Supply/Operational Risk: The basic question: Can the supplier really supply the product(s) consistently? The challenges range from scale-up problems to quality and service issues when deliveries of the components/goods begin.
Other factors that impact supply/operational risk include the degree of exclusivity to your company, whether it is a sole-source/single-plant strategy, volume/supplier capacity commitments, rights of first refusal for extra capacity, inventory plans (start-up and ongoing), construction/start-up schedules, and logistics execution.
Regulatory Risk: Regulations can change over time and be harder to meet than expected, leading to delays. Consider both technical regulations (building permits, IT infrastructure integration) and trade regulations (duties, dumping, and political embargoes).
Demand/Market Risk: This risk is tightly aligned with the timing risk. The key question: Will your product really sell by the time you market it? Competitors do not stand still, nor do customer or consumer tastes. Will you miss a window of opportunity, or even worse, hit it and then have it slam shut?
Brand/Environmental Risks: One only has to say “Mattel” to appreciate these risks. Offshoring can lead to quality problems that if not well managed can damage the company’s brands, in addition to extracting a huge financial penalty. Activists in labor and environmental areas can also cause damage to the brand – for example, it turns out that several leading retailers were selling t-shirts made by a company in China that, in turn, was using a textile producer elsewhere in China that was polluting local rivers. Activists target the retailers.
Intellectual Property Risk: A growing concern in China and elsewhere, as proprietary knowledge regarding design, engineering, materials and other elements can too easily walk out the door – or companies may even find their own offshore suppliers suddenly competing with them with knock-off products.
Tools for Buyers to Manage these Risks
Given the complexity, uncertainty, and cross-functional interaction required in these risk management scenarios, a structured thought process that manages the risk is essential. This kind of process includes a series of focus areas and several tools that help reinforce those focus areas.
Penetrate and Understand: Think through the seven types of risk, their probability, impact, and potential interdependence. Is there a “devil’s advocate” process to subject the project to “what if” analysis of the possible outcomes?
Quantify: To the extent possible, quantify in probability and financial terms different risk scenarios. The reality is that doing this well can easily kill some low-cost country sourcing initiatives with marginal returns.
Plan: Out of the understanding and quantification steps comes the need to create mitigation and contingency plans for technical, physical, financial, and communication implications of these risks. How can serious risks be mitigate, and if something does go wrong, who needs to know and what will be done?
Syndicate: Classic risk management theory includes syndication to multiple parties.
In this case, the issue is to understand how your risk is shared by the supplie,r as well as how your joint risk with the supplier might be syndicated elsewhere (such as licensing your unique product for use by non-competing customers of your supplier and use of as many assets as possible versus building new).
Own: Manage supplier investments as if they were your own. If something happens, communicate quickly to avoid wasted investment at the supplier as well as inside.
Consider how you will maintain the ability to manage setbacks without dismantling the effort at the supplier. Tracking the history and using it to improve the results at both companies is important.
Portfolio Management: Risk is viewed in two ways: in individual projects and across multiple projects – a portfolio view. Too few companies take this broader portfolio perspective.
Project risk falls into three stages: project cancellation, project shortfall, and project obsolescence.
However, portfolio risk requires four data views:
- Aggregate Commitments: What has the company or business unit committed across all its projects?
- Competing Commitments: Do you have two projects or more with parallel commitments that could cancel each other out or delay each other?
- Sequential Commitments: Is there a next-generation project that will make the current commitments obsolete before they are paid out?
- Supplier Project Aggregation: How many projects does a single supplier have and what does that do to the supplier and your risk profile if you have multiple failures and successes? Does the supplier have the resources to manage many projects and are your priorities clear enough?
These views need to be regularly presented to business management and updated so that as changes in schedules, priority, or feasibility occur, the implications to the rest of the portfolio and to the supplier are communicated and managed, plus any financial implications are called out well ahead of time.
Risk is inherent in business, and especially so in global supply chains. By fully analyzing all the major risk categories for global sourcing initiatives, taking mitigating actions, and viewing risk across the entire portfolio of projects and products, companies can greatly reduce their exposure.
What would you add to our list of seven global sourcing risks? What are other key strategies to reduce or mitigate these risks? Do enough companies take a true total portfolio view? Let us know your thoughts at the Feedback button below.