A company adds a second supplier for a critical component. The procurement team presents this as a risk mitigation measure. The logic appears sound: if one supplier fails to deliver, the other can cover.
A few months later, both suppliers experience the same shortage simultaneously. The raw material they both depend on has become constrained upstream. The transport corridor they both use has been disrupted. The subcontractor they both rely on for a specific process has gone out of business.
The organisation has two suppliers. It still has one supply chain.
This is one of the most consequential misunderstandings in supply chain risk management, and one that ELVI Partners encounters consistently in the organisations we work with across Belgium and Western Europe. The instinct to diversify is correct. But diversification that does not account for shared dependencies in the broader supply ecosystem provides less protection than it appears.
The difference between supplier diversity and supply chain resilience
Supplier diversification and supply chain resilience are related but not equivalent. Diversification is a structural choice: having more than one source for a given input. Resilience is a systemic property: the ability of the entire supply chain to absorb disruptions and continue functioning.
A diversified supplier base contributes to resilience, but only if the suppliers in question are genuinely independent in their own dependencies. Two suppliers who source from the same upstream manufacturer, ship through the same port, or depend on the same logistics provider are not genuinely independent from a risk perspective. A disruption at any shared node in the ecosystem affects both simultaneously.
This distinction matters more than ever. The disruptions that affected global supply chains between 2020 and 2023 repeatedly exposed supply chains that appeared diversified at the direct supplier level but shared deep structural dependencies upstream. Organisations that had mapped only their tier-one relationships consistently found themselves exposed to failures they had not anticipated, because those failures originated several tiers further up the chain.
Understanding the full supply ecosystem
A supply chain is not a list of suppliers. It is a network of interdependencies: between organisations, geographies, transport infrastructures, raw material sources, regulatory environments and production processes. Each node in that network has its own constraints, its own vulnerabilities, and its own downstream dependencies.
Managing supply chain dependency effectively requires understanding that network, not just the direct relationships at its surface. ELVI Partners helps organisations build this understanding systematically, because it is the foundation of any genuinely useful risk assessment.
Tier-one visibility is necessary but not sufficient
Most procurement functions have reasonable visibility of their direct suppliers: who they are, what they supply, and on what terms. This is tier-one visibility, and it is the minimum required to manage a supply base. It is not sufficient to manage supply chain risk.
A critical component may be sourced from a supplier with strong delivery performance and a healthy commercial relationship. But if that supplier sources a key input from a single upstream manufacturer operating in a region with political or logistical instability, the risk exists regardless of how well the direct relationship is managed. Without visibility beyond tier one, that risk is invisible until it materialises.
Building tier-two and tier-three visibility is demanding. It requires active engagement with direct suppliers, structured data collection, and a willingness to invest time in mapping relationships that are not immediately visible in the organisation's own procurement records. The organisations that do this work consistently demonstrate stronger supply chain stability than those that manage risk only at the surface level.
Geographic and infrastructure concentration
Supplier dependency is not only about individual organisations. It also accumulates at the level of geographies, transport corridors and industrial infrastructure.
An organisation may work with several suppliers in the same region, each of whom is technically independent. But if a port closure, a regulatory change, or an energy disruption affects that region, all of those suppliers are affected simultaneously. The geographic concentration risk is real regardless of the number of supplier relationships.
Similarly, reliance on a single transport mode or a single logistics corridor creates a structural fragility that supplier diversification cannot address. The organisations that have built genuine resilience into their supply chains have typically mapped their geographic and infrastructure concentrations explicitly, and made deliberate decisions about how much concentration is acceptable in each category.
Shared subcontractors and service providers
A third form of hidden dependency often goes unexamined: shared subcontractors and service providers across the supply base. It is common for multiple direct suppliers to rely on the same specialist subcontractor for a specific technical process, the same certification body, or the same software platform. When that shared resource experiences a disruption, the impact propagates across the entire group of direct suppliers simultaneously.
This form of dependency is particularly difficult to identify because it is not visible in any single supplier relationship. It only becomes apparent when the supply base is mapped as a network rather than as a collection of bilateral relationships.
Why diversification alone does not solve the problem
The appeal of supplier diversification as a risk management strategy is understandable. It is concrete, measurable, and relatively straightforward to implement. The procurement team can point to a second or third approved supplier and demonstrate that the risk of dependence on a single source has been reduced.
The limitation is that diversification addresses only one category of supply chain risk: the failure of an individual supplier. It does not address shared upstream dependencies, geographic concentration, infrastructure risk, or the systemic vulnerabilities that originate outside the direct supply base.
An organisation that has diversified its direct supplier base without mapping the shared dependencies in the broader ecosystem may have the appearance of resilience without the substance of it. This is a meaningful distinction when a genuine disruption occurs.
"You don't have multiple suppliers. You have one supply chain. Each supplier is part of a broader system with its own dependencies and constraints. Understanding the full ecosystem is key."
ELVI Partners supply chain advisory
What a genuine supply chain dependency assessment looks like
Assessing supply chain dependency effectively requires a structured methodology that goes beyond the immediate supply base. ELVI Partners works with organisations to apply this methodology in a way that is proportionate to the organisation's size, sector and risk profile.
Mapping the network, not just the list
The starting point is to shift from a linear view of the supply chain to a network view. This means mapping not just who the direct suppliers are, but who those suppliers depend on, and what shared dependencies exist across the supply base. The output is not a list but a map, with identified nodes where concentration or vulnerability is highest.
This mapping exercise does not need to cover every supplier and every tier simultaneously. A risk-based prioritisation, starting with the categories and suppliers that represent the highest operational exposure, makes the process manageable and ensures that the most significant vulnerabilities are identified first.
Distinguishing between types of dependency
Not all dependencies carry the same risk. A useful assessment distinguishes between dependencies that are manageable within a reasonable timeframe and those that represent a structural vulnerability.
A dependency on a supplier who is sole-source for a highly standardised component that is widely available in the market is a different risk from a dependency on a supplier who provides a proprietary process that takes years to replicate elsewhere. Managing these two situations requires different responses: commercial negotiation in the first case, strategic investment in alternative capabilities or long-term partnerships in the second.
ELVI Partners helps organisations build this differentiation systematically, so that risk management resources are directed at the dependencies that genuinely matter rather than spread uniformly across the supply base.
Building contingency into the ecosystem, not just the contract
A common response to identified dependencies is to include contingency provisions in supplier contracts: volume flexibility clauses, step-in rights, or alternative sourcing provisions. These are useful tools, but they address the contractual surface of a dependency rather than the operational reality.
A supplier who contractually commits to maintaining buffer stock may not be able to honour that commitment if their own upstream supply of raw materials is disrupted. A contract that provides step-in rights is only valuable if there is a capable alternative available to step in.
Genuine contingency requires investment in the operational conditions that make contingency possible: qualified alternative suppliers, maintained relationships with backup logistics providers, and a realistic understanding of how long switching from one supply arrangement to another actually takes.
The role of procurement leadership in supply chain resilience
Supply chain dependency management is often treated as an operational discipline, managed at the level of logistics or procurement operations. In the experience of ELVI Partners, the organisations that manage it most effectively have made it a strategic priority, with senior leadership involvement and dedicated expertise.
This is partly a question of resource: mapping a supply ecosystem and building genuine contingency requires time and capability that operational teams under day-to-day pressure often cannot sustain. But it is also a question of seniority: decisions about acceptable dependency levels, investments in alternative supply development, and the commercial commitments required to maintain strategic relationships need to be made at a level that has both the authority and the cross-functional visibility to act on them.
The procurement leadership profile that can do this effectively is one that combines deep supply chain expertise with the ability to engage credibly with finance, operations and executive leadership. It is a profile that ELVI Partners places and deploys regularly, through executive search, interim management and staff augmentation, across Belgian and Western European organisations navigating exactly these challenges.
Conclusion : resilience requires understanding the system
Supplier diversification is a necessary part of supply chain risk management. It is not a sufficient one. The organisations that build genuine resilience are those that understand their supply chain as a system: interconnected, layered, and shaped by dependencies that often extend well beyond the relationships that are directly visible.
Managing those dependencies requires a structured assessment of the full ecosystem, a clear distinction between manageable and structural risks, and an investment in the operational conditions that make contingency realistic rather than theoretical.
ELVI Partners works with organisations in Belgium and Western Europe to build this understanding and translate it into practical, proportionate action. If your organisation is reviewing its supply chain dependencies and wants to move from a surface-level assessment to a genuinely systemic one, we welcome the conversation.
Key takeaways
- Supplier diversification and supply chain resilience are not the same thing: two suppliers with shared upstream dependencies, shared logistics infrastructure, or shared subcontractors are not genuinely independent from a risk perspective.
- Tier-one visibility is the starting point, not the end point: the most significant supply chain vulnerabilities frequently originate several tiers upstream, where direct procurement relationships provide no early warning.
- Geographic concentration, shared infrastructure and common subcontractors are often invisible risks: they only become apparent when the supply base is mapped as a network rather than a collection of bilateral relationships.
- Genuine contingency requires operational investment, not just contractual provision: qualified alternatives, maintained relationships and realistic switching timelines are the substance of resilience.
- ELVI Partners helps organisations assess and manage their supply chain dependencies through advisory, interim management and executive search, to reduce risk and build resilience that holds when disruptions actually occur.
ELVI Partners | Procurement and supply chain executive search, interim management and advisory | Belgium and Western Europe | www.elvipartners.com
About ELVI Partners
ELVI Partners is a Belgian specialist in procurement and supply chain talent. The firm provides executive search, interim management, staff augmentation and procurement advisory services to companies across Belgium. Built by a former CPO, ELVI Partners combines deep market knowledge with a network of over 800 procurement and supply chain professionals.
