Security & Business Resilience

Supply Chain Fears Increase as International Business Activity Heats Up

As U.S. and Canadian businesses plan to expand their business overseas this year, supply chain failures, data breaches and political instability are weighing heavily on the minds of their executives, according to a survey.

April 30, 2014

As U.S. and Canadian businesses plan to expand their business overseas this year, supply chain failures, data breaches and political instability are weighing heavily on the minds of their executives, according to a survey by the Chubb Group of Insurance Companies.

The 2014 Chubb Multinational Risk Survey identified the top overseas business threat as supply chain failure (19%). A data breach/cyber event (15%) was ranked second, and government/regulatory investigation and political instability were tied for third (13%). Natural catastrophe (12%) was ranked fourth out of the 10 events listed.  

The survey also found that one in two (52%) businesses plans to increase its overseas activity in 2014. Survey respondents expect to increase overseas travel (27%), introduce new products in foreign markets (27%) and increase employee headcount abroad (26%). 

"Companies, large and small, continue to seek out new business opportunities abroad, and they increasingly are being confronted by political and economic turmoil, natural and manmade disasters, and regulatory hurdles," said Kathleen Ellis, senior vice president and worldwide manager for Chubb Multinational Solutions. "As they expand their international business operations, companies need to take a more holistic or global approach to managing risk."

Nearly half (45%) of the executives surveyed noted that overseas risks pose a greater threat to their company than domestic ones, while one-third (33%) reported that overseas risks are an equal threat.  In addition, nearly half (48%) of the companies had experienced at least one loss related to conducting business overseas over the last three years.

Despite their concern regarding supply chain failure, only 56% of companies have a business continuity plan that addresses overseas risks, and 22% of companies that do have a plan have never tested it.

Larger companies (74%) were much more likely to be prepared for overseas business interruptions than smaller companies (48%), according to the survey.

"The lack of business continuity plans and testing is disturbing," said Ellis. "Companies are left exposed to significant supply chain failures and associated business interruption costs that can undermine their financial results and stability.  It is equally important for companies to assess whether their overseas suppliers and vendors also have up-to-date, well-tested business continuity plans."

Forty percent of respondents require their overseas suppliers and vendors to have a business continuity plan, according to the survey.

Two out of three (69%) companies have employees who travel outside the United States and Canada on business, according to the survey. Only 57% of the companies provide emergency medical care or evacuation assistance to those employees.

"Companies have a moral and legal obligation to take care of their employees when they travel on business," said Ellis. "A global emergency assistance provider could mean the difference between life and death when an employee becomes seriously ill overseas or is caught in the middle of a military coup."

Employees traveling with mobile devices are increasing the potential for cyber-related data breaches. Nearly three in four (72%) companies allow employees to use their own mobile devices, such as smartphones, tablets and laptops, for work.  However, companies with fewer than 500 employees (80%) are more likely to permit these devices, compared to 67% of companies with 5,000 or more employees.

"With many employees traveling outside the U.S. and Canada, more mobile devices, often with proprietary company information, are at risk of being lost or stolen," said Ellis. "The good news is that many, but not all, executives recognize the threat and are taking steps to mitigate the risk."

Eighty-two percent of companies require at least one security feature on mobile devices used for work, including password protection (75%), encryption (53%) and the ability to remotely wipe clean the device (39%).

Survey respondents also were asked whether their companies have established global social media policies. Sixty-three percent of the firms have social media policies that extend to overseas employees, and 23% of these firms have tailored the policies for different locations. However, large companies (77%) were significantly more likely to have an overseas social media policy than smaller companies (55%).

"It's not surprising that larger companies appear to be better prepared to manage the risks that come with an increase in overseas activities," observed Ellis. "But smaller companies, which may be more financially vulnerable to such risks as data breaches or supply chain failures, can turn to agents, brokers and insurers that have underwriting, loss control and claims resources on the ground overseas to help them manage the risks of their international expansions."

Did you enjoy this article? Click here to subscribe to Security Magazine. 

You must login or register in order to post a comment.

Multimedia

Videos

Image Galleries

ASIS 2013 Product Preview

ASIS International 59th Annual Seminar and Exhibits, September 24-27 in Chicago, Illinois, will include an exhibit hall packed with innovative security solutions. Here are some of the products that will be shown at ASIS this year.

Podcasts

Virtualization and Data Center Security: What You Need to Know for 2014

Data centers are increasingly becoming the center of the enterprise, and data center and cyber security is following the same path for security departments. According to Justin Flynn, a consultant at the Burwood Group, the virtualization of data centers allows enterprises to scale more easily and faster, with a smaller footprint.

However, hosting enterprise data in the cloud can make intrusion detection more difficult – how can enterprise security leaders team up with other departments to keep aware of cyber risks and traffic, and physical and data compliance during the virtual transition? How can CISOs and CSOs discuss cyber threats with the C-Suite to get the resources they need? And how can the proper infrastructure test and verify possible malicious attacks? 

More Podcasts

Security Magazine

Security December 2014 issue cover

2014 December

This issue of Security Magazine covers our 12th annual Top Guarding Firms list. Check out the best of the best as of December 2014. The 21st century has brought with it new types of security threats. Read how to combat and protect against these threats.

Table Of Contents Subscribe

Security Emergency Preparedness Training

Which security personnel emergency preparedness training is the top priority to you and your enterprise?
View Results Poll Archive

THE SECURITY STORE

comptiahighriseproductphoto
CompTIA Security+ Certification Study Guide
CompTIA's Security+ certification is a globally-recognized, vendor neutral exam that has helped over 60,000 IT professionals reach further and higher in their careers. The current Security+ exam (SY0-201) focuses more on being able to deal with security issues rather than just identifying them.
More Products

Clear Seas Research

Clear Seas ResearchWith access to over one million professionals and more than 60 industry-specific publications,Clear Seas Research offers relevant insights from those who know your industry best. Let us customize a market research solution that exceeds your marketing goals.

STAY CONNECTED

Facebook 40px 2-12-13 Twitter logo 40px 2-12-13  YouTube  LinkedIn logo 40px 2-12-13Google+

Vertical Sector Focus: Critical Infrastructures

criticalhomepagethumbFrom terrorism to vandalism, it’s preparedness, response, training and partnerships. Learn about some of the critical security issues facing this sector.

Visit the Critical Infrastructure page to read more.