Purpose - The purpose of the study is to explore cargo theft risk and security for different product types at different locations along a transport chain. Design/methodology/approach - This study is based on a system-theoretical approach. The research method is deductive as the analysis is based on secondary data and results from a questionnaire. The results are analyzed based on supply chain risk management (SCRM) and criminology theories. Findings - Due to substantial interaction effects, the type of product and transport chain location must be considered to determine the correct level of security. Specifically, the product type is more significant since the general cargo theft risk is higher. Furthermore, the transport industry has three perspectives of security responses to cargo theft: demanded, needed, and actual security, which differ depending on the product type and transport chain location. Research limitations/implications - This study is limited by the content and classifications of the Transported Asset Protection Association (TAPA) of the Europe, Middle East, and Africa (EMEA) Incident Information Service (IIS) database as well as by the attendees of the 2015 TAPA EMEA Q4 conference. Practical implications - This paper has both research and practical implications as it studies security within freight transport from three perspectives as linked to general cargo theft risk and goods owners’ requirements. Originality/value - This paper addresses the contemporary SCRM problem of cargo theft using actual crime statistics and the industry understanding of generic required security levels.