SCRM
Supply Chain Risk Management: discipline for identifying, prioritizing, and mitigating supplier-related disruption and compliance risk.
40 Definitions
Supply Chain Risk Glossary
A practical definition set for procurement, risk, and compliance teams to align on common operating language.
Supplier Intelligence
Continuous risk intelligence layer combining supplier data, OSINT, sanctions, and performance signals.
Due Diligence
Structured assessment process to validate supplier integrity, compliance posture, and risk exposure before engagement.
Sanctions Screening
Automated checks against sanctions and watchlists to detect restricted entities and relationships.
OFAC
Office of Foreign Assets Control sanctions regime managed by the U.S. Department of the Treasury.
EU Sanctions List
Consolidated restrictive measures list maintained by the European Union.
UN Sanctions
United Nations sanctions regimes and designated entities list.
PEP Screening
Politically Exposed Person checks used to identify elevated bribery, corruption, or AML exposure.
Adverse Media
Negative news signals associated with legal, reputational, or financial risk around a third party.
OSINT
Open-Source Intelligence gathered from publicly available sources for risk and compliance analysis.
KYC
Know Your Customer process for identity and risk verification.
KYB
Know Your Business process for legal-entity and ownership verification.
Third-Party Risk
Risk introduced through suppliers, distributors, contractors, and ecosystem partners.
Multi-tier Mapping
Visibility mapping across tier-1 to tier-n supplier dependencies and concentration risk.
Supplier Onboarding
Workflow for qualifying, approving, and activating suppliers with required controls.
Continuous Monitoring
Always-on control model for periodic risk checks beyond onboarding.
Risk Scoring
Quantitative prioritization model combining multiple risk indicators into operational ranking.
Critical Supplier
Supplier whose disruption creates high operational, financial, or compliance impact.
Single Source Risk
Dependency risk created when a product or component relies on only one supplier.
Concentration Risk
Exposure generated by dependency clustered by supplier group, geography, or legal entity.
Disruption Monitoring
Real-time tracking of incidents that can affect supply continuity and supplier operations.
ESG Risk
Environmental, social, and governance risk signals relevant to supplier and partner ecosystems.
CSDDD
Corporate Sustainability Due Diligence Directive: EU framework for human-rights and environmental due diligence.
EUDR
EU Deforestation Regulation: controls and traceability obligations for deforestation-linked products.
UFLPA
Uyghur Forced Labor Prevention Act requiring evidence-based supply chain due diligence controls.
Scope 3 Emissions
Indirect emissions across the value chain including supplier-generated emissions.
Corrective Action Plan
Documented remediation plan with owners, deadlines, and evidence checkpoints.
Incident Triage
Classification and prioritization of incoming risk events by urgency and impact.
Watchlist
List of restricted or high-risk entities used for compliance and risk controls.
False Positive
Incorrect match result that must be resolved without creating unnecessary operational overhead.
Beneficial Ownership
Natural persons who ultimately control or benefit from a legal entity.
Audit Trail
Chronological evidence record of checks, approvals, overrides, and risk decisions.
Remediation Workflow
Structured process to resolve identified risk issues and verify closure.
SLA
Service Level Agreement defining response and completion expectations for risk operations.
ERP Integration
Connection between risk platform and ERP to synchronize supplier, spend, and process context.
Data Enrichment
Process of extending core supplier records with external intelligence signals.
Entity Resolution
Matching method to merge duplicate or similar entity records into a single profile.
Supplier Segmentation
Grouping suppliers by criticality, spend, geography, or risk profile.
Contract Obligation
Specific legal or operational requirement that must be tracked and fulfilled.
Business Continuity
Operational resilience capability to maintain service during disruption scenarios.