Cyber Supply Chain Risk Management

Necessary Components of an Effective Cyber Supply Chain Risk Management (C-SCRM)

As the recent widely publicized revelations have shown, the risk of purchasing hard- and software with deliberately or accidentally built-in weaknesses is much higher than we could have estimated – but it is not the only element of Supply Chain Risk. Supply chains can only be as strong as their weakest link. In a world where enterprises must focus on what they can do best and outsource everything else, it is necessary to know these weak spots and to limit the risks occurring from them. 

However, supply chain risk management itself is a complicated process riddled with challenges:

• Selecting suppliers with a low risk profile: it is complex, expensive and inefficient to collect all necessary information needed to evaluate and quantify risks deriving from internal processes and vulnerabilities within the supplier´s organization. 
• In a networked economy, the number of suppliers is increasing, with time and resources consumed by properly risk-assessing them simply getting too high.
• Most organizations underestimate these risks: Cyber incidents happen every day, anywhere in a supply chain. Your supplier´s threats add to your company´s risk profile. Therefore, suppliers and their risks have to be continuously monitored.
• Cyber supply chain risks are multidimensional, with many different stakeholders involved and interfaces to privacy & data protection, risk management, compliance, controlling, and audit. 

Building reliable continuous assessment strategies and processes for such a complicated topic is a massive undertaking. And yet, now is the right time to add C-SCRM to your core cybersecurity strategy. This session gives you an insight into the necessary components of C-SCRM, followed by a panel discussion with industry experts.

Panel: Managing Cyber Supply Chain Risks and Achieving Digital Business Resilience

Businesses face various risks when deploying external products and services. Among them is the possibility of cyber intrusion which can pose a major challenge to the company’s infrastructure and require a re-think of cybersecurity strategy. A well thought-out and properly structured management of a supplier base classified as trustworthy is just as much a part of this discipline as the use of standardized certification procedures for such products. In this panel we will discuss the importance of cyber supply chain risk management (C-SCRM) and its effect on resilience of a digital business.