b'Members willrestricted, employee, and passenger areas inpropriate action to implement the newest the appendices. Retain your drill records,version by Nov. 8, 2022.need to ensure thatexercise records, Declaration of Security, etc. as required in the regulations and the ASP. Q:Do I need to fill out another form CG-6025 all changes arefor my facility and submit it to the local Coast incorporated by 4.ProvideinstructiontocompanypersonnelGuard COTP even if nothing has changed?with security responsibilities on the applica- A:Yes. The new CG-6025 has a date and that Nov. 8, 2022 ble revisions to the ASP. This instruction willdate should coincide with your most recent count as one of the three drills required annu- securityassessmentsconductedtoimple-ally and should be documented accordingly.ment the 2022 PVA ASP.be required to be submitted to the local COTP along with the letter. The CG-60255. Inform the Coast Guard that the companyQ: How can I gain access to the member down- now has a date on the form for easy verifica- has implemented the 2022 PVA ASP:load area of the PVA website?tion of most resent facility assessment. a. Provideacurrentlistofvesselscov- A:AloginandpasswordarerequiredforeredunderthePVAASPtotheCoastaccess to PVA member-only information. Updated Department of HomelandGuard MSC.Members normally login with their email Security Guidance b. NotifythelocalCoastGuardCOTPand then a password they have previously Added DHS Cybersecurity & Infra- regarding the assessment of facility vul- created. If the password is unknown, usestructure Security Agency (CISA) as thenerabilities and countermeasures, as ap- the forgot password function. For addition-primary source for cybersecurity resourcespropriate, using the new CG Form 6025. al assistance, please contact Leslie Kagarise and best practices for businesses, govern- at lkagarise@passengervessel.com. ment agencies, and other organizations. 6.Remove and destroy all outdated information associated with previous versions of the ASP.Q: What happens if my company does not im- PVA RESOURCES plement the 2022 version of the ASP? Can Resources to assist PVA members with securityFAQS we be shut down?related requirements are located in the Mem- A: Operators should not be shut down, but Q: Whendoesmycompanyneedtoimple- berResourcessectionofthePVAwebsite.ment the 2022 version (5th revision) of thetheiroperationswilllikelybelimitedby Some of the available resources include: PVA ASP? the Coast Guard to no more than 150 pas-A: Nov. 8, 2022 sengers. If the Coast Guard is threatening Cyber Guidance Best Practices to shut down an operation, please contact Cyber Assessment Form PVA staff member Eric Christensen. Q: How long can my company use the 2017Revised Vessel and Dock Assessment Form version (fourth revision) of the PVA ASP?Copy of the Coast Guard ASP Shouldyouhaveanyquestionsorneedas-A: The 2017 version expires on Sept. 12, 2022.Approval Letter You will need to have the 2022 version (5thsistance,pleasecontactEricChristensenat revision)atthattimeandbetakingap- echristensen@passengervessel.com. Thesetools,aswellasfillableCoastGuard forms and security training materials, are avail-able by going to the member resources section at the top of the PVA home page. Click on PVA member downloads and scroll down to security tools for access. A login and password are required to access the member resources section. Many members have already created login credentials, but if you need assistance, please contact PVA staff.IMPLEMENTATIONTo implement the revised ASP, members will have to complete the following steps:1. Reviewallthechangesdescribedinthechange letter so that you are familiar with the revisions. 2. Using the revised ASP, conduct an assess- mentofyourvessel(s)and/orfacilitiesto include cyber security. 3.Transfer and update as appropriate all vessel- and/orfacility-specificinformationfrom your old program to this program. Include your vessel schematic showing your secure, 27 AUGUST 2022'