Category Archives: Manufacturing

MeRLIN Sourcing, A Platform With a Twist …

INTRODUCTION

When their founders were young men
they paced the fact’ry floors
from Vellore down to Chennai
they must have walked ’em all
cause they learned all of the problems
that plagued the Procurement side.
Those listen, look, and learn guys
sure made a lean platform.

The founders of MeRLIN, who started Rheinbrucke Consulting in 2013, started developing a stand-alone application for direct source-to-contract (and, for those who need it, source-to-pay) in 2018 using their decades of experience supporting direct manufacturing clients. MeRLIN was then frst released it to the market in 2022, after ensuring it actually solved the problems they were seeing and met the needs of the companies they were working with.

(While some companies might take it as a badge of honour to get a “minimally viable product” to market in a year, the reality is that when it comes to manufacturing enterprises, nothing you can develop in a year will actually solve more than a fraction of their problems, and unless what you deliver can integrate tightly into their existing enterprise software landscape, it won’t be adopted, or even bought. That’s why there are so many offerings in indirect [many of whom will succumb to the marketplace madness] and so few that offer true direct sourcing solutions, and fewer still that offer fully integrated source-to-contract / source-to-pay suites.)

PLATFORM SUMMARY

MeRLIN, which bills itself as a Source-to-Contract platform for Direct Material (primarily Discrete Manufacturing) Sourcing, is actually a Source-to-Pay platform where the Procure-to-Pay platform capabilities are baseline (and wouldn’t go head-to-head with best-in-class) and designed for the mid-market (and large enterprise) clients that don’t have a Procurement solution in place already (either through the ERP, AP, or a third party system). Since most larger enterprises have some form of decent P2P, MeRLIN decided to focus primarily on the critically underserved strategic sourcing marketplace in discrete manufacturing and direct sourcing and the capabilities all of the companies the founders worked with in manufacturing were universally missing.

MeRLIN was designed as a modular solution where

  • a client could license just the modules they wanted/needed,
  • common modules, and capabilities, were broken out into their own modules so their was no duplication of functionality, and
  • key modules could be augmented with additional value-added functionality not typically found in average products.

MeRLIN has all the standard modules you’d expect in a Source-to-Contract:

  • (Program &) BoM Management (Requirement for any Direct Solution)
  • Requisition Management (Intake)
  • Sourcing (Event) Management (Sourcing)
  • Supplier Management (SXM)
  • Contract Management & Contract Authoring (CLM)
  • Reports & Dashboard (Reporting & Analytics)

As well as basics for Procure-to-Pay:

  • Purchase Order Management
  • Invoice & Payment Management

But also has modules for:

  • Demand Management (Consolidation of Requirements from Requisitions, Manufacturing Programs, and MRPs)
  • Category Management (Part/BoM grouping & management)
  • Supply Chain Compliance (GSCA / LkSG)
  • Supply Management (Document & Shipment Management)

and the standard suite foundational modules of:

  • Master Data Management
  • Business Administration
  • Security Management
  • System Management

And even modules for:

  • Strategic Project Management (Project Management/Orchestration)
  • Finance Management (Budgets, Prices)

We’re not going to discuss all the modules and instead focus in on just the core Source-to-Contract modules, as they are the modules that are critical to direct sourcing and the modules that will allow you to understand the value, and potential, MeRLIN has for you.

Supplier Management

Supplier Management is designed to onboard, evaluate, approve, and manage suppliers, including their contacts, surveys, ratings, and documents. Qualification starts with a simple request based on supplier name, country, email, and unique (DUNS) identifier. Based on the supplier category, the next step will be to send the suppliers the qualification surveys and pull in the external risk information, send it to technical and risk reviewers, and if that passes, it will go off to compliance to ensure the supplier can comply with all necessary regulations the company is subject to and then, if that passes, the supplier will get a registration invite to provide all of the additional information necessary to do business with the company as well as details on additional products and services.

Supplier Management captures all of the core company information, locations, accounts, questionnaires, risk information and scores, compliance reviews, scorecards, and approvals. For each of these there are standard fields, and as many additional fields can be added by the customer organization as needed.

Compliance Management

Collects and manages the organizational policies, supplier policy statements, compliance surveys, audits, risks, scorecards, and complaints. It can accept all documents, support custom surveys, import third party data from financial and environmental (and other) risk providers, provide you with compliance scorecards, and automatically extract and centralize all “risks” from the surveys based on scores and/or responses in a risk management view.

Moreover, in full compliance with the German Supply Chain Act (GSCA, known as the LkSG within Germany), MeRLIN provides the buying organization, each of their suppliers, and their entire employee base, a unique portal where they can register complaints. They have upgraded their platform to fully support the GSCA and can also support other supply chain acts as well (and future releases will encode more out-of-the-box support, even though it can already be custom figured on a client-by-client basis to support the majority of acts out there).

Requisition

Requisitions can be used as traditional requisitions for purchase orders against existing contracts for goods and services normally used by the company or as intake requests for sourcing. When they are used as intake requests, they go to a central management screen where the buyer can group them by material, bill of material, and/or category to identify sourcing event requirements and then create a sourcing event off of a bundle of them.

Sourcing

Sourcing is primarily RFX based, but auctions are supported as well off of base RFQs. A sourcing event can be kicked off from one or more requisitions, a category, a BoM, or an event template, which can consist of one or more RFIs, questionnaires, and line-items with custom price breakdowns in the RFQ. Associated with the RFQ can be the suppliers, addendums, budgets, stakeholders, terms and conditions, contract template, event schedule, and ongoing Q&A.

In addition to being able to review bids by total cost per unit and evaluation score (by the relevant stakeholders), the application also supports automatic award recommendation by criteria which can include target award by supplier, range of suppliers to split the award between, minimum and maximum shares, and preferred supplier status.

Contract “Authoring” & Management

The platform is primarily “signature” and “execution” management, as authoring is simply the packing up of contract templates, terms and conditions, specifications, and associated addendums for agreement by electronic signature. The electronic signature capability is compliant with USA regulations and most European regulations for private enterprise contracts. Once the contract is signed, the platform can manage the project timeline, stakeholders, documents, events, milestones, and obligations. In addition, the user can define alerts against any event, milestone, document, obligation or other entity on status change or due date.

Reporting & Dashboards

Reporting and Analysis in MeRLIN is through widget-based dashboards that summarize any data of interest in the system. Right now there are hundreds to select from in the reporting library, with more being added as needed. For each of the built in reports and dashboards (on suppliers, spend, process, etc.), the user can apply multiple filter options and save the configuration to their liking. There is no Do-It-Yourself (DiY) widget report builder yet, but more DiY analytics enhancement is on the roadmap.

Strategic Project Management

This is MeRLIN‘s built in project management capability where a user can define and instantiate RFX templates, supplier onboarding workflows, contracting processes from award specifications, procurement processes, and even entire Source-to-Procure projects which collect all of the necessary templates and workflows together. In addition, leadership is provided with a high level overview of sourcing projects.

Master Data Management

All of the system master data templates can be altered by the user including, but not limited to, currencies and conversions, items, locations, plants, prices, suppliers, contract metadata and milestones, and other key items. The customer can control it’s master data and master data identifiers.

Business Administration

All of the templates in the system can be managed and customized in the business administration section including, but not limited to supplier onboarding, qualification, evaluation, and audit questionnaires, product and item templates, requisitions, RFQs, purchase orders, contract terms, contracts, statements of work, email, and workflow templates.

Bill of Materials Manager

A key aspect of Direct Sourcing is managing the Bill of Materials. In the Merlin platform, that can be done through the BOM Manager, which unlike basic direct sourcing platforms, can maintain as many versions of a Bill Of Materials as the organization wants to maintain (for correlation with historical sourcing and procurement and cost estimates during new product design and/or product modification).

These versions can be uploaded from the ERP (or your PLM of choice with custom integration) or created in the BOM Manager, and this creation can be from scratch or from a previous BoM version which can be copied and modified as needed.

The best part of MeRLIN‘s BOM manager is its built-in ability to allow for easy should-cost analysis during NPD and BOM (re)design. Once a BOM has been uploaded or created, the user can click a button to “cost” and it will automatically find prices for every component in the BOM for which it has a price from a contract (first), catalog/commitment (second), or quote (third). Then, the user can push the remaining items to the Demand Management module for quick quote (or import into the internal catalog from a connected source) or simply create a place holder item (with an estimated cost). They can then return to the BOM Manager and re”cost” the BOM to get a complete cost estimate, which can be compared against the cost of all prior BoM versions (that were costed). This allows the organization to understand the costs associated with BOM changes over time (independent of supplier or distributor pricing changes). Gone are the days where you have to use a completely separate application to do BOM cost estimation.

Finally, the next update to the BOM Manager will allow for the user to enter a cost estimate directly in the BOM manager for materials/parts not yet quoted for even quicker price estimates, and those estimates will be clearly marked as internal estimates only.

Other Capabilities

We’re not going to discuss the procurement modules as they are not MeRLIN‘s focus (but we will assure you that they cover the foundations if you don’t have P2P and need it), demand management as you know what forecasting should do, category management (and category strategy management) as that is rather self explanatory, or finance management, as budget and price management is also straight forward.

The Full Picture

The platform is quite deep in all core areas and one could write pages about each module and its deep capabilities, but hopefully this is enough to convey the facts that

  • the MeRLIN platform was designed from the ground up to support direct and discrete sourcing,
  • has the capability to support these projects from inception to contract signing through the very last order against the award, and
  • goes beyond just raw sourcing capability to related capabilities of supplier risk, compliance, and execution (tracking the order to the delivery and qualification)

CONCLUSION

Given the relative lack of true direct and discrete sourcing platforms in the mid-market, MeRLIN is a platform you should definitely be aware of. If you’re in direct manufacturing, automotive, aerospace, and related industries, you might want to check them out today.


It’s for discrete wizards,
it’s a platform with a twist.
A discrete wizard
needs a tech assist …

The Sourcing Innovation Source-to-Pay+ Mega Map!

Now slightly less useless than every other logo map that clogs your feeds!

1. Every vendor verified to still be operating as of 4 days ago!
Compare that to the maps that often have vendors / solutions that haven’t been in business / operating as a standalone entity in months on the day of release! (Or “best-of” lists that sometimes have vendors that haven’t existed in 4 years! the doctor has seen both — this year!)

2. Every vendor logo is clickable!
the doctor doesn’t know about you, but he finds it incredibly useless when all you get is a strange symbol with no explanation or a font so small that you would need an electron microscope to read it. So, to fix that, every logo is clickable so you can go to the site and at least figure out who the vendor is.

3. Every vendor is mapped to the closest standard category/categories!
Furthermore, every category has the standard definitions used by Sourcing Innovation and Spend Matters!
the doctor can’t make sense of random categories like “specialists” or “collaborative” or “innovative“, despises when maps follow this new age analyst/consultancy award trend and give you labels you just can’t use, and gets red in the face when two very distinct categories (like e-Sourcing and Marketplaces or Expenses and AP are merged into one). Now, the doctor will also readily admit that this means that not all vendors in a category are necessarily comparable on an apples-to-apples basis, but that was never the case anyway as most solutions in a category break down into subcategories and, for example, in Supplier Management (SXM) alone, you have a CORNED QUIP mash of solutions that could be focused on just a small subset of the (at least) ten different (primary) capabilities. (See the link on the sidebar that takes you to a post that indexes 90+ Supplier Management vendors across 10 key capabilities.)

Secure Download the PDF!  (or, use HTTP) [HTML]
(5.3M; Note that the Free Adobe Reader might choke on it; Preview on Mac or a Pro PDF application on Windows will work just fine)

SmartCube: Putting a Nice Box Around Industrial MRO for Commissioning and SPIR Procurement for Projects

There are dozens (and dozens) of Procurement Solutions out there, especially for indirect procurement, as that’s where it all started. There are also a dozen or so good solutions for BoM (Bill of Material) direct procurement for manufacturers who need to source to build the products they are selling. However, when it comes to acquiring MRO assets, and spare parts to maintain them, there are very few solutions — and even less for managing procurement and inventory from a (commissioning) project perspective.

Most Procurement Professionals assume that this is handled by the ERP/MRP or the asset management platform but the reality is that the ERP/MRP will only track product specifications for approved products and materials, the asset management will only track assets that are actually delivered, and most of the sourcing is done old school — email and Excel spreadsheets, which is not a great solution. First of all, it is very time consuming for both parties to fill out all the information manually and send documents back and forth. Secondly, it is very error prone as the technical specifications will require detailed part numbers, identifiers, standards, etc. where one miskey can totally invalidate an entire record that might have taken days to put together. Thirdly, as the sheet is not in a version control system, it’s hard to control who can access it when and ensure updates are properly maintained and not missed or overwritten. Fourth, given that an average asset will require 10 or 15 associated spare parts, and multiple assets will need to be acquired at a time, an average sourcing process will take a minimum of two weeks (if not much [much] longer).

SmartCube has developed two tools to handle 1) the pre-commissioning Procurement of components and systems for major projects (such as new plant creation or plant renovation, utility construction, ship construction, etc.), as well as the commissioning process and 2) the material/part master, and the procurement projects needed for the ongoing support (as plants will require production line maintenance and upgrades, utilities will constantly require new regulation and control systems, ships always need upgrades, etc.) along with the procurement and management of the spares required to keep the components and systems running when something breaks.

This is done through their two primary offerings of I-SPIR, which they bill as an interaction and collaboration platform to allow multiple project partners and collaborators to input, collect and share spare parts information (SPIR) between all stakeholders in real time for asset-intensive industries, and I-MAT, that they bill as autonomous warehouse management & material master cleansing & coding platform for any asset heavy industry.

SmartCube I-SPIR

First, some background. SPIR stands for Spare Parts Interchangeability Record, which is basically a list of equipment and spare parts that a manufacturer or supplier recommends that a project owner or asset manager should purchase in order to develop and maintain their industrial plant or process. Once the purchase suggestions, or modifications thereto, are accepted, the project owner then matches the purchases to the material master data in the ERP, if there are appropriate product records, or pushes the appropriate records to the material master.

SPIR is a lot more than just a slight modification to the direct procurement process, because it’s not purchasing materials and parts to build products for sale, but components and systems to keep a process running or a plant (utility, or vehicle) operating. It’s also a well-established systematic supply chain process used for tracking and recording information on various replacement parts used in industrial operations. The process involves:

  • Inventory Management: inventory must be established and properly maintained, and it must include what (parts), where (storage facility, room, and shelf), who (is responsible for), how many (quantity) and why (associated components or systems)
  • Identification: every component needs a unique identifier (and any manufacturing identifiers it’s associated with)
  • Documentation: specifications, function(al requirements), compatibility, and any standards met
  • Interchangeability Assessment: a thorough assessment that takes into account design, materials, operating requirements, and other relevant factors
  • Recording: that identifies parts that a given part can be substituted for, which includes a link to the assessment as well as information on the manufacturer, supplier(s), and lead times (for restock)
  • Maintenance: the record must continually be reviewed, updated as needed, and deactivated when the part is no longer needed or approved

When it comes to identifying components and associated spare parts, and executing SPIR projects, the process is similar to a traditional sourcing process:

  • Identify the need
  • Determine the specifications
  • Research potential substitutes
  • Evaluate compatibility
  • Select the replacement and make the award
  • Update records

It’s Procurement, but Procurement with needs not typically addressed. That’s why a specialized system is needed that takes into account all of the specialized aspects not addressed in traditional direct Procurement systems. That’s the system that SmartCube has created for Industrial MRO with its I-SPIR solution. The module has the following primary components.

Projects & Packages

In the I-SPIR platform, projects correspond to systems and packages to related sets of one or more modules (and each module will require one or more spares to maintain it).

SPIR Processes

Once a project has been defined, the system makes it super quick and easy to request spare parts for one or more components or systems. Setting up a SPIR project is simply a matter of:

  • selecting the master project
  • selecting the responsible individuals (for QA, Evaluation, Assessment, DCC, PRE, Coordination)
  • selecting the supplier
  • providing the basic SPIR info (Doc ReF, PO, Due Date, System & Area of intended use)
  • uploading any necessary documentation
  • sending it to the supplier

Once the supplier receives the SPIR, they can select the part they are willing to provide simply by specifying their ID, the original manufacturer name and OEM part number (if they are acting as a distributor) if they already have the SPIR in their system or it’s in EQHub, a third party SPIR database that contains pre-vetted products with validated information which, when imported, is tagged as already validated information (which can allow an organization to accept the part without having to go through a full evaluation). If the part does not already exist in the system or EQHub, a popup will allow the supplier to enter all of the required information, which will then have to go through a full evaluation process on the buyer’s end.

When the SPIR is returned, the system walks the individuals on the buying team through the process, which consists of:

  • Quality Assurance: is the data valid and are the specifications appropriate
  • Evaluation: classify the Spare against key asset tracking attributes of redundancy, repair/discard, consequence, and criticality and define/override the auto-suggested quantities
  • Assessment: asses the overall purchase against the inventory and finance requirements
  • DCC: verify the DCC data
  • Final Approval and Order: final approval and place the order

Tag Management

The platform makes it easy to manage asset tags and provides downloadable templates for quick upload. This simplifies integration with ERP/MRP/Asset Management systems and material masters.

Dashboard

The main entry point summarizes the projects the user has ongoing and their current states for easy project location, access, and management:

  • To Do: tracks the SPIR requests that need to be opened, re-submitted, evaluated for quality, concluded, etc.
  • New: new Projects & SPIRs recently opened and awaiting supplier submission
  • Open: Projects that are open where team members need to assess submitted SPIRs
  • Overdue: Projects that are overdue
  • Rejected: SPIRS that have been rejected (and need to be returned or recast to new suppliers)
  • Submitted: tracks the supplier submissions (that need to go through the SPIR process)
  • Concluded: SPIRS that have been concluded

SmartCube I-MAT

SmartCube‘s other major offering is their materials “master” management and inventory platform that was specifically designed for supporting material and inventory requirements during (new) plant/site/rig construction and commissioning, plant/site/rig retrofit/upgrade and commissioning, cross-platform / site based material and inventory management (where the organization doesn’t have an ERP/MRP integrations that support that), and other temporary or permanent material and inventory management scenarios not adequately handled by the ERP.

The platform is designed to serve as a part and material master as well as an inventory master for the locations and projects not managed by the ERP/MRP (which, for organizations running on the BIG ERPs like SAP or Oracle, or older ERPs, are any temporary/construction/retrofit/commissioning project where inventory needs to be managed separately and off-site in a yard, on a rig, etc. until the project is done). It’s very easy to load products and materials into the SmartCube I-MAT platform as it allows for easy CSV upload (in addition to direct ERP integration if you so desire, both for initial load and final push when you are done with the project).

In addition, as part of their latest release, they have automatic (potential) duplicate detection and simplify the process of merging duplicates and cleansing the material / product master. They also make it one click to deactivate products (and make it clear when a certain product should not be ordered).

Upon implementation, it’s really easy to define (and upload):

  • Vendors: that are providing the products and materials
  • Tag Numbers: standard (asset) tag numbers (for system integration)
  • Projects: the projects currently being managed through the system
  • Product States: Evaluating / Accepted / Offsite / InTransit / Not Found / Destroy / etc.
  • Locations: Onshore / Offshore / Yard / Europe Warehouse / USA Warehouse / etc.
  • Imports: upload a file and track the imports
  • Deactivated Products: for easy identification and management
  • Users: and their associated permissions

Once the data is loaded, it’s really easy to search for any product using a free-text search on all key fields, or an in-depth filter-driven search on each supported product field. In other words, filters aren’t just limited to material/part name, number, tag, project, vendor, etc. It’s also easy, once a search and drill down is performed, to select all or a subset for batch editing where all products are missing the same data or need the same field updated.

Once a product is selected, it’s easy to bring up, and if necessary, edit all of the associated data, which includes all of the standard part/material fields, as well as perform standard inventory operations. The system understands the standard actions of:

  • Add Stock: increase the stock at the selected location
  • Move/Transfer Stock: move the stock from its current location to the selected location
  • Withdraw Stock: mark the stock as withdrawn and used

In addition, you can (re-)set the status of any product at any time for any reason (which you can capture) if you have the appropriate authority. Plus, when you move or transfer stock, you can indicate the type of transfer and withdrawal (if you define multiple types of transfer and withdrawals, such as consumption, returned, trashed, queued for destruction, etc.).

Plus, coming soon, if you are doing a transfer from one location to another that requires shipping (such as from a rig to onshore or one country for another), the platform will automatically export data for manifest creation in third party shipping systems (either through an API integration or through a flat file CSV export for loading in the third party system).

The entire system has been designed to be incredibly easy to use and support the primary requirements of a temporary project not supported by a traditional ERP/MRP material master or inventory management system:

  • easy off-site management
  • collaboration
  • high quality data

… and eliminate the need for error-prone spreadsheets and shadow processes that were created to get around the limitations of systems that were setup for managing acquisitions and inventory for traditional production line utilization, which is not the case in facility/plant construction and/or upgrade.

Both solutions are delivered as SaaS and no integration with ERP’s are required. Last but not least, the amount training needed is very limited as the design focuses on ease of use. Once a decision is made to use one or the other solution (or both) you can be up and running in matter of days if integrations are not required. Integration with ERPs and other systems is typically only a matter of a few weeks.

As explained in detail, if you need to do a lot of sourcing for pre-commissioning, commissioning, and asset-maintenance, SmartCube is a system you should add to your (very) short list as traditional indirect (and even direct) Sourcing/Procurement systems just weren’t setup for the type of sourcing and (temporary) inventory management you need to do (while SmartCube checks all the necessary boxes and then some).

Interrupt that Risk Event with Interos and Sustain Stable Supply Chains

Supply Chain risks are on the rise, as are disruptive events, and an event anywhere in your supply chain, even four levels down, can bring your operations to a halt if you can’t detect it, respond quickly, and take active mitigations. To this end, as chronicled in Part X of our Source-to-Pay+ Series that discussed Supply Chain Risk, a number of vendors have cropped up in the last few years around Supply Chain risks, but not all players are equal.

One of the first of the new breed of integrated supplier and supply chain risk players, and one of the most differentiated, is Interos. Interos was founded in 2005 by Jennifer Bisceglie as a consultancy focussed on helping organizations map out, understand, and get a handle on supply chain risk. Jennifer realized near the end of last decade that, with supply chains becoming so long, so complex, and so interconnected across the digital, financial, and physical realms, that technology would be needed to support organizations in this effort.

The core team knew that in order to do this, they’d need a completely new type of technology, so they sought out a new team to build one of the first outside-in business relationship graphs using trade data, third-party data sources and artifacts (such as ownership data, executive data, etc.), and even press releases. Then, on top of this relationship data, they’d need to layer risk data to help an organization identify risks in the supply chain. This would involve capturing risk events as well in order to help them understand which clients may need to be notified and/or use the Interos platform to gauge the extent that a risk event may impact them. So that’s what they built — at a global scale.

Interos has built a business relationship (knowledge) graph that connects 11 Billion relationships across 410 Million companies. These companies are then risk scored against 230+ attributes across six (6) different categories of risk: Finance, Geo-political, Restrictions/Sanctions, ESG, Cyber, and Catastrophic, depending on the extent of information available. At a minimum, they track country/industry level risks and will use that when there is insufficient data to assess the specific company risk against a specific attribute. Based on the assessment of each risk, Interos will compute an overall i-ScoreTM from 1 to 999, with lower scores being higher risk. It will then scan your entire network, from sink to source, and identify all high risk suppliers for you.

The Interos Resilience platform, which processes tens of thousands of sources and over 3 Terrabytes of raw data daily, constantly monitors for new relationships, information, and (related) events that could pose a change in an entity’s risk status, as well as indicate the presence of a (potentially) catastrophic event, including a natural disaster or a cyber-attack. For each of the six risk domains, the platform scans for a number of factors, sub-factors, and individual attributes. We’ll cover the primary factors in this post, and if you have a particular area of interest, you can always drill in during a demo or discussion with Interos.

With respect to Finance, the platform looks for the following:

  • Liquidity: Cash, Working Capital
  • Solvency: Assets, Capital Efficiency, Credit Rating, Debt Coverage, & Leverage
  • Profitability, Debt Coverage, & Valuation

With respect to Geo-Politcal risk, the platform looks at the following:

  • Political Instability
  • State Capacity
  • Political Process
  • Economic Rights
  • Socio-Economic Development

With respect to Restrictions/Sanctions, the platform looks at the following:

  • Sanctions (USA, UK, EU, etc.)
  • Associated Sanctioned Individuals
  • Import/Export Embargos
  • Associated Regulations

With respect to ESG, the platform looks at the following:

  • Environmental Performance
  • Social Commitment
  • Governance Strategy

With respect to Cyber, the platform looks at the following:

  • System Attacks (compromised accounts, cyber-attacks, data spills, etc.)
  • System Vulnerabilities
  • Supply Chain Cyber Events
  • Cyber Compliance
  • Cyber Threat Activity

With respect to Catastrophic risk, the platform looks at the following:

  • Localized Natural Hazard and Disaster Risk
  • Communication Capacity
  • Healthcare Capacity
  • Infrastructure Capacity
  • Burden of Disease Risk

Based on all of this, the platform is very useful for companies that need to perform

  1. Supplier due diligence
  2. Continuous related party monitoring
  3. Real-time catastrophic event detection

Interos is one of the most complete supply chain risk intelligence platforms for supplier due diligence. The ability to quickly screen a supplier on six highly relevant domains can give an organization confidence that the organization understands the risk profile of a supplier before onboarding it, which is not something you can get from a traditional credit score or an empty search on sanction lists.

Interos is one of the few platforms that can be counted on for continuous related party monitoring as it processes over 3 TB (Terrabytes) of data a day, constantly updates risk scores and related events for affected entities in the system, and can propagate updates through the business relationship graph in real time.

Interos is also one of the few platforms that can be used to do real-time catastrophic event detection where the event is not limited to a single event type, as the platform monitors for natural disasters, man-made disasters, bankruptcies, and cyber incidents — some of which Interos can detect before anything is reported due to a change in organizational behaviour — and it can immediately propagate news of events or risks to one of the 410M+ business entities it tracks to all impacted clients who can use their relationship explorer to identify all the links it has to the company.

For example, if there’s a fire in a raw material or component factory (which seems to happen in one of the few major RAM suppliers every decade — just do a few historical Google Searches if you don’t believe me) two (or three) tiers down the chain under your tier 1 supplier, you can immediately map out all of your tier 1 suppliers that trace down to that factory and make sure they have enough stock on hand to continue producing your products until you expect that factory to come back online (by either instructing them to immediately secure additional stock on your behalf or doing so for them) well before your competition realizes there’s going to be a disruption a week down the road when the plant is announced shut down and it finally trickles down to local news half a world away.

The platform monitors and tracks natural disasters globally down to a gird of 10 km squares, as well as potential paths of storms, waves, and fires, and can thus immediately identify each business entity that is likely to have been impacted as well as each business entity that is likely to be impacted if a natural disaster (such as a storm) continues its course. Thus, if a tsunami hits the coast of Japan, it can allow an organization’s incident response teams to immediately identify just those organizations in Japan in the area the wave hit and allow it to focus its efforts on just those suppliers, vs. having to reach out to and assess every supplier in Japan, of which it may have hundreds if it is in electronics when only ten were in the immediate area. The time savings alone is incalculable. (And, of course, if an earthquake hit a province in China, it would take an army of consultants months to figure out precisely what suppliers were close enough to the fault line to likely have suffered [significant] damage vs those far enough away to only feel minor shaking whereas the Interos platform will calculate all of this in just a few minutes.)

However, one of the most unique risk monitoring capabilities lies in its proprietary digital behavioural modelling that can often detect when an organization has experienced a potential cyber-attack, breach, or data theft and alert customers to that potential cyber-incursion days, or weeks, before the organization announces a breach and/or it makes the news. Using the business relationship graph, this immediately allows an organization to determine every first-tier supplier that relies on that organization. The organization then has to determine if any of those suppliers has access to the organization’s financial account information, personnel data, or confidential intellectual property. Those tier 1 suppliers that do need to be immediately approached and asked if any of that data was shared with, or accessible by, the sub-tier supplier that was breached, or affected by. If so, the organization can immediately start taking mitigation actions before they themselves are the target of a cyber attack.

The platform is very easy to use. When a user logs in, they see a summary of their full supply base and multiple sub-tier relationships (which for a multi-national with tens of thousands [10k+] of tier 1 suppliers can be hundreds of thousands of tier-3 suppliers). The user can see the number of suppliers by tier who are high risk, medium risk, low risk, and, possibly, unknown (as it’s a brand new supplier where there is little to no information on that supplier). Note that the number of “unknown” suppliers will typically be really small, and for most truly global companies with 500K global suppliers in their extended supply chain, the unknown will be significantly less than 5K (usually 0.5% or less).

(Note: If more than 1% of your extended supply chain falls into high risk, you have some serious problems. In a good supply chain, the vast majority of suppliers should be low risk (> 95%) with a small percentage medium risk, preferably no high risk, and preferably no unknown.)

You also see a breakdown of risk by

  • each of the six (6) risk domains, which lets you see if there is a particular risk concentration,
  • average risk by groups of interest (which could be country, product line based, strategic suppliers, etc.),
  • a summary of natural hazards and disasters currently being tracked, both visually and textually (which shows the number of potential tier 1, 2, 3+ suppliers that are potentially impacted)
  • a visual summary of the most relevant current events being reported on (with links to full articles in third party sources), and
  • a quick link to the relationship explorer tool that will let you find all of your connections to an entity of interest

When you select a category of high-risk suppliers (overall or by category), it will bring up a list of companies with their individual i-Scores that you can select to to bring up their complete risk scorecard (if you have unlocked their scorecard; depending on your subscription level, you have so many credits that allows you to unlock that many scorecards; you can buy more if you need, but most since most companies don’t need to evaluate more than a small percentage of tier 2+ suppliers, their packages are usually sufficient). The scorecard summary will summarize the score in each of the six areas, and will allow you to drill down into the factors, sub-factors, and individual attributes that are known and scored (and contribute to the overall score), which include those discussed above.

The scorecard will also summarize company corporate data (industry registrations and codes, locations, etc.), its tier 2 and tier 3 relationships and risks, which can be filtered to all known relationships (in your extended supply chain), as well as all events (and related sources) that have been detected that are relevant to that supplier entity. If a risk score is low (or suddenly drops), you will have access to all of the data that contributed to that score to make your own judgement (and jump-start your investigation).

The platform also has a geographic view of natural disasters that is interactive and allows a user to drill into a region, filter on natural disaster type (earthquake, tropical storm, volcanic eruption, etc.), and even project a few days in the future (if the disaster is a tropical storm, cyclone, tsunami, etc. and there is forecast data available from Interos‘ 3rd party, or public, sources). In addition, it can be used to look at historical natural disaster and weather event data, which goes back between 50 and 200 years, depending on how much historical data is available for the region, as well as the risk of each natural disaster type (wildfire, drought, earthquake, flood, etc.) in the region base on all of this historical data.

And the relationship explorer is likely the most useful part of the platform because, if a risk event is detected, such as a natural disaster or a cyber breach, you can instantly trace all of your active relationships to that company, and immediately start the process to determine if these tier 1 (and tier 2) suppliers will be impacted, and, if so, the degree to which you’ll be impacted. Not only will you know about an event days, or weeks, sooner than you would know without this platform (and by then it may have been too late to find an alternate source of supply or protect your data), but you can limit your discovery and mitigation efforts only to suppliers that might be affected, versus doing massive surveys and reach-outs (that can take days or weeks) to find out who might be impacted in the first place.

Interos is a one of the most powerful, and complete, risk intelligence platforms out there and one that should definitely be on your shortlist if you’re looking to get 360-degree visibility into your supplier, and supply chain, risk.

It Was the Most Wonderful Time of the Year. Could it Be Again?

A couple of months ago we published an article on how ‘Tis the season … to bring an end to seasonality! (And JIT!) because, while consumer shopping may be seasonal, supply chains no longer support seasonality. The pandemic finally broke globally over-stretched supply chains and with the continued issues (lack of ships, due to scrapping; containers; due to trade imbalances; lack of capacity, due to extended shipping times now that the two major canals are not available and ships have to sail around both capes), the situation is not going to be fixed anytime soon.

In the article we noted that if you didn’t want to seasonally stock out, you needed to stop trying to stock seasonally and start planning for sustained stock up over time. Stock at the rate products are normally produced and able to be shipped. And stock to what you forecast.

But don’t stop there. If, even spacing out the orders and shipments, you can’t reasonably stock to demand, or, if the demand may not be high enough to minimize your logistics costs (via full container shipments), then you need to work on demand shaping as well as demand forecasting. Don’t over market / promote / sell a product you’ll have trouble delivering, and don’t maintain a product that isn’t going to optimize your economic order quantity.

Not everyone needs the newest product, or the top of the line product, some just need a product that works, which can be last year’s product, or the mid-line product. If you shape demand properly, through targeted marketing, targeted selling, or proper account management, you can make sure that you can meet all of your demand and keep each product line you should be maintaining profitable. And while we admit demand shaping can be harder than forecasting, sometimes it needs to be done. But it needs a lot of advance planning, so it’s critical that Procurement work hand in hand with Marketing and Sales to help identify the demands it can safely meet, when, and what demand levels are optimal for each product line. But if you integrate your planning, marketing, forecasting, sales, and supply chain planning, then maybe the holiday season will, in 2024, be the most wonderful time of the year.