ISO 28000:2007
What is ISO 28000:2007?
ISO 28000:2007 is an international supply
chain security management system standard.
It offers organisations working within, or relying on, the
logistics industry, a framework that identifys aspects critical to
the security assurance of their supply chain.
These aspects include, but are not limited to, financing,
manufacturing, information management and the facilities for
packing, storing and the transferring of goods between modes of
transport and locations.
How can ISO 28000:2007 benefit my organisation?
Most organisations rely in some way on their supply chain to
ensure business continuity and they are vulnerable if supplies are
interrupted. To help prevent this and manage security risks in this
current volatile world, ISO has published ISO 28000:2007; with
valuable and extensive inputs from Lloyd's Register.
ISO 28000 2007:
- Can help all sectors of industry assess security risks and
implement controls and mitigating arrangements to manage potential
security threats and impacts from the supply chain, in the same way
other fundamental business principles such as quality, safety and
customer satisfaction are managed.
- Is a plan-do-check-act based management system that has been
modelled on the well proven ISO 14001 standard. This means that
organisations already familiar with the same risk based approach
used by ISO 14001 will be able to use a similar approach when
analysing supply chain security risks and threats.
- Can demonstrate to customs authorities the organisation's
capability to manage security issues within the supply chain. This
is significant when considering an application for Authorised
Economic Operator (AEO) as many of the requirements are aligned.
To find out more information on AEO read the
European Commission's fact Sheet.
Why work with LRQA?
Lloyd's Register Quality Assurance (LRQA) is at the leading edge
of supply chain security management system certification. We have
experience of security assessments gained from carrying out audits
to the International Ship and Port Facility code (ISPS).
Having issued the first ISO 28000 global certificate, we are in
a prime position to share our experience and expertise to help our
clients manage security risks and assure continuity of supply.
LRQA can offer training to organisations wanting to update their
staff with the information required to allow a suitable security
management system to be set up, maintained and certified:
Training courses include:
- Appreciation and Interpretation of ISO28000 Implementation of
an ISO28000 Security Management System
- ISO28000 Internal Auditor Training
- Lead Auditor Training
Background to ISO 28000:2007
ISO 28000:2007 is a management system
specification which has been developed specifically for logistics
companies and organisations that manage supply chain operations.
This specification was published by The International Standards
Organisation (ISO) in September
2007.
ISO 28000:2007 is suitable to all
sizes and types of organisation that are involved in purchasing,
manufacturing, service, storage, transportation and/or sales
processes that wishes to implement and maintain a security
management system for their supply chain.
How can the standard be used?
The standard can be used:
- to demonstrate a robust and secure supply chain
management system to regulators/authorities and other interested
organisations
- to demonstrate a robust and secure supply chain
management system to their customers/potential
customers
- to provide a consistent approach by all service providers
within a supply chain
- as the basis for an independent assessment
- to demonstrate the ability to meet customer
requirements
- to improve services
How can we gain certification to ISO 28000:2007?
We are able to provide assessment services to this recently
launched standard.