IT organizations and CIOs don't contract and outsource to countries, they contract and outsource to companies. Given that, it's time to stop assessing location-based risk in a vacuum because sometimes the 'riskiest' suppliers may have the most innovative solutions. There are more viable offshore outsourcing destinations than ever before — a great boon for IT leaders seeking new sources of talent, language capabilities, nearshore support, and risk diversification. But IT organizations can no longer afford to take traditional view of outsourcing location assessment. [ Offshoring: The 25 Most Dangerous Cities for Outsourcing ]“The maturity of global delivery models also continues to increase, and given the demands of increasingly global businesses, this trend will only continue,” says Charles Green, an analyst in the sourcing and vendor management practice of Forrester Research. “However while a geographically diverse portfolio of suppliers brings benefits it also requires clients to diligently manage the increased risk of such a portfolio.”The Classic Way to Assess Geographic Risk of an Outsourcing LocationThe classic criteria for assessing geographic risk in an outsourcing location have been geopolitical stability, the general business environment, the quality of human capital, the legislative and regulatory environment, and the broader IT landscape. That’s a good starting point, says Green. But it’s too simple. The location analysis needs to feed into an analysis of specific vendor risk to be truly useful, according to Green. Too often, IT outsourcing buyers seem to seek out the lowest risk options, both in terms of location and specific supplier. Indeed, 48 percent of respondents to a recent Forrester IT services survey said that better controlling or lowering supplier risk was a key governance priority. But, Green points out, the “riskiest” suppliers may have the most innovative solutions. The Right Way to Assess Geographic Risk of an Outsourcing LocationBy combining location-based risk analysis with vendor viability information — and weighing that against internal needs, tolerances, and capabilities, companies can make better overall offshoring decisions, says Green. “For example, if a location is evaluated as having high risk, there may be mitigating factors such as whether you already have a local presence in the country, the importance of the engagement (and whether it will touch your customers), as well as your vendor management capabilities,” he says. “The concept acknowledges that there is a healthy degree of risk which companies should be willing to take depending on the engagement, rather than taking an approach where the lowest risk is the best option.”In addition, many IT service providers are now multinational with the ability to shift work between delivery centers, so looking at location in conjunction with supplier specifics provides a clearer picture of overall risk.IT leaders can’t afford to continue to look at location-based risk in a vacuum, according to Green. While every service provider is, in part, dependent on its local environment, “the quality and maturity of the provider will work to mitigate or exacerbate location dynamics,” says Green. “Providers can take a number of actions to help mitigate the influence of geography, whether it is cultural training, process expertise, to having a network of delivery centers and partners so work can be shifted from one destination to another.” Belarus, for example, which the U.S. government called one of the “last outposts of tyranny” in 2005 is a viable IT outsourcing destination for many companies today. The country “would likely score poorly on a standard risk assessment, yet the intricate business and geopolitical environment masks a strong and vibrant IT culture with some of the leading providers in Central and Eastern Europe,” says Green.CIOs don’t contract with countries, but companies. “Ultimately it is the client’s relationship with the service provider, which will determine success or failure,” Green says.Stephanie Overby is regular contributor to CIO.com’s IT Outsourcing section. Follow everything from CIO.com on Twitter @CIOonline, Facebook, Google + and LinkedIn. Related content feature Red Hat embraces hybrid cloud for internal IT The maker of OpenShift has leveraged its own open container offering to migrate business-critical apps to AWS as part of a strategy to move beyond facilitating hybrid cloud for others and capitalize on the model for itself. By Paula Rooney May 29, 2023 5 mins CIO 100 Technology Industry Hybrid Cloud feature 10 most popular IT certifications for 2023 Certifications are a great way to show employers you have the right IT skills and specializations for the job. These 10 certs are the ones IT pros are most likely to pursue, according to data from Dice. By Sarah K. White May 26, 2023 8 mins Certifications Careers interview Stepping up to the challenge of a global conglomerate CIO role Dr. Amrut Urkude became CIO of Reliance Polyester after his company was acquired by Reliance Industries. He discusses challenges IT leaders face while transitioning from a small company to a large multinational enterprise, and how to overcome them. By Yashvendra Singh May 26, 2023 7 mins Digital Transformation Careers brandpost With the new financial year looming, now is a good time to review your Microsoft 365 licenses By Veronica Lew May 25, 2023 5 mins Lenovo Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe