code describe the current scenario related to
the security threat to the country and its coastal region including the ships visiting
that country. The security levels are decided by the cooperation of ship and port
authority, keeping the current condition of national and international security. The
local government sets the security level and ensures to inform port state and
ships prior to entering the port, or when berthed in the port.
All personnel on board ships and port state staffs are assigned with security
duties, which are different for people of different levels. Moreover, frequent
security drills are also carried out on board ships.
As soon as the security level has been decided as per the ISPS code, it is
displayed prominently on board vessel at the entrance of the ship.
It should be noted that the MARSEC level of the ship should always be the same or
higher than the port’s MARSEC level.
For any of the security levels, the following are
the general points to be kept in mind:

• Checking the identity of all persons boarding/wanting to board the vessel

• Designated secure areas are established in liaison with the PFSO
• Segregate checked persons from those unchecked for ease of operation
• Segregating embarkation and disembarkation
• Identification of access points to be secured against unauthorised access
• Securing of areas that provide access to personnel
• Providing security briefings to all ship personnel on possible threats and the
levels associated with the port
• Compliance with the SSP at all times
MARSEC Level 1
• The normal level that the ship or port facility operates on a daily basis. Level 1
ensures that security personnel maintains minimum appropriate security 24/7.
• In this, all those liable to board must be searched. The frequency of the same
should be specified in the SSP. Such searches are to be carried out in
coordination with the port facility. It is important to remember the human rights
angle of the individual being searched and the search should not violate their
dignity.
• Minimum security measures are always maintained on board and in port
• Ship and port operation is carried out as per ship and port facility security plan
• Port facility ensures to keep the ‘no access’ areas under surveillance at all times
• Ship and port authority mutually supervise loading and unloading operation of
cargo and stores, ensuring access control and other minimum security criteria.
• Minimum access in the ship is maintained at all times.
MARSEC Level 2
• A heightened level for a time period during a security risk that has become
visible to security personnel. Appropriate additional measures will be conducted
at this security level.
• At this level, the SSP should establish the measures to be applied to protect
against the heightened risk. Higher vigilance and tighter control with regard to
the security of the ship is in play here.
• Assigning additional personnel for patrolling the access areas
• Deterring waterside access to the ship
• Establishing a restricted area on the shore side of the ship
• Increasing the search frequency and detail of the persons due to board or
disembark
• Escorting all visitors onboard
• Additional security briefings to the ship’s personnel to with emphasis in relation
to the security level
• Carrying out a full or partial search of the ship
MARSEC Level 3
• Will include additional security measures for an incident that is forthcoming or
has already occurred that must be maintained for a limited time frame. The
security measure must be attended to although there might not be a specific
target that has yet been identified.
• Again, the SSP should be adhered to and with strong liaison with the port facility.
The following measures should be put in place with the highest degree of
vigilance and detail:
• Limiting access to a single, controlled access point
• Granting access strictly to authorised personnel or those responding to any
security incident
• Suspension of embarkation and disembarkation
• Suspension of cargo operations and stores etc
• If needed, the evacuation of the ship
• Close monitoring of the movement of the people on board
• Preparing for a full or partial search of the ship
Restricted Areas:

The SSP must identify areas that are restricted which is to be

established on board. The purpose of such areas is to restrict
access, protect the personnel onboard, protect the cargo from
pilferage or tampering etc. The restricted areas may include the
navigation bridge, machinery spaces, spaces with security
related equipment, ventilation spaces, spaces containing IMDG
cargo, accommodation, any other areas specified as per the SSP.
With regard to the restricted areas, the measures to be
applied on them are as follows:
• MARSEC Level 1
1. Locking/securing access points
2. Using surveillance equipment to monitor areas
3. Thorough patrolling
4. Using alarm system to alert the ship’s personnel in case of unwanted entry
• MARSEC Level 2
1. Establishing restricted areas in the vicinity of the access points
2. Continuously monitoring surveillance equipment
3. Additional personnel for patrolling said areas
• MARSEC Level 3
1. Setup of restricted areas near the access points at the highest level of
stringency
2. Searching for restricted areas as part of the ship search
 Cargo Handling

• Security measures are in place vis a vis

cargo operations to prevent tampering
as well as to prevent the carriage of any
cargo that has not been authorised or
established to be carried onboard.
The following measures can be used as a reference:
• MARSEC Level 1
1. Routine checks on cargo, transport units, cargo spaces
2. Matching cargo with the documentation
3. Loading vehicles subjected to search in liaison with the PFSO
4. Checking seals to prevent tampering
• MARSEC Level 2
1. Detailed checking of cargo, transport units, cargo spaces
2. Intense checks to ensure only intended cargo is loaded
3. Intense check on loading vehicles
4. Increased frequency of checking seals
• MARSEC Level 3
1. Suspension of loading or discharging
2. Verify inventory of DG and hazardous substances onboard
 Delivery Of Ships Stores

• Stores should be checked for

packing integrity including random
checks on samples. Unless ordered,
stores should not be accepted.
Double check with documentary
evidence about what has been
ordered and what has not.
 • MARSEC Level 1
• Match orders with documents
prior to loading
Following
• Stow the stores securely
measures • MARSEC Level 2
may be used • Thorough checks prior to
as loading stores and intensifying
reference: inspections of the same
• MARSEC Level 3
• Delivery of stores to be taken
only in case of emergency
• Handling of unaccompanied baggage
• Baggage must be screened before taking on board; use advanced
methods such as X ray if needed.
• MARSEC Level 1
• Baggage screened and searched which may include X ray screening
• MARSEC Level 2
• Full screening including X ray of all baggage
• MARSEC Level 3
• Suspension of baggage handling
• Refusal to accept any unaccompanied pieces of baggage
 Monitoring the security of the ship

The aspect of monitoring must cover lighting, watch keepers including security
guards for patrolling, intrusion detection devices. These intrusion devices must be
capable of setting off an alarm.
The ship’s deck and access points should be illuminated in darkness as well as
the vicinity of the ship depending on the extent of security threat that is at stake.
In ports prone to contraband smuggling, an underwater hill check must also be
carried out.
The security of the ship and the port are complementary to each other. One
cannot be safe without the help of the other. The SSO and PFSO’s communication
and cooperation is essential to the compliance of the SSP and the upkeep of
security levels.
ISPS Code
Implementation
 ISPS Code Meaning for Ships:

The cargo ships are vulnerable to security threats as they hardly carry
any weapon of protection in case of a real attack. Piracy, terrorist
attack, stowaways etc. are real-time threats haunting the ship and its
crew. Improved ship security will be required in order to identify and
take preventive measures against such security incidents.
The administration is responsible for reviewing and approving a ship
security plan for the ship, which will also include any amendments of
old plans etc.
The company must train its officer for ship security officer
certification and the assessment of the ship security will
be carried onboard by these certified officers only. The
timely assessment of the ship security plan (SSP) by a
certified officer is essential for finding shortcomings and
enhancing the current SSP.
The ship security assessment shall be documented,
reviewed, accepted and retained by the company. Every
ship must carry an approved ship security plan approved
by the Administration.
 Company Security Officer ( CSO )

CSO is a company appointed

person, who is responsible for the
ship security assessment and for
ISPS Code for the onboard survey to confirm the
Vessels development and implementation
of the ship security plan as per
Includes : ISPS code. If any deficiency
occurs, CSO is responsible to deal
with all the non-conformities and to
modify SSP as per the deficiency.
What are the
Duties of Ship’s
Company
Security
Officer?
• Under the International Ship and Port Facility Security Code (ISPS), every
shipping company is required to appoint a company security officer, who
would take care of the ship’s safety and security.
• The company security officer designated by a company would be
responsible for one or more than one ships, depending on the number and
types of ships the company operates. This responsibility is clearly
identified.
• Every shipping company assigns a set of responsibilities for the company
security officer depending of the type of ships and cargo which the
company operates. However, basic responsibilities of company security
officer remain the same.
 SSO is the charge of
security of the vessel
onboard and responsible
Ship Security for the other entire crew
member to carry out duties
Officer ( SSO ) for ship security as per
ISPS code. SSO is
responsible for carrying
out frequent drills for ISPS
Code as per SSP.
What Are The Duties Of Ship Security Officer?
• A ship security officer (SSO) is an important entity under the International Ship
and Port Facility (ISPS) code. The SSO is a person appointed by the company
and the ship’s master for ensuring the security of the ship.

• Ship’s security is one of the greatest concerns for every shipping company
whose ships ply in international waters. Though there are advanced systems
such as ship security alert system (SSAS) and ship security reporting system
(SSRS) to enhance maritime security, contribution of the crew towards ship’s
security play a very important role.

• The main duties of the ship security officer (SSO) include implementation and
maintenance of a ship security plan, while working closely with the company
security officer (CSO) and the port facility security officer (PFSO).
• According to the ISPS code, every ship must have a ship security officer, who
has the full responsibility of the ship’s security.
The main responsibilities of ship security officer (SSO) are:

• Implementing and maintaining the ship security plan (SSP)

• Conducting security inspections at regular intervals of time to ensure that proper security steps
are taken
• Making changes to the ship security plan if need arise
• Propose modifications to the ship security plan by taking various aspects of the ship into
consideration
• Help in ship security assessment (SSA)
• Ensure that the ship’s crew is properly trained to maintain a high ship security level
• Enhance security awareness and vigilance on board ship
• Guide ship’s crew by teaching ways to enhance ship’s security
• Report all security incidents to the company and the ship’s master
• Taking view and suggestions of the company security officer and the port
facility security officer into consideration while making amendments to the ship
security plan
• Help company security officer (CSO) in his duties
• Take into account various security measures related to handling of cargo,
engine room operations, ship’s store etc.
• Coordinate with ship board personnel and port authorities to carry out all ship
operations with utmost security
• Ensure that the ship security equipment is properly operated, tested, calibrated,
and maintained
 It is a plan kept onboard
vessel mentioning the duty
of crew members
at different security
Ship Security levels and the do’s and
Plan ( SSP ) don’ts at a different type of
security threats. SSO is
responsible under CSO to
implement ship security
plan onboard vessel.
 What Is Ship Security Plan (SSP)?
• Ship Security Plan (SSP) is a plan that is formulated to ensure that that the
measures laid out in the plan with respect to the security of the ship are applied
onboard.
• This is in place to protect the personnel, cargo, cargo transport units, stores etc
from any security-related risks.
• The plan specifies responsibilities and procedures to counteract any anticipated
threat to the vessel and her cargo.
• The ISPS Code makes it mandatory for a vessel to have such a plan in place. The
SSP must lay out the protective measures for each security level vis a vis ship
related activities, access control onboard, monitoring of the restricted areas,
cargo handling, receiving of stores/baggage etc.
• The CSO must ensure that the ship is provided with such a plan commensurate
with the ISPS Code. The SSP is a critical document, the information of which is
to be restricted to designated personnel on board and not shared deliberately;
the plan must be protected from unauthorised access or disclosure.
Requirements For Ship Security Plan (SSP) :

• Developed for each ship, the SSP should take into account the security level of
the port facility
• Measures and equipment to prevent any threat to the ship and to prevent the
carriage of any unauthorised units onboard
• Ship Security Personnel must establish measures against unwanted access to
the ship
• As per SSP, a Ship Security Officer (SSO) must be appointed onboard to execute
the SSP
• Depending upon the Code interpreted and followed, the SSP should be
formulated by an approved Organisation
• The plan must be developed after a thorough security assessment of the ship
taking into account the guidance laid out in the ISPS Code
Contents of Ship Security Plan (SSP)
• Preventive measures against weapons, hazardous substances, devices that
may be intended for use against the safety and security of the ship
• Specific identification of restricted areas and preventive action against access
to any such designated areas
• Action to be taken when the ship is facing a security threat or breach taking into
account the critical operations of the ship
• Complying with instructions of the Contracting Government with respect to the
security level
• Evacuation procedures that might have to be carried out in case of a breach
that cannot be combatted
• Specific duties of the shipboard personnel with responsibilities when security is
in question
• Procedures for auditing security-related activities
• Procedures for training and drills associated with the plan
• Procedures for liaising with the port facility
• Procedures for reporting security-related incidents
• Designation and identification of the SSO and the CSO with duties and contact
details
• Procedures to maintain, test and calibrate equipment pertaining to the Code.
This shall include details of the frequency of the tests to be carried out as well
• Locations where the SSAS is provided and the guidance on using the SSAS.
Usage instructions should also include details of testing of SSAS and
information regarding false alerts as well
 Ship Security Alert
System

Different types of security equipment are

kept onboard which includes a metal
detector for checking the person entering
the vessel. From July 2004, most of the ship
has installed the Ship Security Alert System
(SSAS) as per ISPS norms which do not
sound on the ship but alarm the shore
authority about the security threat.
What is Ship Security Alert System?
The Ship Security Alert System (SSAS) is a safety measure for strengthening
ship’s security and subduing acts of piracy and/or terrorism against shipping.
Widely Acknowledged as a part of the International Ship and Port Facility Security
Code (ISPS code), the Ship Security Alert System (SSAS) complements the
International Maritime Organization (IMO)’s attempts to increase maritime vessel
security.
Cospas-Sarsat, with International Maritime Organization’s cooperation, came up
with this project of Ship Security Alert System (SSAS). The basic idea is that in
case of an attempted piracy effort, terrorist act, or any other incident which can be
defined as a threat to the ship under the maritime security, the ship’s SSAS
beacon would be activated, responding to which an appropriate law-
enforcement or military forces would be dispatched for rescue.
The SSAS is a type of silent ship security alarm system which, when activated,
does not issue any audio-visual signal on the ship or to nearby vessels or security
forces. The alert in most cases is first received by the ship’s owner or an SSAS
management third party, then passed to the ship’s flag state, and these receivers
are obliged to inform the national authorities of the coastal states where the ship
is sailing.

The Flag States decide who will be the initial recipient of the security alerts from
the ships. The recipient may be one or more parties designated by the Flag State
as competent authorities, which may include the Company (shipowner) or a SSAS
manaegement third party.
How SSAS works?

• When the maritime security

staff comprehends probable danger from
pirates or terrorists, a Ship Security Alert
System (SSAS) alert is triggered
• The beacon transmits a specific security
alert, with important details about the
ship and its location, to the
administration and to the owner, or
appointed professional SSAS
management and monitoring services
• Once receiving the signal, the
administration will notify the nearest
national authorities of the area which will
dispatch appropriate military or law-
enforcement forces to deal with the
terrorist or pirate menace
Legislation on Ship Security Alert System
• In December 2002, IMO adopted some changes within which Ship Security Alert
System (SSAS) was determined in SOLAS Chapter XI-2, Regulation 6. It also
required IMO to produce guidance on the implementation and instructions on
the handling of covert alerts from SSAS instrumentation.
• According to the international requirements regarding the security of ships and
of port facilities, following ships must be provided with an SSAS:
• All cargo ships which are constructed on or after 1st July 2004
• All passenger ships and high-speed craft intended to carry passengers which
are constructed before 1 July 2004 not later than at the first survey of their radio
installation after 1st July 2004
• Oil tankers, chemical tankers, gas carriers, bulk carriers and cargo high-speed
craft of 500 GT and above constructed before 1 July 2004 not later than at the
first survey of their radio installation after 1 July 2004
• Other cargo ships of 500 GT and above constructed before 1 July 2004 and
mobile offshore drilling units not later than at the first survey of their radio
installation after 1 July 2006.
 The SSAS Button/Switch:

As per the regulation, minimum two security alert buttons must be provided on the
ship, one being located on the bridge and the second one should be located in any
other prominent position (for e.g. Accommodation). The location of the switch
must be known to all the ship’s crew.
The switch must be provided with a protective latch cover, to avoid misuse or
accidental operation of the vessel. When the ship is at dry dock and if any work is
being carried out near the SSAS button, proper instruction must be given to the
person involved in that area for not touching/operating the button. In dry dock or
layups, the latch can be locked temporarily, with the key kept at an accessible
location and known to Master and the Ship Security Officer. During normal
operation, the safety cover should never be locked.
When the Ship Security Alert System is Activated, following details will be sent to
the administration:
1. Name of ship
2. IMO number allotted to the ship
3. The Call Sign of the ship
4. The Global Navigation Satellite System (GNSS) position of the ship in latitude
and longitude
5. Maritime Mobile Service Identity
6. Date and time of the alert according to the GNSS position (as per the current
time the ship is sailing)
Once the SSAS is pressed, the alert should be continuously transmitted to the
administration or designated authority selected by the administration unless it is
reset or deactivated.
Testing Of SSAS :
• The SSAS should be tested for its proper function to ensure it is working
properly as the functionality of the SSAS is crucial in case of a real emergency
• Also, as per the Maritime Safety Committee circular- 1155, the companies must
ensure to notify the flag state well ahead of the test so that it should not be
misunderstood as a real emergency
• Most of the flag states (administration) responsible for receiving and acting on
the signal have laid down rules for communicating the test procedures of SSAS.
For e.g. some flag state has the requirement to notify about the SSAS test not
more than 2 days in advance and not less than 4 hours prior to the test
• The shipmaster is responsible to notify the same by a pre-test notification email
to the email address provided by the flag state dedicated to testing
communications. This helps the flag state and the ship representative in
effectively tracking the alert notifications and ensuring there is no
miscommunication as it may lead to unintended emergency response actions,
which will cost valuable time and money
• The email or message sent to the flag state must contain “TEST” word in the
subject and inside the message to ensure there is no confusion whatsoever
• Once the test has been performed, the Master of the ship should send another
email/ message to the administration about the conclusion of the test, as soon
as possible. This ensures the administration will be ready to respond to the
emergency in case another alert comes of a real emergency
• It may happen that the SSAS button and instrument associated with it are faulty
and continuously sending alerts to the administration. In such case, the
company security officer (CSO) must inform the situation to the administration
using the proper channel and ensure the repair is carried out at the earliest
possible situation.
• Once the SSAS equipment has been rectified and restored to the normal
operation, the Ship Security Officer (SSO) must inform the Company Security
Officer (CSO), and then he/she will inform the same to the flag state.

• The unit should have the option to test the alarm internally when the flag state
representative is onboard.
 ISPS Code for Port Facilities

Port facilities have to make sure that all the facilities are protected from any kind
of threats which may arise from both land and water. They also need to monitor
the ships which are coming to its shore from an international voyage for any
security risk.
It is the port facility which defines the security levels to be implemented on the
ships which are in its territorial waters. The Port managing company is
responsible for preparing the Port Facility Security Plan.
The port facilities security assessment is also an essential and integral part of the
process of developing and updating the port facility security plan.
The assessment is usually assessed and reviewed by the flag state or by the
government organisation responsible for shipping and port development for that
country.
ISPS Code for Port Facilities Includes
• Port Facility Security Officer ( PFSO ):
PFSO is a Government-appointed officer responsible for implementing PFSP and
to derive security levels for port and vessel berthing at their jetty. He is
responsible to conduct a port facility security assessment.
• Port Facility Security Plan ( PFSP ):
It includes the plans and action to be taken at different security levels. Roles and
responsibilities are included in PFSP. Action to be taken at the time of any security
breach is described in PFSP.
• Security Equipment:
Minimum security equipment like scanner and metal detector etc. must be
available at all times with the port facility to avoid the breach of security inside the
port.
• Implementing Security Level:
Security levels are implemented by the port authority under the consultation of a
local government authority. The security level adopted for the port facility must be
informed to vessel administration for cooperative measures.