USCG Issues Cybersecurity Assessment Initial Scoping and Process Policy Letter
USCG Issues Cybersecurity Assessment Initial Scoping and Process Policy Letter On June 2, 2026, the U.S. Coast Guard’s (USCG’s) Office of Cybersecurity Policy (CG-MCP) issued Policy Letter 01-26: Cybersecurity Assessment Initial Scoping and Process. The Policy Letter provides guidance that regulated entities may use to identify Information Technology (IT) and Operational Technology (OT) that is “in scope” for the purposes of applicability under the MTSA Cybersecurity Regulation (33 CFR Part 101 – Subpart F). This process is centered on the use of a Cybersecurity Assessment (CSA). Note: The methodology / process outlined in the Policy Letter is not mandatory. Companies