Lehigh Supply Chain Risk Index Logo

Cybersecurity Tops Supply Chain Managers’ List of Biggest Risks Again

It's the fourth straight quarter cybersecurity tops the Lehigh Business Supply Chain Risk Management Index while customer risk is second.

The results of the Lehigh Business Supply Chain Risk Management Index for the first quarter of 2024 show cybersecurity is the biggest risk on supply chain managers’ minds for the fourth straight quarter. Cybersecurity–cyber-attacks, data corruption, data theft and system viruses–increased slightly from last quarter.

Customer risk has jumped up to second. “This suggests it’s getting harder to predict customer demand and customer loyalty,” said Zach G. Zacharia, Ph.D., associate professor of supply chain management and director of the Center for Supply Chain Research at Lehigh. Economic risk, even though third highest risk overall, has gone down and is now the lowest it has been in the past three years. “There seems to be less worry about increasing energy costs and labor shortages,” said Zacharia.

Government intervention risk is fourth overall, has also gone down, and is also the lowest it has been in the past three years. According to Zacharia, that may mean supply chain professionals are less worried about new regulations and government restrictions.

“Notably, technological risk has become a top five risk for the first time, and this is the highest value for technological risk in the past three years,” said Zacharia. “There is a concern among executives about disruptive and replacement technologies, introduction of new competitor firms and ineffective or non existent regulation for competitors going forward.”

The average risk index has decreased slightly to 64.61 compared to last quarter which is still low compared to the average risk historically.

The LRMI was launched in 2020 by the Center for Supply Chain Research at Lehigh and the Council of Supply Chain Management Professionals in order to rank 10 broad categories of supply chain risks. “The LRMI allows executives and supply chain managers to look ahead and prepare for risks that will become important in planning for the next quarter,” said Zacharia. The risk categories are cybersecurity and data, economic, transportation disruption, supplier, government intervention, operational, quality, customer, technological and environmental.

A unique feature of the LRMI is the opportunity to compare across all 10 risk categories directly against each other, instead of scoring each risk individually. When supply chain professionals take that approach, the top four risks for the first quarter of 2024 are economics, cybersecurity, customer risk and government intervention.

Another important aspect of the LRMI is that the quarterly reports include a sampling of candid comments from supply chain managers about each risk category that takes you beyond the numbers. Comments from the new first quarter report include:

• New hacking and phishing methods keep challenging us.

• There is an increased focus on transportation companies by cybercriminals.

• All the risks are going to go up as the inventory imbalance post-holiday season and markdowns are realized.

• Still emerging from COVID, our customer models may prove to be invalid.

• Prices are improving, labor remains an issue, cost of capital is driving issues.

• Election year will likely increase government risk.

• Sustainability is a great thing. Piecemeal, unrealistic state-level laws are not.

Read more comments.

LRMI reports are available every quarter in March, June, Sept. and Dec.

To get the latest report for free and to find out how supply chain managers can take the LRMI survey for the next quarter visit business.lehigh.edu/LRMI.