Metro National Cyber Security Centre

Metro attains Government-backed Cyber Essentials certification

Nov 12, 2025 | , ,

Metro has achieved Cyber Essentials certification, the UK Government-backed baseline for protecting organisations against the most common cyber threats.

Achieving Cyber Essentials builds on our ISO/IEC 27001:2022 certification awarded in July, reinforcing a layered, standards-led approach to information security across our operations and supply chain.

With business and procurement leaders reporting a marked rise in attacks and cascading disruption risks, strengthening first-line cyber controls at each node in the chain is now a business continuity priority, not just an IT task. Our Cyber Essentials certification evidences robust baseline controls, while ISO 27001 provides the governance, risk and assurance framework above them.

Cyber Essentials focuses on five technical controls proven to block or defend against the most prevalent cyber-attacks:

  • Firewalls & internet gateways to prevent unauthorised access
  • Secure configuration of devices, software and services
  • User access control with least-privilege principles and strong authentication
  • Malware protection to detect and stop malicious code (including ransomware)
  • Patch management to close known vulnerabilities promptly

Certification is independently assessed and renewed annually, driving continual improvement and accountability.

A continuum of assurance

  • ISO/IEC 27001:2022 (achieved July 2025) sets the overarching Information Security Management System (ISMS) covering policy, risk assessment, controls and audit.
  • Cyber Essentials complements this with mandated, practical safeguards at the device and network edge. A tangible signal to customers that foundational defences are in place and verified. 

UK guidance continues to emphasise board-level accountability for cyber resilience, reflecting the escalating tempo and impact of attacks. Metro’s combined certifications align with this direction of travel and with customer expectations for measurable, third-party-validated controls across their logistics partners.

What customers can expect

  • Trusted handling of data and systems across bookings, visibility tools and integrations
  • Consistent security standards applied to partners and internal processes
  • Ongoing improvement via annual Cyber Essentials renewal and ISO 27001 surveillance

Cyber Essentials certification is a further step in our long-term programme to deliver secure, technology-driven solutions that help you operate with confidence in an increasingly digital trading environment.

To discuss secure integrations, data exchange or platform connectivity, EMAIL Ian Powell, Customer & Technical Solutions Director.

H1 2025: Six Developments Reshaping Global Trade

H1 2025: Six Developments Reshaping Global Trade

Aug 19, 2025 | , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

The first half of 2025 has been one of the most turbulent periods for supply chains in recent memory. From renewed tariff wars to fresh geopolitical flashpoints, logistics professionals have had to contend with a constantly shifting landscape.

At the same time, structural challenges around skills, safety, and sustainability have continued to grow. Here we review six developments that defined H1 2025.

1. Tariffs return to the fore
The pause in US tariff escalation ended in August, with the White House reintroducing “reciprocal” tariffs that apply baseline duties of 10% to all countries and higher rates of 10–41% depending on origin. The UK sit at the low end, while Syria faces the steepest levels. Brazil has been singled out further, hit by an additional 40% levy. Canada also saw tariffs raised from 25% to 35% on certain goods, justified by Washington’s claim that Ottawa has not done enough to curb fentanyl flows.

The executive order applies from 7 August 2025, with a grace period allowing cargo already loaded onto vessels before that date to arrive until 5 October 2025. To add complexity, US Customs will also impose new fees on Chinese-built or operated vessels from 14 October, potentially forcing alliances such as the Ocean Alliance into costly fleet reshuffles. Carriers are already working through how to redeploy capacity to avoid penalties, with COSCO and OOCL particularly exposed.

2. New shipping alliances reshape networks
The recomposition of global shipping alliances in Q1 has reshaped carrier strategies. The launch of the Gemini Cooperation between Maersk and Hapag-Lloyd marked one of the most significant realignments in recent years, focused on achieving 90%+ schedule reliability. Shippers are already seeing more dependable services, but questions remain about whether premium pricing will follow.

Other alliances, particularly Ocean and THE Alliance (now Premier Alliance), are recalibrating networks, with competition sharpening across Asia–Europe and transpacific trades. For shippers, the alliance changes mean rethinking service contracts and adapting to new network structures that could endure for much of the decade.

3. Houthi attacks deepen Red Sea crisis
The Red Sea crisis, triggered by Houthi rebel attacks, has now stretched on for nearly two years. In July 2025 the threat escalated further with the sinking of the Magic Seas, a Greek-operated vessel targeted for its links to companies calling at Israeli ports. Analysis suggests that one in six vessels globally could now be considered threatened under the Houthis’ broad definition of violators.

For container lines, this effectively rules out a return to Suez Canal routings before 2026 — and possibly not until 2027. Rerouting around the Cape of Good Hope adds up to two weeks to Asia–Europe journeys, pushing up costs and insurance premiums, and putting additional strain on fleet capacity. The Red Sea instability has been a reminder of how localised conflicts can have global consequences for supply chains.

4. Logistics skills shortages persist
The UK continues to face a significant shortfall in logistics skills, with the Road Haulage Association estimating a deficit of around 50,000 HGV drivers. The ONS also reports 6,000 fewer courier and delivery drivers than the previous year. With 55% of HGV drivers aged between 50 and 65, the demographic imbalance remains a long-term concern.

Factors include reduced access to EU workers post-Brexit, poor industry perception, and limited uptake of government training schemes. Although the crisis is not as acute as during the height of the pandemic, the ageing workforce and lack of young entrants mean structural shortages will continue. Rising wage costs, recruitment struggles, and bottlenecks in road transport all add to the burden on UK supply chains.

5. EV shipping challenges raise alarm
The growth of electric vehicle (EV) trade has created new safety risks at sea. Several high-profile fires on car carriers have been linked to lithium-ion batteries, sparking concern among insurers, regulators, and shipowners. Insurers are pushing for tougher loading protocols, enhanced crew training, and more advanced fire suppression systems.

For supply chains, this adds cost and complexity to automotive logistics, with carriers facing higher insurance premiums and the need to retrofit vessels. It is also slowing the momentum of EV exports, just as demand for cleaner vehicles accelerates globally.

6. Sustainability regulations tighten
Sustainability regulation is reshaping procurement strategies. The EU’s Carbon Border Adjustment Mechanism (CBAM) is beginning to impact trade in carbon-intensive products such as steel, aluminium, and cement, with importers required to report embedded emissions.

At the same time, sustainable aviation fuel (SAF) is moving toward a tipping point. UK and EU mandates are pushing airlines to integrate SAF into their fuel mix, with new investments underway to scale production.

While tariffs and geopolitics grab headlines, sustainability is quietly becoming a decisive factor in supplier choice, cost structures, and long-term resilience planning. For many organisations, compliance with emissions and ESG frameworks is no longer optional but critical.

Outlook
H1 2025 has exposed the vulnerability of supply chains to political shocks, armed conflict, safety risks, and structural labour shortages. Tariffs, alliances, and attacks have disrupted networks, while long-term challenges around sustainability and skills remain unresolved.

The message for supply chain leaders is clear: resilience, agility, and visibility will be critical in the second half of 2025, as disruption becomes the new normal.

H1 2025 has underlined how vulnerable global supply chains have become and staying ahead demands visibility, expertise, and a trusted partner by your side.

Metro’s account management team works proactively with customers to anticipate risks, share insights, and design solutions that are resilient and adaptable to change.

Our expertise encompasses dangerous goods and lithium battery shipping, customs, and multimodal freight, backed by a strong people strategy that includes apprenticeships, engagement programmes, and our Great Place to Work certification.

We are also leading the way on sustainability. Metro has been carbon neutral for five years, pioneering the use of Sustainable Aviation Fuel (SAF), while our MVT ECO platform helps businesses forecast, measure, and offset emissions across their global supply chains.

EMAIL Andrew Smith, Managing Director, to learn how Metro can build resilience into your supply chain.

Security Alert: Sophisticated Email Scam Targeting Businesses

Security Alert: Sophisticated Email Scam Targeting Businesses

Aug 5, 2025 | , ,

Metro has recently detected and blocked a highly targeted spear‑phishing campaign designed to deceive recipients and obtain sensitive information. 

The emails are sophisticated, imitating genuine correspondence and attempting to impersonate known contacts.

Our investigation shows that the campaign originated from a third‑party domain and compromised credentials. Thanks to our robust cyber‑security monitoring and the vigilance of our team, this activity was quickly identified, contained, and prevented. Metro’s systems, data, and banking details remain completely secure and  not compromised.

We are actively assisting the affected third party with their investigation and continue to strengthen our own security policies to protect against evolving threats.

How to Protect Yourself

To help safeguard your information and ensure secure communication with Metro, please keep the following in mind:

  • Bank account updates – Metro follows strict verification procedures before making any changes. We will never rely on instructions sent by email alone.
  • No banking changes – Metro’s bank details have not changed. Any message claiming otherwise is fraudulent.
  • Stay alert – Treat unexpected or suspicious emails with caution, especially those requesting sensitive information or payment details.
  • Verify requests – Always confirm any unusual request by contacting Metro directly using the official contact details you already have.
  • Report it – Forward any suspicious messages to our security team: servicedesk@myvisibilitytool.com

Protecting your information and ours is a top priority. We are continually monitoring for emerging threats, enhancing our security measures, and working closely with trusted partners to safeguard your business.

Thank you for your continued trust. If you have any questions or concerns, please contact Metro’s IT/Security team at servicedesk@myvisibilitytool.com.

Elevating Information Security

Elevating Information Security

Jul 22, 2025 | ,

We are delighted to announce that Metro has achieved ISO/IEC 27001:2022 certification, the international gold standard for Information Security Management Systems (ISMS).

This milestone is the result of a rigorous external audit process, covering all aspects of how we manage sensitive information across our business and embraces every service.

The certification, issued by NQA/BM TRADA, confirms that Metro operates to the highest standards of data confidentiality and integrity, across all UK locations.

The Gold Standard for Information Security Management Systems
ISO 27001 is a globally recognised framework for establishing, implementing, maintaining, and continually improving an ISMS. It defines how organisations should assess and treat information security risks, ensuring robust controls are in place to safeguard data, whether physical, digital, or in transit.

Attaining ISO 27001 involves a comprehensive review of information handling processes, risk assessments, staff training, documentation, incident response plans, and technical controls. It also requires commitment from leadership, internal audits, and an external assessment by accredited certification bodies. And it doesn’t stop there; ongoing monitoring and recertification ensure continuous improvement.

Benefits for Our customers and Stakeholders
Enhanced data security: Stronger protection against cyber threats, data breaches, and unauthorised access.
Regulatory compliance: Confidence that Metro aligns with legal, contractual, and industry-specific requirements.
Operational resilience: Reduced risk of disruptions through structured risk management and disaster recovery planning.
Customer trust: Reinforces the confidence our clients place in us as a secure and reliable supply chain partner.

ISO 27001 certification is not a one-off achievement. It’s part of our long-term commitment to delivering secure, technology-enabled solutions that help you trade smarter and safer.

EMAIL Ian Powell, Customer and Technical Solutions Director, to explore how Metro’s technology solutions can support your business.

Category: Technology

Metro | MVT | Technology

Latest News in this category