Contemporary supply chains operate under the pressure of customer requirements, increasing price competition, sudden increases or decreases in demand, unforeseen obstacles and new threats. The right way to improve the functioning of the flow of material and accompanying information is not only the continuous collection of data but also their collection, analysis, inference and decision-making with the use of decision support systems, expert systems and artificial intelligence. Such procedures make it easier for logisticians not only to forecast processes but also to predict (forecast) and identify potential problems and facilitate the implementation of optimal modern solutions, paying attention to current trends in the supply chain market. An important issue that affects the quality, efficiency and availability (continuity) of the processes implemented within the supply chain is security. This is an area that is not clearly defined. This book uses theoretical and practical knowledge to define security in the supply chain as a state that gives a sense of certainty and guarantees the flow of material goods and services (in accordance with the 7w rule) as well as a smooth flow of information for the planning and management of logistics processes. Tools and instruments used to ensure the security of the supply chain contribute to the protection and survival in times of dangerous situations (threats) and adaptation to new conditions (susceptibility to unplanned situations). When analyzing the needs and structure of the 21st century supply chains, in the context of their security, it is impossible to ignore the problem of their digitization, which enables the determination of optimal routes and the anticipation of possible threats (crisis situations). Automatic data exchange between various departments of the company along the upper and lower part of the supply chain improves the functioning of the warehouse management through, among others, automation, robotization and pro-activity. It also contributes to efficient, good communication and market globalization. Automation also brings new, extremely attractive business models with regard to occupational safety, ergonomics and environmental protection. To meet the needs of creating modern supply chains, the book analyzes and presents current and future solutions that affect security and the continuity of supply chains.

A practical, global-centric view of how to make the worldwide supply chain safer, more resilient, and efficient. With more and more enterprises managing supply operations that reach farther and farther from headquarters, Supply Chain Security: International Practices and Innovations in Moving Goods Safely and Efficiently could not be more timely or well-targeted. This comprehensive two-volume set is the first look at the present and future of supply chain management, and the full range of threats to supply chain security. Each volume of Supply Chain Security focuses on a specific area: the first explores the historic context and current operational environment in which supply chain security must function. Volume Two is a look at emerging issues that includes proven, innovative steps companies and governments can take to counter the inherent risks of moving goods and people more safely and efficiently. Reflecting its subject, this resource is truly global in perspective, with contributions from 18 countries and over two-thirds of its contributors from outside the United States. No company that does business internationally should be without this essential resource.

The supply chain is a complex system of numerous, integrated stakeholders. These stakeholders are responsible for the transportation, storage, documentation, and handling of material goods and cargo. Each entity has its own unique relationship with and role within the chain—as well as its own unique security requirements. The challenge of trying to secure the supply chain at every level is both a domestic and global concern. In this global economy, companies must be able to integrate security into supply chain logistics to protect their employees, assets, and clients from incidents of theft and other damaging events. Supply Chain Security: A Comprehensive Approach provides security professionals the tools necessary to ensure supply chain security. The book demonstrates how to establish and enforce security policies and protocols, including rapid responses that must be deployed in the event of a theft or security incident. Most importantly, it enables professionals to integrate business practices into the planning, development, and successful operation of supply chains to ensure security and protect assets. Drawn from the experience of a recognized leader in domestic and international supply chain logistics, trade, and transportation security, the book illustrates through a series of case studies how security professionals can institute sound security practices. By demonstrating to their stakeholders and potential customers that they provide a secure environment for materials, products, goods, and cargo, companies can increase their customer base and improve their bottom line.

This SpringerBrief introduces methodologies and tools for quantitative understanding and assessment of supply chain risk to critical infrastructure systems. It unites system reliability analysis, optimization theory, detection theory and mechanism design theory to study vendor involvement in overall system security. It also provides decision support for risk mitigation. This SpringerBrief introduces I-SCRAM, a software tool to assess the risk. It enables critical infrastructure operators to make risk-informed decisions relating to the supply chain, while deploying their IT/OT and IoT systems. The authors present examples and case studies on supply chain risk assessment/mitigation of modern connected infrastructure systems such as autonomous vehicles, industrial control systems, autonomous truck platooning and more. It also discusses how vendors of different system components are involved in the overall security posture of the system and how the risk can be mitigated through vendor selection and diversification. The specific topics in this book include: Risk modeling and analysis of IoT supply chains Methodologies for risk mitigation, policy management, accountability, and cyber insurance Tutorial on a software tool for supply chain risk management of IoT These topics are supported by up-to-date summaries of the authors’ recent research findings. The authors introduce a taxonomy of supply chain security and discusses the future challenges and directions in securing the supply chains of IoT systems. It also focuses on the need for joint policy and technical solutions to counter the emerging risks, where technology should inform policy and policy should regulate technology development. This SpringerBrief has self-contained chapters, facilitating the readers to peruse individual topics of interest. It provides a broad understanding of the emerging field of cyber supply chain security in the context of IoT systems to academics, industry professionals and government officials.

This volume presents new theoretical insights, practical strategies, and policy initiatives in the rapidly evolving field of global supply chain security. As businesses, governments, and society at large have become increasingly dependent on a global network to provide goods and services, protecting global supply chains has become an issue of vital importance for industries, nations, and regions. The "supply chain" encompasses all the links connecting a manufacturer to end users of its products. Links may take the form of plants, supplier warehouses, vendor facilities, ports or hubs, retail warehouses or facilities, and outbound shipping centers. Links also involve all the ways goods are moved-by truck, ship, airplane, or rail car. A great deal can go wrong in the supply chain due to company or systemic mismanagement and inefficiency, criminal activity, employee or technology errors, or terrorism, to name just a few of the threats. Then there are government regulation, industry or association oversight, and security agencies (both public and private) keeping track. Globalization, stricter security regimes, and increasingly sophisticated criminal activity have made cross-border cargo movements more complex, putting the integrity of end-to-end supply chains at much greater risk. This is why the security of the supply chain has become such an important issue for business people: there is too much at stake to let problems proliferate or stagnate. It has been estimated, for example, that thieves now steal $50 billion in goods each year from various points along the supply chain. Synthesizing the most current research, practical application, and policy, Global Supply Chain Security covers a range of emerging topics—from risk assessment to technology deployment to continuity planning—and will serve as a useful resource for anyone concerned with supply chain security issues, including scholars, students, business executives and policymakers.

Trillions of lines of code help us in our lives, companies, and organizations. But just a single software cybersecurity vulnerability can stop entire companies from doing business and cause billions of dollars in revenue loss and business recovery. Securing the creation and deployment of software, also known as software supply chain security, goes well beyond the software development process. This practical book gives you a comprehensive look at security risks and identifies the practical controls you need to incorporate into your end-to-end software supply chain. Author Cassie Crossley demonstrates how and why everyone involved in the supply chain needs to participate if your organization is to improve the security posture of its software, firmware, and hardware. With this book, you'll learn how to: Pinpoint the cybersecurity risks in each part of your organization's software supply chain Identify the roles that participate in the supply chain—including IT, development, operations, manufacturing, and procurement Design initiatives and controls for each part of the supply chain using existing frameworks and references Implement secure development lifecycle, source code security, software build management, and software transparency practices Evaluate third-party risk in your supply chain

This Management Guide provides guidance on why a technology provider should use the Open Trusted Technology Provider Standard (O-TTPS) – Mitigating the Risk of Tainted and Counterfeit Products (approved by ISO/IEC as ISO/IEC 20243:2015) and why they should consider certification to publicly register their conformance to the standard. The O-TTPS is the first standard with a certification program that specifies measurable conformance criteria for both product integrity and supply chain security practices. The standard defines a set of best practices that ICT providers should follow throughout the full life cycle of their products from design through disposal, including their supply chains, in order to mitigate the risk of tainted and counterfeit components. The introduction of tainted products into the supply chain poses significant risk to organizations because altered products can introduce the possibility of untracked malicious behavior. A compromised electronic component or piece of malware enabled software that lies dormant and undetected within an organization could cause tremendous damage if activated remotely. Counterfeit products can also cause significant damage to customers and providers resulting in rogue functionality, failed or inferior products, or revenue and brand equity loss. As a result, customers now need assurances they are buying from trusted technology providers who follow best practices with their own in-house secure development and engineering practices and also in securing their out-sourced components and their supply chains. This guide offers an approach to providing those assurances to customers. It includes the requirements from the standard and an overview of the certification process, with pointers to the relevant supporting documents, offering a practical introduction to executives, managers, and those involved directly in implementing the best practices defined in the standard. As the certification program is open to all constituents involved in a product’s life cycle this guide should be of interest to: • ICT provider companies (e.g. OEMs, hardware and software component suppliers, value-add distributors, and resellers), • Business managers, procurement managers, product managers and other individuals who want to better understand product integrity and supply chain security risks and how to protect against those risks and, • Government and commercial customers concerned about reducing the risk of damage to their business enterprises and critical infrastructures, which all depend heavily on secure ICT for their day-to-day operations.

Risk is of fundamental importance in this era of the global economy. Supply chains must into account the uncertainty of demand. Moreover, the risk of uncertain demand can cut two ways: (1) there is the risk that unexpected demand will not be met on time, and the reverse problem (2) the risk that demand is over estimated and excessive inventory costs are incurred. There are other risks in unreliable vendors, delayed shipments, natural disasters, etc. In short, there are a host of strategic, tactical and operational risks to business supply chains. Supply Chain Risk: A Handbook of Assessment, Management, and Performance will focus on how to assess, evaluate, and control these various risks.