Skip to main content

Global Supply Chain Network Risk Analysis and Monitoring for Global Cyber-Defense

  • 1097 Accesses

Abstract

The importance of integrated risk management of supply chains is increasing as well as the dependence of critical or strategic infrastructures. Especially, the dependence of energy supply and the information and communication technologies increases rapidly. On the other hand, new threats like Cyber threats occurred. Therefore, the existing risk-management systems fall too short and cannot match the existing complexity.

Within this publication, there are some necessary steps explained for the development of an integrated supply chain risk monitoring and supply chain risk rating model. The basis is a standardized categorization system, and then the red thread is explained with a bottom-up process.

The goals are to develop an integrated risk monitoring and risk rating model for defined clusters as well as for the supply chain as a whole and the description of a supply chain network risk monitoring system as well as a supply chain network risk rating system. The background of these considerations is the improvement of the strategic and operational decision-making process via innovative systems and models.

Keywords

  • Risk rating
  • Risk monitoring
  • Supply chain
  • Supply chain networks
  • Generic model
  • Categorization model
  • Risk management
  • Cyber threat
  • Cyber security
  • Information and communication technology infrastructure
  • Energy supply infrastructure
  • Critical infrastructure
  • Supply chain risk management

This is a preview of subscription content, access via your institution.

Buying options

Chapter
USD   29.95
Price excludes VAT (USA)
  • DOI: 10.1007/978-3-319-09069-6_33
  • Chapter length: 23 pages
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
eBook
USD   549.00
Price excludes VAT (USA)
  • ISBN: 978-3-319-09069-6
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Hardcover Book
USD   549.99
Price excludes VAT (USA)
Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7
Fig. 8
Fig. 9
Fig. 10
Fig. 11
Fig. 12
Fig. 13
Fig. 14
Fig. 15
Fig. 16

References

  • Backfried, G., Göllner, J., Quirchmayr, G., Rainer, K., Kienast, G., Thallinger, G., Schmidt, C., & Peer, A. (2013). Integration of media sources for situation analysis in the different phases of disaster management. In EISIC 2013-European intelligence and security informatics conference, August 12–14, Uppsala, Sweden.

    Google Scholar 

  • Backfried, G., Schmidt, Ch., Aniola, D., Meurers, Ch., Mak, K., Göllner, J., Peer, A., Quirchmayr, G., Czech, G., & Glanzer, M. (2016). A general framework for using social and traditional media during natural disasters: QuOIMA and the Central European Floods of 2013, Chapter 22. In Fusion methodologies in crisis management higher level fusion and decision making. Springer, Cham.

    CrossRef  Google Scholar 

  • BKK. (2011). Sony postpones product launches due to Thailand floods. Retrieved from http://www.bbc.co.uk/news/business-15380718. Accessed 22 May 2014.

  • Bornett, W., Bruckner, B., Hammerschmied, H., & Masopust, H. (2006). Rating-Kennzahlen 24 Branchen im Vergleich. WKO Abteilung für Finanz- und Handelspolitik, Vienna.

    Google Scholar 

  • Buzan, B., & Waever, O. (2003). Regions and powers. The structure of international security (6th ed.). Cambridge University Press. ISBN 978-0-521-81412-6.

    Google Scholar 

  • Buzan, B., Waever, O., & de Wilde, J. (1998). Security – A new framework for analysis. Lynne Rienner Publications, Colorado. ISBN-13: 978-1555877842.

    Google Scholar 

  • CCN-CERT. (2016). CCN-CERT IA-09/16, cyber threats 2015/trends 2016 [Executive summary].

    Google Scholar 

  • Christopher, M., & Peck, H. (2004). Building the resilient supply chain. International Journal of Logistics Management, 15(2), 1.

    CrossRef  Google Scholar 

  • Controller Magazin. (2016). Allianz Risk Barometer 2016: Die Top-10 der größten Geschäftsrisiken 2016, Ausgabe 3, 2016, München.

    Google Scholar 

  • Cross-border Research Association. (2012). Problem space report: Critical infrastructure & supply chain protection; Deliverable 5.1; FP 7 – SEC – 2010 – 1, Foresight security scenarios – Mapping research to a comprehensive approach to exogenous EU roles.

    Google Scholar 

  • Deutsche Post AG. (2012). Delivering tomorrow – Logistic 2015 – A scenario study. Deutsche Post AG, Bonn.

    Google Scholar 

  • E-Control. (2016 June 25). Smart grids. Retrieved from https://www.e-control.at/marktteilnehmer/strom/fachthemen/smart-grids#

  • enisa. (2012 July 12). New ENISA study: 10 recommendations for making European smart grids safer, Press release. European Union Agency for Network and Information Security. Retrieved from https://www.enisa.europa.eu/news/enisa-news/new-enisa-study-10-recommendations-for-making-european-smart-grids-safer

  • European Commission. (2011). Definition, expected services, functionalities and benefits of smart grids, COM(2011) 202 final, Brussels 2001.

    Google Scholar 

  • Eurostat. (2015 March 23). NACE background. Retrieved from http://ec.europa.eu/eurostat/statistics-explained/index.php/NACE_background

  • Fikar, Ch., Gronalt, M., Goellner, J., & Hirsch, P. (2015). Simulation-optimisation based decision-support for coordinated disaster relief last-mile distribution. Presented at the I3M 2015 – the 12th International Multidisciplinary Modeling & Simulation Multiconference from 21–23 Sept 2015 in Bergeggi.

    Google Scholar 

  • Goellner, J. (2015). Smart economies/smart solutions-finance, science cloud alligned by Center for Risk and Crisis Management, 2015 Oct, Vienna.

    Google Scholar 

  • Goellner, J., & Peer, A. (2012). Modelling of an risk rating model for analysis and auditing of strategic supply chain networks. Presentation at the 5th standardization-workshop for “supply chain risk management” of the Risk Management Association at the Munich Re, 20 Sept 2012, Munich.

    Google Scholar 

  • Goellner, J., Meurers, C., Peer, A., & Povoden, G. (2010a). Wissensmanagement im ÖBH (Knowledge Management in the Austrian Armed Forces). Systemdefinition, -beschreibung und –begrenzung zur Szenarioentwicklung und Modellierung (Definition, description and boundary of systems). Teil 1: Allgemeine Systemdefinition und Systembeschreibung (Part I: General definition and description of systems). Schriftenreihe der Landesverteidigungsakademie, 12/2010. Reprozentrum Wien 4450/10. ISBN: 978-3-902670-51-9.

    Google Scholar 

  • Goellner, J., Meurers, C., Peer, A., & Povoden, G. (2010b). Wissensmanagement im ÖBH (Knowledge Management in the Austrian Armed Forces). Systemdefinition, -beschreibung und –begrenzung zur Szenarioentwicklung und Modellierung (Definition, description and boundary of systems). Teil 2: Darstellung von ausgewählten Methoden und möglichen Teilsystemen (Part II: Description of selected methods and possible subsystems). Schriftenreihe der Landesverteidigungsakademie, 13/2010. Reprozentrum Wien 4684/10. ISBN: 978-3-902670-53-3.

    Google Scholar 

  • Goellner, J., Meurers, C., Peer, A., & Povoden, G. (2010c). Einführung in die Soziale Netzwerkanalyse und exemplarische Anwendungen (Introduction of Social Network Analysis and selected applications). Wissensmanagement im ÖBH (Knowledge Management in the Austrian Armed Forces). Schriftenreihe der Landesverteidigungs-akademie, 5/2010/S. Reprozentrum Wien. ISBN 978-3-902670-56-4.

    Google Scholar 

  • Goellner, J., Kienesberger, G., Peer, A., Schoenbacher, P., Weiler, M., & Wurzer, G. (2010d). Analyse und Betrachtung von Kritischen Infrastrukturen (Analysis and description of critical infrastructures). Schriftenreihe der Landesverteidigungsakademie, 14/2010/S. Reprozentrum Wien 4889/10. ISBN: 978-3-902670-64-9.

    Google Scholar 

  • Goellner, J., Meurers, C., Peer, A., & Povoden, G. (2011). Hybridisation of social network analysis in context with other methods for a scenario based risk analysis-case study: Critical infrastructure for energy security in Austria. In 7th social network conference 2011 at the University of Greenwich, London, United Kingdom.

    Google Scholar 

  • Goellner, J., Meurers, C., Peer, A., Langer, L., & Kammerstetter, M. (2014a). Bedeutung des Risikomanagements für die Sicherheit von Smart Grids (relevanz of risk management for security of smart grids). In Proceeding of the 13. Symposium Energieinnovation EnInno 2014, Graz.

    Google Scholar 

  • Goellner, J., Peer, A., Gronalt, M., & Quirchmayr, G. (2014b). Risk analysis for supply chain networks. Presented at the I3M 2015 – the 11th International Multidisciplinary Modeling & Simulation Multiconference in Sept 2014, Bordeaux.

    Google Scholar 

  • Handelsblatt. (2011 July 18). Die mächtigen Ratingagenturen im Überblick. Retrieved from http://www.handelsblatt.com/unternehmen/handel-konsumgueter/sundp-moodys-fitch-und-co-die-maechtigen-ratingagenturen-im-ueberblick/4404776.html

  • Howard, P. (2009). Research into the definition and application of the concept of risk appetite. University of Nottingham, Nottingham.

    Google Scholar 

  • ISO 28000. (2007). International standard – Specification for security management systems for the supply chain. Geneva: International Organisation for Standardization.

    Google Scholar 

  • ISO 28001. (2007). International standard – Security management systems for the supply chain – Best practices for implementing supply chain security, assessments and plans – Requirements and guidance. Geneva: International Organisation for Standardization.

    Google Scholar 

  • KIRAS. (2013a). MetaRisk Meta-Risiko-Modell für kritische Infrastrukturen, Kooperative F&E-Projekte, Projektantrag.

    Google Scholar 

  • KIRAS. (2013b). LMK-MUSE Modellbildungs- und simulationsgestützte Entscheidungsunterstützung in der Last-Mile Katastrophenbewältigung, F&E-Projekte, Projektantrag.

    Google Scholar 

  • Liebig, M. (2010). Reaktivierungsmanagement von Not leidenden Unternehmen, Sanierungsmöglichkeiten im Rahmen der Insolvenzordnung. Gabler Verlag.

    Google Scholar 

  • Lukac, E. G., & Frazier, D. (2012). Linking strategy to value. Journal of Business Strategy, 33, 49.

    CrossRef  Google Scholar 

  • modulushca. (2016 June 25). MODULUSHCA – Modular logistics units in shared co-modal networks. Retrieved from http://www.modulushca.eu/

  • Neureiter, Ch., Uslar, M., Engel, D., & Lastro, G. (2016a). A standards-based approach for domain specific modelling of smart grid system architectures. System of Systems Engineering Conference (SoSE). 2016 June 11th in Kongsberg, Norway and to IEEE Xplore at 15 August 2016.

    Google Scholar 

  • Neureiter, C., Engel, D., & Uslar, M. (2016b). Domain specific and model based systems engineering in the smart grid as prerequesite for security by design. Electronics, 5, 24.

    CrossRef  Google Scholar 

  • North Atlantic Treaty Organization. (2013). Strategic foresight analysis 2013 report. Retrieved from http://www.sicherheitsforschung-europa.de/servlet/is/17284/Strategic%20Foresight%20Analysis%20%20FINAL_PRINTABLE.pdf?command=downloadContent&filename=Strategic%20Foresight%20Analysis%20%20FINAL_PRINTABLE.pdf

  • North Atlantic Treaty Organization. (2015). Strategic foresight analysis workshop-Helsinki, Helsinki, 21–22 Oct 2015. Retrieved from http://www.act.nato.int/images/stories/events/2012/fc_ipr/sfa201701-4.pdf

  • Peer, A. (2004). Analyse und Betrachtung von Systemen zur Dekontamination von Großgerät nach militärischen ABC-Einsätzen und/oder zivilen ROTA-Ereignissen, Diplomarbeit, Wr. Neustadt, Mai 2004.

    Google Scholar 

  • Peer, A., Göllner, H., Haberfellner, C., & Bauer, H. (2014a). Risk analysis for “Schutz 14”. European meetings on cybernetics and systems research 2014 – Session risks in supply chain networks. Civilisation at the Crossroads Response and Responsibility of the Systems Sciences, Book of Abstracts, pp. 628–632, Vienna.

    Google Scholar 

  • Peer, A., Fikar, Ch., Hirsch, P., Goellner, J., Gronalt, M., & Quirchmayr, G. (2014b). Modelling simulation-based decision support in the last mile of crisis management. Presented on the European Meetings on Cybernetics and Systems Research (EMCSR) 2014 from 22–25 Apr 2014 in Vienna.

    Google Scholar 

  • Plattform Industrie 4.0. (2015). Umsetzungsstrategie Industrie 4.0, April 2015.

    Google Scholar 

  • Poustourli, A., & Kourti, N. (2014). Standards for Critical Infrastructure Protection (CIP) – The Contribution of ERNCIP.

    Google Scholar 

  • Rinaldi, S. M., Peerenboom, J. P., & Kelly, T. K. (2001). Identifying, understanding and analyzing critical infrastructure interdependencies. IEEE Control Systems. Magazine, pp. 11–25

    Google Scholar 

  • Risk Management Association e.v. (2015). Leitfaden für das Supply Chain Risk Management – Schaffung einer einheitlichen Basis für das unternehmensübergreifende Management von Supply Chain Risiken, 2015.

    Google Scholar 

  • Schmid, Ch., & Untersperger, A. (2012). Ratingagenturen Verursacher oder Sündenböcke der Wirtschaftskrise? WKO Abteilung für Finanz- und Handelspolitik, Vienna.

    Google Scholar 

  • TU Graz. (2016 July 02). Die Ultrahochleistungsfahrbahn im ersten Stock. Retrieved from https://www.tugraz.at/tu-graz/services/news-stories/planet-research/einzelansicht/article/die-ultrahochleistungsfahrbahn-im-ersten-stock/

  • Vester, F. (2008). Die Kunst vernetzt zu denken. Ideen und Werkzeuge für einen neuen Umgang mit Komplexität (7th ed.). München: Deutscher Taschenbuch Verlag.

    Google Scholar 

  • Weber, M. (2006). Schnelleinstieg Kennzahlen. München: Rudolf Haufe Verlag GmbH & Co. KG.

    Google Scholar 

  • Wilding, R. (2011 May 22). Supply chain resilience & supply chain strategy: A story of the unexpected. Cranfield University School of Management, lecture presentation. Retrieved from http://www.bring.no/load/foredragsholdere/foredragsholdere-2012/_attachment/308935?_download=true&_ts=139f9b3dd30

  • WKO. (2016 March 9). ÖNACE 2008 – Klassifikation der Wirtschaftstätigkeiten. Retrieved from https://www.wko.at/Content.Node/Interessenvertretung/ZahlenDatenFakten/Oenace_2008_2014.html

Download references

Author information

Authors and Affiliations

Authors

Corresponding author

Correspondence to Johannes Göllner .

Editor information

Editors and Affiliations

Rights and permissions

Reprints and Permissions

Copyright information

© 2018 Springer International Publishing AG, part of Springer Nature

About this entry

Verify currency and authenticity via CrossMark

Cite this entry

Göllner, J., Peer, A., Rass, S., Quirchmayr, G., Zathurecky, V. (2018). Global Supply Chain Network Risk Analysis and Monitoring for Global Cyber-Defense. In: Carayannis, E., Campbell, D., Efthymiopoulos, M. (eds) Handbook of Cyber-Development, Cyber-Democracy, and Cyber-Defense. Springer, Cham. https://doi.org/10.1007/978-3-319-09069-6_33

Download citation