Leveraging a Tailorable Holistic Perspective of Supply Chain Risk
The current SoT BoK starts with the three top-level aspects of trust – suppliers , supplies , and services , shown in Table 6-1 . Trust Aspect
Supplier
Supply
Service
Definition
Risks related to characteristics of a supplier of products or services , including their supply chain , that may potentially impact consumers of those products or services .
Risks related to characteristics of supplies ( products ), including their supply chain provenance and pedigree , that may potentially impact consumers of those products .
Risks related to characteristics of services , including their supply chain provenance and pedigree , that may potentially impact consumers of those services .
Table 6-1 . Supply chain security trust aspects .
These have seven , three , and four risk categories covering each of them respectively . For suppliers the top categories of risks are as shown in Table 6-2 below . The top categories for supplies and services are shown in Table 6-3 and Table 6-4 below .
Risk Category
External Influences
Financial Stability
Maliciousness
Organizational Security
Organizational Stature
Quality Culture
Susceptibility
Definition
Risks related to characteristics of a supplier that affect its potential to be negatively influenced by external motivations or allegiances . In a nation-state context this is typically an issue of foreign influences and in the commercial context this would typically be a competitor ’ s influence on a supplier .
Risks related to financial health and stability characteristics of a supplier that affect its potential ongoing existence , operation , integrity , growth , technological advancement , and consistent supply / service delivery .
Risks related to characteristics of a supplier that can negatively impact its customers , clients , partners or market through explicit intent , whether internally or externally driven , to violate legal / business norms or to cause harm .
Risks related to characteristics of a supplier ’ s personnel , facilities , transport and cyber security capabilities , policies , and practices that affects its potential to resist malicious actions and their impacts on their customers .
Risks related to geographical , geopolitical , structural or operational characteristics of a supplier that affect its potential to operate in an efficacious and resilient manner .
Risks related to characteristics of a supplier ’ s ability to reliably deliver quality supply item ( s ) and / or service ( s ).
Risks related to characteristics of a supplier ( industry sector , location , customers , etc .) including proactive management of such risks that affect the likelihood of them being targeted , compromised , or otherwise adversely affected by malicious actors causing risk to their customers .
Table 6-2 . Supply chain security top-level risk categories for suppliers .
Risk Category |
Definition |
Counterfeit |
Risks related to the authenticity of supplies ( products ) or services . |
Hygiene |
Risks affecting the ability of supplies ( products ) or services to perform as expected . This involves characteristics related to quality , security , resilience , etc . |
Malicious Taint |
Risks related to the integrity of supplies ( products ) or services . |
Table 6-3 . Supply chain security top-level risk categories for supplies .
Journal of Innovation 51