What Is ISO 28000:2007
Is an ISO standard published by the International Organization for Standardization which covers the requirements of a security management system, especially those related to security assurance in the supply chain. This standard was developed by ISO / TC 8 on “Ship and maritime technology” and published in 2007. In 2015, the responsibility for the ISO 28000 series was transferred to ISO / TC 292 on “Safety and durability” which in 2019 decided to initiate the expected revision. will take 3 years. The justification study for revision has been accepted by ISO TMB (Technical Management Board).
Requirements – requirements
- Context Organization
- Leadership
- Planning
- Support
- Operation
- Performance
- Evaluation
- Improvement
Benefits Implementation
Companies will get many benefits by implementing this international standard management system, including :
- Increase stakeholder trust by demonstrating stronger and safer supply chain management
- Allows management to focus resources and efforts on areas of high risk concern
- Increase customer satisfaction by demonstrating the ability to meet customer specific requirements
- Increase customer satisfaction by demonstrating the ability to meet customer specific requirements
- Demonstrate systematic supply chain security management
- Develop business cooperation along the supply chain
Consultation program
1. Gap Analysis
- Review the maturity level of the current management system implemented by the company and to determine gaps with standard requirements
2. Management system creation
- Creating a management system with a system level that aims to facilitate the implementation and understanding of employees in implementing this management system standard
3. Training
- Equip employees with a thorough understanding of a good quality management system so that they can maintain consistency in implementation even though they are no longer accompanied by a consultant
Preparation for consultation
Several things that need to be prepared by the company before the consultation process, namely :
- Forming a committee team for the implementation of the quality management system consisting of representatives from each department
- Collect all documents currently used in managing the company
- Company legality data for registration requirements to the certification body