Abstract
Increased connectivity, digitalization and emerging autonomous operations within the maritime sector are paving the road for new cybersecurity risks. Such risks are not just a technical concern, as effective awareness and training programs play an important role in increasing the knowledge of relevant cyberattacks and defences, thereby improving security practices among stakeholders. Serious games have emerged as an engaging method to train individuals, effectively communicate an understanding of emerging cybersecurity threats and promote cybersecurity culture and hygiene. This paper delves into the development process of an asymmetrical strategy game for the maritime sector. The game uses a red versus blue paradigm to educate players about critical assets of maritime operations and how they can be exploited. The novelty of this work has been to design a gameplay based on actual incidents that for instance shipping companies have been facing up until today and likely future events. We employ a design science research methodology to ensure problem relevance and utility for practitioners. The game has been designed towards a demography of students from maritime education and training institutions and professionals working in the maritime sector but should be appealing to others looking to expand their comprehension of the maritime cybersecurity intricacies as well. The game serves as a pedagogical learning tool for elevating cybersecurity awareness, preparedness and response in the maritime digitalization sphere.
