Beruflich Dokumente
Kultur Dokumente
Risky business?
Evaluating and managing risk on outsourcing
Mike Rebeiro and Radford Goodman of Norton Rose LLP review some
of the key risks on outsourcing, and how businesses can address and
manage such risks.
Illustration: Getty Images
The accounting fraud at Satyam Com-
puter Services (Satyam), where Satyams
chairman admitted that its accounts had
been overstated by some $1 billion, was
Indias biggest ever corporate scandal,
and shook the confidence both of in-
vestors and of companies outsourcing
their services (customers) in the offshore
outsourcing sector as a whole.
EVALUATING RISK
There are many types of risk which
should be addressed in any outsourcing
arrangement. For the customer, these
generally include: service failure; project
delay; business disruption; regulatory
risk; breach of security; data loss; dam-
age to reputation; employee liabilities
(for example, under the Transfer of Un- plier insolvency; damage to business re- ployee liabilities, see feature article
dertakings (Protection of Employment) lationships; damage to property; and Outsourcing: the commercial issues,
Regulations 2006 (SI 2006/246)); sup- loss of revenue (for background on em- www.practicallaw.com/1-201-8559).
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
APPORTIONING RISK More sophisticated risk registers operate electronically and produce reports on the position
Having ascertained what risks the cus- adopted against each risk, which may be presented to senior management. These registers
tomer faces, the parties must agree dur- may also create links from the recorded risk to the relevant clause in the draft contract,
ing negotiations who will be liable if a which facilitates easy access to the document and any changes which need to be made.
risk materialises and damage is suffered
as a result. Questions around the type A risk register allows customers to take a more informed view as to how risk should be man-
and level of liability to be accepted by aged and the value of including or omitting certain contractual provisions. It may also help
suppliers or customers are ultimately the project team to develop a more balanced long-term contractual relationship between
commercial questions that cannot be di- customers and suppliers.
vorced from the issues of risk and price
management.
age and back up) (see box Risk alloca- processes, and customers must consider
Customers in different industry sectors tion: checklist). how risks can be minimised and whether
are prepared to accept different levels of they are best placed to manage such risk.
risk (see above). In addition, customers PRICING RISK They can also ask suppliers to bid
and suppliers have different views on the Suppliers operate sophisticated models against different risk profiles during the
apportionment of risk; in some cases, for pricing risk. Asking them to accept tender process to obtain a clearer idea of
customers are prepared to take a greater an unbalanced proportion of risk will how different risk apportionment will
responsibility for the management of have a direct impact on the level of be priced (for background on the tender
more types of risk than suppliers would charges. For example, imposing five dif- process, see feature article Outsourc-
otherwise believe. ferent contractual remedies to manage a ing: the commercial issues, www.prac-
single risk where one remedy would suf- ticallaw.com/1-201-8559).
Customers must consider how risks can fice will inevitably lead to an increase in
be minimised and whether they or the the price imposed by the supplier. Like- RISK MANAGEMENT STRATEGIES
supplier are best placed to manage wise, the transfer to the supplier of Risk cannot be eliminated, but it can be
them, through appropriate contractual those risks which would be better man- properly managed. Customers have a va-
provisions and operational processes aged by the customer will also increase riety of risk management tools available
(see Risk management strategies be- the price. to them, and need to consider which are
low). Customers need to be realistic in the most appropriate. Over-reliance on
their approach to risk: there are some Having a good supplier understanding one risk management tool is unhelpful:
risks that should not simply be allotted of legal and operational risk is therefore spreading such tools can lead to the
to the supplier (for example, where the important to pricing contracts; suppli- avoidance of technical and business
risk is within the customers control, ers need to have an overview of relevant problems or their resolution at an early
such as the risk of infringing a third risks, the likelihood of the risk material- stage, saving both time and money.
partys intellectual property rights in re- ising and the resulting damage before However, it is only by working together
spect of materials provided by the cus- they can attribute a proper cost to carry- with the supplier that risk can be man-
tomer, or loss of data where the cus- ing such risk. This must be borne in aged effectively (see box Risk manage-
tomer retains responsibility for its stor- mind when customers run tender ment strategies: checklist).
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
The exit plan for an offshore outsourc- Ultimately, the parties settled the dispute but not before they had expended signifi-
ing will differ materially from an on- cant time, effort and resources in retrospectively validating the legitimacy of changes
shore plan in that: made, all of which could have been avoided at the outset by managing the change
through the change control procedure.
On termination, employees will be
unlikely under the local laws to
transfer to the customers employ- carrying out a final audit on exit to en- supplier management and are not suffi-
ment. sure that arrangements have been fully ciently knowledgeable about the terms
implemented. However, in the event of a of the contract. The skills required by
The customer may not be able to en- supplier failing to comply with its exit the retained team are often very differ-
gage the suppliers key employees di- obligations, it is unlikely that a court ent from the actual skill set of most
rectly, as they may not be eligible for would make an order for specific per- management staff left behind in an
the necessary work visas. formance (see box Step-in and exit: outsourcing arrangement.
case study).
The customer will probably not wish Operational processes
to buy IT assets located offshore. Project management Customers need to consider carefully
Good project management and gover- what operational processes they can
The customers key assets to be trans- nance is vital. A project team compris- adopt to minimise risk. These will differ
ferred from the supplier will be intel- ing representatives both of the supplier from business to business, but may in-
lectual capital and know-how (but and the customer is best placed to moni- clude:
the customer should place an obliga- tor the provision of outsourced services
tion on the supplier to record and de- on a daily basis, identify any problems Allocating risk managers to individ-
liver know-how throughout the term, early and work together to resolve such ual outsourcing projects to evaluate
rather than just on exit). problems before serious issues arise. risk on an ongoing basis.
However, the resources and skill re-
The customer will be anxious to en- quired to ensure good governance are Comprehensive project governance
sure that it can enforce obligations often seriously underestimated. procedures to identify problems early
for the supplier to delete confidential and escalate them for resolution.
information and know-how post ter- The effectiveness of project manage-
mination, which may prove more dif- ment as a risk management tool is Regular contract reviews to ensure
ficult in an offshore arrangement. wholly dependent on the quality and that the contracts remain fit for pur-
calibre of the individuals tasked with pose.
Once the exit plan has been agreed, it is project management or governance re-
important that the customer regularly sponsibilities. Suppliers often raise con- Whatever the processes adopted, they
checks the suppliers compliance with its cerns that the customer project man- will only be effective if both customer and
obligations to facilitate exit, as well as agers do not have the necessary skills for supplier are fully engaged in their use.
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200
Feature
If the supplier becomes insolvent, a cus- For subscription enquiries to PLC web materials please call +44 207 202 1200
tomer generally has four options avail-
able:
Source the services from a third party Buy the insolvent business from the Mike Rebeiro is a partner and head of
(although in many offshore relation- relevant insolvency office holder. sourcing and Radford Goodman is a
ships, the ability to switch supplier in partner in dispute resolution at Norton
the timeframe required will be lim- The contingency plan may include pro- Rose LLP.
ited). visions to facilitate one, or a combina-
tion, of these options. It should be noted Norton Rose LLP recently conducted an
Bring the services back in-house. that a suppliers insolvency may not au- international survey of suppliers and
tomatically constitute a breach of con- customers of outsourced services (see A
Fund the supplier or the relevant in- tract entitling the customer to termi- smart approach to sourcing, www.
solvency office holder to continue nate; the right to terminate should be ex- nortonrose.com/knowledge/publica-
supplying the services. pressly included. tions/pdf/file17648.pdf?lang=en-gb).
Legal and Commercial Publishing Limited 2009. Subscriptions +44 (0)20 7202 1200