@Risk

Japanese High-Tech Companies Shifting Supply Sourcing From Domestic to Other Asian Countries

December 26, 2011 | No Comments →

Results of the 2011 Change in the (Supply) Chain survey show that many Japanese high-tech companies are shifting supply sourcing locations from domestic to other Asian countries, such as South East Asia.

More specifically, the survey, which was conducted by IDC Manufacturing Insights and commissioned by UPS, revealed that:

The Japanese companies interviewed expect to reduce their domestic supply sourcing by nearly half, from 96 percent to 53 percent in the next three to five years.
These companies also expect to increase sourcing from Mature Asia Pacific Countries (Thailand, Malaysia, Hong Kong, and Singapore) almost threefold, from 9 percent to 24 percent.

The key concern appears to be cost management. More than two-thirds (68.9 percent) of the Japanese companies surveyed cited “reducing total supply chain costs” as the top supply chain priority in the past years. Not surprisingly, cost is also expected to remain one of the top drivers of change in the supply chain in the next three to five years. (more…)

Tags: Aravo, collaboration with suppliers, economic recovery, global sourcing, lowering costs, manufacturers, manufacturing, natural disaster, risk management, risk mitigation, risk strategy, security attacks, supplier risk, supplier risk management, supply chain agility, supply chain alignment, supply chain strategy, supply risk

Who Has Access to Your Sensitive and Confidential Workplace Data?

December 21, 2011 | No Comments →

Last month, I reported that many companies are struggling to keep pace with the compliance and risk policies necessary for effective social media governance.

Now, HP has released new global research indicating that organizations also face increased threats from an even more fundamental policy and procedures issue: poor control and oversight of sensitive and confidential workplace data.

According to the new study conducted by the Ponemon Institute, many companies say they have well-defined policies for individuals with privileged access rights to specific IT systems. However, almost 40 percent were unsure about enterprise-wide visibility into specific rights, or whether those with privileged access rights met compliance policies.

The survey, which focused on more than 5,000 IT operations and security managers across the US, the UK, Australia, Brazil, France, Germany, Hong Kong, India, Italy, Japan, Korea, Singapore and Spain, also found that: (more…)

Tags: Aravo, collaboration with suppliers, compliance, corporate governance, employee mobility, employment, IT risk, mobile employees, non-compliance, risk management, risk mitigation, risk strategy, security attacks, supplier risk, supply chain strategy, vendor risk management

Less Than 40 Percent of Employees Take IT Security Seriously

December 05, 2011 | No Comments →

How careful are employees when it comes to IT security?

Apparently, most aren’t careful, at all. What’s more, most aren’t really concerned whether or not IT policies are followed.

Take a look at these survey results. IT security expert Avira polled nearly 1,000 of its users in September and found that:

Only 38.95 percent of those participating in the study said they adhere to security policies designed to protect their company.
About the same amount (35.42 percent) admitted there are security policies in place at their business, but that they didn’t feel that anyone really cared whether those policies were followed or not.
The remaining 25.63 percent said they see security as a system administrator’s responsibility and not an employee concern. (more…)

Tags: Aravo, collaboration with suppliers, compliance, corporate governance, information risk, IT risk, mobile employees, non-compliance, reputation risk, risk management, risk mitigation, risk strategy, security attacks, social media, supplier risk, vendor risk management

Social Media Growth Outpaces Development of Risk, Compliance Policies

November 30, 2011 | No Comments →

Over the past few years, social media has evolved into an essential component of the marketing toolbox.

But, most companies have failed to keep pace with the necessary compliance and risk policies and procedures.

A recent study conducted by Grant Thornton LLP and Financial Executives Research Foundation illustrates the problem. The survey responses from 141 senior financial executives from public and private companies showed that: (more…)

Tags: Aravo, compliance, corporate governance, employment, IT risk, non-compliance, risk management, risk mitigation, risk strategy, security attacks, social media, supplier risk, vendor risk management

Only About One-Quarter of Companies Are Ready for FCPA and UKBA

October 28, 2011 | No Comments →

Despite growing awareness and appreciation of the risks of non-compliance, only about one in four companies feel ready to meet the requirements of the Foreign Corrupt Practices Act (FCPA) and the UK Bribery Act (UKBA), according to new survey results from Kroll Business Intelligence and Investigations.

The study, which polled more than 1,200 senior executives from a broad range of industries worldwide, found that:

Just 27 percent of survey respondents said they are well-prepared to comply with FCPA and UKBA.
Of those companies subject to these two laws, just 43 percent have trained senior management, agents, vendors and foreign employees to be compliant with one of these laws. Even less (39 percent) have assessed the risks arising from them.
More than one-third (37 percent) believe their due diligence provides a sufficient understanding of a potential partner’s of investment target’s compliance with these acts.

Clearly, companies need to step up their game. Not only are the risks of non-compliance quite serious (and getting more so), but fraud is on the rise. Knoll’s new research also showed that: (more…)