Request a demo
Shipping containers

Blog

Improving risk assessment and resilience for a secure supply chain

Manufacturing companies today face unparalleled risk due to the convergence of external and internal influences on their supply chain security. The increasing complexity of global supply chains, conflating geopolitical tensions, and insufficient data and analytics for risk assessment and mitigation can complicate a corporation’s supply chain resilience strategy.

Understanding and evaluating supplier risk also remains challenging when related to production of niche goods – such as semiconductors for electric vehicles – is concentrated among a few suppliers. Companies along the value chain are not able to source alternative suppliers or diversify their supply chains as easily in the event of supply chain disruptions. 

The impact of a lack of visibility over your supply chain

Other high-risk factors could compromise any company’s supply chain resilience. Businesses without access to relevant financial insights and analysis to predict near-term supplier performance accurately could suffer from disruptions. Changes in economic conditions, political tensions, or other “black swan” events – unpredictable outlier events with potentially dire consequences – can also impact the performance of suppliers. As a result of unforeseen disruptions, companies could incur reputational damage, increased costs from delivery delays, non-compliance violations and fines, and other additional production costs.

Companies exporting goods to the United States (US), the European Union (EU), and other major hubs are also bound by strict human rights due diligence (HRDD) guidelines. It is critical for these companies to have visibility over third-party risk, which includes knowing if forced labor is part of their supply chains.

As an example, the solar industry is one with a higher risk of exposure to forced labor in the supply chain, due to the concentration of resources and productions in certain restricted regions, such as the Xinjiang Uygur Autonomous Region (XUAR).

  • In 2023, Sheffield Hallam University’s Helena Kennedy Centre for International Justice released an assessment of the global solar industry’s exposure to XUAR-sourced solar modules, citing that a lack of sufficient supply chain data makes it difficult to ascertain that production does not contain any input from XUAR.

Businesses are increasingly impacted by new regulations necessitating better oversight of supplier relationships. As a result, companies are required to conduct ongoing monitoring to ensure they comply with regional laws and can mitigate risks before they snowball. 

United States

The Uyghur Forced Labor Prevention Act (UFLPA), enacted in 2021, restricts goods produced in XUAR or made by entities on the UFLPA Entity List from being imported into the US. Recently, an automotive company had thousands of cars impounded in US ports due to the presence of a subcomponent sourced from a banned region. Breaching the UFLPA led to supply chain disruptions and increased costs for the company, who has since sourced replacement parts for the impounded vehicles. 

Europe

The German Supply Chain Act, introduced one year ago, has brought supplier due diligence into sharper focus. Under the Act, applicable organizations – German-based companies and foreign businesses with subsidiaries in Germany with over 1000 employees – must comply with supply chain due diligence and reporting requirements.   

The Corporate Sustainability Reporting Directive is an EU law mandating that large companies and listed small-to-medium enterprises report the sustainability impact of their businesses. As part of this holistic environmental, social, and governance (ESG) assessment, businesses are also required to disclose their due diligence process for ESG impact in their supply chain. Non-compliance could result in large fines, an erosion of trust, or reputational damage to companies. 

Asia

In 2022, the Government of Japan announced new Guidelines on Respect for Human Rights in Responsible Supply Chains. Although it is not legally binding, the guidelines promote adherence to HRDD in both upstream and downstream operations for Japanese enterprises.

South Korea proposed the Act on Human Rights and Environmental Protection for Sustainable Business Management. If enacted, the Act would mandate human rights and ESG due diligence for applicable South Korean enterprises – a first in mandatory reporting of HRDD and environmental due diligence in Asia. 

Mapping supplier-related risk to create better resilience

Navigating risk is more complex than ever, so how can businesses improve supplier due diligence and risk monitoring to create more resilience and reduce exposure?

To help you map the appropriate tools to your supplier due diligence processes, consider the following questions:

Stage 1: Supplier due diligence and onboarding: Monitor for third parties who are sanctioned, and use data such as adverse media to check for risks of association with bribery and corruption.

  1. What company information do you need? 
  2. What regulatory risks are involved?
  3. Can you do business with this supplier? 
  4. Do you have a view on this supplier’s financial stability? 

Stage 2: Supplier risk monitoring: Integrate data checks to create a supplier risk profile and monitor for red flags on a continual basis – for example, jurisdictional risk and changes in ultimate beneficial ownership.

  1. What are the operational risks involved, and how will that impact delivery?
  2. What do you look out for when conducting active monitoring to detect changes in a supplier’s profile? 
  3. If there are any changes to your supplier’s risk profile or financial outlook, are they still able to deliver/do we have a fallback? 

Automated solutions for 4 areas of risk management

Moody’s offers tools to help businesses understand third-party risk holistically, providing visibility on the following four risk factors, and more:

  • Regulatory compliance: Ensure compliance with global regulations related to anti-money laundering (AML), sanctions, forced labor, and more. Uncover hidden risk within a supplier network, including exposure to sanctioned entities and those sanctioned by extension with our sanctions screening solution
  • Potential reputational risk arising from ESG risk, sanctions, or bribery and corruption: Conduct supplier screening against more than 50 potential risk categories under adverse media with our intelligent screening tool.
  • Financial stability and performance of suppliers: Manage financial risks related to procurement and supply chain management. Moody’s strength in financial analysis can help with predicting near-term supplier performance to ensure you mitigate the risk of supplier disruptions.
  • Fraud risk: Uncover potential fraud typologies, including shell companies used in fraud. Screen shareholders, parent companies, or directors against adverse media on any fraud history or known business behavior that can help surface underlying risk. Moody’s data can show networked links that reveal connected and affiliated parties. 

Adopting a risk-based approach for supply chain resilience

In dealing with complex supply chains and multiple risk factors, companies that adopt a risk-based approach will be able to anticipate, assess, prioritize, and mitigate pertinent risks. The approach will be informed by a company’s risk policy and tolerance, which dictates risks that should be mitigated from those that are considered acceptable.

Improving third-party risk management will benefit companies by bolstering operational resilience, shortening supply chain recovery following disruptions, reducing the risk of fines for non-compliance, and avoiding reputational damage. 

Get in touch

Moody’s can help you prioritize your risk mitigation efforts to concentrate limited resources on crucial tasks. Get in touch with Moody’s to find out more.