emerge when suppliers and partners fail to manage their own risk – exposing the primary organisation by association, connection or dependency. However, these risks (and their impact) can be limited through supplier risk assessment, implementing robust supply chain practices and managing resource scarcity.