Top

Operations Management Research

Published in:

01-12-2009

Managing supply chain risk and disruption from IT security incidents

Authors: Jason K. Deane, Cliff T. Ragsdale, Terry R. Rakes, Loren Paul Rees

Published in: Operations Management Research | Issue 1-4/2009

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

Supply chain practices often put companies and their supply chains at risk. One of the most serious risks is disruptions. While many types of disruptions have been considered, little attention has been given to disruptions caused by information technology (IT) security incidents. Partner cooperation can assist in preventing or mitigating damage from IT security breaches in supply chains, where breaches can disrupt production, cause loss of essential data, and compromise confidential information. We develop a generalizable mathematical model that quantifies IT security risk in the supply chain. We then show how to find solutions for optimal risk reduction under several definitions of optimality: minimizing upstream risk, minimizing downstream risk, and minimizing global (supply chain) risk. We show how to develop curves for each of the above scenarios that indicate when extra funds should be spent on security, which security controls should be implemented, and when subsidies among partners are beneficial.

previous article Guest Editorial: Reflections on the past, present and future of operations management

next article Implementation of Lean and Six Sigma quality initiatives in hospitals: A goal theoretic perspective

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Baker W, Wallace L (2007) Dependable computing: is information security under control? IEEE Security & Privacy, January/February: 24–32

Blackhurst J, Craighead C, Elkins D, Handfield R (2005) An empirically-derived agenda of critical research issues for managing supply chain disruptions. Int J Prod Res 43:4067–4081CrossRef

Craighead C, Blackhurst J, Rungtusantham J, Handfield R (2007) The severity of supply chain disruptions: design characteristics and mitigation capabilities. Decis Sci 38:131–156CrossRef

Kolluru R, Meredith P (2001) Security and trust management in supply chains. Inf Manag Comput Secur 9:233–236

Lpsolve (2009) Retrieved March 4, 2009, from www.Sourceforge.net/projects/lpsolve/

Narasimhan R, Jayaram J (1998) Casual linkages in supply chain management: an exploratory study of North American manufacturing firms. Decis Sci 29:579–606CrossRef

Prahinski C, Benton W (2004) Supplier evaluations: communication strategies to improve supplier performance. J Oper Manag 22:39–62CrossRef

Rice J, Caniato F (2003) Building a secure and resilient supply chain. Supply Chain Manag Rev 7:22–30

Sanders N (2005) IT alignment in supply chain relationships: a study of supplier benefits. J Supply Chain Mang 41(2):4–13

Sherali H, Bazaraa M, Jarvis J (2004) Linear programming and network flows. Wiley, New York

Stoneburner G, Goguen A, Feringa A (2002) Risk management guide for information technology systems. Nat’l Inst. of Standards and Technology, US Dept of Commerce, http://csrc.nist.gov/publications/nistpubs/800-30/sp800-30.pdf

Vakharia A (2002) E-business and supply chain management. Decis Sci 33:495–504CrossRef

Wagner S, Bode C (2008) An empirical examination of supply chain performance along several dimensions of risk. J Bus Logist 29:307–326

Zsidisin G (2003) A grounded definition of supply risk. J Purch & Supply Manag 9:217–224CrossRef

Title: Managing supply chain risk and disruption from IT security incidents
Authors: Jason K. Deane
Cliff T. Ragsdale
Terry R. Rakes
Loren Paul Rees
Publication date: 01-12-2009
Publisher: Springer US
Published in: Operations Management Research / Issue 1-4/2009
Print ISSN: 1936-9735
Electronic ISSN: 1936-9743
DOI: https://doi.org/10.1007/s12063-009-0018-2

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Other articles of this Issue 1-4/2009

Guest editorial: The myths of manufacturing

Implementation of Lean and Six Sigma quality initiatives in hospitals: A goal theoretic perspective

Six Sigma failures: An escalation model

Assessing the performance impact of supply chain planning in net-enhanced organizations

Guest Editorial: Reflections on the past, present and future of operations management