SCRM in the electronic industry – an industry recommendation

A few days ago, the ZVEI, the German Electrical and Electronic Manufacturers’ Association, published an industry recommendation how to set-up and run Supply Chain Management in the electronic industry. The recommendation ‘Guideline Supply Chain Management in Electronics Manufacturing’ is the result of an initiative started by two divisions of ZVEI – the Electronic Components and Systems Division and PCB and Electronics Systems Division. The reason that these two division started the initiative is simple: The members of those two division are located upstream in electronic supply chains – and therefore they face stronger consequences of the well-know bull-whip effect (volatility of demand, out of stock situations etc.). Thus, these companies are highly interested in establishing SCM in their supply chains to reduce the bullwhip effect and to decrease the level of risk.

The document addresses different topics of SCM: It starts with a general introduction into Supply Chain Management, then discusses robust supply chains, focuses on external framework conditions, and gives recommendations for education and training in SCM. From an SCRM perspective, chapter 2 (‘Robust Supply Chains with High Responsiveness and Flexibility’) is of special importance.

Figure 1: List of possible risks for different process types. Source: ZVEI - German Electrical and Electronic Manufacturers’ Association: Guideline Supply Chain Management in Electronics Manufacturing, Frankfurt/Main 2014.

The ZVEI starts with defining robustness in supply chains: “This means that a robust supply chain must be as reliable and immune as possible to external influences and risks, possibly intercepting errors when they occur to minimise their impact on downstream processes.” The document then lists different risks that might occur in various areas of the supply chain. The underlying concept is the well-established SCOR model, the ‘Supply Chain Operations Reference’ model, which is a set of standard processes on different levels, which can be used to model, document, and analyze supply chains. Following the SCOR approach is one of the strengths of the document. By applying SCOR to the SCRM process means to build a solid structure for risk management. Figure 1 shows the result of the generic risk identification using SCOR model – a table with potential risks, that are assigned to the 5 different types of processes used in the SCOR approach. (The ‘return’ process was omitted intentionally, since the group found it played a minor role.)

After identifying and listing various risks in the electronic supply chain, the document focuses on measures to safeguard against risks. Again, when suggesting and discussing different approaches, the document follows the SCOR model. Those measure contain suggestions that are typical to SCM, such as supplier management and the use of SCM IT applications. On the other hand, risk management specific approaches are suggested, such as FMEA and the simulation of supply chain scenarios. It also recommends the use of a risk classification matrix.

Figure 2: Questionnaire. Source: ZVEI - German Electrical and Electronic Manufacturers’ Association: Guideline Supply Chain Management in Electronics Manufacturing, Frankfurt/Main 2014.

The paper not only lists risks and possible counteractions, but also addresses the organizational implementation of risk management. Within a few pages, the paper gives valuable hints for setting up a risk management in supply chains, and also focuses on communication in risk management. Additionally, the document provides a questionnaire that helps to ask the right questions in SCRM in the electronic industry (see Figure 2).


We Germans would probably ask: Aren't there any weaknesses of the paper? And then we would answer: Yes, there are some. But: I don't want to focus them - because I would like to look at the recommendations' strengths. So: Is the paper helpful? Definitely! One of the strengths is to give an overview over SCM and SCRM in a specific industry. Of course, this leads to some general suggestions and recommendations (as mentioned above), but those recommendations still focus on the electronic industry. (And if you ever worked on industry standards, you for sure know how difficult it is to find a compromise even for definging single termns.) Another strength is to link SCRM activities to an existing, structured approach – the SCOR model. The SCOR approach thus builds the framework for identifying, evaluating and managing supply chain risks. By following SCOR the paper shows a strong methodic structure, that can be followed easily!

The document ‘Guideline Supply Chain Management in Electronics Manufacturing’ can be downloaded from the ZVEI’s homepage: http://www.zvei.org/en/association/publications/Pages/Guideline-Supply-Chain-Management.aspx.

DHL's Swiss knife revisited

More than a month ago, I discussed DHL's risk management approach that resulted in DHL Resilience360. I concluded that the approach seemed to be interesting, but the available information was shallow.

I tried to get in contact with DHL to find out more about this tool, and - after a first unsuccessful attempt - I was invited to either visit DHL in Troisdorf or to follow a live presentation via WebEx. To save resources, I chose the latter - and eventually we set a date for the presentation.

To start with my overall impression: The tool and its capabilities are impressing. There might be aspects, where you could argue, that the methodic foundation might be weak. But, from my point of view, the tool offers much more than I dared to expect.

Figure 1: Visualization of a global supply chain, including risk assessment of the supply chain elements

Strategic level: supply chain visualization and risk assessment of the (static) supply chain

The application provides two general functionalities: On one hand, it supports the supply chain configuration on a strategic level. By a geo-referenced visualization of the whole supply chain, i.e. all own suppliers' and customers' locations, and infrastructure nodes plus all relations between those nodes, it provides a worldwide overview  (see figure 1 above). From a conceptual point of view, the visualization of a supply chain is nothing extraordinary. However, the practical implementation of a worldwide visualization is at least a first step to create some visibility. And - visibility is one of the key words to implement an effective SCRM. The transportation links also reflect the actual route of a shipment, so again, the data is geo-referenced.

Figure 2: Detailed risk assessment of a node within a supply chain ('risk scores')

Each node and each link has additional risk-related information. Those information can be collected by semi-automatically sending out questionaires with risk-relevant questions to the operators of the facilities. The answers are then used as input into a risk assessment, so that a number of different risk factors can be evaluated focusing on exposure, impact, and severity. The algorithm that calculates the risk values has not been discussed, so that might be an open issue. Nevertheless, the values offer the risk manager a first idea where 'hot spots' in terms of high risks might exist - and why those locations might be hot spots (see Figure 2). They also indicate, where to develop measures to manage risks.

Figure 3: Country-focused risk evaluation

The risk assessment on the strategic level can be additionally supported by a country-focused risk evaluation (see figure 3). Those information are based on a number of different sources. They do not only reflect the current risk situations for different factors such as terrorism, corruption, or cargo theft, but also give the risk manager an idea regarding the risk trends for the aforementioned factors. Of course, this feature of the application does not generate a 'WOW!'. But - it can effectively support the supply chain (risk) manager because it is part of an integrated system.

Figure 4: Risk monitoring using geo-coded near-time incident data

Operational level: Incident monitoring

 

The second functionality of Resilience360 is an almost real-time (thus 'near-time') risk monitoring. It is a 'near-time' monitoring, because the (currently five) providers of risk-related incident information, such es data on strikes, terror attacks, environmental changes, delays, etc., first validate the data and their sources, so the information can be confirmed. The risk news are also geographically referenced, so they can be displayed on the map in the system (see figure 4).

Figure 5: Matching incident data and supply chain characteristics to identify affected supply chain elements

To realize, how those incidents might influence the supply chain, the user can define some kind of 'influence area' for the incident. By matching the geo-referenced 'influence area' with the also geo-referenced supply chain, the supply chain risk manager can immediately identify affected parts of the supply chain (see figure 5). Thus, this functionally can effectively support the operational risk monitoring even of complex supply chains.

The functionality explained above, i.e. the strategic supply chain mapping including risk-related information and the operational risk monitoring of supply chains and their processes, are - I must admit - impressive. The online and browser-based application can be used almost intuitively. The functionality seems to incorporate a lot of practical ideas and methodological aspects.

Data availibility is a crucial point

 

Aren' t there any limitations? Yes, there are. It's the required data that defines if the application is helpful or not. The incident data is provided by external sources - so that should not be a problem of availability. It should also not be a problem to get location-related data of own facilities. But, it is getting more and more difficult the more a company tries to integrate supplier and customer data. And the data availability will be worse when it comes to integrating tier-2 or tier-3 suppliers (or customers of customers). This is not only true for the static data, i.e. locations, relations, and risk data, which might be difficult to compile. The situation get worse when dynamic data such as actual shipment data is required for the operational risk monitoring. Again, the data acquisition might be easy when the company has full responsibilities for shipments, and thus has the shipment data. (Alternatively, if DHL is the LSP for the company, DHL should be able to provide all detailed shipment data.) But, if some third party is responsible for planning and control of shipments, it seems unlikely to get hold of the data. This is, of course, not a problem of the tool, but it is a crucial point for the applicability of DHL Resilience360.

As mentioned above, the calculation of the risk values for exposure, impact and security is - at least to me - a black box, so an evaluation of the methodology is not possible.

Wish list of supply chain risk managers

 

Risk managers might have some points on their wish list. This could be the assessment of follow-up risks, based on a current incident somewhere in a supply chain. If the tool would be able not only to identify those parts of the supply chain that are directly affected but could also calculate or estimate the consequences for later processes in the supply chain, it would be of great help for a consequences analysis and for prioritizing counteractions. Another wish could be a stronger decision support. Currently, the application works as management information system (MIS), that provides data for a supply chain (risk) manager. However, generating alternatives, such as chosing alternative routings, or shifting production from one location to another, is a task carried out by the manager. If the system could simulate alternative routings, or the consequences of changing production and delivery plans, the manager could focus on evaluating those alternatives and then choose the optimal alternative. This would shift the application to a decision support system (DSS).

Summary

Beside those aspects mentioned above, the DHL's Resilience360 is a very strong and - as it seems - highly sophicasted tool that support strategic and operational tasks in supply chain risk management. It provides much more functionality than other tools available. However, the question of gathering enough and high-quality (i.e. detailed) data from all supply chain partners is a crucial point for the tool.

(All screenshots by courtesy of Deutsche Post AG.)

Don't play it safe...

'Don't play it safe when it comes to Supply Chain Risk Management' - that is the title of Accenture's new 'global operations megatrends study'. The analysist at Accenture took a look at SCRM to identify the current top risks for supply chains and also the functions or areas within a supply chain that seem to be most at risk. Accenture also aims to highlight some best-practices top companies are implementing when it comes to setting-up and effective SCRM.Thus, let's take a look at the results of the study...

The respondents that were contacted within the survey are more than 1,000 senior managers; most of them are from large global companies from all over the world.

Figure 1: Greatest sources of supply chain risk, source: Accenture: Don't play it safe when it comes to Supply Chain Risk Management, 2014, p. 5.

When focusing on the top souces for supply chains risks, the study shows that the most important risk  source is IT (see figure 1). Two contributing factors are mentioned: On one hand, companies have failed to set-up agile IT organizations that can quickly react to market demand changes. On the other hand, too much data is insufficient or even missing or not accessible - leading to a still low level of visibility within the supply chain. Disasters, however, although often leading to high negative consequences, are not ranked as a top risk - probably due to their low probability of occurrence.

Figure 2: Approaches to risk management, source: Accenture: Don't play it safe when it comes to Supply Chain Risk Management, 2014, p. 6.

More than 75 % of the companies see operational risk management as important or even very important. This importance can be seen in the different approaches to risk management (see figure 2). The most important approaches are having a risk management in place, the use of alternative partners when needed, and the use of IT and organization to reach a visibility regarding risks. It is interesting and seems contradictory that approaches to visibility are mentioned as some risk management measure, whereas there is still a high degree of intransparency in supply chains - as mentioned above in the sections on top risks.

Accenture reports about very promising quantitative results of risk management, which can be measured by the return on investment (ROI). 21 % of the companies reached an ROI of between 51 % and 100 % from their investments in SCRM. Another 7 % of the enterprises are proud to have an ROI of even more than 100 %. However, the the question remains, how an ROI from specific actions can be measured without taking into account additional influences (from outside risk management activities).

Accenture's analysts identified three key practices that support and enhance the effectiveness of SCRM:

1. Leaders (the abovementioned group of companies with an ROI of more than 100 %) take care that SCRM gets a top priority in a company. They support this approach by installing a risk management officer, by developing SCRM skills of employees, and other practices.
2. Leading companies show a higher degree of centralization when it comes to SCRM. 43 % of the leaders have a centralized risk management, whereas only 37 % of the other companies have risk management centralized.
3. Leaders are considerably investing into SCRM, especially to increase the end-to-end visibility within the supply chain. 60 % of the leaders increase their investments in this area by more than 20 %. Only 23 % of the other companies have planned such high investments.

The study shows interesting results. It can be used to promote SCRM in an enterprise. Also, some best-practice approaches are mentioned. On the other hand, since most of the respondents are managers from large companies, it is not clear if those results would hold true also for small and medium enterprises. Also, the identification of 'leaders' by the ROI on SCRM-related investments seems to be at least questionable. This also concerns some of the best-practice approaches (especially the question of centralization/decentralization of SCRM).

The full study 'Don't play it safe when it comes to Supply Chain Risk Management', published by Accenture in 2014, can be downloaded from Accenture's website: http://www.accenture.com/SiteCollectionDocuments/PDF/Accenture-Global-Megatrends-Operations-Supply-Chain-Risk-Management.pdf

DHL's Swiss Knife?

Supply chains are extremely complex constructions. That has implications for SCRM: Due to the multi-tier character of supply chains with many thousands transactions (material, information, and financial flows) the detection of risk developments in operations is difficult. Because a broad variety of operational databases and applications is used, transparency regarding the abovementioned flows is almost impossible.

Figure 1: Visualization of a company's supply chain, Source: http://www.dpdhl.com/content/dam/presse/img/2014/dhl-resilience360-world-map-600.jpg

DHL now promises to solve ‘mission impossible’ by the introduction of ‘Resilience360’. Resilience360 is said to allow for a holistic view and the real-time identification of possible risks. The application also suggests alternatives or counteractions for identified risk; thus, it seems to be a decision support system. This and more information can be found on www.dhl.com/Resilience. The site promises a lot. So far, many of the information are of relatively generic character. Also, the video shown on the DHL’s website is a nicely computer-animated movie, but contains little concrete information.

DHL also provides two case studies: The first focusing on the use of Resilience360 at ZF, one of the big automotive suppliers; the other talking about how Resilience360 has been used at DuPont. Again, many generic topics are mentioned in the case study, so the level of detail is (understandably) low. However, it is irritating that some identical pictures are used in both case studies.

Risk categories used for Resilience360, Source: http://www.dpdhl.com/content/dam/presse/img/2014/dhl-resilience360-risk-wheel-600.jpg

In the end, we only get a shallow first impression of this ‘all in one solution’ by DHL. Too much information is of generic character. The functionality seems to be impressive, but not much details were revealed (for example, no real screenshots were shown). Thus, an evaluation of the capabilities of Resilience360 is not possible. Another question that has not been addressed in the reports is how the data sources are included: If a global player like DuPont or ZF intends to gain more transparency, they must collect a huge amount of data and integrate not only direct suppliers, but partners on each level of the supply chain. It would be interesting to understand, if and how those difficulties are solved by Resilience360.

Sources:

• DHL International GmbH: DHL Resilience360 – Managing Risks in Your Supply Chains, http://www.dhl.com/resilience (2014).
• DHL: Holistic View of DuPont Supply Chain Improves Resilience and Avoid Costs, http://www.dhl.com/content/dam/downloads/g0/logistics/resilience360/dupont_case_study_en.pdf (2014).
• DHL: DHL and ZF Drive Down Supply Chain Risk with Resilience360, http://www.dhl.com/content/dam/downloads/g0/logistics/resilience360/zf_case_study_Apr2014.pdf (2014).
• Greenway, T.: How Safe is Your Supply Chain? In: Deutsche Post DHL Headquarters: Delivered, Issue 1/2014, p. 23-25.
• Deutsche Post AG: DHL Resilience360 - neues Instrument für Risikomanagement in der Logistik, http://www.dpdhl.com/de/presse/pressemitteilungen/2014/dhl_resilience360_risikomanagement.html (2014).

Risk Management is a waste of time! And of resources. And of effort. And of money. And...

Very often, the benefits of risk management are underestimated. Or, managers do not see any benefits of using risk management for their company. Statements as "Risk management only creates additional cost" or "Risk management does not create any revenues" are often heard. (Personally, I read such statements quite frequently, when receiving answer sheets within our empirical research projects.) This statements are then used as arguments for not spending effort, time, and money to set-up or develop risk management. Very well done!

But: The view mentioned above is proven to be wrong! Aon plc., together with Wharton School of the University of Pennsylvania, have developed a so-called 'risk maturity index' (details can be found on Aon's website). The latest report on the risk matury index, which uses data from more than 360 publicly traded companies, shows some interesting results - especially when focusing on the benefits of risk management.

Figure 1: Risk Maturity Classification; Source: Bourdon, T. W.: Aon Risk Maturity Index - Insight Report, November 2013, p. 6.

Based on a set of 40 different criteria, companies were classified by their answers into 9 different categories (see Figure 1). Only .7 % of the companies reached the maximum of 5 points on the index, and were classified as 'advanced'. However, more than 50 % of the companies show unsufficient capabilities for risk management - and are classified as 'basic' or 'initial/lacking'.

Figure 2: Stock Price Volatility by Risk Maturity Rating; Source: Bourdon, T. W.: Aon Risk Maturity Index - Insight Report, November 2013, p. 63.

Figure 2 shows, that in general there is a negative correlation between risk management maturity and the stock price volatility. Thus, companies with a state-of-the-art risk management fear far less volatility of their stock price than companies with a 'basic' or 'initial' risk management.

Figure 3: Implications of the Greek Fiscal Crisis 2010; Source: Bourdon, T. W.: Aon Risk Maturity Index - Insight Report, November 2013, p. 5.

It seems obvious that economic problems in a country or a region have implication on the profitability of companies. Thus, enterprises are affected by economic crisis. However, the report shows, that companies with a sophisticated risk management system in place are less affected by such a crisis than companies with a low risk maturity index. Figure 3 shows results focusing on the implication of the Greek fiscal crisis in 2010 for the stock price of enterprises. Again: The study shows, that a well-implemented risk management contributes strongly to the economic situation of a company.

Figure 4: Implications of the Japanese Earthquake 2011; Source: Bourdon, T. W.: Aon Risk Maturity Index - Insight Report, November 2013, p. 5.

Those statements also hold for the implications of catastrophes for companies. Figure 4 demonstrates how enterprises with a well-established risk management are far better off after the Japanese earthquake in 2011 than companies with a less developed risk management. In this case, we can also see how risk management can contribute to more or less stable and resilient supply chains.

The report 'Aon Risk Maturity Index - Insight Report, November 2013', written by T. W. Bourdon et al., can be downloaded from Aon's website: http://www.aon.com/risk-services/thought-leadership/report-rmi-insight-nov-2015.jsp.

Water, Water!!!

Almost every transformation process that is required for production also needs more or less water - from the growth of raw materials, to the production of materials and components, to the distribution of products to the customers. Without water, many of those processes would not be possible. Thus, scarcity of water can be a risk for supply chains.

The PRI Association (http://www.unpri.org/), in collaboration with World Wildlife Fund (WWF), PwC Germany and the PRI investor steering committee on water risks, has published recent findings on water risks in agricultural supply chains.

Figure 1: Distribution of the world’s water (source: PRI: PRI-coordinated engagement on water risks in agricultural supply chains - Investor guidance document, p. 7.)

The researchers state, that only less than 1 % of the world's water reserves are both suitable and accessible to humans. At the same time, the demand for water has dramatically increased. In 2050, 40 % of the global population will be living in areas, where severe water scarcity occurs, so the estimates of the experts.

However, the reports focuses on water-related risks in supply chains. To identify the risks for certain companies in supply chains, the researchers followed a certain methodology. First, they identifed on a global level crops and river basins facing the most significant water risks, which were then further aggregated. This led to a list of 25 key crop/country combinations with high water risks. Then, appropriate companies were identified for the concrete assessment of water risks. A so-called 'ESCHER approach' (an extended input/output model) was applied to estimate the water consumption in water stressed regions. Although the report mentions that there were some limitations of the model and the data, it also highlights that the value of this approach is to actually provide a first quantitative estimate of water consumption and water risks in certain supply chains. Figure 2 shows two examples of supply chains in different sectors and the water-related risks.

Figure 2: Water consumption of example sectors across supply chain tiers (source: PRI: PRI-coordinated engagement on water risks in agricultural supply chains - Investor guidance document, p. 9.)

Beside those quantitative results, there are further conclusions from the output of the calculations:

• There is, unsurprisingly, a strong association between water usage and revenue.
• There is some significant exposure to certain crop/country combinations, e.g. for Indian wheat.
• The biggest water consumers are companies in the agricultural sector, in food retail, in packaged foods and meats as well as soft drinks companies. 
• A relatively low consumption in water scare regions had been calcluated for apparel, luxury goods, brewers as well as distillers and vintners.

The researchers list a variety of questions, that can be addressed to bridge research to application, and even more important to support a water risk management. The focus on:

• Awareness and relevance, for example asking where in the value chain the company is placed or if it is facing end-customers. Another question is how the company would rate the current and future importance of water risk for the continuity and pricing of its key commodity supplies.
• Water risk assessment, e.g. asking at what level and at what geographic scale the company undertakes water risk assessments.
• Impact, for example asking what percentage of key commodity spend is exposed to substantive water risk.
• Response, e.g. asking what proportion of key suppliers the company requires to report on their water use, risks and management?
• Disclosure, for example asking if the company discloses its water risk and management response?

Finally, the report proposes to apply a water risk management framework, developed by WWF. This framework consists of 5 steps:

1. Water awareness,
2. Knowledge of impact,
3. Internal action (engagement with employees, buyers, and suppliers),
4. Collective action (engagement with other organizations), and
5. Influence government.

The full report "PRI-coordinated engagement on water risks in agricultural supply chains - Investor guidance document" can be found on the PRI's website: http://www.unpri.org/publications/#WATER-RISKS.

Thanks to Christian Kalley for pointing me to the report.

-----

You might also be interested in a report by WWF about water-related risks in Germany. A summary of the report can be found on RiskNet's website (http://www.risknet.de/topics/risknews/das-unterschaetzte-risiko/f12c9f4bfbd07ffec7c5000f86fbc614/, in German). The report can be downloaded on the website of WWF Germany: http://www.wwf.de/fileadmin/fm-wwf/Publikationen-PDF/WWF_Studie_Wasserrisiko_Deutschland.pdf.

Risk Management in the Logistics Industry - Still Room for Development/Risikomanagement in der Logistikbranche - noch viel Luft nach oben

Since 2009, my colleague Prof. Dr. Dirk Lohre of Heilbronn University and myself have been conducting surveys in the logistics industry to assess the degree of maturity of risk management (RM) in the logistics industry.

Our latest survey had been conducted already in 2013; however, the results were published only a few weeks ago. They can be found in the International Journal "Transport and Logistics".

What are key results of the survey?

Figure 1: Use of RM in the logistics industry

1. The current top risks for managers in the logistics industry are the competitive conditions in the in industry, risks involved with human resources (espc. truck drivers), and operational risks. They also see those three risks as top future risks. Beside those risks, they also see rising/volatile energy prizes as a thread.
2. Only a little more than half of the companies that responded to the questionaire have already an RM system in place (see figure 1). Some have planned the implementation of RM within the next two years. However, every sixth enterprise has not planned to set-up RM at all.
3. Although both HR and operational risks are seen as top threads, only less than half the companies continously apply RM to those functions. The rest either applies RM methods sporadically or not at all (see figure 2). In contrast, the application rate of RM in accounting/controlling and for the general management is tremendously higher.
4. When asked for what well-established methods/tools are used for RM, more than two third of the managers answered, that brainstorming, check lists, and interviews of experts and/or employees are the most common approaches. It is noteworthy, that FMEA and risk maps are used only by less than 30 % of the logistics enterprises. Other techniques are rarely used at all.

As a conclusion we draw from our 3rd empirical survey, we state that the degree of maturity of RM in the LSP sector is still relatively low. This can be seen by the low degree of using RM in general, and by the application of methods, instruments, and also IT tools.

The article "Risk Management in Logistics Enterprises: Findings from the 2013 Empirical Study" by Michael Huth and Dirk Lohre in "Transport Logistics" (No 2 (22)/2014) can be found here: http://www.logistics-and-transport.eu/index.php/main/article/view/323

-----

Seit dem Jahr 2009 führen mein Kollege Prof. Dr. Dirk Lohre von der Hochschule Heilbronn und ich empirische Befragungen in der Logistikbranche durch, um den Reifegrad des Risikomanagements (RM) in im Speditions- und Logistiksektor zu erfassen.

Unsere letzte Erhebung wurde zwar bereits im 2013 durchgeführt; die Ergebnisse wurde allerdings erst vor wenigen Wochen in der internationalen Logistikzeitschrift "Transport and Logistics" veröffentlicht.


Welche wesentlichen Ergebnisse lassen sich aus der Studie ziehen?

Figure 2: Use of RM for specific functions

1. Die aktuellen Top-Risiken für Manager im Logistiksektor sind die Wettbewerbsbedingungen in dieser Branche, personalbezogene Risiken (bspw. aufgrund des Fahrermangels) sowie operative Risiken. Die Befragten sehen diese drei Risiken auch zukünftig als die wichtigsten drei Risiken an. Daneben werden allerdings auch steigende bzw. volatile Energiepreise als Bedrohung wahrgenommen.
2. Nur etwas mehr als die Hälfte der Unternehmen, die auf den Fragebogen antworteten, nutzt bereits ein RM (siehe Figure 1). Einige der Unternehmen haben sich auf die Fahne geschrieben, innerhalb der nächsten zwei Jahre ein RM zu implementieren, aber für jedes sechste Unternehmen ist RM derzeit kein Thema.
3. Obwohl personalbezogene und operative Risiken als Top-Risiken angesehen werden, wendet nur weniger als die Hälfte der Unternehmen ihr RM kontinuierlich in diesen Bereichen an. Der Rest der Unternehmen befasst sich mit den Risiken in diesen Funktionen entweder nur von Zeit zu Zeit oder überhaupt nicht (siehe Figure 2). Im Gegensatz dazu ist die Anwendung von RM im Bereich Kostenrechnung/Controlling sowie für die Geschäftsführung deutlich höher.
4. Auf die Frage, welche Methoden oder Tools im Rahmen des RM angewandt werden, antworteten mehr als zwei Drittel der Manager, dass vor allem Brainstorming, Checklisten sowie Experten- und Mitarbeiterinterviews genutzt würden. Es ist allerdings auch bemerkenswert, dass FMEA und Risk Maps nur von 30 % und weniger der Logistikunternehmen angewandt werden. Andere methodische Ansätze werden kaum genutzt.

Als wesentliche Schlussfolgerung aus der 3. empirischen Befragung lässt sich konstatieren, dass der Reifegrad des RM in der Logistikbranche weiterhin als relativ niedrig anzusehen ist. Dies gilt sowohl auf Basis des doch recht niedrigen Anwendungsgrads insgesamt als auch für die Nutzung von Methoden, Instrumenten und IT-Anwendungen.

Informationen zum Artikel "Risk Management in Logistics Enterprises: Findings from the 2013 Empirical Study" von Michael Huth and Dirk Lohre in der Zeitschrift "Transport Logistics" (No 2 (22)/2014) sind an folgender Stelle im Internet verfügbar: http://www.logistics-and-transport.eu/index.php/main/article/view/323

Cisco's approach to SCRM/Cisco SCRM-Ansatz

In a recent article, María Jesús Sáenz of Zaragoza Logistics Center and Elena Revilla of IE Business School describe Cisco's approach of having implemented SCRM as a best practice example.

In 2005, after hurricane Katrina hit the US' Gulf Coast, Cisco had severe problems to cope with this natural disaster. Thus, supply chain service levels dropped dramatically, and led to financial losses.

To be better prepared in potential similar scenarios in the future, Cisco started a five-step process:

1. Identify strategic priorities. The priorities are different for the various product groups and mainly depend on the customers' requirement regarding cost and time/flexibility.
2. Map the vulnerabilities of the supply chain design. Thus, depending on the identified priorities, it was important to find the weak points in the SC design.
3. Integrate risk awareness into the product and the value chain. Resilience had been implemented in two ways: One the one hand it was implemented into the products, e.g. by specifying alternate components in a bill of materials. On the other hand, the supply chain design was made resilient, with a special focus on reducing the time and extend of post-disaster recovery.
4. Monitor resilience. To enable a higher transparency regarding the SC resilience, Cisco created an index, which comprises different categories (components, suppliers, manufacturing, and test equipment). The index scores are reported on a semiannuall basis.
5. Watch for events. To support fast responses to critical events, two kinds of reactive tools are used by Cisco: an incident management, and a business continuity management.

Having conducted this multistep process, Cisco was able to quickly react to the Japanese earthquake and tsunami in 2011. Within 12 hours, all affected SC partners were identified and the impact of the disaster onto the SC assessed. In the end, both the procedures in place and the transparency in the supply chain made it possible, that Cisco hardly suffered any revenue losses by this catastrophy. The authors conclude: "Learning to combine supply chain management and risk management within not only your company but your entire value chain will increasingly be a key factor for corporate survival in the face of a major catastrophe — whether the catastrophe is a market crash, a storm or a tsunami."

The article "Creating More Resilient Supply Chains" by María Jesús Sáenz and Elena Revilla in MIT Sloan Management Review (Summer 2014) can be found online here: http://sloanreview.mit.edu/article/creating-more-resilient-supply-chains/

-----

In einem aktuellen Artikel beschreiben María Jesús Sáenz vom Zaragoza Logistics Center und Elena Revilla von der IE Business School Ciscos Ansatz zur Implementierung eines SCRM als ein "Best Practice"-Beispiel.

In 2005, nachdem der Hurrikan Katrina die US-amerikanische Golf-Küste getroffen hatte, hatte Cisco große Probleme, mit den Auswirkungen dieser Naturkatastrophe auf das eigene Geschäft umzugehen. Der Servicegrad innerhalb der Supply Chains sank rapide ab und führte zu finanziellen Einbußen.

Um für potenzielle ähnliche Situationen in der Zukunft besser vorbereitet zu sein, startete Cisco einen fünfstufigen Prozess: 

1. Strategische Prioritäten identifizieren. Diese Prioritäten können für unterschiedliche Produktgruppen durchaus verschieden sein. Sie hängen im Wesentlichen von den Kundenanforderungen hinsichtlich Kosten und Zeit bzw. Flexibilität ab.
2. Anfälligkeit des Supply Chain Design dokumentieren. Basierend auf den identifizierten Prioritäten war es dann wichtig, die Schwachstellen innerhalb der Supply Chains auszumachen.
3. Risikobewusstsein (und Widerstandsfähigkeit) in die Wertschöpfungskette einbauen. Die Widerstandsfähigkeit wurde in zweierlei Wegen implementiert: Zum einen wurde sie in die Produkte integriert, bspw. durch die Auflistung alternativer Komponenten in den Stücklisten. Zum anderen wurde die eigentliche Supply Chain angepasst, wobei der Fokus darauf lag, Zeit und Umfang der Wiederherstellung nach einer Katastrophe zu reduzieren.
4. Widerstandsfähigkeit beobachten. Um eine höhere Transparenz über die Widerstandsfähigkeit der Supply Chain zu ermöglichen, entwickelte Cisce einen Index, in den verschiedene Kategorien einflossen (Teile und Komponenten, Lieferanten, Produktion sowie Test-Equipment). Die Indexwerte werden auf einer halbjährlichen Basis ermittelt und präsentiert.
5. Unerwünschte Ereignisse rechtzeitig erkennen. Um eine schnelle Reaktion auf kritische Ereignisse zu ermöglichen, nutzt Cisco zwei Arten von reaktiven Tools: Ein Incident-Management sowie ein Business Continuity Management.

Nachdem dieser mehrstufige Prozess durchlaufen war, war Cisco in der Lage, nach dem Erdbeben und Tsunami in Japan im Jahre 2011 schnell zu reagieren. Innerhalb von 12 Stunden waren alle betroffenen Supply-Chain-Partner identifiziert und der Einfluss des Desasters auf die Supply Chain abgeschätzt. Letztendlich hatte Cisco, sowohl durch die eingeführten Processe als auch durch die nun bestehende Transparenz kaum finanzielle Schäden zu beklagen. Die Autoren schließen daraus: "Learning to combine supply chain management and risk management within not only your company but your entire value chain will increasingly be a key factor for corporate survival in the face of a major catastrophe — whether the catastrophe is a market crash, a storm or a tsunami."

Der Artikel "Creating More Resilient Supply Chains" von María Jesús Sáenz und Elena Revilla im MIT Sloan Management Review (Summer 2014) ist an dieser Stelle online verfügbar: http://sloanreview.mit.edu/article/creating-more-resilient-supply-chains/

Supply Chain Risk Management: An unloved necessity, but also a chance/Eine ungeliebte Notwendigkeit, aber auch eine Chance

Welcome to my blog for "Supply Chain Risk Management"!

I have been involved in research and application of risk management approaches for the past 17 years, and since my very first beginning, I realized, that often supply chain risk management (SCRM) was seen as something which is necessary, but which does not contribute to a company's success. Personally, I think, this view is wrong. Moreover, I see SCRM as an approach which one hand gives company's a structure to proactively deal with risks that might occur in their supply chains. On the other hand, when looking at how suppliers and logistics service providers (LSP) are selected nowaday, the importance to have a SCRM in place might contribute to being selected as a preferred supplier or LSP. Thus, the importance of SCRM cannot be underestimated.

My blog tries to contribute to the increasing importance of SCRM. My aim is to compile information on SCRM that is relevant to you, might it be new articles or books, results of empirical surveys, tools and methods, software applications, and, and, and. If this blog is of interest for you - great! If you think, you can make it even better by contributing information - you're invited to do so! If you want to let me know your opinion - please e-mail me; you can reach me using michael.huth@w.hs-fulda.de.

And now, let's start!
Sincerely yours,
Michael Huth

-----

Willkommen zu meinem Blog zum Thema "Supply Chain Risk Management"!

Seit 17 Jahren habe ich in Forschung und Anwendung mit dem Thema Risikomanagement zu tun, und seit meinen ersten Berührungspunkten war mir klar, dass Supply Chain Risk Management (SCRM) oftmals als etwas angesehen wurde, was zwar notwendig sei, was aber nicht unbedingt zum Erfolg eines Unternehmens beitragen würde. Ich glaube, diese Ansicht ist falsch. Vielmehr sehe ich SCRM als einen Ansatz, der Unternehmen auf der einen Seite eine Struktur anbietet, proaktiv mit Risiken umzugehen, die in ihrer Supply Chain vorhanden sein können. Auf der anderen Seite lässt sich erkennen, dass die Auswahl von Lieferanten und Logistikdienstleistern (LDL) immer stärker auch Aspekte des Risikomanagements berücksichtigt: Um als "preferred supplier" ausgewählt zu werden, ist ein SCRM oftmals unerlässlich. Die Bedeutung von SCRM für Unternehmen sollte daher nicht unterschätzt werden.

Mein Blog versucht, im Rahmen der steigenden Bedeutung von SCRM einen Beitrag zu leisten. Mein Ziel ist es, für Sie relevante Informationen zum Thema SCRM zusammenzustellen. Dies können Informationen zu kürzlich erschienen Zeitschriftenartikeln oder Büchern sein, zu neuen Studienergebnissen, zu Instrumenten und Methoden, zu Software-Anwendungen und, und, und. Wenn dieser Blog für Sie von Interesse ist - prima! Wenn Sie der Meinung sind, ihn durch eigene Informationen noch besser machen zu können - melden Sie sich gerne! Wenn Sie mir Ihre Meinung mitteilen möchten - senden Sie mir doch einfach eine E-Mail; Sie erreichen mich unter michael.huth@w.hs-fulda.de.

Und jetzt, lassen Sie uns beginnen!
Herzliche Grüße,
Michael Huth

Impressum

Angaben gemäß § 5 TMG:
Michael Huth
Hochschule Fulda
Fachbereich Wirtschaft
Leipziger Straße 123
36037 Fulda

Kontakt:
michael.huth@w.hs-fulda.de
+49 661 9640-250

Verantwortlich für den Inhalt nach § 55 Abs. 2 RStV:
Michael Huth

Haftung für Inhalte

Die Inhalte dieses Blogs wurden mit größter Sorgfalt erstellt. Für die Richtigkeit, Vollständigkeit und Aktualität der Inhalte kann ich jedoch keine Gewähr übernehmen. Als Diensteanbieter bin ich gemäß § 7 Abs.1 TMG für eigene Inhalte auf diesen Seiten nach den allgemeinen Gesetzen verantwortlich. Nach §§ 8 bis 10 TMG bin ich als Diensteanbieter jedoch nicht verpflichtet, übermittelte oder gespeicherte fremde Informationen zu überwachen oder nach Umständen zu forschen, die auf eine rechtswidrige Tätigkeit hinweisen. Verpflichtungen zur Entfernung oder Sperrung der Nutzung von Informationen nach den allgemeinen Gesetzen bleiben hiervon unberührt. Eine diesbezügliche Haftung ist jedoch erst ab dem Zeitpunkt der Kenntnis einer konkreten Rechtsverletzung möglich. Bei Bekanntwerden von entsprechenden Rechtsverletzungen werde ich diese Inhalte umgehend entfernen.

Datenschutz

Die Nutzung meines Blogs ist in der Regel ohne eine Angabe personenbezogener Daten möglich. Soweit auf meinen Seiten personenbezogene Daten (beispielsweise Name, Anschrift oder E-Mail-Adresse) erhoben werden, erfolgt dies – soweit es möglich ist– immer auf freiwilliger Basis. Ich gebe Ihre Daten ohne Ihre ausdrückliche Zustimmung nicht an Dritte weiter. Außerdem weise ich Sie darauf hin, dass die Datenübertragung im Internet (wie beispielsweise bei der Kommunikation über E-Mail) Sicherheitslücken aufweisen kann. Denn ein lückenloser Schutz der Daten vor dem Zugriff durch Dritte ist nicht möglich. Ich widerspreche hiermit ausdrücklich der Nutzung von im Rahmen der Impressumspflicht veröffentlichten Kontaktdaten durch Dritte zur Übersendung von nicht ausdrücklich angeforderter Werbung und Informationsmaterialien. Der Betreiber dieser Seiten behält sich ausdrücklich vor, im Fall der unverlangten Zusendung von Werbeinformationen, etwa durch Spam-Mails, rechtliche Schritte einzuleiten.