Month: March 2022

Fittingly, less than 24 hours after marking the Spring Solstice in North America, we’ve reached a true inflection point in the march to create smarter, healthier businesses and a better planet.

Today’s proposal by the Securities and Exchange Commission (SEC) to require businesses to begin measuring and disclosing greenhouse gas emissions in a standardized way is a huge milestone in the evolution of Environmental, Social and Governance (ESG) awareness here in the U.S. and around the world.

It’s also a momentous catalyst for ensuring greater visibility and resilience across your supply chain.

Per the proposed ruling, companies are obligated to disclose their direct (Scope 1) and indirect (Scope 2) greenhouse gas emissions and, crucially, emissions generated by their suppliers, called Scope 3 emissions. While the requirement for Scope 3 emissions will only be limited to companies above a certain size, their inclusion reflects a greater concern than ever before on the effect of extended supply chains on the global climate.

The ruling will be available for public comment for 60 days before a final ruling is handed down.

Strong Message Needs Strong Response

Regardless of outcomes, the announcement marks the most significant intention to overhaul corporate disclosure rules in decades and sends a strong message to businesses everywhere that climate change action is now among the most pressing concerns and priorities for Wall Street’s top regulator and investors.  Despite its reputation for lagging behind Europe on ESG matters, this announcement indicates that the U.S. is taking these issues just as seriously.

Today’s news certainly doesn’t come as a shock. According to POLITICO, thousands of companies already voluntarily provide emissions data to CDP, a nonprofit repository of corporate climate reporting. And in the U.S., nearly 32 percent of companies even disclose their supply chain emissions to CDP.

Over the past several months, I’ve participated in several climate, ESG and investor-related conferences, including Blackstone’s CEO Council last week. This issue – and the need for greater supply chain visibility – is right up there with Russia’s invasion of Ukraine as the most important conversations taking place among leaders across business, government and civil society.

It also follows a host of societal and business trends we’ve been following for the past few years as activist consumers and investors push for greater action and transparency on climate, social justice and economic equity issues.

And they’re putting their money where their mouth is. Sustainable investing is on the rise globally, with assets under management having surged from $30.7 trillion in 2018 to $35.3 trillion in 2020, according to the Global Sustainable Investment Alliance.

To put that into context, that $35.3 trillion is equal to the combined GDPs of the world’s two largest economies – the U.S. and China. And its rate of growth surpasses both.

With today’s announcement, the race is on for diligent, transparent, consistent and accountable ESG reporting.

From Compliance to Competitive Advantage

And let’s be clear: This is not just about compliance anymore. Rather this is all about competitive advantage. Companies that embed and integrate ESG into their operating and business models to enhance operational resilience, drive efficiencies, satisfy consumer demands and reinforce their values to employees will gain significant competitive advantage. And those that back these actions with clear visibility into their suppliers’ actions across their extended supply chain will be the undisputed market leaders of the next decade and beyond.

In a comprehensive report issued by the University of Oxford, 88 percent of companies that embraced ESG reported higher operational performance, while over 90 percent experienced lower cost of capital and over 80 percent saw improvements in stock performance.

Driving optimal ESG business performance requires not only integrating sustainable practices and measures within your own operations but also working diligently with your suppliers which, in many cases, may bear most of your exposure. Scope 3 emissions are a great case in point. In most FMCG companies, for instance, including giants like Coca-Cola, more than 80 percent of carbon footprints resides within their supply chain.¹

And for most of these businesses, it’s not so much a carbon-awareness problem as much as it is a data and visibility problem.

Interos Study Shows Deficits in Visibility and Data

Our own recent study on supplier sustainability at Interos shows that companies want sustainable supply chains but lack the data and visibility into their partners’ operations to truly meet their sustainability goals. The survey shows that 37 percent of responding businesses struggle to obtain the data to measure supplier sustainability accurately.

Additionally, 74 percent of businesses responding to the Interos study say they rely on manual methods and self-reporting. And perhaps most alarming, 41 percent of organizations report that ESG-related risk factors had caused detrimental impacts to their business in the past two years. ESG disruptions cost companies an average $35 million in lost revenue annually, and untold millions more in brand and reputation impacts.

With more than half of companies lacking supply chain visibility across their extended ecosystems, organizations face the possibility of both ESG reputational risks as well as regulatory risks as governments across the globe ban supply chain exposure to issues like human rights violations.

Whether it’s unethical child labor practices in China creating business concerns for H&M² or environmental recklessness in the Amazon region creating problems for McDonald’s, Walmart, and Costco^3, these days the C-Suite is working hard to gain real visibility into risks lurking deep in the supply chain that could cause serious negative repercussions back at headquarters.

In my own recent conversations with business and government leaders, it’s clear that more and more C-suites and boardrooms are focused on greater visibility and transparency. The power of transparency is that it turns doing the right thing into a massive business opportunity.

This goes beyond the investment world; this goes straight to the core of the corporate world and the myriad extended supply chains of finance, manufacturing, energy, aerospace and defense, pharma, automotive and beyond.

Done right, we can encourage the creation of a better, healthier, and safer global economy. We can help re-build trust in the global supply chain. We can reveal and reward the good, as well as see the bad and put a higher cost of doing business on pursuing environmentally unsound ways of operating.

The SEC has given us more reason to do just that.

1. Coca-Cola’s GHG emissions worldwide 2020 | Statista
2. H&M and Other Brands Face Backlash From Chinese Consumers – The New York Times (nytimes.com)
3. https://www.onegreenplanet.org/environment/companies-linked-amazon-deforestation-mcdonalds-walmart/

Russia’s invasion of Ukraine and the imposition of sanctions by the U.S. and European countries has raised the cyber risk profile of aerospace and defense companies. Amid continued financial and economic fallout, there are concerns about an escalation in cyber-warfare that is fueling worries among western companies of a large-scale retaliatory cyber attack.  Several Ukrainian government websites have already been taken offline. Recent ransomware and other attacks against U.S. and European firms ranged from logistics (Expeditors International) to mobile communications (Vodafone Portugal) to fuel distribution (Marquard & Bahls) and food products (KP Snacks). All of these incidents caused severe services and supply chain disruption.

Authorities have attributed these attacks to cyber-criminals rather than nation states. Still, the Cybersecurity & Infrastructure Security Agency (CISA) recently posted a “Shields Up” warning to U.S. organizations. It urges them to take steps to protect critical assets against possible Russian government attacks. The UK’s National Cyber Security Centre also advised British companies to ensure their cyber defense measures are up to date.

Interos Insight on Cyber Risk

In addition to energy and critical infrastructure providers, companies in the aerospace and defense (A&D) industry are obvious targets for such attacks, both for denial of service and intellectual property theft. Their strategic importance to national security is one obvious reason, but another is high levels of concentration risk in the sector due to specialized products A&D firms rely on.

Concentration is a well-understood, but vitally important and often ignored risk in supply chain security. It refers to a cluster or a shared supplier within a supply chain. A cyber attack against Western companies could have disastrous effects.

If a shared prime A&D supplier were disrupted by a Russian cyber-attack, it could have a strong ripple effect across the entire sector – much as the shutdown of Taiwanese chip makers during Covid-19 ground U.S. automotive production lines to a halt.

Looking Inside the Numbers

To gauge the extent of concentration risk in A&D, Interos took the 2021 top 100 list of defense contractors published by the industry publication Defense News and used our global relationship data graph of more than 350 million entities to map their extended supply chains.

We found that this group of top defense contractors have 1,755 suppliers in common. This included six of the top 20 suppliers to the industry. One of these six suppliers had 27 separate connections to the top defense contractors. And the list doesn’t only include component and material suppliers, but also banks and financial institutions. Indeed, 29 of the A&D companies use the same bank, according to our proprietary data. The over-reliance of many defense companies on a limited number of suppliers makes them vulnerable to disruption if those shared suppliers are compromised. That compromise could come in many forms: a cyber attack, operational failure, or other unforeseen event. Most of the top defense contractors’ shared suppliers had strong cyber and financial risk scores, based on the Interos i-Score model. However, those scores began to weaken further down the list.

This does not mean that these top defense contractors are currently impacted by a new cyber threat from Russia. But the existing level of concentration risk revealed in the data, which is not atypical, could magnify the damage of a large scale cyber attack.

Because CISA’s “Shields Up” warning was directed to US companies, suppliers based outside of Western Europe and the U.S./Canada may not be responding in the way that is necessary. Criminal hackers pose a significant threat to companies with inadequate cyber security measures. State-sponsored hackers can draw on vastly bigger resources. They are therefore likely to be more successful in disrupting critical supply chains.

During this time of war, companies should make taking care of any employees affected by the devastation their first priority. And regardless of how the potential cyber threat posed by the immediate crisis plays out, companies need to monitor their supply chains for cyber risk and other sources of supply chain risk. Software supply chain attacks grew by more than 300% in 2021 compared to 2020. We expect them to increase even further in the coming years. A careful and continuous assessment of a supplier’s security posture, and their overall risk profile, will be critical to helping insulate organizations and their stakeholders from supply chain cyber attack or other disruptions.

Continue to follow the Interos blog as the crisis evolves in Russia and Ukraine. We will continue to post supply chain information and insights as they become available.

Over the past few days, we’ve been in close contact with a range of customers and businesses who are trying to determine the best path forward as the conflict escalates in Ukraine and as more multinational companies decide to dissolve, cut back or suspend operations in Russia.

As we engage these leaders and provide technical and in-kind support to help vulnerable and displaced communities devastated by this invasion, I wanted to take a moment and share some of the challenges facing our commercial and government partners at the moment and the counsel we are providing. Our hope is that some of this is helpful as you think through your own considerations.

CEOs and other prominent business leaders are confronting tough questions about their commercial connections to Russia. These questions can be difficult to answer given the complex interdependencies of today’s global supply chains. Consumers and employees want to know whether business relationships with the Russian government or Russian companies will be discontinued. Many more want to better understand how the invasion has impacted companies or their suppliers.

Large companies quickly curtail Russian operations

CEOs must be prepared to to answer these questions and some already have taken action. BP is expecting to take a $25 billion hit after its decision to cut ties with the Russian state-owned energy firm, Rosneft. Twitter has ceased selling ads in Russia and has added special labeling to tweets sharing Russian state-produced media. YouTube blocked Russian channels from earning ad dollars. Several prominent law firms and lobbyists have dropped Russian clients. Meta has established a special operations center and is prohibiting Russian state media from running ads or monetizing on its platform anywhere in the world. And just within the last 24 hours we’ve seen Delta, DHL, UPS, FedEx, Dell, Maersk and Shell announce significant measures to curtail operations in Russia.

While not all companies can move swiftly, CEOs need to communicate their organizations’ status and intentions with all critical stakeholders. This includes identifying business partners in Russia and employees from Russia who perform work delivered abroad. It also requires a clear rationale for firms who are not immediately severing ties with Russian commercial connections.

According to a recent LumApps/CMS poll, 76% of employees surveyed said they want to work for companies with a strong social impact. Employees will be carefully watching the actions their companies and organizations take. Business leaders should over-communicate to employees all efforts in the name of transparency.

Key questions you need answers to:

As the war in Ukraine continues, business leaders should also answer the following questions to ensure operational resilience, and maintain trust with their employees and customers:

• Do you have long-term plans to accommodate impacted employees in Russia and Ukraine?
• Have you developed a plan to work with relief organizations in Ukraine?
• Do you have visibility into your supply chains beyond first- and second-tier suppliers?
• Have you evaluated required levels of inventory and labor in the short to medium term?
• Are you actively discussing business continuity plans with key suppliers?
• Do you have contingency plans in place to switch to, or qualify, alternative sources for essential products and services?
• Are you prepared for cyber attacks?
• Are you in close contact with your people and suppliers in other parts of Eastern Europe?
• Are you tracking new sanctions and export controls from various markets?
• Are you in contact with your elected officials in the U.S. and Europe as conditions continue to evolve?
• Has your organization developed an integrated communication plan that includes timely updates to employees, customers, suppliers, investors, government officials and media?

With proper analysis, planning, and unyielding  compassion for every person and business caught up in this tragedy, it is possible to mitigate significant risk, ensure operational resilience, and avoid supply chain disruption.

Interos will continue to update our blog with updated supply chain data and insights as the events in Ukraine evolve. Please check back frequently and reach out to help provide visibility into your supply chain to ensure all business relationships meet company standards. Most important, keep the people of Ukraine in your thoughts. The world can and must help all nations find a path to peace.