ISO 28000:2007 specifies the requirements for a Security Management System, including those aspects critical to security assurance of the supply chain. Security management is linked to many other aspects of business management. Aspects include all activities controlled or influenced by organizations that impact on supply chain security. These other aspects should be considered directly, where and when they have an impact on security management, including transporting these goods along the supply chain. ISO 28000:2007 is applicable to all sizes of organizations, from small to multinational, in manufacturing, service, storage or transportation at any stage of the production or supply chain that wishes to establish, implement, maintain and improve a security management system. ISO 28000 is the formal international security standard against which organizations may seek independent certification of their supply chain security management system.
It specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Supply Chain Security Management System (SCSMS), using a continual improvement approach. The ISO 28000 standard is formally known as "Specifications for Security Management Systems in the Supply Chain". ISO 28000:2007 is a management system standard which has been developed specifically for logistics companies and organizations that manage supply chain operations. For organizations working within, or relying on, the logistics industry, certification to the ISO 28000:2007 supply chain management standard provides a valuable framework. It will help minimize the risk of security incidents and so help provide problem-free 'just in time' delivery of goods and supplies.
|BENEFITS OF ISO 28000:2007 CERTIFICATION|
|Integrated enterprise resilience||Improved partner, customer and stakeholder confidence|
|Increased credibility and trust||Organizational and trading partner assurance|
|Competitive advantage and market differentiation||Improved supply chain performance|
|Greater compliance processes||Reduced regulation costs|
|Systematized management practices||Enhanced credibility and brand recognition|