Nowadays, supply chains are highly complex and exposed to an increasing vulnerability against risks. This paper presents an approach how to implement supply chain risk management with an acceptable effort, by considering company- and supply chain-specific factors. Furthermore, a research project about the supply chain risk management auditing is presented which focuses on durable effectiveness of the entire system.
