Supplier Risk and Compliance Management Content

3 Areas Where CSR Risks Hide in Your Indirect Spend (Part 2)

risk

Because procurement is so often measured on cost savings as its primary KPI, another essential factor can be left by the wayside: risk. Especially when it comes to corporate social responsibility (CSR) and sustainability, risk remains hidden within indirect spend. To see how these dangers go unaddressed, here are three areas with examples of where organizations miss — but, with proper tools, can address — CSR and sustainability risks for indirect procurement.

Avetta and Browz to Merge: Facts, Figures, Solution & Market Overview (Part 1)  [PRO]

Avetta announced earlier today that it and Browz are merging. Together under the Avetta name, the two providers of supplier management and supply chain risk management will become one of the clear leaders in perhaps the most “under the radar” procurement solutions market. The general focus of these two providers is on supplier and contractor on-boarding, pre-qualification and virtual auditing in support of vendor compliance, environmental, health and safety, risk management and related initiatives. SaaS-based enablement is a component of what Avetta and Browz do, but the real value they bring is based on the network impact and scale economics focused on supplier/contractor intelligence they provide to buyers and suppliers alike on a many-to-many basis.

Avetta, Browz, ISNetworld, Achilles and other similar solution providers compete in this somewhat niche — though quite sizeable and rapidly growing — area of the supplier management and supply chain risk management worlds. While not as well-known as providers like Coupa, Jaggaer and Ivalua (let alone SAP Ariba and Oracle), these four providers — along with a handful of other vertical and geographic specific providers — represent one of the fastest growing $500 million+ procurement solutions markets (2018 revenue), one that the vast majority of procurement and supply chain organizations know quite little about the inner workings of.

For many Spend Matters readers, this really is the largest procurement solutions market you’ve never heard of.

Over the course of the coming weeks, this Spend Matters PRO series will explore the combination of Avetta and Browz and what it means for the market. It will also unpack this market segment and explain how it fits alongside supply chain risk management, supplier information management (SIM), supplier performance management, master data management and adjacent sub-components of the supplier management market. We’ll also provide an outlook for customers of these solutions and for the broader growth of this sector as well (which Avetta pegs at a $14 billion market potential based on a referenced study to McKinsey in a briefing with Spend Matters prior to the deal announcement).

Today, we will start with a quick overview of the Avetta and Browz deal itself (facts/figures, estimated revenues, rationale, analysis, etc.) based on a variety of sources. Part 1 also includes a brief history of both providers and an overview of the current state of this market. For this series, our reference inputs include an interview earlier this week with the CEO of Avetta, John Herr, and over a dozen of other interviews conducted in recent years, as well as existing Spend Matters research (see previous Spend Matters PRO coverage on Avetta: Introduction/Background, Strengths / Weaknesses and Competitive Analysis/Customer Recommendations).

Avetta, Browz to Combine Their Supply Chain Risk Management Companies

Two providers of supply chain risk management, Avetta and Browz, announced Thursday that they’re joining forces under the Avetta name to serve a combined 85,000 clients. Terms of the deal were not disclosed. Avetta CEO John Herr, who will lead the combined companies, said in an interview that the company will now have the “critical mass” in staff, clients and geography to expand and compete in existing areas and new markets. Herr said the global marketplace for supply chain risk management solutions is valued at $14 billion and that it has a lot of room for growth.

Supply Chain Risk: Insights on the Issues and a Look at Hacking Threats

Check out a webinar on supply chain risk that covers a whole range of risks — from trade wars to global warming — and what’s driving them. The conversation covers what to expect in 2019 as well. Also, learn about the risks faced online in a white paper that delves into cyber attacks and how to mitigate them.

HICX: What Makes It Great (Supplier Relationship Management and Risk SolutionMap Analysis)

The market for supplier relationship management (SRM) and risk solutions comprises many segments. HICX, a specialist provider in this sector, stands out as a commendable generalist for supplier management that delivers best-in-class capability in targeted areas, especially the subcomponents of master data management (MDM). In practice, few companies ever decide to purchase a single solution to address their broad-based needs for supplier management, highlighting the individual importance of solutions that target MDM and adjacent supplier management areas.

Spend Matters SolutionMap has hundreds of functional requirements for supplier management, of which only a subset will be critical for specific organizational needs (e.g., MDM, supplier diversity, supplier risk management, supplier performance management, supplier compliance management, supplier development). As of December 2018, SolutionMap contains functional and customer satisfaction benchmarks on more than 50 providers across the procurement technology landscape.

But where does HICX stand out most in the supplier management market from a functional perspective, and why should this matter for procurement organizations?

Let’s delve into the SolutionMap benchmark to find out where HICX is great.

“What Makes It Great” is a recurring column that shares insights from each quarterly SolutionMap report for SolutionMap Insider subscribers. Based on our rigorous evaluation process and customer reference reviews, each brief offers quick facts on the provider, describes where it excels, provides hard data on where it beats the SolutionMap benchmark and concludes with a checklist for ideal customer scenarios in which procurement, finance and supply chain organizations should consider it.

Transparency-One: Vendor Introduction, Analysis and SWOT [PRO]

Procurement and supply chain organizations are facing pressure from consumers, governments and investors to clean up their supply chains. Whether it’s traceability of ingredients (including their source and their quality), assurance that labor and facility conditions are up to code, or proof that emerging compliance standards like modern slavery laws are being met, companies are increasingly being tasked with mapping their entire supply chain while ensuring that suppliers are meeting, and tracking, myriad metrics for safety, sustainability and corporate social responsibility (CSR).

This is the narrative that Transparency-One, a provider of supply chain visibility and compliance tracking solutions, is betting the farm on. (This is apt, because the provider actually models and monitors farms as part of the extended supply chains being tracked within its system.)

Founded in 2016, Transparency-One enables executives in charge of sustainability or responsible sourcing to report accurate supplier and compliance data to sales, marketing and regulatory compliance functions about what’s happening in their supply chains end to end, as well as to map product tracking and quality information down to the lot/batch level.

While many such efforts are already underway at major companies, compliance tracking is often fragmented, with initiatives like conflict minerals compliance managed separately (and in different tools) from the tracking of, say, facility safety certifications. Transparency-One is seeking to bring all of these efforts into a single platform, starting first with the food, retail (e.g., grocery, apparel) and industrial materials (e.g., rubber, chemicals) sectors.

Currently operating in 30 countries and in six languages, Transparency-One counts traceability projects with Intermarché, Carrefour and Mars among its pilot customers. It has offices in Boston and Paris.

This Spend Matters PRO Vendor Introduction offers a candid take on Transparency-One and its capabilities. The brief includes an overview of Transparency-One’s offering, a breakdown of what is comparatively good (and not so good) about the solution, a SWOT analysis and a selection requirements checklist for companies that might consider the provider. It also touches upon graph databases and their use in this supply chain management, supplier management and risk management mashup area.

Beyond Supplier Risk Management: How Procurement Can Take a Leadership Role in Enterprise Risk Management (Part 2) — Aligning Enterprise Risk to Supply Risk [PRO]

risk

In Part 1 of this series, we described the process that most progressive procurement organizations use to relate enterprise risk to supply risk. Throughout such transformations, a single theme pervades: alignment. The premise here is that while value chains are, in fact, a chain of value that flows across multiple stakeholders, the “signal” often gets lost as the components of that value go across organizational and functional boundaries. We’ve written before about this concept of “supply performance management” (i.e., where the definition of supply and the supply scorecard gets translated from the customer-facing value chain all the way down to a supplier/contract level) in terms of measuring and managing supply value, but this same concept also inherently applies to risk management.

Risk management is about protecting those value streams, and therefore the commensurate investment in risk mitigation should align with the value streams themselves. Unfortunately, they often don’t, because stakeholders are not typically measured on risk management explicitly (although they can be measured on it implicitly).

Procurement itself faces this problem. Based on our research, only 8% of procurement organizations are formally measured on supply risk reduction. Instead, they’re measured on overt reward (vis a vis savings) but not on protecting those improved supply outcomes. So, if procurement wants to protect supply outcomes, it will need help and resources from the natural risk owners (i.e., those who are measured on the business outcomes affected by those risks) — and that help will not come unless there is visibility, commitment and action. As such, in this installment of this series, we’ll discuss two critical frameworks that organizations can use to gain alignment.

Addressing CSR and Sustainability Goals Through Improved Indirect Spend Management (Part 1): Background and Challenges

The list of corporate social responsibility (CSR) and sustainability risks in the physical supply chain is long. When securing direct materials, procurement organizations must assess factors from restricted or hazardous substances to the kind of labor that went into raw material extraction and even political restrictions like sanctions on whether companies from certain countries are even allowed to do business with you. Because of these and numerous other potential issues, many companies have begun to focus on identifying and eliminating such risks from their supply chains with the help of third-party CSR data sources and risk-monitoring platforms. But while the value of assessing CSR risks for direct materials spend has gained prominence in recent years, the other side of the procurement coin, indirect spend, has not received nearly as much interest. That’s a shame — and a risk in itself.

Supplier Management: Dozens of Markets in One (Market Introduction) [PRO]

supplier management

The supplier management technology and services market is one of the broadest, most complex and mysterious to those who try to make sense of it — and take advantage of the many solutions that it offers. Spend Matters tracks well over 100 providers in this market, and they fall into more than a dozen individual areas. Some vendors and services firms offer solutions that address multiple components, but not a single provider comes close to offering a comprehensive solution.

This Spend Matters PRO Research brief explains and segments the supplier management market into five solution categories: core supplier process and data enablement; supplier and supply chain risk; community/network; supplier and worker/contractor; and disruptive enablement.

Understand the Risk Big Picture — A Webinar Looking at 2019 Risks

supply risk

Spend Matters UK/Europe’s final webinar of 2018 will be held Thursday with an eye toward risks for 2019. The event, “Understand the Risk Big Picture,” also is the final webinar for Peter Smith as the site’s managing director. Folks in North America can join at 8 a.m. Central, which is 2 p.m. in the UK.

It is being run with riskmethods — which provides a cloud-based supply chain risk management platform/solution, and founder Heiko Schwarz will be participating in the webinar with Smith. They’ll focus on different types of risk: cyber, reputational, political, natural and supplier financial risks.

Join them Thursday as they look at what procurement can do to improve risk planning and management. Please register here for the webinar — and even if you can’t make that time, registering will mean you get immediate access after the event to listen at your leisure.

Coupa vs. Hiperos: Supplier Management Head-to-Head Comparison

With news this week that Coupa is buying Hiperos, it’s time for a head-to-head comparison. The providers could not be more different in the pragmatic application of their supplier management technology to solving different procurement challenges. But on paper, both providers offer broad-based supplier management capability. And both deliver functional capability that (usually) meets or exceeds the functional benchmark for each of the areas that make up Spend Matters’ Q4 2018 Supplier Relationship Management and Risk SoultionMap. Join us in this unfiltered SolutionMap results analysis from our Q4 2018 dataset, along with the commentary of the Spend Matters analyst team. These head-to-head columns share the insights of each quarterly SolutionMap report for SolutionMap Insider Subscribers, providing unique comparative cuts of SolutionMap benchmark data along with the trademark quips that Spend Matters was better known for in its early years. So buckle your seat belt, prepare for some real data and expect a few sparks to fly as we pit Coupa and Hiperos against each other in the supplier management evaluation ring to understand where each provider is the most appropriate fit.

Not yet an Insider member? Here’s a preview: In a majority of supplier management categories which include master data management (MDM), supplier information management (SIM), supplier portal, supplier initiative management, technology, configurability and services — Coupa convincingly comes out on top. But Hiperos shines in specific areas that make it an ideal fit to enable specific supplier and third-party compliance and risk management scenarios.

Overall, the results suggest that the right solution will vary based on different organizational requirements. You’ll get no argument from us that supplier management selection processes will reward procurement organizations that tailor provider selection to their specific needs. But despite this (needed) debate, the Spend Matters team sees how combining these two solutions offers the potential for the proverbial — yet often elusive — “1+1 = 3” in M&A by enabling procurement, IT, finance and other teams to work together to manage their collective supply base while reducing overall risk. As we’ve noted before, “Using a holistic approach to managing suppliers and spend can shine a proactive light on vulnerabilities, while reducing risk and protecting brand reputation.”

But how will each product enable this? Let’s dig in and put Coupa and Hiperos supplier management capabilities head-to-head.

Beyond Supplier Risk Management: How Procurement Can Take a Leadership Role in Enterprise Risk Management [PRO]

risk

There is no shortage of news about supply risk in today’s volatile operating market:

 

  • The 12-month LIBOR rate has gone from 2% to over 3% in 2018, and suppliers are beginning to feel a capital squeeze as buyers further stretch their DPO to hoard cash (beyond stock buybacks of course).
  • Brexit continues to loom as a bugbear regarding UK/EU trade. More broadly, geopolitical risk continues to escalate in the Middle East, Eastern Europe, Central America and the South China Sea.
  • S. trade policy still swings wildly at the press of a POTUS tweet, and so do commodity prices and volatility in general. The VIX index has spiked up 65% in the last 60 days alone.
  • Natural disasters driven by climate change are becoming commonplace and calamitous.
  • Competitive risks are sprouting up as digital disruption is creeping into almost every industry sector — and as monopolies “becomes features rather than bugs” with ongoing market consolidation. In response, compliance regimes like GDPR continue to crop up although enforcement is highly variable by region and country.
  • Cyber risk continues to be the most omnipresent risk that organizations are experiencing cross-industry while everyone is flocking to the cloud in record numbers.


So, enterprise risk management should be alive and well. And, logically, supply chain and procurement executives need to be increasingly prepared to work with their internal business partners to reduce this risk and defend the proverbial gates to keep the risks at bay.

Unfortunately, the castle walls are often not well-guarded because the sentries are not getting paid to do so. Procurement organizations in particular suffer from a misalignment between missing incentives for reducing supply risk and zealous Finance-driven incentives for increasing supply reward in the form of narrow purchase cost savings. Regarding the latter, nearly all groups get measured on purchase cost reductions, but only 41% get formal credit for saving money during the sourcing process when there is no initial cost baseline. However, only 8% of procurement organizations get such "hard credit" for reducing supply risk.

Part of the challenge here is that from an enterprise risk management (ERM) standpoint, there is a broader disconnect between evaluating enterprise risk overall versus extending those risk factors in a cohesive manner out to the supply chain and also out to the supply base (via spend categories and then to individual suppliers) where contracts are signed that hopefully help mitigate most supplier risks. There are four “translations” here where alignment gets lost, and to make matters worse, the risk types being managed are highly fragmented, if addressed at all — especially when various stakeholders are in the same boat as procurement regarding not getting credit (and commensurate resources/investment) regarding supply risk. Risk management gets viewed as a glorified insurance policy and set of “check the box” regulatory compliance mandates rather than a sound approach to bringing risk into the value equation (i.e., protecting the value streams of importance through the value chain).

So, the question becomes how can procurement help solve this when so much seems outside its control? And why even pursue it when there are other things to focus on like hitting savings targets?

The answer lies in deftly “connecting the dots” between enterprise risk and supply risk so that various stakeholders like GRC, internal audit, external auditors, divisional presidents, etc. can not only extend their reach into the extended supply chain, but can also be tapped to help bring some corporate power (and resources) to bear and help drive some changes internally and with your suppliers.

In this installment of Spend Matters PRO, we’ll dive into some best practices for gaining this multi-pronged alignment and also how to align supply risk management within various points of the source-to-pay (S2P) process itself. And, of course, if you want to see how various providers handle supply risk, whether S2P suite providers, or more specialized supplier management providers, then definitely check out our SolutionMaps in these respective areas here and here.