News – Page 16 – SCRM Portal

December 17, 2021December 17, 2021

2021 Semiconductor Industry Association (SIA) Annual Report

While the semiconductor industry has achieved great successes in 2021, it also faces significant challenges. Chief among them is a widespread global semiconductor shortage. Unanticipated rising demand for semiconductors needed during the pandemic response, coupled with significant fluctuations in chip demand for other products such as cars, triggered a rippling supply-demand imbalance felt across the world. The semiconductor
industry has worked diligently to increase production to address high demand, shipping more semiconductors on a monthly basis than ever before by the middle of 2021, but most industry analysts expect the shortage to linger into 2022.

Read the full report here: 2021-SIA-State-of-the-Industry-Report.pdf (semiconductors.org)

December 16, 2021December 16, 2021

Cybersecurity Reference and Resource Guide

2019 Cybersecurity Resource and Reference Guide_DoD-CIO_Final_2020FEB07

The purpose of this document is to provide a useful reference of both U.S. and International resources, in order to develop cybersecurity programs and to build and maintain strong network protection. Extensive reference materials exist that support efforts to build and operate trusted networks and ensure information systems maintain an appropriate level of confidentiality, integrity, authentication, non-repudiation, and availability. The resources compiled here support security cooperation and shared best practices to help achieve collective cybersecurity goals. This guide provides readily available and unclassified information pertaining to cybersecurity norms, best practices, security cooperation, policies and standards authored and adopted by the United States (U.S.) government, the U.S. Department of Defense (DoD), and recognized international institutes and workforce development training resources provided by government, industry, and academia.

Aspects related to Cyber Supply Chain Risk Management in the document:

Cyber Supply Chain Risk Management (SCRM) is the process of identifying, assessing, and mitigating the risks associated with the distributed and interconnected nature of information and operational technology product and service supply chains. It covers the entire life cycle of a system (including design, development, distribution, deployment, acquisition, maintenance, and destruction) as supply chain threats and vulnerabilities may intentionally or unintentionally compromise an information and operational technology product or service at any stage.

Website: https://csrc.nist.gov/Projects/Supply-Chain-Risk-Management

NIST SP 800-161, Supply Chain Risk Management Practices for Federal Information Systems and Organizations, April 2015

Federal agencies are concerned about the risks associated with information and communications technology (ICT) products and services that may contain potentially malicious functionality, are counterfeit, or are vulnerable due to poor manufacturing and development practices within the ICT supply chain. These risks are associated with the federal agencies decreased visibility into, understanding of, and control over how the technology that they acquire is developed, integrated, and deployed, as well as the
processes, procedures, and practices used to assure the integrity, security, resilience, and quality of the products and services. This publication provides guidance to federal agencies on identifying, assessing, and mitigating ICT supply chain risks at all levels of their organizations. This publication integrates SCRM into federal agency risk management activities by applying a multi- tiered, SCRM-specific approach, including guidance on supply chain risk assessment and mitigation activities.

Website: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-161.pd

December 14, 2021

Cybersecurity and Information Systems Digest

Cybersecurity & Information Systems Information Analysis Center (CSIAC)
14 DECEMBER 2021

The Digest is a newsletter intended to provide readers with a greater awareness of the latest research and development trends in the four technical focus areas supported by CSIAC while also highlighting recent CSIAC activities, services, and products.

Find the latest issue at this link:

14 DECEMBER 2021 – CSIAC

December 14, 2021December 14, 2021

Application of AI in SCM or Supply Chain 4.0

Artificial Intelligence in Industrial Applications: Approaches to Solve the … – Steven Lawrence Fernandes – Google Books

December 14, 2021December 14, 2021

Preparing Supply Chain for the Next Disruption Beyond COVID-19: Managerial Antecedents of Supply Chain Resilience

Ethan Nikookar, Yoshio Yanadori

International Journal of Operations & Production Management

Preparing supply chain for the next disruption beyond COVID-19: managerial antecedents of supply chain resilience | Emerald Insight

Article publication date: 10 December 2021

Purpose

COVID-19 once again showed the importance of building resilience in supply chains. Extant research on supply chain resilience management has successfully identified a set of organizational antecedents that contribute to supply chain resilience. However, little is known about the mechanisms by which these antecedents are developed within a firm. Drawing on the dynamic managerial capabilities theory, the current study aims to investigate the critical role that supply chain managers play in developing the organizational antecedents. Specifically, this study shows that supply chain managers’ social capital, human capital and cognition are instrumental to the development of three organizational supply chain resilience antecedents: visibility, responsiveness and flexibility, which subsequently enhance the firm’s supply chain resilience.

The authors employ survey data collected from 598 manufacturing firms in Australia, and Hayes and Preacher’s (2014) parallel multiple mediator model to empirically test the hypotheses.

Findings

The findings of the study establish that supply chain managers’ social capital, human capital and cognition indeed have implications for developing supply chain resilience. Furthermore, the mediators through which managers’ social capital, human capital and cognition improve supply chain resilience are identified in the current study.

Originality/value

The study contributes to the extant literature on supply chain resilience, investigating the role that supply chain managers play in developing the resilience of their firm.

December 6, 2021February 16, 2022

Four New Foreign Companies Added to Department of Commerce Entity List

NSO Group: Israeli spyware company added to US trade blacklist – BBC News

The US Commerce Department’s Bureau of Industry and Security (BIS) has added four foreign companies to its Entity List. The decision comes as these companies – two from Israel, and one each from Russia and Singapore – were deemed to act in a way that went against the national security or foreign policy interests of the United States. NSO Group and Candiru, the two companies from Israel, reported supplied spyware to foreign governments that used these tools to maliciously target government officials, journalists, businesspeople, activists, academics, and embassy workers.

December 6, 2021

New Law Tightens U.S. Restrictions on Equipment in Supply Chain

Biden signs legislation to tighten U.S. restrictions on Huawei, ZTE | Reuters

New legislation signed in November – The Secure Equipment Act – will prevent companies that are deemed security threats from receiving new equipment licenses from U.S. regulators. The new law requires the Federal Communications Commission (FCC) to no longer review or approve any authorization application for equipment that poses an unacceptable risk to national security.

December 1, 2021

Commerce Proposes New Software Supply Chain Safety Criteria

Commerce Proposes New Software Supply Chain Safety Criteria – MeriTalk

The Department of Commerce is proposing new safety criteria for connected software to help better secure information and communications technology and services (ICTS) supply chains, including potential third-party audits of connected software and ICTS transactions, according to a proposed rule posted to the Federal Register Nov. 26.

The Department of Commerce is seeking feedback on the rule in its entirety but is also specifically looking for feedback on how to define what is a “reliable third-party” for the purposes of the rule. The agency also wants to know if its criteria of “third-party auditing of connected software applications” is sufficiently descriptive or whether the agency needs to get more specific.

The agency will accept public comment on the proposed rule until Dec. 30.

November 30, 2021December 14, 2021

Commerce Proposes New Software Supply Chain Safety Criteria

Read Full Article

November 30, 2021November 30, 2021

The Impact of Supply Chain Complexity on Supply Chain Resilience: the Moderating Effect of Supplier Integration

Microsoft Word – Repaired thesis_Yuhan.docx (rug.nl)

Abstract Purpose – The purpose of this research is to explore the direct relationship between supply chain complexity and supply chain resilience (consisting of robustness and agility), and the possibility of using supplier integration as a capability to absorb the negative effects of supply chain complexity on supply chain resilience.

Design/methodology/approach – Based on the previous literature on the content,
measurement and scope of the concept of three selected variables (supply chain complexity, supplier integration and supply chain resilience), a model is presented and tested by linear regression tests. It utilizes survey data collected from 106 suppliers of two automobile manufacturing firms in China.

Findings – Supply chain complexity has a negative impact on building a resilient supply chain. In addition, supplier integration as the moderator is also proved to positively influence the relationship between supply chain complexity and supply chain
agility in a significant way, while no significant moderating effect has been found on the
direct relationship between supply chain complexity and supply chain robustness.

Practical implications – The study offers valuable insights into the management of supply
chain complexity and the development of supply chain resilience. This research provided
managers with a specific way, integrating suppliers, to accommodate supply chain complexity and increase supply chain agility.

Originality/value – This paper improves the understanding of supply chain complexity
effects and provides a basis for future research, as well as guidance for companies facing
complexity challenges. Specifically, it helps to define the direct relationship between supply
chain complexity and supply chain resilience, and the moderating effect of supplier
integration on the relationship.