One in four maritime suppliers showing cyber red flags as shipowners boost due diligence requirements, says Procureship

More than a quarter of maritime parts and service suppliers have been identified as having high or very-high cyber vulnerabilities, according to new data from Achilles Network. Through Procureship’s integration with Achilles, shipping companies can now access Achilles’ verified ESG and cyber indicators directly inside their procurement workflows, giving them immediate visibility of verified supplier credentials.

The long-term partnership between Procureship and Achilles, announced in March 2025, is now live and brings Achilles’ verified Sustainability Scores into the Procureship platform. This ensures that buyers can reference consistent, third-party-assessed ESG data at the exact moment of supplier evaluation, supporting stronger supplier selection practices and more resilient supply chain management, while reducing exposure to compliance risks.

More than 1,000 global suppliers were assessed as part of a 12-month review process to identify potential risks for shipping companies across environment, social, governance, and cyber domains.

According to the data, 28% of those assessed were identified as having a high or very-high cyber risk, while more than half of those reviewed were shown to lack third-party-assured anti-bribery systems, public liability insurance or information security policies. 

In addition, roughly a quarter of suppliers do not yet measure their greenhouse gas emissions while more than a half of those reviewed were shown to be using uncertified carbon systems. However, the review also showed that nearly half of suppliers are using certified environmental management systems while nearly 13% have decarbonisation plans in place.

“Understanding the ESG capabilities of suppliers across the maritime industry is crucial to safeguard the day-to-day operations of global shipowners and reinforce their own ESG strategies,” said Grigoris Lamprou (pictured), CEO and Co-Founder of Procureship. “By ensuring these data points are now available within Procureship, our users have the confidence to work with suppliers and contractors that can strengthen their own business practices and minimise any potential risk.”

“Shipping companies are increasingly using data-driven insights to target greater supplier relations and address their own environmental and cyber vulnerabilities,” said Craig Rodgerson, CEO of Achilles. “By embedding this type of data into the Procureship platform, users are able to gain early warnings of potential supplier vulnerabilities, enabling them to shift their risk management from reactive to predictive.”

Procureship showcases Achilles’ data both in supplier profiles and in supplier search engine results, while buyers can check the suppliers’ Achilles scores on the spot during the evaluation of quotations. Through this process, users can easily source products and services from companies that meet their operational and compliance standards, helping them make more informed procurement decisions.