Browse Definitions :

BACKGROUND IMAGE: iSTOCK/GETTY IMAGES

This content is part of the Essential Guide: The essential guide to supply chain management best practices
Definition

supply chain risk management (SCRM)

Contributor(s): Matthew Haughn

Supply chain risk management (SCRM) is the coordinated efforts of an organization to help identify, monitor, detect and mitigate threats to supply chain continuity and profitability.

Threats to the supply chain include cost volatility, material shortages, supplier financial issues and failures and natural and manmade disasters. SCRM strategies and software help an organization foresee potential issues and adapt to both those risks and unforeseeable supply chain disruptions as quickly and efficiently as possible.

Jason Busch and Sherry Gordon of Spend Matters ( a global content network dedicated to procurement and supply chain issues) suggest the following best practices for supply chain risk management:

  1. Automate processes involved in supplier risk management (SRM) to collect, analyze and manage supplier information.
  2. Include supplier performance information in your analysis for insight into potential financial issues.
  3. Identify red flags that may indicate problems and use technology to automate their early detection.
  4. Integrate SCRM platforms with procurement and supply chain management (SCM)  software systems including software for spend visibility, e-sourcing, purchase-to-pay, contract management and compliance.
  5. Provide dashboards that track and report on supply risk metrics to give the executive team access to real-time observations into risk factors.

SCRM  may require collaboration and coordination among an organization’s sales, marketing, production, development, procurement,  finance and IT departments.

This was last updated in June 2016

Continue Reading About supply chain risk management (SCRM)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • compliance audit

    A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

  • Whistleblower Protection Act

    The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from ...

SearchSecurity

  • data breach

    A data breach is a confirmed incident in which sensitive, confidential or otherwise protected data has been accessed and/or ...

  • zero-day (computer)

    A zero-day vulnerability, also known as a computer zero day, is a flaw in software, hardware or firmware that is unknown to the ...

  • Cybercrime

    Cybercrime is any criminal activity that involves a computer, networked device or a network.

SearchHealthIT

SearchDisasterRecovery

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

  • business continuity software

    Business continuity software is an application or suite designed to make business continuity planning/business continuity ...

  • business continuity policy

    Business continuity policy is the set of standards and guidelines an organization enforces to ensure resilience and proper risk ...

SearchStorage

  • business impact analysis (BIA)

    Business impact analysis (BIA) is a systematic process to determine and evaluate the potential effects of an interruption to ...

  • RAID (redundant array of independent disks)

    RAID (redundant array of independent disks) is a way of storing the same data in different places on multiple hard disks to ...

  • dedicated cloud

    A dedicated cloud is a single-tenant cloud infrastructure, which essentially acts as an isolated, single-tenant public cloud.

Close