US20170193411A1 - Systems and methods to quantify risk associated with suppliers or geographic locations - Google Patents

Systems and methods to quantify risk associated with suppliers or geographic locations Download PDF

Info

Publication number
US20170193411A1
US20170193411A1 US14/984,504 US201514984504A US2017193411A1 US 20170193411 A1 US20170193411 A1 US 20170193411A1 US 201514984504 A US201514984504 A US 201514984504A US 2017193411 A1 US2017193411 A1 US 2017193411A1
Authority
US
United States
Prior art keywords
risk
category
receiving
score
parameter
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US14/984,504
Inventor
Atul Vashistha
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Atul Vashistha Inc
Original Assignee
Atul Vashistha Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Atul Vashistha Inc filed Critical Atul Vashistha Inc
Priority to US14/984,504 priority Critical patent/US20170193411A1/en
Assigned to Atul Vashistha Inc. reassignment Atul Vashistha Inc. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: VASHISTHA, ATUL
Publication of US20170193411A1 publication Critical patent/US20170193411A1/en
Priority to US15/806,616 priority patent/US10643165B2/en
Priority to US16/866,514 priority patent/US20200265357A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
    • G06Q10/063Operations research, analysis or management
    • G06Q10/0635Risk analysis of enterprise or organisation activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/08Logistics, e.g. warehousing, loading or distribution; Inventory or stock management

Definitions

  • the present invention is directed to computer-implemented systems and methods for transforming data into risk metrics to quantify the risk associated with a particular supplier or suppliers, or the potential risk associated with a geographic location at which a supplier or global internal delivery center is located.
  • Risk assessment and management is essential for success of a wide variety of endeavors, including individual and organizational activities.
  • An organization may face risk in many forms, including client risks, competitor risks, supplier risks, legal risks, technological risks, political risks, and environmental risks. Properly identifying, understanding and evaluating risks can allow an organization to prepare for and respond to events beyond its control.
  • a company that offers goods for sale may purchase component parts for its goods from one or more suppliers.
  • companies When selecting a supplier, companies typically look to more than just price. For example, reliable and timely delivery of component parts and whether the supplier is a sustainable business are also key factors when selecting a supplier. Companies often depend on suppliers to timely supply raw materials or other inputs to ensure uninterrupted sales and distribution of goods and services.
  • a disruption in the supply chain may reduce the capability of a company to provide its goods and services, thereby reducing its sales and revenue.
  • a disruption in the supply chain may also cause the company to breach contracts it has entered to sell its goods and service to customers, thereby subjecting the company to legal liability.
  • a disruption in supply can therefore have severe consequences for a company. Identifying risks in the supply chain, including particular risks associated with suppliers, is critical to the ongoing success of an organization.
  • a supplier may face disruptions in its business for reasons directly relating to the operations and business decisions of the supplier, or for reasons wholly beyond the supplier's control.
  • a supplier that does not invest in training and development for its work force may face a high attrition rate and a shortage of labor.
  • a supplier may depend on supplies or services from a third-party supplier, such as electric service from a government utility company, to maintain its business operations.
  • a viable and successful company can face disruptions because of location-based events beyond its control such as natural disasters, geo-political events, or changes in laws. Any disruption in supply from the third-party supplier may cause disruptions further along the supply chain.
  • An object of the present invention is to provide a method for converting data from disparate sources into quantified risk metrics that can be used to assess the risk associated with purchasing goods or services from a particular supplier using analytics and algorithms to determine the impact of specific events/parameters on risks.
  • An object of the present invention is to provide a method for converting data from disparate source into quantified risk metrics that can be used to assess the risk associated with purchasing goods or services from a particular location.
  • Yet another object of the present invention is to provide guidance based on the risk metrics to help organizations choose a supplier or mitigate the risk associated with a supplier, or to take advantage of opportunities brought about by changes in a location's or supplier's risk profile.
  • a further object of the present invention is to provide a system whereby the calculation of risk metrics may be adjusted by altering the percentage weights assigned to a risk category or risk sub-category.
  • Another object of the present invention is to provide a best score as a basis of comparison for the calculated risk metrics.
  • Another object of the present invention is to provide guidance on actions or steps to take to mitigate specific risks as they occur.
  • the guidance may be changed based on a change in the risk score.
  • FIG. 1 is a chart showing the elements used in the transformation of data into risk categories and a composite risk score according to the present invention.
  • FIG. 2 is a flow chart depicting the disclosed process of transforming parameter values into risk categories and a composite risk score.
  • FIG. 3 is a sample dashboard of risk scores for a supplier.
  • FIG. 4 is a sample dashboard of risk scores for multiple suppliers.
  • FIG. 5 is a sample dashboard of risk scores for a location.
  • FIG. 6 is a sample dashboard of risk scores for multiple locations.
  • the present invention is directed to a computer-based system and process for converting data into risk metrics to quantify the potential risk associated with a particular supplier or suppliers, or the potential risk associated with a geographic location at which a supplier is located.
  • the disclosed processes and functionalities can be implemented by suitable computer-executable instructions.
  • the computer-executable instructions may be stored as software code components or modules on one or more computer readable media, such as non-volatile memories, volatile memories, DASD arrays, magnetic tapes, floppy diskettes, hard drives, optical storage devices, etc. or any other appropriate computer-readable medium or storage device.
  • the functions of the disclosed embodiments may be implemented on one computer or shared/distributed among two or more computers in or across a network. Communications between computers implementing embodiments can be accomplished using any electronic, optical, radio frequency signals, or other suitable methods and tools of communication in compliance with known network protocols.
  • the system utilizes existing computer hardware capabilities, and electronic communications links, for example, to receive and process information.
  • the system may include a computer server having electronic access to a database containing files or tables.
  • the server can be electronically coupled to a global computer network such as, for example, the Internet.
  • the server may communicate with at least one user interface, which can include conventional computer input, output and display devices.
  • the user interface is preferably a remote computer interface capable of connection to the server via a network.
  • the system may also be implemented by other known methods of computer networking.
  • the server preferably operates under control of computer software to carry out the inventive process steps described in greater detail hereinafter.
  • the computer software preferably includes XML, XSL, HTML, VML and JavaScript capability to prepare and present information in an Internet web browser format.
  • FIG. 1 depicts an exemplary hierarchy of elements used to generate a composite risk score ( 107 ) according to one embodiment of the present invention.
  • a composite risk score ( 107 ) may be generated from multiple risk categories ( 105 ).
  • Each category ( 105 ) may be generated from multiple risk sub-categories ( 103 ).
  • Each risk sub-category may be generated from parameters ( 101 ). In one embodiment, hundreds of parameters ( 101 ) may be used.
  • exemplary risk categories may include (1) “Financial Risk”; (2) “Service Maturity Risk”; (3) “Governance Risk”; (4) “People Risk”; (5) “Infrastructure Risk”; (6) “Client Risk”; (7) “Partner/Alliances Risk”; and (8) “Thought Leadership Risk.”
  • Each risk category ( 105 ) may be associated with at least one risk sub-category ( 103 ).
  • the risk category ( 105 ) “Financial Risk” may be associated with risk sub-categories ( 103 ) directed to investment, ratios, balance sheet, liquidity, profitability, revenue, and revenue diversity metrics.
  • the risk category ( 105 ) “Service Maturity Risk” may be associated with risk sub-categories ( 103 ) directed to key talent pool size, quality certifications, specialized certifications, operating model, service and vertical lines, and geographical metrics.
  • the risk category ( 105 ) “Governance Risk” may be associated with risk sub-categories ( 103 ) directed to strength of corporate governance, changes in organizational structure, functional, and operating governance levels.
  • the risk category ( 105 ) “People Risk” may be associated with risk sub-categories ( 103 ) directed to attrition, new hires, productivity, utilization, and employee development and training measures.
  • the risk category ( 105 ) “Infrastructure Risk” may be associated with risk sub-categories ( 103 ) directed to physical security, information security, data theft/fraud, measures of delivery center networks, opening of new delivery centers and risks related to them, uptime policy/performance, and expansion plans.
  • the risk category ( 105 ) “Client Risk” may be associated with risk sub-categories ( 103 ) directed to acquisition, retention/flight, concentration, and satisfaction.
  • the risk category ( 105 ) “Partner/Alliances Risk” may be associated with risk sub-categories ( 103 ) directed to key partners and additions across enterprises, new alliances/partnerships during the relevant time period, and vertical and horizontal solutions.
  • the risk category ( 105 ) “Thought Leadership Risk” may be associated with risk sub-categories ( 103 ) directed to innovation, published papers, event and topic leadership, patent information and key CSR metrics.
  • Each risk sub-category ( 103 ) may be associated with at least one parameter ( 101 ).
  • “People Risk” category ( 105 ) may be associated with an “attrition” sub-category ( 103 ) which may be associated with parameters ( 101 ) relating to attrition, such as the percentage of staff employees who departed the supplier during a particular time period, and the percentage of executives who departed the supplier during a particular time period.
  • FIG. 2 is a flow chart depicting how a composite risk score ( 107 ) for a supplier may be generated from parameters ( 101 ), sub-categories ( 103 ), and categories ( 105 ).
  • parameter values are entered into memory of a computer.
  • a software application receives the parameter values and stores them in memory. When the parameter values are entered into memory, they are associated with one of the parameters ( 101 ).
  • a graphical user interface may be used to facilitate entry of the parameter values.
  • the interface may have fields that allow entry of data.
  • the software or interface may require entry of particular parameter values in a certain format or range. For example, certain numeric parameter values may be required as integers.
  • a parameter ( 101 ) directed to the number of earthquakes experienced in a particular region may require an integer value.
  • the interface may require a percentage value entered between zero per centum and one hundred per centum. If a parameter ( 101 ) is directed to the percentage of staff employees who departed a supplier during a particular time period, a parameter value entered for that parameter ( 101 ) would be entered as a percentage value between zero per centum and one hundred per centum.
  • a parameter value entered for that parameter ( 101 ) would be entered as a unit of currency.
  • the graphical user interface may facilitate entry of parameter values by indicating the unit format for each parameter, or by requiring the parameter value to be entered in the required unit format before the parameter value is entered into memory.
  • a risk score is assigned to each parameter ( 101 ) based on the parameter value entered for the parameter ( 101 ). For each parameter ( 101 ), a series of bands or ranges are assigned. The parameter value entered for the parameter ( 101 ) would fall within one of the assigned bands. Each band may be correlated to a risk score for the parameter ( 101 ). The risk score assigned to a parameter ( 101 ) therefore depends on the band in which the parameter value lies.
  • a band spanning the range of “one to three” may be correlated with a risk score of 2
  • a band spanning the range of “four to six” may be correlated with a risk score of 4
  • a band spanning the range of “seven to nine” may be correlated with a risk score of 7
  • a band spanning the range “greater than nine” may be correlated with a risk score of 9. If the actual number of typhoons experienced in a region is five, then a risk score of 4 would be assigned to the parameter directed to the number of typhoons.
  • the risk score assigned to the bands may be a number chosen from a predetermined range such as one to ten.
  • the number assigned to the risk parameter ( 101 ) reflects the relative level of risk reflected by the parameter value. For example, a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk, a risk score in the range of 2.1 to 4.0 may correspond to a low risk, a risk score in the range of 4.1-6.0 may correspond to a moderate risk, a risk score in the range of 6.1 to 8.0 may correspond to a high risk, and a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk.
  • a color may be associated with each risk score range.
  • the color dark green may be associated with the risk score range of 1.0 to 2.0
  • the color light green may be associated with the risk score range of 2.1 to 4.0
  • the color yellow may be associated with the risk score range of 4.1-6.0
  • the color light red may be associated with the risk score range of 6.1 to 8.0
  • the color dark red may be associated with the risk score range of 8.1 to 10.0.
  • a weight percentage is assigned to each parameter ( 101 ).
  • the weight percentages determine the importance of each risk parameter ( 101 ) in the assessment of risk for the supplier. For example, although a parameter value entered for a parameter ( 101 ) may be an extreme value for that parameter ( 101 ), the parameter ( 101 ) may not have a significant impact on the risk assessment of a supplier. The weight percentage assigned to that parameter ( 101 ) would therefore be a relatively low percentage.
  • the sum of weight percentages assigned to all parameters ( 101 ) associated with a particular risk sub-category ( 103 ) may total 100 per centum.
  • the weight percentages assigned to the parameters ( 101 ) may be redistributed to the parameters ( 101 ) for which values have been entered.
  • the redistribution of weight percentages may be done by evenly dividing the redistributed percentages among the parameters ( 101 ) for which values were entered, or according to the relative weights assigned to the parameters ( 101 ) for which values were entered.
  • a risk score is calculated for each risk sub-category ( 103 ) based on the values entered for the parameters ( 101 ) associated with the risk sub-category ( 103 ) and the weight percentages assigned to each parameter ( 101 ).
  • the software may calculate the risk score for each risk sub-category ( 103 ) by tallying the sum of the product of each risk score assigned to a parameter ( 101 ) and the weight percentage assigned to the parameter ( 101 ).
  • the risk score may be constrained to a number within a certain range such as one to ten.
  • a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk
  • a risk score in the range of 2.1 to 4.0 may correspond to a low risk
  • a risk score in the range of 4.1-6.0 may correspond to a moderate risk
  • a risk score in the range of 6.1 to 8.0 may correspond to a high risk
  • a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk.
  • a color may also be assigned to each risk sub-category ( 103 ).
  • the color assigned to each risk sub-category ( 103 ) may follow the same or similar exemplary approach described above for the colors associated with parameters ( 101 ).
  • weight percentages are assigned to each risk sub-category ( 103 ).
  • the weight percentages determine the importance of each sub-category ( 103 ) in the assessment of risk for the supplier.
  • the sum of weight percentages assigned to all sub-categories ( 103 ) associated with a particular risk category ( 105 ) may total 100 per centum.
  • a risk score is calculated for each risk category ( 105 ) based on the risk scores of each sub-category ( 103 ) associated with the risk category ( 105 ) and the weight percentages assigned to each sub-category ( 103 ).
  • the software may calculate the risk score for each risk category ( 105 ) by tallying the sum of the product of each risk score assigned to a sub-category ( 103 ) and the weight percentage assigned to the sub-category ( 103 ).
  • the risk score may be constrained to a number within a certain range such as one to ten.
  • a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk
  • a risk score in the range of 2.1 to 4.0 may correspond to a low risk
  • a risk score in the range of 4.1-6.0 may correspond to a moderate risk
  • a risk score in the range of 6.1 to 8.0 may correspond to a high risk
  • a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk.
  • a color may also be assigned to each risk category ( 105 ).
  • the color assigned to each risk category ( 105 ) may follow the same or similar exemplary approach described above for the colors associated with parameters ( 101 ).
  • weight percentages are assigned to each risk category ( 105 ).
  • the weight percentages determine the importance of each category ( 105 ) in the assessment of risk for the supplier.
  • the sum of weight percentages assigned to all categories ( 105 ) may total 100 per centum. Note that the weight percentages assigned to the risk parameters ( 101 ), the sub-categories ( 103 ) and the categories ( 105 ) do not necessarily need to be assigned in the order reflected in FIG. 2 .
  • the weight percentages assigned to the risk parameters ( 101 ) may be assigned at any time up until Step 208
  • the weight percentages assigned to the risk sub-categories ( 103 ) may be assigned at any time up until Step 212
  • the weight percentages assigned to the risk categories ( 105 ) may be assigned at any time up until Step 216 .
  • a composite risk score ( 107 ) is calculated for a supplier based on the risk scores of each category ( 105 ) and the weight percentages assigned to each category ( 105 ).
  • the software may calculate a composite risk score ( 107 ) by tallying the sum of the product of each risk score assigned to a category ( 105 ) and the weight percentage assigned to the category ( 105 ).
  • the risk score may be constrained to a number within a certain range such as one to ten.
  • a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk
  • a risk score in the range of 2.1 to 4.0 may correspond to a low risk
  • a risk score in the range of 4.1-6.0 may correspond to a moderate risk
  • a risk score in the range of 6.1 to 8.0 may correspond to a high risk
  • a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk.
  • a color may also be assigned to the composite risk score ( 107 ).
  • the color assigned to the composite risk score ( 107 ) may follow the same or similar exemplary approach described above for the colors associated with parameters ( 101 ).
  • the above process may be performed for multiple suppliers.
  • parameter values may be entered in memory and associated with parameters ( 101 ) at Step 202 .
  • Risk scores and weight percentages may be assigned to each parameter ( 101 ) at Steps 204 and 206 , respectively.
  • Risk scores may be generated for risk sub-categories ( 103 ) at Step 208 and weight percentages may be assigned to the risk sub-categories ( 103 ) at Step 210 .
  • Risk scores may be generated for risk categories ( 105 ) at Step 212 and weight percentages may be assigned to the risk categories ( 105 ) at Step 214 .
  • a composite score for each supplier may be generated at Step 216 . However, each step need not be performed at the same time for each supplier.
  • the above examples are directed to transforming data into graphical and quantitative risk evaluation metrics reflecting the potential risk associated with a supplier or suppliers.
  • the present invention may also be used to transform data into graphical and quantitative risk evaluation metrics reflecting the potential risk associated with a geographic location at which one or more suppliers are located.
  • the geographic location may be, for example, a city or a country.
  • the process for evaluating risk associated with a geographic location is similar to the process for risk associated with a supplier.
  • the steps and elements disclosed in FIGS. 1 and 2 would be the same for evaluating risk associated with a location, but the particular risk parameters ( 101 ), risk sub-categories ( 103 ), and risk categories ( 105 ) would be directed to parameters and categories more relevant to analysis of a location.
  • Exemplary risk categories ( 105 ) may include (1) “Macro-Economic Risk”; (2) “Financial Risk”; (3) “Geo-Political Risk”; (4) “Infrastructure Risk”; (5) “Business Risk”; (6) “Legal Risk”; (7) “Scalability Risk”; and (8) “Quality of Life Risk.”
  • Each risk category ( 105 ) may be associated with at least one risk sub-category ( 103 ).
  • the risk category ( 105 ) “Macro-Economic Risk” may be associated with risk sub-categories ( 103 ) directed to inflation, foreign direct investment, credit risk, currency risk, and market fluctuations.
  • the risk category ( 105 ) “Financial Risk” may be associated with risk sub-categories ( 103 ) directed to labor cost metrics for each of information technology outsourcing (ITO), business process outsourcing (BPO), knowledge process outsourcing (KPO), as well as operational costs, and taxation factors.
  • ITO information technology outsourcing
  • BPO business process outsourcing
  • KPO knowledge process outsourcing
  • the risk category ( 105 ) “Geo-Political Risk” may be associated with risk sub-categories ( 103 ) directed to political risk and stability, social and security risk (e.g. terrorism, prevalence of travel advisory/warnings), and natural disaster risks.
  • the risk category ( 105 ) “Infrastructure Risk” may be associated with risk sub-categories ( 103 ) directed to government support and incentives to source, power and utilities, transport and facilities, technological readiness, and quality of connectivity metrics.
  • the risk category ( 105 ) “Business Risk” may be associated with risk sub-categories ( 103 ) directed to ease of doing business, regulatory and statutory requirements, business sophistication, and trade and logistics.
  • the risk category ( 105 ) “Legal Risk” may be associated with risk sub-categories ( 103 ) directed to legal and regulatory policy and acts, cybercrime, ITO and BPO industry trade union activity, and key in-market labor and workday laws.
  • the risk category ( 105 ) “Scalability Risk” may be associated with risk sub-categories ( 103 ) directed to size and growth characteristics for ITO and BPO, provider and process maturity, worker population spreads, attrition/hiring measures, and languages.
  • the risk category ( 105 ) “Quality of Life Risk” may be associated with risk sub-categories ( 103 ) directed to e.g. expat quality of life measures and business support and amenities.
  • Each risk sub-category ( 103 ) may be associated with at least one parameter ( 101 ).
  • “Financial Risk” category ( 105 ) may be associated with an “operational cost” sub-category ( 103 ) which may be associated with parameters ( 101 ) relating to rental growth, fuel prices and the cost of registering property.
  • a supplier may have more than one geographic location from which it supplies customers.
  • a supplier may provide components to its customers from sites in India and China.
  • the present invention may be used to compare risks associated with each of a supplier's locations.
  • the exemplary hierarchy of elements and processing steps depicted in FIGS. 1 and 2 may be used to generate a composite risk score ( 107 ) for each supplier site.
  • a composite risk score ( 107 ) may be generated from multiple risk categories ( 105 ).
  • Each risk category ( 105 ) may be generated from multiple risk sub-categories ( 103 ).
  • Each risk sub-category may be generated from parameters ( 101 ).
  • the parameters ( 101 ), risk sub-categories ( 103 ) and risk categories ( 105 ) may concern the supplier, each supplier site, or the geographic location of each site.
  • the parameter values and risk scores assigned to or generated for parameters ( 101 ), risk sub-categories ( 103 ), risk categories ( 105 ), and the composite risk score ( 107 ) may be presented by a number of means and in a number of formats.
  • the risk scores may be presented as numerical values which may be arranged in a table.
  • the risk scores may also be presented as graphed data points, bar charts, pie graphs, or any other graphical representation.
  • the risk scores from more than one time period may be presented concurrently.
  • FIG. 3 depicts a sample table of risk scores for a supplier for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively). Risk scores for each quarter are presented in separate columns. For each quarter, the table includes risk scores generated for eight risk categories and a composite risk score (i.e. “Total Risk Score”) for the supplier. Between each column may be symbols indicating whether the risk score for a category increased, decreased, or remained the same from one time period to the next.
  • an arrow pointing up may be used to indicate that the risk score for a category increased between quarters
  • an arrow pointing down may be used to indicate that the risk score for a category decreased between quarters
  • a horizontal line may be used to indicate that the risk score for a category did not change between quarters.
  • the table also includes a best composite risk score among all evaluated suppliers, and a best risk score among all evaluated suppliers for each risk category.
  • the best composite risk score may be presented for one of the presented time periods. For example, in FIG. 3 , the best composite risk score may correspond to Q3 2015. The best composite risk score may also be presented for a range of time periods or for all of the time periods for which data has been collected.
  • FIG. 4 depicts a sample table of risk scores for multiple suppliers. For each supplier, risk scores for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively) are presented in separate columns. Between each column are symbols indicating whether the risk score for a category increased, decreased, or remained the same from one quarter to the next.
  • FIG. 5 depicts a sample table of risk scores for a location for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively). For each quarter, the table includes risk scores generated for eight risk categories and a composite risk score (i.e. “Total Risk Score”) for the location. Between each column are symbols indicating whether the risk score for a category increased, decreased, or remained the same from one time period to the next.
  • the table also includes a best composite risk score among all evaluated locations, and a best risk score among all evaluated locations for each risk category.
  • the best composite risk score may be presented for one of the presented time periods. For example, in FIG. 5 , the best composite risk score may correspond to Q3 2015. The best composite risk score may also be presented for a range of time periods or for all of the time periods for which data has been collected.
  • FIG. 6 depicts a sample table of risk scores for multiple locations. For each location, risk scores for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively) are presented in separate columns. Between each column are symbols indicating whether the risk score for a category increased, decreased, or remained the same from one quarter to the next.
  • Colors associated with each risk score may be reflected in the presentation of the scores.
  • the Total Risk Score for the second quarter of 2015 is 5.04. If, for example, the color yellow is associated with the risk score range of 4.1-6.0, the background color of the table cell containing the Total Risk Score for the second quarter of 2015 may be displayed as yellow.
  • the font color of the risk score may correspond to the color associated with the risk score, or color associated with the range of risk scores in which the risk score falls. Color may also be applied to the Best scores, shown for example in the right-most column of the table depicted in FIG. 3 .
  • the risk scores may be presented in a hard copy report.
  • the risk scores may also be presented in electronic form, such as data on an Internet web page or as a .csv file. If the risk scores are presented on an Internet web page, a user accessing the web page from a remote computer may request the elements underlying each of the risk scores presented. For example, a user viewing the table depicted in FIG. 3 may request further detail concerning the “Governance Risk” category risk score for the third quarter of 2015. The user would then be presented the risk sub-categories associated with the “Governance Risk” category and the risk scores generated for each sub-category. Similarly if a user requested further detail concerning a sub-category, the user would be presented the parameters associated with the sub-category and the risk scores assigned to each parameter.
  • a user may also be allowed to customize the process for generating risk scores.
  • the risk scores generated ( 208 ) for risk sub-categories are based in part on the weight percentages assigned ( 206 ) to the risk parameters.
  • the risk scores generated ( 212 ) for risk categories are based in part on the weight percentages assigned ( 210 ) to sub-categories.
  • the composite risk scores are also generated ( 216 ) based in part on weight percentages assigned ( 214 ) to the risk categories.
  • the system used to generate the risk scores may receive from a user of the system a request to change the weight percentages assigned to risk parameters, risk sub-categories, or risk categories. The system may then generate new risk scores for risk sub-categories or risk categories, or generate a new composite risk score based on the received weight percentages.
  • Guidance or proposed action steps may also be presented to suggest how to address or mitigate risk associated with a supplier or a location.
  • Guidance may also be given on a broader, long-term basis for all risk categories.
  • the guidance may also be given in response to specific risk trigger events such as natural disasters like earthquakes and tropical storms or on financial events like a quarterly financial report by a supplier.
  • companies working with supplier in that location may be advised to review their supplier's disaster recovery and business continuity plans and programs, and ensure the supplier is equipped with emergency measures to deal with any hazard situation.
  • Companies using multinational suppliers may be advised to include clauses in their contract with the supplier that would allow moving work from one country to another based on situations like increasing security concerns and natural disasters.
  • the guidance to be presented may be determined based on a particular risk score or based on a band of risk scores. For example, certain guidance may be presented if a risk score is above a specific value, while different guidance may be presented if a risk score is below a specific value. Certain guidance may be presented if a risk score falls within a particular band or range. The guidance presented may be based on whether a risk score changes from one band to another, or depending on which risk score or scores change the most between time periods. The guidance presented may be based on the weight percentage assigned to one or more risk parameters ( 101 ), risk subcategories ( 103 ), or risk categories ( 105 ). The guidance presented may be based on the change in value of a parameter ( 101 ) risk score, a sub-category ( 103 ) risk score, or a category ( 105 ) risk score that causes the greatest changes in the composite risk score.
  • the system of the present invention may issue an alert based on data input into the system relevant to one or more parameters ( 101 ). For example, if a natural disaster strikes a location, the system may issue a report describing the natural disaster. The report may further include guidance or proposed action steps to taken in response to the natural disaster.

Abstract

Computer-implemented systems and methods to quantify risk associated with suppliers or geographic locations at which suppliers or global internal delivery centers are located. The systems and methods transform risk parameter data into risk metrics that allow comparison of relative risk between suppliers, supplier sites, or geographic locations, and allow comparison of risk metrics to minimum risk scores calculated for a given metric. The systems and methods further provide guidance/proposed action to take based on the generated risk metrics.

Description

    I. BACKGROUND
  • The present invention is directed to computer-implemented systems and methods for transforming data into risk metrics to quantify the risk associated with a particular supplier or suppliers, or the potential risk associated with a geographic location at which a supplier or global internal delivery center is located.
  • Risk assessment and management is essential for success of a wide variety of endeavors, including individual and organizational activities. An organization may face risk in many forms, including client risks, competitor risks, supplier risks, legal risks, technological risks, political risks, and environmental risks. Properly identifying, understanding and evaluating risks can allow an organization to prepare for and respond to events beyond its control.
  • For example, a company that offers goods for sale may purchase component parts for its goods from one or more suppliers. When selecting a supplier, companies typically look to more than just price. For example, reliable and timely delivery of component parts and whether the supplier is a sustainable business are also key factors when selecting a supplier. Companies often depend on suppliers to timely supply raw materials or other inputs to ensure uninterrupted sales and distribution of goods and services. A disruption in the supply chain may reduce the capability of a company to provide its goods and services, thereby reducing its sales and revenue. A disruption in the supply chain may also cause the company to breach contracts it has entered to sell its goods and service to customers, thereby subjecting the company to legal liability. A disruption in supply can therefore have severe consequences for a company. Identifying risks in the supply chain, including particular risks associated with suppliers, is critical to the ongoing success of an organization.
  • A supplier may face disruptions in its business for reasons directly relating to the operations and business decisions of the supplier, or for reasons wholly beyond the supplier's control. For example, a supplier that does not invest in training and development for its work force may face a high attrition rate and a shortage of labor. As another example, a supplier may depend on supplies or services from a third-party supplier, such as electric service from a government utility company, to maintain its business operations. In a third example, a viable and successful company can face disruptions because of location-based events beyond its control such as natural disasters, geo-political events, or changes in laws. Any disruption in supply from the third-party supplier may cause disruptions further along the supply chain.
  • However, risks associated with suppliers have been difficult to quantify. Consequently, acquiring a comprehensive understanding of the risks face by companies can be challenging. In addition, processing and analyzing the data in a timely manner is critical to taking necessary actions in response to the data.
    • II. SUMMARY OF INVENTION
  • An object of the present invention is to provide a method for converting data from disparate sources into quantified risk metrics that can be used to assess the risk associated with purchasing goods or services from a particular supplier using analytics and algorithms to determine the impact of specific events/parameters on risks.
  • An object of the present invention is to provide a method for converting data from disparate source into quantified risk metrics that can be used to assess the risk associated with purchasing goods or services from a particular location.
  • Yet another object of the present invention is to provide guidance based on the risk metrics to help organizations choose a supplier or mitigate the risk associated with a supplier, or to take advantage of opportunities brought about by changes in a location's or supplier's risk profile.
  • A further object of the present invention is to provide a system whereby the calculation of risk metrics may be adjusted by altering the percentage weights assigned to a risk category or risk sub-category.
  • Another object of the present invention is to provide a best score as a basis of comparison for the calculated risk metrics.
  • Another object of the present invention is to provide guidance on actions or steps to take to mitigate specific risks as they occur. The guidance may be changed based on a change in the risk score.
    • III. BRIEF DESCRIPTION OF THE DRAWINGS
  • For a fuller understanding of the invention, reference is had to the following description of the accompanying Figures. Like reference numbers are used to refer to like and corresponding elements of the various Figures.
  • FIG. 1 is a chart showing the elements used in the transformation of data into risk categories and a composite risk score according to the present invention.
  • FIG. 2 is a flow chart depicting the disclosed process of transforming parameter values into risk categories and a composite risk score.
  • FIG. 3 is a sample dashboard of risk scores for a supplier.
  • FIG. 4 is a sample dashboard of risk scores for multiple suppliers.
  • FIG. 5 is a sample dashboard of risk scores for a location.
  • FIG. 6 is a sample dashboard of risk scores for multiple locations.
    •  IV. DETAILED DESCRIPTION OF THE INVENTION
  • As described in detail hereinafter, the present invention is directed to a computer-based system and process for converting data into risk metrics to quantify the potential risk associated with a particular supplier or suppliers, or the potential risk associated with a geographic location at which a supplier is located.
  • The disclosed processes and functionalities can be implemented by suitable computer-executable instructions. The computer-executable instructions may be stored as software code components or modules on one or more computer readable media, such as non-volatile memories, volatile memories, DASD arrays, magnetic tapes, floppy diskettes, hard drives, optical storage devices, etc. or any other appropriate computer-readable medium or storage device.
  • Additionally, the functions of the disclosed embodiments may be implemented on one computer or shared/distributed among two or more computers in or across a network. Communications between computers implementing embodiments can be accomplished using any electronic, optical, radio frequency signals, or other suitable methods and tools of communication in compliance with known network protocols. The system utilizes existing computer hardware capabilities, and electronic communications links, for example, to receive and process information.
  • The system may include a computer server having electronic access to a database containing files or tables. The server can be electronically coupled to a global computer network such as, for example, the Internet. The server may communicate with at least one user interface, which can include conventional computer input, output and display devices. The user interface is preferably a remote computer interface capable of connection to the server via a network. The system may also be implemented by other known methods of computer networking. The server preferably operates under control of computer software to carry out the inventive process steps described in greater detail hereinafter. The computer software preferably includes XML, XSL, HTML, VML and JavaScript capability to prepare and present information in an Internet web browser format.
  • A. Supplier Risk Metrics
  • FIG. 1 depicts an exemplary hierarchy of elements used to generate a composite risk score (107) according to one embodiment of the present invention. As shown in FIG. 1, a composite risk score (107) may be generated from multiple risk categories (105). Each category (105) may be generated from multiple risk sub-categories (103). Each risk sub-category may be generated from parameters (101). In one embodiment, hundreds of parameters (101) may be used.
  • If the present invention is used to evaluate the risk associated with a particular supplier, exemplary risk categories (105) may include (1) “Financial Risk”; (2) “Service Maturity Risk”; (3) “Governance Risk”; (4) “People Risk”; (5) “Infrastructure Risk”; (6) “Client Risk”; (7) “Partner/Alliances Risk”; and (8) “Thought Leadership Risk.”
  • Each risk category (105) may be associated with at least one risk sub-category (103). For example, the risk category (105) “Financial Risk” may be associated with risk sub-categories (103) directed to investment, ratios, balance sheet, liquidity, profitability, revenue, and revenue diversity metrics. The risk category (105) “Service Maturity Risk” may be associated with risk sub-categories (103) directed to key talent pool size, quality certifications, specialized certifications, operating model, service and vertical lines, and geographical metrics. The risk category (105) “Governance Risk” may be associated with risk sub-categories (103) directed to strength of corporate governance, changes in organizational structure, functional, and operating governance levels. The risk category (105) “People Risk” may be associated with risk sub-categories (103) directed to attrition, new hires, productivity, utilization, and employee development and training measures. The risk category (105) “Infrastructure Risk” may be associated with risk sub-categories (103) directed to physical security, information security, data theft/fraud, measures of delivery center networks, opening of new delivery centers and risks related to them, uptime policy/performance, and expansion plans. The risk category (105) “Client Risk” may be associated with risk sub-categories (103) directed to acquisition, retention/flight, concentration, and satisfaction. The risk category (105) “Partner/Alliances Risk” may be associated with risk sub-categories (103) directed to key partners and additions across enterprises, new alliances/partnerships during the relevant time period, and vertical and horizontal solutions. The risk category (105) “Thought Leadership Risk” may be associated with risk sub-categories (103) directed to innovation, published papers, event and topic leadership, patent information and key CSR metrics.
  • Each risk sub-category (103) may be associated with at least one parameter (101). For example, “People Risk” category (105) may be associated with an “attrition” sub-category (103) which may be associated with parameters (101) relating to attrition, such as the percentage of staff employees who departed the supplier during a particular time period, and the percentage of executives who departed the supplier during a particular time period.
  • FIG. 2 is a flow chart depicting how a composite risk score (107) for a supplier may be generated from parameters (101), sub-categories (103), and categories (105). At Step 202, parameter values are entered into memory of a computer. A software application receives the parameter values and stores them in memory. When the parameter values are entered into memory, they are associated with one of the parameters (101).
  • A graphical user interface may be used to facilitate entry of the parameter values. The interface may have fields that allow entry of data. The software or interface may require entry of particular parameter values in a certain format or range. For example, certain numeric parameter values may be required as integers. A parameter (101) directed to the number of earthquakes experienced in a particular region may require an integer value. As another example, the interface may require a percentage value entered between zero per centum and one hundred per centum. If a parameter (101) is directed to the percentage of staff employees who departed a supplier during a particular time period, a parameter value entered for that parameter (101) would be entered as a percentage value between zero per centum and one hundred per centum. If a parameter (101) is directed to revenue earned by the supplier during a particular time period, a parameter value entered for that parameter (101) would be entered as a unit of currency. The graphical user interface may facilitate entry of parameter values by indicating the unit format for each parameter, or by requiring the parameter value to be entered in the required unit format before the parameter value is entered into memory.
  • At Step 204, a risk score is assigned to each parameter (101) based on the parameter value entered for the parameter (101). For each parameter (101), a series of bands or ranges are assigned. The parameter value entered for the parameter (101) would fall within one of the assigned bands. Each band may be correlated to a risk score for the parameter (101). The risk score assigned to a parameter (101) therefore depends on the band in which the parameter value lies. For example, for a parameter (101) directed to the number of typhoons experienced in a region, a band spanning the range of “one to three” may be correlated with a risk score of 2, a band spanning the range of “four to six” may be correlated with a risk score of 4, a band spanning the range of “seven to nine” may be correlated with a risk score of 7, and a band spanning the range “greater than nine” may be correlated with a risk score of 9. If the actual number of typhoons experienced in a region is five, then a risk score of 4 would be assigned to the parameter directed to the number of typhoons.
  • The risk score assigned to the bands may be a number chosen from a predetermined range such as one to ten. The number assigned to the risk parameter (101) reflects the relative level of risk reflected by the parameter value. For example, a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk, a risk score in the range of 2.1 to 4.0 may correspond to a low risk, a risk score in the range of 4.1-6.0 may correspond to a moderate risk, a risk score in the range of 6.1 to 8.0 may correspond to a high risk, and a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk.
  • For presentation purposes, a color may be associated with each risk score range. For example, the color dark green may be associated with the risk score range of 1.0 to 2.0, the color light green may be associated with the risk score range of 2.1 to 4.0, the color yellow may be associated with the risk score range of 4.1-6.0, the color light red may be associated with the risk score range of 6.1 to 8.0, and the color dark red may be associated with the risk score range of 8.1 to 10.0.
  • At Step 206, a weight percentage is assigned to each parameter (101). The weight percentages determine the importance of each risk parameter (101) in the assessment of risk for the supplier. For example, although a parameter value entered for a parameter (101) may be an extreme value for that parameter (101), the parameter (101) may not have a significant impact on the risk assessment of a supplier. The weight percentage assigned to that parameter (101) would therefore be a relatively low percentage. The sum of weight percentages assigned to all parameters (101) associated with a particular risk sub-category (103) may total 100 per centum. If no parameter values are entered for one or more parameters (101), the weight percentages assigned to the parameters (101) may be redistributed to the parameters (101) for which values have been entered. The redistribution of weight percentages may be done by evenly dividing the redistributed percentages among the parameters (101) for which values were entered, or according to the relative weights assigned to the parameters (101) for which values were entered.
  • At Step 208, a risk score is calculated for each risk sub-category (103) based on the values entered for the parameters (101) associated with the risk sub-category (103) and the weight percentages assigned to each parameter (101). For example, the software may calculate the risk score for each risk sub-category (103) by tallying the sum of the product of each risk score assigned to a parameter (101) and the weight percentage assigned to the parameter (101).
  • The risk score may be constrained to a number within a certain range such as one to ten. For example, a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk, a risk score in the range of 2.1 to 4.0 may correspond to a low risk, a risk score in the range of 4.1-6.0 may correspond to a moderate risk, a risk score in the range of 6.1 to 8.0 may correspond to a high risk, and a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk. A color may also be assigned to each risk sub-category (103). The color assigned to each risk sub-category (103) may follow the same or similar exemplary approach described above for the colors associated with parameters (101).
  • At Step 210, weight percentages are assigned to each risk sub-category (103). The weight percentages determine the importance of each sub-category (103) in the assessment of risk for the supplier. The sum of weight percentages assigned to all sub-categories (103) associated with a particular risk category (105) may total 100 per centum.
  • At Step 212, a risk score is calculated for each risk category (105) based on the risk scores of each sub-category (103) associated with the risk category (105) and the weight percentages assigned to each sub-category (103). For example, the software may calculate the risk score for each risk category (105) by tallying the sum of the product of each risk score assigned to a sub-category (103) and the weight percentage assigned to the sub-category (103).
  • The risk score may be constrained to a number within a certain range such as one to ten. For example, a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk, a risk score in the range of 2.1 to 4.0 may correspond to a low risk, a risk score in the range of 4.1-6.0 may correspond to a moderate risk, a risk score in the range of 6.1 to 8.0 may correspond to a high risk, and a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk. A color may also be assigned to each risk category (105). The color assigned to each risk category (105) may follow the same or similar exemplary approach described above for the colors associated with parameters (101).
  • At Step 214, weight percentages are assigned to each risk category (105). The weight percentages determine the importance of each category (105) in the assessment of risk for the supplier. The sum of weight percentages assigned to all categories (105) may total 100 per centum. Note that the weight percentages assigned to the risk parameters (101), the sub-categories (103) and the categories (105) do not necessarily need to be assigned in the order reflected in FIG. 2. The weight percentages assigned to the risk parameters (101) may be assigned at any time up until Step 208, the weight percentages assigned to the risk sub-categories (103) may be assigned at any time up until Step 212, and the weight percentages assigned to the risk categories (105) may be assigned at any time up until Step 216.
  • At Step 216, a composite risk score (107) is calculated for a supplier based on the risk scores of each category (105) and the weight percentages assigned to each category (105). For example, the software may calculate a composite risk score (107) by tallying the sum of the product of each risk score assigned to a category (105) and the weight percentage assigned to the category (105).
  • The risk score may be constrained to a number within a certain range such as one to ten. For example, a risk score in the range of 1.0 to 2.0 may correspond to a negligible risk, a risk score in the range of 2.1 to 4.0 may correspond to a low risk, a risk score in the range of 4.1-6.0 may correspond to a moderate risk, a risk score in the range of 6.1 to 8.0 may correspond to a high risk, and a risk score in the range of 8.1 to 10.0 may correspond to an extreme risk. A color may also be assigned to the composite risk score (107). The color assigned to the composite risk score (107) may follow the same or similar exemplary approach described above for the colors associated with parameters (101).
  • The above process may be performed for multiple suppliers. For each supplier, parameter values may be entered in memory and associated with parameters (101) at Step 202. Risk scores and weight percentages may be assigned to each parameter (101) at Steps 204 and 206, respectively. Risk scores may be generated for risk sub-categories (103) at Step 208 and weight percentages may be assigned to the risk sub-categories (103) at Step 210. Risk scores may be generated for risk categories (105) at Step 212 and weight percentages may be assigned to the risk categories (105) at Step 214. A composite score for each supplier may be generated at Step 216. However, each step need not be performed at the same time for each supplier.
  • B. Location Risk Metrics
  • The above examples are directed to transforming data into graphical and quantitative risk evaluation metrics reflecting the potential risk associated with a supplier or suppliers. The present invention may also be used to transform data into graphical and quantitative risk evaluation metrics reflecting the potential risk associated with a geographic location at which one or more suppliers are located. The geographic location may be, for example, a city or a country.
  • The process for evaluating risk associated with a geographic location is similar to the process for risk associated with a supplier. The steps and elements disclosed in FIGS. 1 and 2 would be the same for evaluating risk associated with a location, but the particular risk parameters (101), risk sub-categories (103), and risk categories (105) would be directed to parameters and categories more relevant to analysis of a location. Exemplary risk categories (105) may include (1) “Macro-Economic Risk”; (2) “Financial Risk”; (3) “Geo-Political Risk”; (4) “Infrastructure Risk”; (5) “Business Risk”; (6) “Legal Risk”; (7) “Scalability Risk”; and (8) “Quality of Life Risk.”
  • Each risk category (105) may be associated with at least one risk sub-category (103). For example, the risk category (105) “Macro-Economic Risk” may be associated with risk sub-categories (103) directed to inflation, foreign direct investment, credit risk, currency risk, and market fluctuations. The risk category (105) “Financial Risk” may be associated with risk sub-categories (103) directed to labor cost metrics for each of information technology outsourcing (ITO), business process outsourcing (BPO), knowledge process outsourcing (KPO), as well as operational costs, and taxation factors. The risk category (105) “Geo-Political Risk” may be associated with risk sub-categories (103) directed to political risk and stability, social and security risk (e.g. terrorism, prevalence of travel advisory/warnings), and natural disaster risks. The risk category (105) “Infrastructure Risk” may be associated with risk sub-categories (103) directed to government support and incentives to source, power and utilities, transport and facilities, technological readiness, and quality of connectivity metrics. The risk category (105) “Business Risk” may be associated with risk sub-categories (103) directed to ease of doing business, regulatory and statutory requirements, business sophistication, and trade and logistics. The risk category (105) “Legal Risk” may be associated with risk sub-categories (103) directed to legal and regulatory policy and acts, cybercrime, ITO and BPO industry trade union activity, and key in-market labor and workday laws. The risk category (105) “Scalability Risk” may be associated with risk sub-categories (103) directed to size and growth characteristics for ITO and BPO, provider and process maturity, worker population spreads, attrition/hiring measures, and languages. The risk category (105) “Quality of Life Risk” may be associated with risk sub-categories (103) directed to e.g. expat quality of life measures and business support and amenities.
  • Each risk sub-category (103) may be associated with at least one parameter (101). For example, “Financial Risk” category (105) may be associated with an “operational cost” sub-category (103) which may be associated with parameters (101) relating to rental growth, fuel prices and the cost of registering property.
  • C. Supplier Site Risk Metrics
  • A supplier may have more than one geographic location from which it supplies customers. For example, a supplier may provide components to its customers from sites in India and China. The present invention may be used to compare risks associated with each of a supplier's locations.
  • The exemplary hierarchy of elements and processing steps depicted in FIGS. 1 and 2 may be used to generate a composite risk score (107) for each supplier site. A composite risk score (107) may be generated from multiple risk categories (105). Each risk category (105) may be generated from multiple risk sub-categories (103). Each risk sub-category may be generated from parameters (101). The parameters (101), risk sub-categories (103) and risk categories (105) may concern the supplier, each supplier site, or the geographic location of each site.
  • D. Reporting Generated Risk Metrics
  • The parameter values and risk scores assigned to or generated for parameters (101), risk sub-categories (103), risk categories (105), and the composite risk score (107) may be presented by a number of means and in a number of formats. For example, the risk scores may be presented as numerical values which may be arranged in a table. The risk scores may also be presented as graphed data points, bar charts, pie graphs, or any other graphical representation. The risk scores from more than one time period may be presented concurrently.
  • FIG. 3 depicts a sample table of risk scores for a supplier for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively). Risk scores for each quarter are presented in separate columns. For each quarter, the table includes risk scores generated for eight risk categories and a composite risk score (i.e. “Total Risk Score”) for the supplier. Between each column may be symbols indicating whether the risk score for a category increased, decreased, or remained the same from one time period to the next. For example, an arrow pointing up may be used to indicate that the risk score for a category increased between quarters, an arrow pointing down may be used to indicate that the risk score for a category decreased between quarters, and a horizontal line may be used to indicate that the risk score for a category did not change between quarters.
  • The table also includes a best composite risk score among all evaluated suppliers, and a best risk score among all evaluated suppliers for each risk category. The best composite risk score may be presented for one of the presented time periods. For example, in FIG. 3, the best composite risk score may correspond to Q3 2015. The best composite risk score may also be presented for a range of time periods or for all of the time periods for which data has been collected.
  • Risk scores for more than one supplier may be presented concurrently. FIG. 4 depicts a sample table of risk scores for multiple suppliers. For each supplier, risk scores for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively) are presented in separate columns. Between each column are symbols indicating whether the risk score for a category increased, decreased, or remained the same from one quarter to the next.
  • Risk scores for locations may be presented. The locations may be a country, a city, or another region or geographic location. FIG. 5 depicts a sample table of risk scores for a location for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively). For each quarter, the table includes risk scores generated for eight risk categories and a composite risk score (i.e. “Total Risk Score”) for the location. Between each column are symbols indicating whether the risk score for a category increased, decreased, or remained the same from one time period to the next.
  • The table also includes a best composite risk score among all evaluated locations, and a best risk score among all evaluated locations for each risk category. The best composite risk score may be presented for one of the presented time periods. For example, in FIG. 5, the best composite risk score may correspond to Q3 2015. The best composite risk score may also be presented for a range of time periods or for all of the time periods for which data has been collected.
  • Risk scores for more than one supplier may be presented concurrently. FIG. 6 depicts a sample table of risk scores for multiple locations. For each location, risk scores for the second and third quarters of the year 2015 (“Q2 2015” and “Q3 2015,” respectively) are presented in separate columns. Between each column are symbols indicating whether the risk score for a category increased, decreased, or remained the same from one quarter to the next.
  • Colors associated with each risk score may be reflected in the presentation of the scores. In FIG. 3, the Total Risk Score for the second quarter of 2015 is 5.04. If, for example, the color yellow is associated with the risk score range of 4.1-6.0, the background color of the table cell containing the Total Risk Score for the second quarter of 2015 may be displayed as yellow. In the alternative, the font color of the risk score may correspond to the color associated with the risk score, or color associated with the range of risk scores in which the risk score falls. Color may also be applied to the Best scores, shown for example in the right-most column of the table depicted in FIG. 3.
  • The risk scores may be presented in a hard copy report. The risk scores may also be presented in electronic form, such as data on an Internet web page or as a .csv file. If the risk scores are presented on an Internet web page, a user accessing the web page from a remote computer may request the elements underlying each of the risk scores presented. For example, a user viewing the table depicted in FIG. 3 may request further detail concerning the “Governance Risk” category risk score for the third quarter of 2015. The user would then be presented the risk sub-categories associated with the “Governance Risk” category and the risk scores generated for each sub-category. Similarly if a user requested further detail concerning a sub-category, the user would be presented the parameters associated with the sub-category and the risk scores assigned to each parameter.
  • A user may also be allowed to customize the process for generating risk scores. For example, as shown in FIG. 2, the risk scores generated (208) for risk sub-categories are based in part on the weight percentages assigned (206) to the risk parameters. Also, the risk scores generated (212) for risk categories are based in part on the weight percentages assigned (210) to sub-categories. The composite risk scores are also generated (216) based in part on weight percentages assigned (214) to the risk categories. In one embodiment of the present invention, the system used to generate the risk scores may receive from a user of the system a request to change the weight percentages assigned to risk parameters, risk sub-categories, or risk categories. The system may then generate new risk scores for risk sub-categories or risk categories, or generate a new composite risk score based on the received weight percentages.
  • Guidance or proposed action steps may also be presented to suggest how to address or mitigate risk associated with a supplier or a location. Guidance may also be given on a broader, long-term basis for all risk categories. The guidance may also be given in response to specific risk trigger events such as natural disasters like earthquakes and tropical storms or on financial events like a quarterly financial report by a supplier.
  • For example, depending on the risk scores generated for a particular location, companies working with supplier in that location may be advised to review their supplier's disaster recovery and business continuity plans and programs, and ensure the supplier is equipped with emergency measures to deal with any hazard situation. Companies using multinational suppliers may be advised to include clauses in their contract with the supplier that would allow moving work from one country to another based on situations like increasing security concerns and natural disasters.
  • The guidance to be presented may be determined based on a particular risk score or based on a band of risk scores. For example, certain guidance may be presented if a risk score is above a specific value, while different guidance may be presented if a risk score is below a specific value. Certain guidance may be presented if a risk score falls within a particular band or range. The guidance presented may be based on whether a risk score changes from one band to another, or depending on which risk score or scores change the most between time periods. The guidance presented may be based on the weight percentage assigned to one or more risk parameters (101), risk subcategories (103), or risk categories (105). The guidance presented may be based on the change in value of a parameter (101) risk score, a sub-category (103) risk score, or a category (105) risk score that causes the greatest changes in the composite risk score.
  • The system of the present invention may issue an alert based on data input into the system relevant to one or more parameters (101). For example, if a natural disaster strikes a location, the system may issue a report describing the natural disaster. The report may further include guidance or proposed action steps to taken in response to the natural disaster.
  • Other modifications to and variations of the invention will be apparent to those skilled in the art from the foregoing disclosure and teachings. Thus, while only certain embodiments of the invention have been specifically described herein, it will be apparent that numerous modifications may be made thereto without departing from the spirit and scope of the invention, as defined in the appended claims.

Claims (20)

1. A computer-implemented method for converting parameter values into risk evaluation metrics and providing guidance based on the metrics, the method comprising:
Generating a number of database fields for receiving risk parameter data wherein the number of database fields for receiving risk parameter data is greater than 1;
Generating a number of database fields for receiving risk sub-category values wherein the number of database fields for receiving risk sub-category values is greater than 1, and wherein each database field for receiving risk parameter data is associated with a database field for receiving a risk sub-category value;
Generating a number of database fields for receiving risk category values wherein the number of database fields for receiving risk category values is greater than 1, and wherein each database field for receiving risk sub-category values is associated with a database field for receiving a risk category value;
Entering risk parameter data into database fields of a graphical user interface, wherein the risk parameter data corresponds to a number of suppliers, wherein the number of suppliers is greater than 1, and wherein at least one database field requires entry of data in a specific format or range;
Determining a parameter risk score based on the data entered into a database field for receiving risk parameter data, wherein the parameter risk score is a predetermined number corresponding to the data;
Assigning a weight percentage to each database field for receiving risk parameter data wherein the weight percentage is chosen from a first set of weight percentages;
For each supplier, entering a sub-category risk score into a database field for receiving a risk sub-category value based on at least one parameter risk score and the weight percentages assigned to each database field for receiving risk parameter data;
Assigning to each database field for receiving a risk sub-category value a weight percentage chosen from a second set of weight percentages;
For each supplier, entering a category risk score into each database field for receiving risk category values based on at least one sub-category risk score and the weight percentages assigned to each database field for receiving risk sub-category values;
Assigning to each database field for receiving a risk category value a weight percentage chosen from a third set of weight percentages;
Generating a first composite risk score for a supplier based on at least one category risk score and the weight percentages assigned to each database field for receiving a risk category value corresponding to that supplier;
For one supplier, presenting to a display screen the first composite risk score, the entered category risk scores for that supplier, and a recommendation based on the category risk score entered into a database field for receiving risk category values;
Presenting to the display screen the lowest category risk score among all category risk scores entered into database field for receiving risk category values for all suppliers;
Assigning a color to each category risk score, wherein said color is selected from a pre-selected set of colors, and wherein each pre-selected color is associated with a risk score;
For each category risk score, presenting to the display screen the color assigned to the category risk score; and
Issuing to the display screen an alert based on data entered into one or more database fields for receiving risk parameter data.
2. The method of claim 1 further comprising receiving a fourth set of weight percentages; and generating a second composite risk score for the supplier based on a category risk score and the weight percentage assigned to each database field for receiving a risk category value from the fourth set of weight percentages.
3. The method of claim 1 wherein the alert includes guidance based on data entered into one or more database fields.
4. The method of claim 1 wherein said database fields for receiving risk category values correspond to categories selected from the categories of financial risk, service maturity risk, governance risk, people risk, infrastructure risk, client risk, partner/alliances risk, and thought leadership risk.
5. A computer-implemented method for converting parameter values into risk evaluation metrics and providing guidance based on the metrics, the method comprising:
Generating a number of database fields for receiving risk parameter data wherein the number of database fields for receiving risk parameter data is greater than 1;
Generating a number of database fields for receiving risk sub-category values wherein the number of database fields for receiving risk sub-category values is greater than 1, and wherein each database field for receiving risk parameter data is associated with a database field for receiving a risk sub-category value;
Generating a number of database fields for receiving risk category values wherein the number of database fields for receiving risk category values is greater than 1, and wherein each database field for receiving risk sub-category values is associated with a database field for receiving a risk category value;
Entering risk parameter data into database fields of a graphical user interface, wherein the risk parameter data corresponds to a number of sites of a supplier, wherein the number of sites is greater than 1, and wherein at least one database field requires entry of data in a specific format or range;
Determining a parameter risk score based on the data entered into a database field for receiving risk parameter data, wherein the parameter risk score is a predetermined number corresponding to the data;
Assigning a weight percentage to each database field for receiving risk parameter data wherein the weight percentage is chosen from a first set of weight percentages;
For each supplier site, entering a sub-category risk score into a database field for receiving a risk sub-category value based on at least one parameter risk score and the weight percentages assigned to each database field for receiving risk parameter data;
Assigning to each database field for receiving a risk sub-category value a weight percentage chosen from a second set of weight percentages;
For each supplier site, entering a category risk score into each database field for receiving risk category values based on at least one sub-category risk score and the weight percentages assigned to each database field for receiving risk sub-category values;
Assigning to each database field for receiving a risk category value a weight percentage chosen from a third set of weight percentages;
Generating a first composite risk score for a supplier site based on at least one category risk score and the weight percentages assigned to each database field for receiving a risk category value corresponding to that supplier;
For one supplier site, presenting to a display screen the first composite risk score, the entered category risk scores for that site, and a recommendation based on the category risk score entered into a database field for receiving risk category values;
Presenting to the display screen the lowest category risk score among all category risk scores entered into database field for receiving risk category values for all supplier sites;
Assigning a color to each category risk score, wherein said color is selected from a pre-selected set of colors, and wherein each pre-selected color is associated with a risk score;
For each category risk score, presenting to the display screen the color assigned to the category risk score; and
Issuing to the display screen an alert based on data entered into one or more database fields for receiving risk parameter data.
6. The method of claim 5 further comprising receiving a fourth set of weight percentages; and generating a second composite risk score for each supplier site based on a category risk score and the weight percentage assigned to each database field for receiving a risk category value from the fourth set of weight percentages.
7. The method of claim 5 wherein the alert includes guidance based on data entered into one or more database fields.
8. The method of claim 5 wherein said database fields for receiving risk category values correspond to categories selected from the categories of financial risk, service maturity risk, governance risk, people risk, infrastructure risk, client risk, partner/alliances risk, and thought leadership risk.
9. A non-transitory computer readable storage medium on which is embedded one or more computer programs, said one or more computer programs implementing a method for converting parameter values into risk evaluation metrics and providing guidance based on the metrics, said one or more computer programs comprising a set of instructions for:
Storing a number of risk parameters wherein the number of risk parameters is greater than 1;
Associating each risk parameter with a risk sub-category;
Associating each risk sub-category with a risk category;
Receiving parameter values into memory of a first device, said parameter values corresponding to risk parameters for a number of suppliers wherein the number of suppliers is greater than 1;
Assigning a risk score to each risk parameter based on the parameter value entered for the risk parameter, wherein each risk score is a predetermined number corresponding to the parameter value;
Assigning to each risk parameter a weight percentage from a first set of weight percentages;
For each supplier, generating a risk score for each risk sub-category based on the risk score and weight percentage assigned to each risk parameter associated with the risk sub-category;
Assigning to each risk sub-category a weight percentage from a second set of weight percentages;
For each supplier, generating a risk score for each risk category based on the risk score and weight percentage assigned to each risk sub-category associated with the risk category;
Assigning to each risk category a weight percentage from a third set of weight percentages;
Generating a first composite risk score for a supplier based on the risk score and weight percentage assigned to each risk category corresponding to that supplier;
For one supplier, presenting to a display screen the composite risk score, the risk score of each risk category for that supplier, and a recommendation based on the risk score of one risk category;
Presenting to the display screen the risk score reflecting the lowest risk calculated for each risk category among all of the suppliers;
Assigning a color to each category risk score, wherein said color is selected from a pre-selected set of colors, and wherein each pre-selected color is associated with a risk score;
For each category risk score, presenting to the display screen the color assigned to the category risk score; and
Issuing to the display screen an alert based on data entered into one or more database fields for receiving risk parameter data.
10. The non-transitory computer readable storage medium according to claim 9, said one or more computer programs further comprising a set of instructions for receiving a fourth set of weight percentages; and generating a second composite risk score for the supplier based on the risk score assigned to each risk category and the weight percentage assigned to each risk category from the fourth set of weight percentages.
11. The non-transitory computer readable storage medium according to claim 9, wherein the alert includes guidance based on data entered into one or more database fields.
12. The non-transitory computer readable storage medium according to claim 9, wherein said risk categories are selected from the categories of financial risk, service maturity risk, governance risk, people risk, infrastructure risk, client risk, partner/alliances risk, and thought leadership risk.
13. A non-transitory computer readable storage medium on which is embedded one or more computer programs, said one or more computer programs implementing a method for converting parameter values into risk evaluation metrics and providing guidance based on the metrics, said one or more computer programs comprising a set of instructions for:
Storing a number of risk parameters wherein the number of risk parameters is greater than 1;
Associating each risk parameter with a risk sub-category;
Associating each risk sub-category with a risk category;
Receiving parameter values into memory of a first device, said parameter values corresponding to risk parameters for a number of sites of a supplier, wherein the number of sites is greater than 1;
Assigning a risk score to each risk parameter based on the parameter value entered for the risk parameter, wherein each risk score is a predetermined number corresponding to the parameter value;
Assigning to each risk parameter a weight percentage from a first set of weight percentages;
For each supplier site, generating a risk score for each risk sub-category based on the risk score and weight percentage assigned to each risk parameter associated with the risk sub-category;
Assigning to each risk sub-category a weight percentage from a second set of weight percentages;
For each supplier site, generating a risk score for each risk category based on the risk score and weight percentage assigned to each risk sub-category associated with the risk category;
Assigning to each risk category a weight percentage from a third set of weight percentages;
Generating a first composite risk score for a supplier site based on the risk score and weight percentage assigned to each risk category corresponding to that supplier;
For one supplier site, presenting to a display screen the first composite risk score, the risk score of each risk category for that supplier, and a recommendation based on the risk score of one risk category;
Presenting to the display screen the risk score reflecting the lowest risk calculated for each risk category among all of the supplier sites;
Assigning a color to each category risk score, wherein said color is selected from a pre-selected set of colors, and wherein each pre-selected color is associated with a risk score;
For each category risk score, presenting to the display screen the color assigned to the category risk score; and
Issuing to the display screen an alert based on data entered into one or more database fields for receiving risk parameter data.
14. The non-transitory computer readable storage medium according to claim 13, said one or more computer programs further comprising a set of instructions for receiving a fourth set of weight percentages; and generating a second composite risk score for each supplier site based on the risk score assigned to each risk category and the weight percentage assigned to each risk category from the fourth set of weight percentages.
15. The non-transitory computer readable storage medium according to claim 13, wherein the alert includes guidance based on data entered into one or more database fields.
16. The non-transitory computer readable storage medium according to claim 13, wherein said risk categories are selected from the categories of financial risk, service maturity risk, governance risk, people risk, infrastructure risk, client risk, partner/alliances risk, and thought leadership risk.
17. The method of claim 1 further comprising redistributing the weight percentages assigned to the database field for receiving risk parameter data if no risk parameter data is entered into one or more database field of the graphical user interface for receiving risk parameter data.
18. The method of claim 5 further comprising redistributing the weight percentages assigned to the database field for receiving risk parameter data if no risk parameter data is entered into one or more database field of the graphical user interface for receiving risk parameter data.
19. The method of claim 9 further comprising redistributing the weight percentages assigned to the risk parameters if no parameter value is received for one or more risk parameters.
20. The method of claim 13 further comprising redistributing the weight percentages assigned to the risk parameters if no parameter value is received for one or more risk parameters.
US14/984,504 2015-12-30 2015-12-30 Systems and methods to quantify risk associated with suppliers or geographic locations Abandoned US20170193411A1 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
US14/984,504 US20170193411A1 (en) 2015-12-30 2015-12-30 Systems and methods to quantify risk associated with suppliers or geographic locations
US15/806,616 US10643165B2 (en) 2015-12-30 2017-11-08 Systems and methods to quantify risk associated with suppliers or geographic locations
US16/866,514 US20200265357A1 (en) 2015-12-30 2020-05-04 Systems and methods to quantify risk associated with suppliers or geographic locations

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US14/984,504 US20170193411A1 (en) 2015-12-30 2015-12-30 Systems and methods to quantify risk associated with suppliers or geographic locations

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US15/806,616 Continuation US10643165B2 (en) 2015-12-30 2017-11-08 Systems and methods to quantify risk associated with suppliers or geographic locations

Publications (1)

Publication Number Publication Date
US20170193411A1 true US20170193411A1 (en) 2017-07-06

Family

ID=59226454

Family Applications (2)

Application Number Title Priority Date Filing Date
US14/984,504 Abandoned US20170193411A1 (en) 2015-12-30 2015-12-30 Systems and methods to quantify risk associated with suppliers or geographic locations
US15/806,616 Active 2036-06-14 US10643165B2 (en) 2015-12-30 2017-11-08 Systems and methods to quantify risk associated with suppliers or geographic locations

Family Applications After (1)

Application Number Title Priority Date Filing Date
US15/806,616 Active 2036-06-14 US10643165B2 (en) 2015-12-30 2017-11-08 Systems and methods to quantify risk associated with suppliers or geographic locations

Country Status (1)

Country Link
US (2) US20170193411A1 (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160371698A1 (en) * 2015-06-16 2016-12-22 Mastercard International Incorporated Systems and Methods for Authenticating Business Partners, in Connection With Requests by the Partners for Products and/or Services
US20170364849A1 (en) * 2016-06-15 2017-12-21 Strategic Risk Associates Software-based erm watchtower for aggregating risk data, calculating weighted risk profiles, reporting, and managing risk
US20180357581A1 (en) * 2017-06-08 2018-12-13 Hcl Technologies Limited Operation Risk Summary (ORS)
US11164133B2 (en) * 2018-08-22 2021-11-02 Jpmorgan Chase Bank, N.A. System and method for a supplier risk index
US11210621B1 (en) * 2017-06-30 2021-12-28 Jpmorgan Chase Bank, N.A. System and method for implementing a supplier dashboard
US20220101248A1 (en) * 2020-09-30 2022-03-31 International Business Machines Corporation Analyzing received data and calculating risk of damage to a package for delivery
US11943357B2 (en) 2020-12-14 2024-03-26 International Business Machines Corporation Mitigating risk in business networks in a privacy preserving manner

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10749890B1 (en) 2018-06-19 2020-08-18 Architecture Technology Corporation Systems and methods for improving the ranking and prioritization of attack-related events
US11429713B1 (en) 2019-01-24 2022-08-30 Architecture Technology Corporation Artificial intelligence modeling for cyber-attack simulation protocols
US11128654B1 (en) 2019-02-04 2021-09-21 Architecture Technology Corporation Systems and methods for unified hierarchical cybersecurity
US11403405B1 (en) 2019-06-27 2022-08-02 Architecture Technology Corporation Portable vulnerability identification tool for embedded non-IP devices
US11503075B1 (en) * 2020-01-14 2022-11-15 Architecture Technology Corporation Systems and methods for continuous compliance of nodes

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1636672A4 (en) * 2003-06-09 2008-03-12 Greenline Systems Inc A system and method for risk detection, reporting and infrastructure
US20050197952A1 (en) * 2003-08-15 2005-09-08 Providus Software Solutions, Inc. Risk mitigation management
US20100198630A1 (en) * 2009-01-30 2010-08-05 Bank Of America Corporation Supplier risk evaluation
US20140108072A1 (en) * 2012-10-17 2014-04-17 Bank Of America Vendor Contract Assessment Tool

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160371698A1 (en) * 2015-06-16 2016-12-22 Mastercard International Incorporated Systems and Methods for Authenticating Business Partners, in Connection With Requests by the Partners for Products and/or Services
US20170364849A1 (en) * 2016-06-15 2017-12-21 Strategic Risk Associates Software-based erm watchtower for aggregating risk data, calculating weighted risk profiles, reporting, and managing risk
US20180357581A1 (en) * 2017-06-08 2018-12-13 Hcl Technologies Limited Operation Risk Summary (ORS)
US11210621B1 (en) * 2017-06-30 2021-12-28 Jpmorgan Chase Bank, N.A. System and method for implementing a supplier dashboard
US11164133B2 (en) * 2018-08-22 2021-11-02 Jpmorgan Chase Bank, N.A. System and method for a supplier risk index
US20220101248A1 (en) * 2020-09-30 2022-03-31 International Business Machines Corporation Analyzing received data and calculating risk of damage to a package for delivery
US11943357B2 (en) 2020-12-14 2024-03-26 International Business Machines Corporation Mitigating risk in business networks in a privacy preserving manner

Also Published As

Publication number Publication date
US10643165B2 (en) 2020-05-05
US20180068244A1 (en) 2018-03-08

Similar Documents

Publication Publication Date Title
US10643165B2 (en) Systems and methods to quantify risk associated with suppliers or geographic locations
Staessens et al. Data envelopment analysis and social enterprises: Analysing performance, strategic orientation and mission drift
Mio et al. Materiality in integrated and sustainability reporting: a paradigm shift?
Terblanche et al. The influence of integrated reporting and internationalisation on intellectual capital disclosures
US20200265357A1 (en) Systems and methods to quantify risk associated with suppliers or geographic locations
Chiu et al. Determinants of social disclosure quality in Taiwan: An application of stakeholder theory
Fernandez et al. The impacts of ERP systems on public sector organizations
Trigo et al. Accounting information systems: The challenge of the real-time reporting
Varma et al. Evaluating petroleum supply chain performance: application of analytical hierarchy process to balanced scorecard
Siemiatycki Public-private partnership networks: Exploring business-government relationships in United Kingdom transportation projects
US20160034838A1 (en) Enhanced operational resiliency scoring using intelligence indicators
Park et al. Project risk factors facing construction management firms
US20140046709A1 (en) Methods and systems for evaluating technology assets
US20140081680A1 (en) Methods and systems for evaluating technology assets using data sets to generate evaluation outputs
Woodhouse What is the value of asset management?
Boonlua et al. Engagement in integrated reporting: evidence from the international integrating reporting council adoption framework
Riaz et al. Disclosure practices of foreign and domestic firms in Australia
Bondar et al. Financial decisions taking into account management reporting of enterpise
Ho et al. Business strategy, corporate social responsibility activities, and financial performance
Zhang et al. The social value generation perspective of corporate performance measurement
Bhagat et al. Stage-wise evaluation of integrity risks in public works procurement in India
Martijn et al. Determining the effects of data governance on the performance and compliance of enterprises in the logistics and retail sector
He et al. Is corporate social responsibility engagement influenced by nearby firms? Evidence from China
Venkateswaran Logistics information system (lis) at pharma firm–an evaluation
Bierstaker et al. Going concern designations and GAAP versus non-GAAP earnings metrics

Legal Events

Date Code Title Description
AS Assignment

Owner name: ATUL VASHISTHA INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:VASHISTHA, ATUL;REEL/FRAME:037964/0017

Effective date: 20160222

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION