template

Supply Chain Risk Assessment Template

0
supply-chainrisk-assessmentbrexitresiliencecontingency-planningsupplier-managementfree-downloadrisk-management

A Free Risk Assessment Template for UK Supply Chain Managers

Identify, assess, and mitigate supply chain risks with this comprehensive template. Essential for post-Brexit resilience planning and operational continuity.

Why Supply Chain Risk Assessment Matters Now

Post-Brexit supply chains face unprecedented complexity and volatility. From customs delays to supplier compliance issues, the risk landscape has fundamentally changed. This template helps you systematically identify, assess, and plan for supply chain disruptions before they impact your operations.

Key benefits:

  • Structured approach to risk identification and assessment
  • Quantified risk scoring for prioritization
  • Actionable mitigation strategies and contingency plans
  • Regular monitoring and review framework
  • Compliance with business continuity standards

Part 1: Supply Chain Risk Categories

Brexit-Specific Risks

Customs and Border Risks

  • Border delays and processing times Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Documentation errors and rejections Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Permit shortages and quota exhaustion Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Regulatory changes and compliance updates Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

Supplier Compliance Risks

  • Loss of supplier transport permits Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Supplier customs compliance failures Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Country of origin certification issues Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

Operational Risks

Transportation and Logistics

  • Carrier capacity shortages Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Port congestion and strikes Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Fuel price volatility and driver shortages Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Weather disruptions and seasonal impacts Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

Supplier and Sourcing Risks

  • Single-source supplier dependencies Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Supplier financial instability Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Quality control and product defects Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Geographic concentration of suppliers Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

Technology and Information Risks

System Dependencies

  • ERP system failures and data loss Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Communication system outages Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Customs system connectivity issues Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

  • Cyber security breaches and data theft Risk Level: _____ | Impact: _____ | Probability: _____ Current mitigation: _________________________________ Additional actions needed: ___________________________

Part 2: Risk Scoring Matrix

Risk Assessment Criteria

Impact Levels

  • 5 - Critical: Complete supply chain shutdown (>5 days)
  • 4 - High: Significant disruption requiring emergency measures (2-5 days)
  • 3 - Medium: Moderate disruption with workarounds (1-2 days)
  • 2 - Low: Minor delays with minimal customer impact (<1 day)
  • 1 - Minimal: No operational impact, administrative only

Probability Levels

  • 5 - Very High: Expected to occur (>80% chance in next 12 months)
  • 4 - High: Likely to occur (60-80% chance in next 12 months)
  • 3 - Medium: Possible (40-60% chance in next 12 months)
  • 2 - Low: Unlikely (20-40% chance in next 12 months)
  • 1 - Very Low: Remote possibility (<20% chance in next 12 months)

Risk Calculation

Risk Score = Impact Level × Probability Level

Priority Matrix:

  • 20-25: Critical Priority (Immediate action required)
  • 15-19: High Priority (Action required within 30 days)
  • 10-14: Medium Priority (Action required within 90 days)
  • 5-9: Low Priority (Monitor and review quarterly)
  • 1-4: Minimal Priority (Annual review sufficient)

Risk Register Template

Risk IDRisk DescriptionCategoryImpactProbabilityRisk ScorePriorityOwnerTarget Date
R001[Risk description][Category][1-5][1-5][Score][Priority][Name][Date]
R002
R003
R004
R005

Part 3: Supplier Risk Assessment

Supplier Risk Profile

Supplier Information

  • Supplier Name: ________________________________
  • Location/Country: ____________________________
  • Products/Services: ____________________________
  • Annual Spend: £_______________________________
  • Contract Duration: ____________________________

Brexit-Specific Assessment

  • Has valid UK/EU transport permits Status: _____ | Renewal Date: _____ | Risk Level: _____

  • Demonstrates customs compliance capability Status: _____ | Last Audit: _____ | Risk Level: _____

  • Provides country of origin certification Status: _____ | Documentation Quality: _____ | Risk Level: _____

  • Has documented Brexit contingency plans Status: _____ | Plan Quality: _____ | Risk Level: _____

Financial and Operational Assessment

  • Financial stability and credit rating Rating: _____ | Last Review: _____ | Risk Level: _____

  • Operational resilience and backup capabilities Assessment: _____ | Capacity: _____ | Risk Level: _____

  • Quality management systems and certifications Certifications: _____ | Audit Date: _____ | Risk Level: _____

  • Communication responsiveness and transparency Rating: _____ | Escalation Process: _____ | Risk Level: _____

Supplier Dependency Analysis

Supply Criticality Assessment

  • Product/service criticality to operations: ______________
  • Availability of alternative suppliers: _________________
  • Switching cost and time requirements: __________________
  • Minimum order quantities and lead times: _______________

Alternative Supplier Options

AlternativeLocationCapacityLead TimeSwitching CostBrexit Compliance
Supplier 1
Supplier 2
Supplier 3

Part 4: Contingency Planning

Emergency Response Procedures

Supply Disruption Response Plan

Phase 1: Immediate Response (0-4 hours)

  1. Situation assessment and verification

    • Confirm disruption scope and expected duration
    • Assess immediate impact on production/operations
    • Identify available inventory and buffer stock

  2. Internal communication and coordination

    • Notify senior management and key stakeholders
    • Activate supply chain emergency response team
    • Brief customer service team on potential impacts

  3. Alternative supply activation

    • Contact pre-qualified alternative suppliers
    • Review emergency procurement procedures
    • Activate expedited transport arrangements

Phase 2: Short-term Management (4-24 hours)

  1. Extended alternative arrangements

    • Implement temporary supplier arrangements
    • Adjust production schedules and priorities
    • Communicate with affected customers

  2. Financial and legal considerations

    • Review force majeure and contract clauses
    • Assess insurance coverage and claims procedures
    • Document costs and business impact

Phase 3: Medium-term Recovery (1-7 days)

  1. Service restoration planning

    • Evaluate permanent vs temporary solutions
    • Negotiate extended alternative supplier terms
    • Plan transition back to normal operations

  2. Lessons learned and improvement

    • Conduct post-incident review and analysis
    • Update risk assessments and contingency plans
    • Implement process improvements

Business Continuity Planning

Critical Business Functions

  • Function: _________ | Priority: _____ | Recovery Time Objective: _____
  • Function: _________ | Priority: _____ | Recovery Time Objective: _____
  • Function: _________ | Priority: _____ | Recovery Time Objective: _____

Resource Requirements for Continuity

  • Minimum staffing levels: __________________________
  • Essential equipment and facilities: __________________
  • Critical supplier relationships: ____________________
  • Technology systems and data access: __________________

Communication Plans

  • Internal communication cascade: ____________________
  • Customer notification procedures: __________________
  • Supplier coordination protocols: __________________
  • Regulatory and stakeholder communication: ___________

Part 5: Monitoring and Review Framework

Key Risk Indicators (KRIs)

Leading Indicators (Early Warning Signals)

  • Supplier financial health metrics Current Status: _____ | Trend: _____ | Alert Threshold: _____

  • Transport permit allocation rates Current Status: _____ | Trend: _____ | Alert Threshold: _____

  • Border crossing time increases Current Status: _____ | Trend: _____ | Alert Threshold: _____

  • Documentation rejection rates Current Status: _____ | Trend: _____ | Alert Threshold: _____

Lagging Indicators (Impact Measures)

  • Supply chain disruption frequency Current Status: _____ | Trend: _____ | Target: _____

  • Customer service level achievement Current Status: _____ | Trend: _____ | Target: _____

  • Emergency procurement costs Current Status: _____ | Trend: _____ | Target: _____

  • Inventory holding cost increases Current Status: _____ | Trend: _____ | Target: _____

Regular Review Schedule

Monthly Risk Review

  • Update risk register with new risks and changes
  • Review KRI status and trends
  • Assess effectiveness of current mitigation measures
  • Plan and implement new risk treatments

Quarterly Strategic Assessment

  • Comprehensive supplier risk assessment updates
  • Business continuity plan testing and validation
  • Brexit regulatory development impact analysis
  • Supply chain resilience benchmarking

Annual Risk Framework Review

  • Complete risk assessment methodology review
  • Update risk appetite and tolerance levels
  • Comprehensive contingency plan testing
  • Supply chain strategy alignment with risk profile

Risk Governance Structure

Risk Ownership Matrix

Risk CategoryPrimary OwnerSecondary OwnerReview Frequency
Brexit/CustomsSupply Chain ManagerCustoms ManagerMonthly
TransportationLogistics ManagerOperations ManagerMonthly
SupplierProcurement ManagerQuality ManagerQuarterly
TechnologyIT ManagerOperations ManagerMonthly
FinancialFinance ManagerSupply Chain ManagerQuarterly

Escalation Triggers

  • Risk score increases by >5 points: Immediate escalation to senior management
  • Critical risk (score >15) identified: Executive team notification within 24 hours
  • Supply disruption >2 days: Board-level notification required
  • Regulatory breach: Immediate legal and compliance team involvement

Part 6: Action Planning Template

Risk Treatment Options

Risk Mitigation Strategies

  • Avoid: Eliminate the risk by changing processes or suppliers
  • Reduce: Implement controls to reduce probability or impact
  • Transfer: Use insurance, contracts, or outsourcing to transfer risk
  • Accept: Acknowledge and monitor risks that cannot be economically treated

Action Plan Template

Risk ID: _____ | Risk Description: _____________________________________

Current Risk Score: _____ | Target Risk Score: _____ | Target Date: _____

Proposed Treatment Strategy: _______________________________________________

Specific Actions Required:

ActionResponsible PersonTarget DateResources RequiredSuccess Criteria
1.
2.
3.
4.

Monitoring and Review:

  • Progress review frequency: _________________________
  • Key performance indicators: _______________________
  • Review date for effectiveness: ____________________

Budget and Resource Allocation:

  • Estimated implementation cost: £___________________
  • Ongoing operational costs: £________________________
  • Resource requirements (people/systems): ____________

Part 7: Brexit-Specific Risk Scenarios

Scenario Planning Framework

Scenario 1: Major Port Disruption Description: Strike action closes Dover for 5+ days during peak season

Immediate Impacts:

Response Actions:

Estimated Costs:

  • Direct costs: £_________________________________
  • Opportunity costs: £____________________________
  • Recovery timeline: _____________________________

Scenario 2: Customs System Failure Description: CDS system outage prevents electronic declarations for 48 hours

Immediate Impacts:

Response Actions:

Estimated Costs:

  • Direct costs: £_________________________________
  • Opportunity costs: £____________________________
  • Recovery timeline: _____________________________

Scenario 3: Supplier Permit Loss Description: Key EU supplier loses UK transport permits mid-contract

Immediate Impacts:

Response Actions:

Estimated Costs:

  • Direct costs: £_________________________________
  • Opportunity costs: £____________________________
  • Recovery timeline: _____________________________

Scenario Response Planning

Pre-Event Preparation

  • Identify scenario trigger indicators
  • Pre-qualify alternative suppliers/routes
  • Establish emergency procurement procedures
  • Create communication templates and contact lists

During Event Management

  • Activate emergency response procedures
  • Implement alternative arrangements
  • Communicate with stakeholders
  • Document decisions and costs

Post-Event Recovery

  • Restore normal operations
  • Conduct lessons learned analysis
  • Update risk assessments and plans
  • Report to senior management and board

Part 8: Implementation Checklist

Getting Started (Week 1-2)

  • Assemble risk assessment team Team lead appointed, key stakeholders identified

  • Gather baseline information Current supplier data, contracts, and dependencies mapped

  • Complete initial risk identification Use provided categories and add company-specific risks

  • Establish risk register Set up tracking system and assign initial scores

Risk Analysis (Week 3-4)

  • Complete detailed risk scoring Assess all identified risks using provided matrix

  • Prioritize high-impact risks Focus on risks scoring 15+ for immediate attention

  • Assign risk owners Designate responsible parties for each risk category

  • Develop initial action plans Create specific mitigation strategies for priority risks

Implementation (Week 5-8)

  • Implement quick wins Address risks that can be mitigated immediately

  • Begin supplier assessments Start with critical suppliers and high-risk relationships

  • Develop contingency plans Create specific response procedures for top scenarios

  • Establish monitoring systems Set up KRI tracking and regular review processes

Ongoing Management (Monthly)

  • Update risk register Review and adjust risk scores based on new information

  • Monitor key indicators Track KRIs and assess trends for early warning signals

  • Review action plan progress Assess implementation effectiveness and adjust as needed

  • Report to senior management Provide regular updates on risk status and mitigation progress

Conclusion

Effective supply chain risk management is critical for UK businesses navigating the post-Brexit operating environment. This template provides a structured approach to identifying, assessing, and managing supply chain risks while building operational resilience.

Key Success Factors:

  • Regular review and updating of risk assessments
  • Clear ownership and accountability for risk management
  • Proactive monitoring and early warning systems
  • Robust contingency planning and response procedures
  • Continuous improvement based on lessons learned

Next Steps:

  1. Complete the initial risk assessment using this template
  2. Prioritize high-impact risks for immediate attention
  3. Develop specific action plans for priority risks
  4. Implement regular monitoring and review processes
  5. Test contingency plans through scenario exercises

Remember: Risk management is an ongoing process, not a one-time exercise. Regular review and continuous improvement are essential for maintaining supply chain resilience in an evolving risk environment.

Additional Resources

For more detailed guidance on specific risk areas, consider our comprehensive toolkit series:

  • Post-Brexit Logistics Compliance Toolkit - Detailed regulatory guidance and procedures
  • UK Customs Import Starter Kit - Customs compliance and documentation requirements
  • UK CBAM Readiness Toolkit - Carbon border adjustment compliance preparation

Professional Support: Complex supply chain risk assessments may benefit from professional consulting support, particularly for businesses with extensive international operations or critical supply dependencies.

This template reflects current best practices and regulatory requirements as of April 2026. Risk assessments should be regularly updated to reflect changing business conditions and regulatory environments.