The Risk Performance and Compliance Category

Coupa and Hiperos: Supplier Management, Compliance and Risk Landscape Implications [PRO]

This Spend Matters PRO brief explores the competitive implications of the Coupa-Hiperos transaction on the supplier management landscape. The analysis includes summary sector M&A implications and summary landscape/competitive implications. It also explores the potential impact on closer competitors to Hiperos (e.g., Aravo), more distant, network and community oriented peers (e.g., Achilles, Avetta, Browz, etc.); and “sleeping giants” on the periphery of the market such as D&B and Thomson Reuters.

Perhaps most relevant of all, as “compliance as a service” becomes more commonplace as a component of source-to-pay systems in areas ranging from supplier qualification to transactional/invoicing areas, we believe these latter groups may begin to come into contact with Coupa for the first time as the worlds of supplier intelligence and hybrid software, network and compliance collide in a networked manner across various industries.

Understand the Risk Big Picture — A Webinar Looking at 2019 Risks

supply risk

Spend Matters UK/Europe’s final webinar of 2018 will be held Thursday with an eye toward risks for 2019. The event, “Understand the Risk Big Picture,” also is the final webinar for Peter Smith as the site’s managing director. Folks in North America can join at 8 a.m. Central, which is 2 p.m. in the UK.

It is being run with riskmethods — which provides a cloud-based supply chain risk management platform/solution, and founder Heiko Schwarz will be participating in the webinar with Smith. They’ll focus on different types of risk: cyber, reputational, political, natural and supplier financial risks.

Join them Thursday as they look at what procurement can do to improve risk planning and management. Please register here for the webinar — and even if you can’t make that time, registering will mean you get immediate access after the event to listen at your leisure.

Coupa vs. Hiperos: Supplier Management Head-to-Head Comparison

With news this week that Coupa is buying Hiperos, it’s time for a head-to-head comparison. The providers could not be more different in the pragmatic application of their supplier management technology to solving different procurement challenges. But on paper, both providers offer broad-based supplier management capability. And both deliver functional capability that (usually) meets or exceeds the functional benchmark for each of the areas that make up Spend Matters’ Q4 2018 Supplier Relationship Management and Risk SoultionMap. Join us in this unfiltered SolutionMap results analysis from our Q4 2018 dataset, along with the commentary of the Spend Matters analyst team. These head-to-head columns share the insights of each quarterly SolutionMap report for SolutionMap Insider Subscribers, providing unique comparative cuts of SolutionMap benchmark data along with the trademark quips that Spend Matters was better known for in its early years. So buckle your seat belt, prepare for some real data and expect a few sparks to fly as we pit Coupa and Hiperos against each other in the supplier management evaluation ring to understand where each provider is the most appropriate fit.

Not yet an Insider member? Here’s a preview: In a majority of supplier management categories which include master data management (MDM), supplier information management (SIM), supplier portal, supplier initiative management, technology, configurability and services — Coupa convincingly comes out on top. But Hiperos shines in specific areas that make it an ideal fit to enable specific supplier and third-party compliance and risk management scenarios.

Overall, the results suggest that the right solution will vary based on different organizational requirements. You’ll get no argument from us that supplier management selection processes will reward procurement organizations that tailor provider selection to their specific needs. But despite this (needed) debate, the Spend Matters team sees how combining these two solutions offers the potential for the proverbial — yet often elusive — “1+1 = 3” in M&A by enabling procurement, IT, finance and other teams to work together to manage their collective supply base while reducing overall risk. As we’ve noted before, “Using a holistic approach to managing suppliers and spend can shine a proactive light on vulnerabilities, while reducing risk and protecting brand reputation.”

But how will each product enable this? Let’s dig in and put Coupa and Hiperos supplier management capabilities head-to-head.

Beyond Supplier Risk Management: How Procurement Can Take a Leadership Role in Enterprise Risk Management [PRO]

risk

There is no shortage of news about supply risk in today’s volatile operating market:

 

  • The 12-month LIBOR rate has gone from 2% to over 3% in 2018, and suppliers are beginning to feel a capital squeeze as buyers further stretch their DPO to hoard cash (beyond stock buybacks of course).
  • Brexit continues to loom as a bugbear regarding UK/EU trade. More broadly, geopolitical risk continues to escalate in the Middle East, Eastern Europe, Central America and the South China Sea.
  • S. trade policy still swings wildly at the press of a POTUS tweet, and so do commodity prices and volatility in general. The VIX index has spiked up 65% in the last 60 days alone.
  • Natural disasters driven by climate change are becoming commonplace and calamitous.
  • Competitive risks are sprouting up as digital disruption is creeping into almost every industry sector — and as monopolies “becomes features rather than bugs” with ongoing market consolidation. In response, compliance regimes like GDPR continue to crop up although enforcement is highly variable by region and country.
  • Cyber risk continues to be the most omnipresent risk that organizations are experiencing cross-industry while everyone is flocking to the cloud in record numbers.


So, enterprise risk management should be alive and well. And, logically, supply chain and procurement executives need to be increasingly prepared to work with their internal business partners to reduce this risk and defend the proverbial gates to keep the risks at bay.

Unfortunately, the castle walls are often not well-guarded because the sentries are not getting paid to do so. Procurement organizations in particular suffer from a misalignment between missing incentives for reducing supply risk and zealous Finance-driven incentives for increasing supply reward in the form of narrow purchase cost savings. Regarding the latter, nearly all groups get measured on purchase cost reductions, but only 41% get formal credit for saving money during the sourcing process when there is no initial cost baseline. However, only 8% of procurement organizations get such "hard credit" for reducing supply risk.

Part of the challenge here is that from an enterprise risk management (ERM) standpoint, there is a broader disconnect between evaluating enterprise risk overall versus extending those risk factors in a cohesive manner out to the supply chain and also out to the supply base (via spend categories and then to individual suppliers) where contracts are signed that hopefully help mitigate most supplier risks. There are four “translations” here where alignment gets lost, and to make matters worse, the risk types being managed are highly fragmented, if addressed at all — especially when various stakeholders are in the same boat as procurement regarding not getting credit (and commensurate resources/investment) regarding supply risk. Risk management gets viewed as a glorified insurance policy and set of “check the box” regulatory compliance mandates rather than a sound approach to bringing risk into the value equation (i.e., protecting the value streams of importance through the value chain).

So, the question becomes how can procurement help solve this when so much seems outside its control? And why even pursue it when there are other things to focus on like hitting savings targets?

The answer lies in deftly “connecting the dots” between enterprise risk and supply risk so that various stakeholders like GRC, internal audit, external auditors, divisional presidents, etc. can not only extend their reach into the extended supply chain, but can also be tapped to help bring some corporate power (and resources) to bear and help drive some changes internally and with your suppliers.

In this installment of Spend Matters PRO, we’ll dive into some best practices for gaining this multi-pronged alignment and also how to align supply risk management within various points of the source-to-pay (S2P) process itself. And, of course, if you want to see how various providers handle supply risk, whether S2P suite providers, or more specialized supplier management providers, then definitely check out our SolutionMaps in these respective areas here and here.

Coupa buying Hiperos: Acquisition Facts, Analysis and Insight [PRO]

Just this morning Coupa announced it was acquiring Hiperos as a carve-out transaction from Opus, which previously owned the supplier management, compliance and risk management solution provider. This Spend Matters PRO analysis provides background and quick facts on Hiperos. It also offers analysis and insight on what the transaction brings to Coupa from a capability perspective and attempts to answer the question: Why Hiperos?

Subsequent Spend Matters subscription briefs (PRO and SolutionMap Insider) will provide insight and analysis of the transaction by exploring the competitive implications of the acquisition for the supplier management and compliance market, offering additional customer insight and recommendations and providing a “Head-to-Head” analysis of Coupa and Hiperos from a supplier-management capability perspective.

Read this briefing to find out more about what Coupa is getting and possible reasons behind the Hiperos deal.

Coupa Buying Hiperos — Adding Compliance and Risk Intelligence Prowess to Its Business Spend Management Insight

Business spend management vendor Coupa announced Monday morning that it has acquired Hiperos, a provider of third-party risk management. Coupa bought Hiperos from Opus. Alacra and all other Opus assets were not part of the transaction. The move lets Coupa, which is based in San Mateo, California, add more supplier compliance and risk intelligence insight into spend transactions and put a greater focus on reducing third-party risk. Spend Matters will have updates on the breaking news and an analysis later today.

Procurement and Insider Trading: What You Need to Know [Plus+]

Procurement has increasing access to multiple levels of insider information. And just as we have seen enforcement impacting procurement and supply chain activities centered on FCPA compliance, it is likely an increasing set of activities tied to potential information leaks in the capital markets area will come under increased scrutiny as well. In the first installment of this Spend Matters Plus research brief examining the potential for insider trading based on procurement information, we covered lessons from other areas of the business as well as introducing the types of insider information that could be acted on by those inside the company or shared with external hedge funds or other parties. In this installment, we explore what you need to know about the potential for procurement and insider trading based on increasing data availability within procurement and supply chain organizations and key action steps you can take to prevent breaches.

Does Procurement Inadvertently Facilitate Insider Trading? [Plus+]

Have you considered the potential for insider trading violations and the ensuing lawsuits that could arise from access to procurement information? Perhaps this hasn't even entered your mind. With increasing data availability (spend data, supplier risk/management information, demand data) at the fingertips of procurement professionals and others in the organization, the opportunity to access information that could be used to provide an "advantage" in the capital markets has never been greater. Traditionally, such information (if available at all) was available solely to company “insiders” who could only trade within certain windows (and with other restrictions placed on them). In this multi-part Spend Matters Plus analysis, we explore the growing potential of procurement-related information to create the opportunity for insider trading information.

Focus on Supply Risk Management Can Aid Supplier Relationships, State of Flux Reports

supplier management

Positioning supplier relationship management (SRM) programs as a way to ensure broader supply risk management is an untapped opportunity for businesses looking to address sustainability challenges, according to a recent State of Flux report.

As we’ve reported on the “Sustainable SRM: Nurturing Growth in a New Climate” report from State of Flux, sustainability is becoming a greater consideration when it comes to supplier relationships, due to increasing demand from consumers for ethical products and pressure from governments and investors to consider environmental factors in production. The report highlights a number of challenges facing organizations as they integrate sustainability into their procurement goals, including buy-in up and down the organization, proper segmentation of suppliers and others.

While setting up a proper governance structure, getting buy-in throughout the entire organization and deepening relationships with suppliers takes time, companies can also assess their level of SRM, determine how they manage risk, evaluate their staff’s skills and resources, and ensure their technology is working for them.

Dun & Bradstreet Compliance and Procurement Report Indicates Lower Concern For Regulatory Risks, Growing Confidence in Execution

risk

Fewer compliance and procurement professionals believe that existing regulation has increased the risk to their business and more of them had greater confidence about the implementation of compliance and procurement procedures through year’s end, according a recent Dun & Bradstreet report that updates one released over the summer. Even as the U.S. implemented several new tariffs and the UK continued to grapple with an EU exit strategy, perceived risk fell as the scope and content of the trade-related actions became clearer. That number declined 13 points to 52% for the October 2018 sentiment report.

Sponsored Article

Lessons in Supplier Risk Management: How a Fire, Strike Lost the Auto Industry $500 Million

Nissan

With powerful hurricanes, earthquakes and wildfires threatening business operations and logistics, supply chain risk professionals across manufacturing industries usually have their hands full when it comes to mitigating disruptions. While the focus is usually on extreme weather, two operational disruptions at a supplier level in May and June revealed once again the full diversity of supply chain risks that can impact industrial production lines. In total, both events caused automotive and machinery supply chains more than $500 million in financial losses. These events are stark reminders of how a disruption at a single sub-tier supplier can ripple across manufacturing supply chains, impacting both upstream (sales) and downstream (production) operations.

Healthcare’s Internet of Medical Things (IoMT) Has Security Challenges, Forum Warns

“Healthcare” and “cybersecurity” don’t seem like they go together, but a security forum this week highlighted how the move to electronic health records and the growing use of connected medical devices — the Internet of Medical Things (IoMT) — makes hospitals and patients vulnerable. After attending the forum, it’s clear that hospitals know they’re targets, but they may not understand the scope of the danger. The Healthcare Information and Management Systems Society (HIMSS) held its security forum in Boston this week, and it attracted a diverse audience. IT, finance and supply chain executives mingled with network security professionals. So hospitals are viewing security in a cross-functional way, and that’s a positive development.