Cyber security and the vulnerability of supplier contracts have become a critical supply chain concern and a central component of enterprise risk management, according to a survey by Willis.

The 2025 Global Supply Chain Risk Survey, based on responses from 1,000 senior executives, reveals significant shifts in how businesses are managing supply chain risks. It also found that digital transformation and data availability are becoming top priorities, with an emphasis on aligning supply chain goals with broader organisational objectives.

Companies are also increasingly focusing on executive oversight and specialised risk management teams. Willis says that although gaps remain in comprehensive risk management strategies, this presents opportunities for future development.

Simon Sølvsten, head of organisational resilience research at the Willis research network, said: “Supply chains are the backbone of any organisational ecosystem. However, their complex design, international reach, and broad exposure to risk present significant challenges for organisations in maintaining the necessary understanding and oversight of inherent risks crucial for building efficient organisational resilience, especially as they strive to keep pace with the evolving risk landscape while avoiding the bias of overemphasising the likelihood of recent events reoccurring.”

Hugo Wegbrans, head of corporate risk and broking Europe at Willis, added: “The complexity of modern supply chains presents a unique challenge for the insurance industry, where risks must be thoroughly understood and accurately quantified to enable effective diversification and appropriate premium pricing.

“Proper risk quantification is essential to ensure that premiums reflect actual exposures, enhancing acceptable risk profiling, competitiveness, and the overall appeal of the market.”

The survey was conducted in November 2024, involving 1,000 senior decision-makers, including risk managers, supply chain and logistics managers, and CEOs.

---