topic Creating a Resilient Supply Chain in Governance, Risk, Compliance https://community.isc2.org/t5/Governance-Risk-Compliance/Creating-a-Resilient-Supply-Chain/m-p/39078#M133 <P>I was listening to the HBR Idea Cast <A title="https://hbr.org/podcast/2020/09/creating-more-resilient-supply-chains" href="https://hbr.org/podcast/2020/09/creating-more-resilient-supply-chains" target="_blank" rel="noopener">Creating More Resilient Supply Chains</A>&nbsp;last night and the guest Willy Shih had some great advice. Two things he recommended that stuck out to me:</P><P>&nbsp;</P><P>The first was the necessity to map your organization's supply chain and categorize them into tiers. For example, Tier 1 suppliers directly supply you and Tier 2 supply your suppliers. The second was performing a risk assessment on your suppliers and ranking them by how much risk they pose if your organization can't get the supplies or service in the needed time frame.</P><P>&nbsp;</P><P>Has anyone attempted to map their suppliers into tier 2 or 3 territory?</P><P>Did they cooperate or decide not to disclose their suppliers?</P><P>Anything surprising about your organization's supply chain that the pandemic brought to light?&nbsp;</P><P>&nbsp;</P><P>We experienced issues with getting more mobile devices and webcams but I'm sure most here could relate.</P> Wed, 09 Sep 2020 12:21:03 GMT tmekelburg1 2020-09-09T12:21:03Z Creating a Resilient Supply Chain https://community.isc2.org/t5/Governance-Risk-Compliance/Creating-a-Resilient-Supply-Chain/m-p/39078#M133 <P>I was listening to the HBR Idea Cast <A title="https://hbr.org/podcast/2020/09/creating-more-resilient-supply-chains" href="https://hbr.org/podcast/2020/09/creating-more-resilient-supply-chains" target="_blank" rel="noopener">Creating More Resilient Supply Chains</A>&nbsp;last night and the guest Willy Shih had some great advice. Two things he recommended that stuck out to me:</P><P>&nbsp;</P><P>The first was the necessity to map your organization's supply chain and categorize them into tiers. For example, Tier 1 suppliers directly supply you and Tier 2 supply your suppliers. The second was performing a risk assessment on your suppliers and ranking them by how much risk they pose if your organization can't get the supplies or service in the needed time frame.</P><P>&nbsp;</P><P>Has anyone attempted to map their suppliers into tier 2 or 3 territory?</P><P>Did they cooperate or decide not to disclose their suppliers?</P><P>Anything surprising about your organization's supply chain that the pandemic brought to light?&nbsp;</P><P>&nbsp;</P><P>We experienced issues with getting more mobile devices and webcams but I'm sure most here could relate.</P> Wed, 09 Sep 2020 12:21:03 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Creating-a-Resilient-Supply-Chain/m-p/39078#M133 tmekelburg1 2020-09-09T12:21:03Z