SME: A supply chain risk?

Does having Small and Medium-sized Enterprises (SMEs) in your supply chain constitute an increased exposure to supply chain risk? Particularly if these SMEs occupy business-critical positions in the supply chain? That’s the question Peter Finch asks in his 2004 article simply (or boldy?) titled Supply Chain Risk Management. I came across this article by mere accident, because it has not been much referenced in the supply chain risk literature. Perhaps, because Peter Finch is not an academic, but a management consultant, and because there is very little academic literature in his reference list, hence not worth mentioning? I don’t think so. This article can very well stand on its own and excellently explains the role that SMEs have in adressing risks in supply chains

Grey literature case studies

One of the reasons why this article is perhaps not so widely cited is the use of grey literature. This was a new term to me.

Grey literature (or gray literature) is a term used variably by the intelligence community, librarians, and medical and research professionals to refer to a body of materials that cannot be found easily through conventional channels such as publishers, “but which is frequently original and usually recent”. Examples of grey literature include technical reports from government agencies or scientific research groups, working papers from research groups or committees, white papers, or preprints.

Fair enough, by my count, only 6 of the 40 or so references fall well into the academic realm.



Three levels of risk

What I do find interesting is the framework for risk analysis that Peter Finch uses. Bandyopadhyay et al. (1999) relates to risk analysis for IT systems in organizations, and not to risk in supply chains. However, since IT systems do have a business continuity mission, this framework is far from inapplicable:

  • Application level
    • technical failure, affecting local functions
  • Organization level
    • strategic failure, affecting all functions
  • Inter-organizational level
    • network failure, affecting suppliers and customers

Add to that, it does resemble the three-level structure seen in Jüttner et al. (2003), where risks can originate from within the organization, from within the supply chain, and from within the external environment.

Types of risk

Finch then exemplifies and discusses the typical risks that are associated with the three levels:

  • Natural disasters
    • flooding (apparently not so uncommon in the UK)
  • Accidents
    • poorly designed systems and procedures leading to human error
  • Deliberate acts
    • theft, sabotage, vandalism, terrorism
  • Information security
    • hacking, viruses, denial of service attacks
  • Knowledge management
    • skill acquisition and retainment
  • Legal risks
    • disclosure and intellectual property issues
  • Strategic decision making
    • actions of competitors
  • Strategic alliances
    • loss of control over key parts of supply chain

For each level/risk he also cites what is regarded as best practice vis-a-vis within the industry.

Do SMEs increase risk exposure?

According to Finch, yes and no. Many SMEs are not used to or trained in wide-ranging risk assessments to the same degree as large corporations are, and corporate supply chains my thus increase their exposure to risk by taking in SMEs, who in turn increase their own risk exposure to risks that are essentially outside of their control. However, all SMEs are capable of understanding and appreciating their own set of risks, and the risks they bring into the supply chain, as well as the overall corporate risks and the role they play in the wider perspective, if this is communicated clearly enough.

Conclusion

If you look at the list above, what I haven’t found much about in the supply chain risk literature so far is the importance of knowledge management, .i.e. hiring and keeping skilled personnel. That is a risk that is perhaps too often overlooked. The best thing about this article though is that there is very little, if any, academic discussions. It is all hands-on, example after example, and extremely operational; any corporate CEO all SME manager will be able to relate to the issues described, take the conclusions and put them into practice immediately.

Reference

Finch, P. (2004). Supply chain risk management Supply Chain Management: An International Journal, 9 (2), 183-196 DOI: 10.1108/13598540410527079

Author link

  • Peter Finch
    (whereabouts unknown)

Related

Posted in ARTICLES and PAPERS
Tags: , , , , ,

ARTICLES and PAPERS
Managing risk together
Purchasing theory... I have to admit it's not one of my particular strongholds, but several of my re[...]
Supply chain vulnerability and resilience
Today's post is a review of a conference paper written by Francesco Longo and Tuncer Ören in 2008 an[...]
BOOKS and BOOK CHAPTERS
Book Review:Managing Risks in Supply Chains
To make up for yesterday's perhaps overly harsh critique of just one article from this book, this is[...]
SME Risk Management
Small and medium-sized enterprises (SMEs) make up the majority of enterprises in most countries, and[...]
REPORTS and WHITEPAPERS
Engineering transportation lifelines
New Zealand is probably not the fist country that comes to mind when thinking of state-of-the-art tr[...]
Global Resilience Index
The 2015 FM Global Resilience Index provides an annual ranking of 130 countries and territories acco[...]