A complete maritime cybersecurity awareness program — 9-section training module, gamified assessment, and auto-generated compliance certificates. Approximately 2 hours. No instructor required.
The rule went into effect July 16, 2025. Initial crew training was due by January 12, 2026. New personnel must be trained within 30 days of hire and annually thereafter.
IMO MSC-FAL.1/Circ.3/Rev.3 (April 2025) mandates annual cybersecurity awareness training for all crew, integrated into the vessel's Safety Management System.
33 CFR 104.235, 105.225, and 106.230 require operators to maintain training records. DeckSecure automatically generates the documentation you need to keep.
Crew members evaluate realistic maritime email scenarios — spotting phishing attempts before the countdown timer runs out.
Crew scan vessel locations — bridge, engine room, comms room — identifying cyber risks hidden in the environment.
Real-world incident scenarios unfold on screen. Crew make time-pressured decisions: the right call earns points; wrong calls show consequences.
No mock-ups — this is the real product. Clean, fast, and built for someone finishing a watch, not an IT specialist.
Contact Maverick Security to receive your license key. One key covers your purchased seat count or unlimited sessions depending on your tier.
Navigate to train.mavericksecurityllc.com on any device with a browser — laptop, tablet, or desktop. No download or installation required.
Each crew member enters the license key, works through all three assessment modules, and passes the final assessment. Allow approximately 2 hours per session.
A signed PDF completion certificate is generated automatically and downloaded to the device. Records are also stored and verifiable online.
Issued to each crew member. Contains: name, final score, rank achieved (Trainee → Chief Security Officer), training date, and module version. Suitable for retention in vessel cybersecurity training records.
Every completion is logged in the Maverick client portal. Certificates are independently verifiable at train.mavericksecurityllc.com/verify using the certificate ID — suitable for PSC inspection records.
Most crew cyber-awareness courses claim to be "compliant." DeckSecure shows its work — every requirement traced to the specific regulatory clause it satisfies and the training component that delivers it.
| Requirement | Framework & Clause | How DeckSecure Satisfies It |
|---|---|---|
| Threat recognition & awareness | USCG 101.650(d)(1)(i) · IMO §3.5 · IACS UR E26 (training) | Training §3 (Phishing & Social Engineering), §9 (Crew-Specific Threats) + Phish or Legit assessment |
| Detection & incident recognition | USCG 101.650(d)(1)(ii) · IMO §3.6 | Training §8 (Incident Response) + Bridge Decision scenarios |
| Cyber hygiene practices | USCG 101.650(d)(1)(iii) · IMO §3.5 | Training §5–6 (Device Security, Credentials & MFA) + Threat Sweep |
| Reporting procedures | USCG 101.650(d)(1)(iv) · ISM Code | Training §8 (Reporting Chain & ISM Responsibilities) + Bridge Decision |
| Key personnel responsibilities | USCG 101.650(d)(2)(i) | Training §1 (The Regulatory Framework) |
| Training records & recordkeeping | USCG 104.235 · 105.225 · 106.230 | Auto-generated PDF certificate + verifiable portal record |
| Recurrent / annual training | IMO MSC-FAL.1/Circ.3/Rev.3 · USCG (annual + 30-day new hire) | Browser-based, repeatable on demand — re-run every cycle at no per-seat cost |
Training and assessment content maps across the Identify (crew awareness), Protect (access hygiene), Detect (anomaly recognition), and Respond (incident procedures) functions. Session reports document training against these functional areas.
Maverick Security updates training content as new threats emerge and regulations change. Because DeckSecure runs in the browser, every session automatically uses the current content — there is nothing to update on your end. The module version embedded in each certificate confirms content was current at the time of training.
Every crew member who passes earns a certificate with a unique ID. Anyone — including a Port State Control inspector — can confirm it in real time. No paper logs that vanish at the next crew change.
Anyone can fake a PDF. A DeckSecure certificate carries a unique ID that resolves against our system — returning the crew member, vessel, date, score, and the exact standards the training covered. That's the difference between a document and a record an auditor will accept.
Opens our public verification page and checks the ID above — try it.
DeckSecure isn't a standalone subscription you're left to administer alone — it's backed by a maritime cybersecurity consultancy. Pricing is scoped to your fleet, and every tier can fold into a broader SMS or compliance engagement.
Pay only for the crew you train. Best for single vessels with a small, stable crew or a known headcount per cycle.
One flat annual fee — unlimited crew, unlimited re-runs aboard a single vessel. Built for crew rotation: train joiners the day they step aboard at no extra cost.
Annual unlimited coverage across the fleet, with management-level oversight. Final pricing scoped to fleet size and engagement.
Prices are in USD, billed annually. Volume and multi-year terms available.
Need the compliance documentation package or a full SMS engagement? We scope that alongside your license.
Request a Demo →Already running DeckSecure aboard? View your vessel's training dashboard →