(a) Other duties. The Cybersecurity Officer (CySO) may serve in other roles or positions and may perform other duties within the owner's or operator's organization (U.S.-flagged vessel, facility, or OCS facility), provided the person is able to perform the duties and responsibilities required of the CySO by this part.

(b) Serving as CySO for Multiple Vessels, Facilities, or OCS Facilities. The same person may serve as the CySO for more than one U.S.-flagged vessel, facility, or OCS facility. If a person serves as the CySO for more than one U.S.-flagged vessel, facility, or OCS facility, the name of each U.S.-flagged vessel, facility, or OCS facility for which that person is the CySO must be listed in the Cybersecurity Plan of each U.S.-flagged vessel, facility, or OCS facility for which that person is the CySO.

(c) Assigning Duties Permitted. The CySO may assign security duties to other U.S.-flagged vessel, facility, or OCS facility personnel; however, the CySO retains ultimate responsibility for these duties.

(d) Responsibilities. For each U.S.-flagged vessel, facility, or OCS facility for which they are designated, the CySO must—

(1) Ensure that the Cybersecurity Assessment is conducted as required by this part;

(2) Ensure the cybersecurity measures in the Cybersecurity Plan are developed, implemented, and operating as intended;

(3) Ensure that an annual audit of the Cybersecurity Plan and its implementation is conducted and, if necessary, ensure that the Cybersecurity Plan is updated;

(4) Ensure the Cyber Incident Response Plan is executed and exercised;

(5) Ensure the Cybersecurity Plan is exercised in accordance with § 101.635(c);

(6) Arrange for cybersecurity inspections, which may be conducted as their own inspections, or in conjunction with any scheduled Coast Guard inspection of a U.S.-flagged vessel, facility, or OCS facility;

(7) Ensure the prompt correction of problems identified by exercises, audits, or inspections;

(8) Enhance the cybersecurity awareness and vigilance of personnel;

(9) Ensure adequate cybersecurity training of personnel;

(10) Ensure all reportable cyber incidents are recorded and reported to the owner or operator;

(11) Ensure that records required by this part are maintained in accordance with § 101.640;

(12) Ensure any reports as required by this part have been prepared and submitted;

(13) Ensure that the Cybersecurity Plan, as well as proposed amendments to cybersecurity measures included in the Plan, are submitted for approval to the cognizant COTP or the Officer in Charge, Marine Inspections (OCMI) for facilities or OCS facilities, or to the Marine Safety Center (MSC) for U.S.-flagged vessels, prior to amending the Cybersecurity Plan, in accordance with § 101.630;

(14) Ensure relevant security and management personnel are briefed regarding changes in cybersecurity conditions on board the U.S.-flagged vessel, facility, or OCS facility; and

(15) Ensure identification and mitigation of all KEVs in critical IT or OT systems, without delay.

(e) Qualifications. The CySO must have general knowledge, through training, education, or equivalent job experience, in the following:

(1) General vessel, facility, or OCS facility operations and conditions;

(2) General cybersecurity guidance and best practices;

(3) The vessel, facility, or OCS facility's Cyber Incident Response Plan;

(4) The vessel, facility, or OCS facility's Cybersecurity Plan;

(5) Cybersecurity equipment and systems;

(6) Methods of conducting cybersecurity audits, inspections, control, and monitoring techniques;

(7) Relevant laws and regulations pertaining to cybersecurity;

(8) Instruction techniques for cybersecurity training and education;

(9) Handling of Sensitive Security Information and security related communications;

(10) Current cybersecurity threat patterns and KEVs;

(11) Recognizing characteristics and behavioral patterns of persons who are likely to threaten security; and

(12) Conducting and assessing cybersecurity drills and exercises.