My colleague, Lutz Peichert, recently wrote a blog about the need for continuous risk management as it relates to your IT supplier base. While his focus was more on monitoring software and hardware vendor risk, I want to step up and remind IT services buyers the same thing. As I look at what’s happening in the steaming hot global IT services market and at the increased responsibility and access IT service providers are being given today (see Maintaining Vendor Management Vigilance In The Overheated Global Sourcing Market), I can’t help but worry that a single outage or bankruptcy or fraud or bad acquisition could spell disaster for a client. SVM executives have to continuously assess their IT services vendors’ viability and ensure that they have alternate options in case of vendor failure.
Publicly traded companies are obviously much easier to monitor due to their financial transparency; however there is still potential for fraud (as we saw with Satyam and Longtop Group) or M&A activity that may not be reported in standard sources, but that may leave customers in an unfavorable position. So, for “critical” suppliers in your portfolio, due diligence should include research outside of normal channels – social media, job websites, financial analysts (who have a pulse on M&A activity and the health of the suppliers’ revenues and profit margins).