BEST PRACTICES IN CYBER SUPPLY CHAIN RISK MANAGEMENT



Similar documents
Implementing the value chain of the future

Effective risk management

Managing Risk at Bank of America Corporation. Overview

AN APPLICATION-CENTRIC APPROACH TO DATA CENTER MIGRATION

Managing business risk

AN APPLICATION-CENTRIC APPROACH TO DATA CENTER MIGRATION

Contents WHITE PAPER. Introduction

MANAGING THE COMPLEXITIES OF GLOBAL PHARMACEUTICAL SOURCING

July 30, AcuTech Group, Inc. Washington DC Houston Philadelphia San Francisco Dubai Shanghai

The PNC Financial Services Group, Inc. Business Continuity Program

The fact is that 90% of business strategies are not implemented through operations as intended. Overview

Establish Collaborative Strategies to Better Manage a Global Vendor Network Devise a Proper Float Plan

Trade risk management: a global approach

Intel Business Continuity Practices

Procurement Transformation: Towards Sourcing & Procurement Excellence

Risk mitigation for business resilience White paper. A comprehensive, best-practices approach to business resilience and risk mitigation.

Innovating the Distributor Value Proposition

Internal Audit. Final Report: Enterprise Risk Management Report Number: Audit Period: 01 May - 31 July 2013

Deloitte and SuccessFactors Workforce Analytics & Planning for Federal Government

NATIONAL STRATEGY FOR GLOBAL SUPPLY CHAIN SECURITY

Agile Manufacturing for ALUMINIUM SMELTERS

Organization transformation in times of change

AGRICULTURE, FOOD AND LIFE SCIENCES SGS OLIVIER COPPEY EXECUTIVE VICE PRESIDENT INVESTORS DAYS, OCTOBER 2015

ABBVIE PURCHASING AND SUPPLIER MANAGEMENT SUPPLIER PERFORMANCE PROGRAM

Factoring Risk into Transportation and Logistics Sourcing

Driving supply chain excellence through Lean Digital SM

Abbott Global Purchasing Services. Supplier Performance Program

EVOLVING THE PROJECT MANAGEMENT OFFICE: A COMPETENCY CONTINUUM

THIRD-PARTY LOGISTICS (3PL) Investment Perspective

BAE Systems adopts eprocurement for enterprise efficiency

FAQ to ENISA s report on technologies to improve the resilience of communication networks

CYBER SECURITY Audit, Test & Compliance

FlyntGroup.com. Enterprise Risk Management and Business Impact Analysis: Understanding, Treating and Monitoring Risk

Your asset is your business. The more challenging the economy, the more valuable the asset becomes. Decisions are magnified. Risk is amplified.

Building the business case for continuity and resiliency

Part 3: Business Case and Readiness

COUNTERINTELLIGENCE. Protecting Key Assets: A Corporate Counterintelligence Guide

Optimizing the Source to Contract Process to Maximize and Lock in Savings Patrick Eckhert Cardinal Health Head of Indirect Procurement

The 2011 Global Supply Chain Agenda Market and demand volatility drives the need for supply chain visibility

Clinical Supply Chain Management Driving Operational Performance

The Role of Internal Audit in Risk Governance

Creating and Embedding a Customer Driven Supply Chain

The Next Generation of the Supply Chain Elite: 4PL Providers WHITE PAPER

Building a Roadmap to Robust Identity and Access Management

The PNC Financial Services Group, Inc. Business Continuity Program

Supply Chain Acceleration: Our Offering for Enabling Growth

Smart Cities. Smart partners in tomorrow s cities

Supply Chain Management Build Connections

The Benefits of PLM-based CAPA Software

Experience the commitment WHITE PAPER. Information Security Continuous Monitoring. Charting the Right Course. cgi.com 2014 CGI GROUP INC.

Next-Generation Supply Management

White paper. Supplier Performance Management Driving successful strategies & relationships

Self-Service Big Data Analytics for Line of Business

Building An In-House Search Firm. Maggie Rubey Lynch Senior Vice President Worldwide Recruitment & Executive Search

Change is happening: Is your workforce ready? Many power and utilities companies are not, according to a recent PwC survey

Harness the Power of Partnership Everything is possible when you have the right partner.

Mergers and Acquisitions: The Data Dimension

Cybersecurity: Mission integration to protect your assets

Micron Quality Manual

Business Process Management (BPM) for Manufacturing Wonderware Skelta BPM. By Gagan Babu, Technical Consultant, Invensys Operations Management

CSR / Sustainability Governance and Management Assessment By Coro Strandberg Principal, Strandberg Consulting

INCORPORATING SMALL PRODUCERS INTO FORMAL RETAIL SUPPLY CHAINS SOURCING READINESS CHECKLIST 2016

Download Full Financial Release (PDF) Download Slides (PDF)

Corporate Risk Management Policy

Business Process Improvement in Life Sciences Manufacturing through the Integration of Information and Production Management Systems and Automation

Global Supply Chain Control Towers

Strategic Supply Chain Management The five disciplines for top performance. Food & Consumer Products of Canada Webinar Toronto, February 24, 2014

Commodity Trading COMMODITIES

Rockwell Automation Supplier Handbook. Meeting Our Customer s Needs Through Supplier Partnerships

Are you sure that s beef in your burger?

WHITE PAPER February Realizing the Promise: Overcoming the Barriers to ACO Success

Table of contents. Best practices in open source governance. Managing the selection and proliferation of open source software across your enterprise

Enterprise Risk Management: From Theory to Practice

FedEx HealthCare Solutions. Supporting the global healthcare industry

UNITED WAY ENTERPRISE-WIDE STRATEGY

Business Solutions that Create Value for Aluminium Producers

DUPONT SUSTAINABLE SOLUTIONS GLOBAL CONSULTING SERVICES & PROCESS TECHNOLOGIES A CATALYST FOR TRANSFORMATION

Supplier Relationship Management (SRM) Redefining the value of strategic supplier collaboration

A 10-Minute Guide to Increasing Supply Chain Visibility

Position Description

Sales & Operations Planning Process Excellence Program

THE CANOLA COUNCIL OF CANADA STRATEGIC PLAN IT S AMAZING WHAT ONE MORE BUSHEL OF CANADIAN CANOLA CAN DO.

CGI Cyber Risk Advisory and Management Services for Insurers

Business Service Management Links IT Services to Business Goals

Internal audit strategic planning Making internal audit s vision a reality during a period of rapid transformation

QlikView for Supply Chain. Chemical and Mill Products

Address C-level Cybersecurity issues to enable and secure Digital transformation

National Cyber Security Policy -2013

Business Continuity Management Planning Methodology

Recruitment Process Outsourcing Methodology Statement

Digital Business Platform for SAP

Transcription:

BEST PRACTICES IN CYBER SUPPLY CHAIN RISK MANAGEMENT DuPont Crop Protection Operating Disciplines for Supply Chain Sustainability, Risk Management and Resilience INTERVIEWS George Poe Integrated Operations Leader, Crop Protection Robin Jenkins Supply Chain Regulatory Risk Manager, Crop Protection

The Next New Things in Supply Chain Risk Management Adopting a model of governance teams that creates joint accountability and responsibility across all of the functions that touch operations and supply chain and eliminates the inherent risk in having a single manager or function make decisions about what is safe or resilient. Embedding the concept of inherency in the implementation of resilience from product design to supply chain development. Transforming enterprisewide operations including supply chain risk management across all businesses with formal and standardized processes to improve execution of all operations, collaborative structures to enable integrated operations, and centers of excellence to identify and manage best practices. Company Overview DuPont works inclusively with others to find innovative, science-enabled solutions to some of the world s biggest challenges. Its three strategic challenges are feeding the world, reducing dependence on fossil fuels, and protecting life and the environment. Crop Protection is a $3-4 billion dollar business that operates in virtually every country around the globe. The business has 25 plants worldwide and a vast network of contract manufacturers. Its mission: Develop the technology and offerings to improve sustainable agriculture for a growing world. Consistent with the company s focus on world-class science and technology, the Crop Protection business develops herbicide, fungicide and insecticide products in order to grow healthier crops and maximize crop investment. 2

Supply Chain Transformation at DuPont Supply chain risk management in the Crop Protection business must be viewed against the backdrop of a much larger operational transformation that was launched nearly 10 years ago. That transformation was intended to drive productivity and align operating disciplines and best practices across all of DuPont s businesses. This required change at the corporate level and across every business, including: New key performance indicators (KPIs) to drive change. Collaborative structures to enable integrated operations. Centers of excellence to identify and manage best practices. Formalized and standardized processes to improve execution. Focus on mindsets and behaviors to support best practices. What emerged was called the DuPont Production System (DPS). What DuPont found was that disciplined operational excellence created a basis to fulfill multiple objectives simultaneously increased efficiency and productivity as well as strengthening other goals including safety, sustainability and resilience. For supply chain, the DPS shifted the focus from supply logistics to demandled fulfillment. The DPS created integrated operations capabilities to improve performance and productivity, but these also drove end-to-end approaches to risk management. Under DPS, DuPont created the functional centers of excellence, including in supply chain, which provided best practices, technologies and tools that are standardized and leveraged across DuPont s 10 businesses. One of the unique aspects of the DuPont transformation was its focus on people, A core tenet of the program was that people are simultaneously the key barriers and key enablers of the new culture of excellence needed to cope with increased global competition and operational risks. As part of the transformation process, DuPont established new training and skills development programs to effect the cultural change and collaborative approaches of the DPS. 3

Integrated Operations Supply Chain Business Integration Strong supply chain integration within business teams and strategies. Execution Drive effectiveness and efficiency in execution in plans and supply chains across businesses and regions. Center of Competency Ensure best practices align with standards and processes. The key goals of supply chain risk management are to respond, mitigate and pre-empt. Respond: Ensure that there are crisis management processes and procedures in place to contain the crisis and accelerate recovery. Mitigate: Entails formalized risk management and supply chain design processes that identify and mitigate risks proactively. Pre-empt: Engages the organization to redesign the supply chain to remove or reduce the risk potential (e.g. inherently safer designs to avoid hazards instead of trying to control them). Within this framework of supply chain risk management, the Crop Protection business, like all of DuPont s businesses, emphasizes sustainability. A more recent focus for the Crop Protection business is supply chain resilience. George Poe, Integrated Operations Leader for the Crop Protection business, notes: All supply chains are faced with potential disruptions. Our goal is to proactively develop processes to manage disruptions before any issues arise. And, those processes can create tangible benefits in the day-to-day operations, as well as during crisis periods. Supply Chain Risk Management Governance Given its focus on end-to-end resilience, the Crop Protection business has created an internal governance team which meets quarterly. The team brings together technology, sourcing and supply chain leaders, Safety, Health and Environment (SHE) leaders all of the functions that touch supply chain operations under a holistic umbrella of resilience and risk management. This group assesses risks and resources and tracks mitigation projects. 4

The key advantage of the governance team structure is that it creates joint accountability and responsibility across all of the functions that touch operations and supply chain and eliminates the inherent risk in having a single manager or function make decisions about what is safe or resilient. This leadership team sets priorities for projects and makes sure that they are resourced appropriately. Supply Chain Risk Management Process: Crop Protection uses a formal process for risk identification, scoring and mitigation that looks end-to-end at supply chain risks. It begins with a methodology to identify risk ranging from geographic and geopolitical, environmental, technological, and regulatory to whatif scenarios on supplier disruption. Those risks are weighted by probability and impact factors to create a risk ranking. The risk rankings, in turn, yield a list of projects intended to mitigate or lower the probability of the risk. This is a formalized process with risk evaluation and scoring tools, and mitigation planning and tracking. Ideally a supply chain resiliency program encompasses the entire network of sites, suppliers and strategic partners. There is an effort to share the methodology with alliance partners so that they can go deeper with their own suppliers. Contract Manufacturer (CM) Selection: Specifically for DuPont, contract manufacturing includes the production, re-packaging or finishing by a supplier of a product to be sold by DuPont; or the production by a supplier using DuPont provided technology of a material to be consumed by DuPont. Manufacturers in this industry are required to have registered locations, so it is costly and time consuming to make changes. George Poe notes: It s critically important to select the right manufacturers early and move to long-term, win-win relationships. DuPont uses these processes to drive higher standards of quality and reliability of supply. The proper selection of manufacturers improves risk management and supply chain resiliency. When new CMs are evaluated for selection, the review process is overseen by the Operations Decision Board. The first decision is whether there is a willingness to share the IP or technology with others. Once that hurdle is passed, the potential pool of CMs is evaluated based on who has the right capability in the right location and the competency to do the work. CMs are evaluated on multiple risk criteria including: capability, technology, SHE performance history, financial stability and others. This information is brought before the Operations Decision Board for review and approval. 5

CM Oversight: Once CMs are in the network, they are subject to regular reviews and audits by multiple functional specialties from chemists and engineers to contract manufacturing specialists. For some sites, DuPont might perform the quality assessment in their own laboratories or the final quality release. Suppliers undergo safety, environmental and quality audits. In addition, contract manufacturer risks are regularly assessed on a variety of risks as illustrated above on the risk index. Differentiated Management of CMs: CMs for the Crop Protection business receive varying levels of engagement from DuPont managers. The more strategic CMs receive more senior-level interactions. At the top of the pyramid, about a half dozen of the most strategic Alliance Partners meet face-to-face with the Integrated Operations leader once or twice every year. Below that, key partners meet regularly with supply chain managers. And at the bottom of the pyramid, contract managers oversee commodity sourcing and supply agreements. Figure 1. DuPont Management Engagement 6

Supply Chain Quality: As a regulated business, Crop Protection incorporates multiple layers of quality controls: quality managers, quality systems and quality organizations. As in the pharmaceutical industry, there are multiple products being produced in the same facility, so quality is paramount and driven by documented process standards and business guidelines. Particularly with active ingredients, the quality challenge is to ensure that there is no cross-contamination even at minute levels. These precautions are built into the process from guidelines about how plants are to be constructed (the distances of production units from each other) to sequencing of production lines (what products cannot follow each other) to test methodology. At the heart of these standards and guidelines is the biology of the products and how they might interact. Crop Protection has a global team that owns the standards and guidelines for contamination prevention. They meet regularly to review and update the standards and guidelines or create new ones. This group is linked to the quality organization to track any issues or deviations. Transportation Security: Because some categories of Crop Protection products fall under hazardous cargo requirements, meeting regulatory requirements while optimizing performance receives considerable attention. They are in the process of redesigning the entire logistics and warehousing operation to create a stronger network. One of the key risks is theft. Because Crop Protection products are high value and low volume, they are an attractive target. Crop Protection has created an operating committee to try to drive new standards for the industry. Some areas of focus include: Metrics to assess the risk of product theft; Better understanding of what happens to a stolen product; Selection criteria for third party logistics providers; and Standards and guidelines to manage shipment security in high-risk areas. 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information