How to to transition to ISO One year on. Rob Acker Business Continuity Lead Assessor LRQA Ltd

Size: px
Start display at page:

Download "How to to transition to ISO One year on. Rob Acker Business Continuity Lead Assessor LRQA Ltd"

Transcription

1 How to to transition to ISO One year on Rob Acker Business Continuity Lead Assessor LRQA Ltd

2 Agenda Structure of ISO22301 Detailed review a walk through. Section 4 understanding Section 5 leadership Section 6 planning Section 7 support Section 8 operation Section 9 performance Section 10 improvement. Transition How LRQA can help

3 ISO and BS Comparison Societal security

4 Greater emphasis on business need and context Policy The vertical Direction Act Check Plan Do Commitment, Plan Controls, Objectives, KPI s Measure Acting on results System framework The horizontal effective, efficient control of recovery

5 PDCA - BCM cycle Plan Establish business continuity policy, objectives, targets, controls, processes and procedures relevant to improving business continuity in order to deliver results that align with the organization s overall policies and objectives. Act Plan Do Implement and operate the business continuity policy, controls, processes and procedures Check Do Check Monitor and review performance against business continuity policy and objectives, report the results to management for review, and determine and authorize actions for remediation and improvement. Act Maintain and improve the BCMS by taking corrective action, based on the results of management review and reappraising the scope of the BCMS and business continuity policy and objectives

6 Count of requirements Structural changes Name change Societal security contributing to a resilient society The new format is more consistent with other ISO management system standards (e.g. ISO 9001, ISO 14001), but retains the existing BC lifecycle 105 Shall s compared with the 56 of BS PDCA comparison Some simplification, clarification or re-wording and some new requirements Plan Do Check Act BS25999 ISO22301

7 New Requirements Summary Formalisation of external and internal issues relevant to BCMS outcomes Management Commitment Business Continuity Objectives Legal and regulatory requirements Resource Planning 3rd Party Management Measures and Effectiveness

8 Enhanced requirements 5.2 Management commitment 5.3 Policy requirements 6.2 Business Continuity Objectives 7.1 Resources 7.2 Communications.

9 Section 5 - Leadership Top management demonstrate Leadership Compatibility of BCMS to company strategic direction Integration, achievement of outcomes Policy enhancements include: Provide the framework for setting business continuity objectives, Be communicated within the organization to all persons working for or on behalf of the organization within the scope of the BCMS This clarifies existing requirements and aligns it to other management system expectations (e.g. roles, responsibility & authority definition, resource determination and review).

10 Section 6 - Planning Business Continuity Objectives SMART but practical linking the analysis of Issues and opportunities to operations and results Actions to address risks and opportunities This risk assessment is aimed at a corporate level risks (for which a BCMS is effective mitigation) rather than operational risks that might trigger a BCMS response.

11 Section 7 - Support Competence & awareness Communication Documents and records

12 Section 7 - Resource requirements Clarifies the types of resources required to be considered All resources under the organisation s control to be identified together with associated competences

13 7.4 Communication Essentially now need to define What, When and Whom Needs to be tested

14 Section 8 - Operation Business Impact Analysis & Risk Assessment Business Continuity Strategy Incident response Business recovery and continuity

15 8.4.4 Business Continuity Plans Resources, information and records Purpose and Scope Objectives Internal and external interdependencies and interactions Plan Activation criteria and procedures Communication requirements and procedures Roles, responsibilities and authorities

16 8.5 Exercise and Test Testing is explicitly mentioned Consistent with Policy AND Objectives Reviewed against aims and objectives Based on scenarios The communication and warning procedures shall be regularly exercised.

17 Section 9 - Performance evaluation Determine what needs to be monitored or measured the When s What s and How s Methods to use When it needs to be done When analysis needs to done Action on adverse trends Periodic review of legal and regulatory requirements.

18 9.3 Management Review Gone Results of education & training programmes Level of residual risk and acceptance as input Feedback from interested parties When significant changes occur New Trends audits and measures Changes required to policy and objectives Updates to BIA, RA and BCPs Security requirements rather than resilience Changes to contractual requirements.

19 The Conversion Process Conducted an internal audit of our old BCMS against the new ISO, thereby identifying potential non-conformities Re-ordered our BCMS so that it followed the ISO Chapter headings, making it easier for the external certifying body easier to audit the system.

20 Changes to the BCMS To reflect enhanced top management role Ensured that the BCMS stated the links between business continuity and the business as a whole, with demonstrable evidence of how it is incorporated into the business processes (strategic direction and operational control) Review of the process in terms of upstream (supply chain) and downstream (impact on clients). To better demonstrate the accountability of 3 rd party suppliers. Independent audits of critical outsourced dependencies incorporated into Monitoring and Measurement process.

21 Changes to the BCMS (continued ) Improved alignment with day to day running of the business Review and utilisation of ISO31000 principles in managing operational risks Improved iteration of risk assessment Developed simple but effect risk controls Carried out simulation exercise Improved proactive, preventive controls throughout operations

22 Challenges Being able to prove to an auditor that the business continuity plan can achieve Recovery of its activities to a predetermined level, based on management approved recovery objectives. Specific plans are required for any RTOs for critical activities that are time sensitive.

23 Summary The changes from BS to ISO are not a great leap into the unknown; rather, it is a process of evolving the BCMS The initial internal audit is crucial to critically analyse the changes required to ensure our BCMS conformed to ISO

24 What to expect from LRQA... Transition Plans UKAS requirements on Certification Body (CB) drives the maximum period to transition CB s must transition by 30 May 2014 No new client certificates or renewals to BS in 2014 For how long does your BS certificate remain valid? 30 May 2015 at the latest, but is governed by other rules... Client transition should be at the first surveillance or renewal after CB transition.

25 What to expect from LRQA... Transition Plans How long would the transition audit take? Up to a 1 day depending on approach What is the approach to the transition audit? Can take place at a surveillance visit Driven by a checklist pre-completed by the organisation with supporting information Additional time will be required if the checklist is completed following exploration by the assessor Any deficiencies will be reported as findings in the usual way. As long as these are minimal and a corrective action plan has been agreed, the assessor will recommend approval to the ISO/IEC standard.

26 What to expect from LRQA... Transition Plans What happens if you are part way through your initial assessment against BS 25999? Subject to normal assessment limitations, the limit is 31 December 2013 (BS25999 expires 1 June 2014) Switching standards between Stage 1 and 2 is not recommended and will require some additional time to check the new requirements have been met.

27 Any questions? Come and see us on Stand 23 Thank you! Rob Acker Lead Assessor Lloyd s Register Quality Assurance Limited Hiramford, Middlemarch Office Village Siskin Drive, Coventry, CV3 4FJ United Kingdom T +44 (0) E rob.acker@lrqa.com W Lloyd's Register Quality Assurance Limited (LRQA) is a subsidiary of Lloyd's Register Group Limited.

Introducing ISO 22301

Introducing ISO 22301 Introducing ISO 22301 1 2 Background How was the ISO22301 formed? Contributors 3 Context 4 Source documents included BS25999-2 NFPA 1600 ASIS OR standard Singapore standards ISO 27031 ISO Guide 73 ISOPAS22399

More information

ISO/DIS 9001:2014 Analysis and Transition Guide

ISO/DIS 9001:2014 Analysis and Transition Guide Improving performance, reducing risk ISO/DIS 9001:2014 Analysis and Transition Guide An LRQA perspective Introduction The publication of the Draft International Standard (DIS) of the International Quality

More information

ISO Business Continuity Management. Your implementation guide

ISO Business Continuity Management. Your implementation guide ISO 22301 Business Continuity Management Your implementation guide Build a robust and resilient organization with ISO 22301 It s never been more important to protect your business from the unexpected.

More information

ISO 14001:2015 READINESS CHECKLIST YOU RE CLOSER THAN YOU THINK LEADERSHIP LIFECYCLE PERSPECTIVE DOCUMENTATION RISK TAKING PROTECTION

ISO 14001:2015 READINESS CHECKLIST YOU RE CLOSER THAN YOU THINK LEADERSHIP LIFECYCLE PERSPECTIVE DOCUMENTATION RISK TAKING PROTECTION LEADERSHIP LIFECYCLE PERSPECTIVE DOCUMENTATION PROTECTION FURTHER EXCELLENCE RISK TAKING PERFORMANCE COMMUNICATION REPUTATION ISO 14001:2015 READINESS CHECKLIST YOU RE CLOSER THAN YOU THINK THE TRANSITION

More information

ISO 14001:2015 PREPARING FOR A SUCCESSFUL TRANSITION

ISO 14001:2015 PREPARING FOR A SUCCESSFUL TRANSITION ISO 14001:2015 PREPARING FOR A SUCCESSFUL TRANSITION Scott Jones EHS Program Manager Welcome From PJR Headquarters: 755 W. Big Beaver Rd, Suite 1340 Troy, MI 48084 Phone: 1-800-800-7910 Email: PJR@PJR.com

More information

Business Continuity Management for Singapore s Logistics Sector. By Singapore Business Federation and Singapore Logistics Association

Business Continuity Management for Singapore s Logistics Sector. By Singapore Business Federation and Singapore Logistics Association Business Continuity Management for Singapore s Logistics Sector By Singapore Business Federation and Singapore Logistics Association Are You Ready? In today s highly connected business landscape, disruptions

More information

ISO 9001:2015 READINESS CHECKLIST YOU RE CLOSER THAN YOU THINK EXECUTIVE SUMMARY CLAUSE 4 - CONTEXT OF THE ORGANISATION CLAUSE 5 - LEADERSHIP

ISO 9001:2015 READINESS CHECKLIST YOU RE CLOSER THAN YOU THINK EXECUTIVE SUMMARY CLAUSE 4 - CONTEXT OF THE ORGANISATION CLAUSE 5 - LEADERSHIP EXECUTIVE SUMMARY CLAUSE 4 - CONTEXT OF THE ORGANISATION CLAUSE 5 - LEADERSHIP CLAUSE 6 - PLANNING CLAUSE 7 - RESOURCES CLAUSE 8 - OPERATIONS CLAUSE 9 - PERFORMANCE EVALUATION CLAUSE 10 - IMPROVEMENTS

More information

ISO 14001:2015 Gap Analysis Check Sheet

ISO 14001:2015 Gap Analysis Check Sheet ? CONTEXT OF THE ORGANIZATION 4.1 Understanding the organization and its context The organization shall determine external and internal issues that are relevant to its purpose and that affect its ability

More information

Business Continuity. Building a Program Fit for Purpose

Business Continuity. Building a Program Fit for Purpose Business Continuity. Building a Program Fit for Purpose Tim Janes. Director Fulcrum Risk Services Tuesday 2 September. 11.30-12.45 T Janes. BC SLIDES. RIMS Risk Forum Aust 2014 v1.0 Building a BC Program

More information

ISO Your implementation guide

ISO Your implementation guide ISO 55001 Your implementation guide Optimize the value from your assets with ISO 55001 Don t let the management of costly and complex assets become a burden to your organization.. ISO 55001 can help you

More information

ISMS AUDIT CHECKLIST

ISMS AUDIT CHECKLIST 4.1 REQUIREMENT REFER TO BS ISO / IEC 27001 : 2005 Has the organisation developed a documented ISMS based on the PDCA model? Checked at Stage 1 for development and Stage 2/surveillance for implementation,

More information

P. 1. Identify the Differences between ISO9001:2000 與 ISO9001:2008 ISO9001:2008 ISO9001:2000 版本的異同. 5 January 2009 ISO 9000 SERIES

P. 1. Identify the Differences between ISO9001:2000 與 ISO9001:2008 ISO9001:2008 ISO9001:2000 版本的異同. 5 January 2009 ISO 9000 SERIES Identify the Differences between ISO9001:2000 and ISO 9001:2008 審視 ISO9001:2000 與 ISO9001:2008 版本的異同 ISO 9000 SERIES ISO 19011 ISO9000 5 January 2009 ISO9001 ISO9004 2 ISO 9000 SERIES ISO 9001 ISO 9000

More information

ISO/DIS 9001: 2014 comparison with ISO 9001:2008. ISO 9001:2015 Updates. (Based on Draft International Standard, DIS) ISO/DIS 9001 ISO 9001:2008

ISO/DIS 9001: 2014 comparison with ISO 9001:2008. ISO 9001:2015 Updates. (Based on Draft International Standard, DIS) ISO/DIS 9001 ISO 9001:2008 ISO 9001:2015 Updates (Based ondraft International Standard, DIS) August 2014 Page 1 ISO 9001:2015 Updates (Based on Draft International Standard, DIS) ISO/DIS 9001: 2014 comparison with ISO 9001:2008

More information

How to achieve ISO/IEC The key successful factors

How to achieve ISO/IEC The key successful factors How to achieve ISO/IEC 20000 The key successful factors Joe Hsieh (joe.hsieh@bsi-global.com) LOGO BSI Taiwan ISO 20000 Product Manager ISO 27001/ ISO 20000 Lead Auditor Agenda 1. 2. 3. 4. Trend and Challenge

More information

ISO 9001:2015 How your ISO 9001 audit will be different. Whitepaper

ISO 9001:2015 How your ISO 9001 audit will be different. Whitepaper ISO 9001:2015 How your ISO 9001 audit will be different Whitepaper Introduction The new ISO 9001 introduces some key changes to the way a quality management system (QMS) is incorporated into your organization

More information

ISO 14001:2015 Transition Presentation. Presented by Fredric Leung

ISO 14001:2015 Transition Presentation. Presented by Fredric Leung ISO 14001:2015 Transition Presentation Presented by Fredric Leung 1 2 ISO Technical Committees TC 207 ISO = International Organization for Standardization Standards development work is done by Technical

More information

ISO 14001: 2015 Environmental Gap Analysis

ISO 14001: 2015 Environmental Gap Analysis Environmental Gap Analysis The revised ISO 14001 standard was published on 14 TH September 2015. How to use this document This document provides an overview of the changes between ISO 14001:2004 and ISO

More information

ISO/IEC INTERNATIONAL STANDARD. Information technology Service management Part 2: Guidance on the application of service management systems

ISO/IEC INTERNATIONAL STANDARD. Information technology Service management Part 2: Guidance on the application of service management systems INTERNATIONAL STANDARD ISO/IEC 20000-2 Second edition 2012-02-15 Information technology Service management Part 2: Guidance on the application of service management systems Technologies de l'information

More information

To all accredited and applicant Certification Bodies operating QMS, ISMS and ITSM certification.

To all accredited and applicant Certification Bodies operating QMS, ISMS and ITSM certification. To all accredited and applicant Certification Bodies operating QMS, ISMS and ITSM certification. To all interested Bodies Our ref.: DC2017SSV324 Milan, 06/11/2017 Object: Technical circular N 22/2017 -

More information

Managing Risk and Supporting Innovation. Working together for a safer world

Managing Risk and Supporting Innovation. Working together for a safer world Working together for a safer world Venue safety information Use this slide to give information about safety and emergency evacuation procedures for the venue you are in Type of warning (siren, announcement,

More information

Conformity and Certification against ISO 55001

Conformity and Certification against ISO 55001 Conformity and Certification against ISO 55001 Presentation IQ-AM Pty Ltd RTO 22515 ABN 77147017525 Some content from other sources utilised for educational purposes Tom Carpenter CEO, IQ-AM Pty Ltd ISO

More information

April 2017 Latest update. ISO/DIS Understanding the new international standard for occupational health & safety

April 2017 Latest update. ISO/DIS Understanding the new international standard for occupational health & safety April 2017 Latest update ISO/DIS 45001.2 Understanding the new international standard for occupational health & safety ISO/DIS 45001.2 - Understanding the new international standard for occupational health

More information

ERM CVS s Approach Performance Based Certification versus Traditional Auditing Approaches

ERM CVS s Approach Performance Based Certification versus Traditional Auditing Approaches ERM CVS s Approach Performance Based Certification versus Traditional Auditing Approaches Overview The traditional approach to management systems implementation and certification is to focus on demonstrating

More information

Health and Safety Management Standards

Health and Safety Management Standards Management Standards Curtin University Sept 2011 PAGE LEFT INTENTIONALLY BLANK Management Standards Page 2 of 15 CONTENTS 1. Introduction... 4 1.1 Hierarchy of Documents... 4 2. Management System Model...

More information

When Recognition Matters WHITEPAPER ISO 14001:2015 ENVIRONMENTAL MANAGEMENT SYSTEMS - REQUIREMENTS.

When Recognition Matters WHITEPAPER ISO 14001:2015 ENVIRONMENTAL MANAGEMENT SYSTEMS - REQUIREMENTS. When Recognition Matters WHITEPAPER ISO 14001:2015 ENVIRONMENTAL MANAGEMENT SYSTEMS - REQUIREMENTS www.pecb.com CONTENT 3 4 5 8 8 9 10 11 12 Introduction An overview of ISO 14001:2015 Key clauses of ISO

More information

ISCC 204 AUDIT REQUIREMENTS AND RISK MANAGEMENT. Version 3.0

ISCC 204 AUDIT REQUIREMENTS AND RISK MANAGEMENT. Version 3.0 ISCC 204 AUDIT REQUIREMENTS AND RISK MANAGEMENT Version 3.0 II Copyright notice 2016 ISCC System GmbH This ISCC document is protected by copyright. It is freely available from the ISCC website or upon

More information

ISO Collaborative Business Relationship Management Your implementation guide

ISO Collaborative Business Relationship Management Your implementation guide ISO 44001 Collaborative Business Relationship Management Your implementation guide ISO 44001 Collaborative Business Relationships enhances the performance and competitiveness of your organization Collaborative

More information

IAF Mandatory Document

IAF Mandatory Document IAF-MD 11:2013 IAF Mandatory Document IAF MANDATORY DOCUMENT FOR THE APPLICATION OF ISO/IEC 17021 FOR AUDITS OF INTEGRATED MANAGEMENT SYSTEMS (IAF MD 11: 2013) Page 2 of 12 The (IAF) details criteria for

More information

ISO Environmental management systems Requirements with guidance for use

ISO Environmental management systems Requirements with guidance for use INTERNATIONAL STANDARD Environmental management systems Requirements with guidance for use ISO 14001 Third edition 2015-09-15 Systèmes de management environnemental Exigences et lignes directrices pour

More information

We are a global classification, certification, technical assurance and advisory company Ungraded

We are a global classification, certification, technical assurance and advisory company Ungraded We are a global classification, certification, technical assurance and advisory company 1 Global reach local competence 150 300 100 15,000 years offices countries employees 2 DNV GL :: Focused on your

More information

Solution Track 5. Managing Vendor Risk and Contingency Plans. March 26, Strategic BCP, Inc. All rights reserved. strategicbcp.

Solution Track 5. Managing Vendor Risk and Contingency Plans. March 26, Strategic BCP, Inc. All rights reserved. strategicbcp. Managing Vendor Risk and Contingency Plans Terence Lee Solution Track 5 March 26, 2017 Strategic BCP, Inc. All rights reserved. strategicbcp.com 1 Agenda: 60 Minutes Introduction What is Third Party Vendor

More information

Internal Audit Quality Analysis Evaluation against the Standards International Standards for the Professional Practice of Internal Auditing (2017)

Internal Audit Quality Analysis Evaluation against the Standards International Standards for the Professional Practice of Internal Auditing (2017) Internal Audit Quality Analysis Evaluation against the Standards International Standards for the Professional Practice of Internal Auditing (2017) Assessor 1: Assessor 2: Date: Date: Legend: Generally

More information

Level 5 NVQ Diploma in Management and Leadership Complete

Level 5 NVQ Diploma in Management and Leadership Complete Learner Achievement Portfolio Level 5 NVQ Diploma in Management and Leadership Complete Qualification Accreditation Number: 601/3550/5 Version AIQ004461 Active IQ wishes to emphasise that whilst every

More information

Quality Manual ISO 9001:2015 Quality Management System

Quality Manual ISO 9001:2015 Quality Management System Quality management input comprises the standard requirements from ISO 9001:2015 which are deployed by our organization to achieve customer satisfaction through process control. Quality Manual ISO 9001:2015

More information

ISO Standards in Strengthening Organizational Resilience and Mitigating Risk while Addressing Quality and Sustainability

ISO Standards in Strengthening Organizational Resilience and Mitigating Risk while Addressing Quality and Sustainability ISO Standards in Strengthening Organizational Resilience and Mitigating Risk while Addressing Quality and Sustainability January 20, 2017 Copyright 2012 BSI. All rights reserved. Who is BSI? By Royal Charter:

More information

STANDARD. Competence management systems DNVGL-ST-0049: DNV GL AS

STANDARD. Competence management systems DNVGL-ST-0049: DNV GL AS STANDARD DNVGL-ST-0049:2014-08 Competence management systems The electronic pdf version of this document found through http://www.dnvgl.com is the officially binding version. The documents are available

More information

BS2482 TIMBER BOARDS ASSESSMENT REPORT. Assessment Summary

BS2482 TIMBER BOARDS ASSESSMENT REPORT. Assessment Summary BS2482 TIMBER BOARDS ASSESSMENT REPORT : Category: Manufacturer Manufacturer Manufacturer Manufacturer Location: Name: Location Location Location Location Previous Assessment Category: N/A Meeting With:

More information

IAQG 9101:2014 (Rev. E)

IAQG 9101:2014 (Rev. E) IAQG 9101:2014 (Rev. E) Changes Overview Conformity plus Performance Equals Effectiveness Prepared by the IAQG 9101 team 2014-04-08 Presentation Objectives Part One: Provide Overview of 9101:2014 (Rev.

More information

THE NEW ISO STANDARDS ON MANAGEMENT SYSTEMS & THE EFQM EXCELLENCE MODEL

THE NEW ISO STANDARDS ON MANAGEMENT SYSTEMS & THE EFQM EXCELLENCE MODEL THE NEW ISO STANDARDS ON MANAGEMENT SYSTEMS & THE EFQM EXCELLENCE MODEL 1. Introduction In the year 2015 two ISO standards were revised. ISO 9001:2015, released on October 1, and ISO 14001:2015, released

More information

ISO 28002: RESILIENCE IN THE SUPPLY CHAIN: REQUIREMENTS WITH GUIDANCE FOR USE

ISO 28002: RESILIENCE IN THE SUPPLY CHAIN: REQUIREMENTS WITH GUIDANCE FOR USE Version 1b: September 5, 2009 ISO 28002: RESILIENCE IN THE SUPPLY CHAIN: REQUIREMENTS WITH GUIDANCE FOR USE Draft Version 1b: September 5, 2009 Abstract A comprehensive management systems approach to prevent,

More information

EN39 TUBE ASSESSMENT REPORT. Assessment Summary

EN39 TUBE ASSESSMENT REPORT. Assessment Summary EN39 TUBE ASSESSMENT REPORT : Category: Manufacturer Manufacturer Manufacturer Manufacturer Location: Name: Location Location Location Location Previous Assessment Category: N/A Meeting With: Assessment

More information

What, Why and how? Transition to TickITplus... Welcome and Introduction

What, Why and how? Transition to TickITplus... Welcome and Introduction Transition to TickITplus... What, Why and how? Welcome and Introduction Peter Lawrence MSc FBCS CITP FCQI CQP Chairman Joint TickIT Industry Standards Committee Agenda Morning Welcome and benefits of TickITplus

More information

US Business Continuity Safeguarding Your Business from a Disaster

US Business Continuity Safeguarding Your Business from a Disaster US Business Continuity Safeguarding Your Business from a Disaster Juanita Hardin BMO Harris Bank Head TPS Risk and Compliance William Simmons BMO Harris Bank Vice President Business Continuity Management

More information

Guidance Document. Auditing the Cloud Controls Matrix

Guidance Document. Auditing the Cloud Controls Matrix Guidance Document Auditing the Cloud Controls Matrix Release 1: 08/08/2013 2013 Cloud Security Alliance All Rights Reserved. Valid at time of printing. All rights reserved. You may download, store, display

More information

Head of Security and Business Continuity

Head of Security and Business Continuity Services Security and Business Continuity Ser-Sec-003 07/11/2017 Author Name Author Job Title Alan Cain Head of Security and Business Continuity Version No. 1.1 EIA Approval Date 28/06/2017 Committee Recommend

More information

Summary of ISO 9001:2015 New and Changed Requirements

Summary of ISO 9001:2015 New and Changed Requirements This is a summary of the new and changed ISO 9001:2015 requirements compared to ISO 9001:2008. 4. Context of the Organization 4.1 Changes Understanding the Organization and its Context New requirement

More information

ISO 9001:2015. Quality Manual Template.

ISO 9001:2015. Quality Manual Template. www.iso-9001-checklist.co.uk Insert your company s name or logo, and address. This quality manual is the property of Your Company. It must not be reproduced in whole or in part or otherwise disclosed without

More information

Forsythes Training. RPL Policies and Procedures

Forsythes Training. RPL Policies and Procedures RPL Policies and Procedures This policy and procedure has been written in alignment with the NSW Recognition Framework and Standards 1.8 and 1.12 P a g e 1 1. Pre-Enrolment Potential participants (all

More information

AS9101 Revision E Understanding the Changes

AS9101 Revision E Understanding the Changes AS9101 Revision E Understanding the Changes Introduction Aviation, space and defense (ASD) organizations are highly regulated to ensure their products are safe and reliable, conform to statutory and regulatory

More information

Building up an IT Service Management System through the ISO Certification

Building up an IT Service Management System through the ISO Certification International Journal of Knowledge Content Development & Technology Vol.2, No.2, 31-44 (December, 2012) 31 Building up an IT Service Management System through the ISO 20000 Certification Jung-Hoon Park*,

More information

World Green Building Council Rating Tools Task Group: QUALITY ASSURANCE GUIDE FOR GREEN BUILDING RATING TOOLS

World Green Building Council Rating Tools Task Group: QUALITY ASSURANCE GUIDE FOR GREEN BUILDING RATING TOOLS World Green Building Council Rating Tools Task Group: QUALITY ASSURANCE GUIDE FOR GREEN BUILDING RATING TOOLS Version 1.1 September 2015 Introduction This guide has been developed as a part of the World

More information

Transition Strategy for VDA 6.1, VDA 6.2 and VDA 6.4. Revision January Contents. 1. Foreword

Transition Strategy for VDA 6.1, VDA 6.2 and VDA 6.4. Revision January Contents. 1. Foreword Transition Strategy for.1,.2 and.4 Revision 1.0 --- 06. January 2017 Contents 1. Foreword 2. Transition timing requirements to the relevant.x standards 3. Transition audit requirements to the relevant.x

More information

INTERNATIONAL STANDARD

INTERNATIONAL STANDARD INTERNATIONAL STANDARD ISO 19011 Second edition 2011-11-15 Guidelines for auditing management systems Lignes directrices pour l audit des systèmes de management Reference number ISO 19011:2011(E) ISO 2011

More information

ISO 14001:2015 How your ISO audit will be different. Whitepaper

ISO 14001:2015 How your ISO audit will be different. Whitepaper ISO 14001:2015 How your ISO 14001 audit will be different Whitepaper Introduction The new revision of ISO 14001 introduces some key changes which could impact how your environmental management system (EMS)

More information

Quality Management System Guidance. ISO 9001:2015 Clause-by-clause Interpretation

Quality Management System Guidance. ISO 9001:2015 Clause-by-clause Interpretation Quality Management System Guidance ISO 9001:2015 Clause-by-clause Interpretation Table of Contents 1 INTRODUCTION... 4 1.1 IMPLEMENTATION & DEVELOPMENT... 5 1.2 MANAGING THE CHANGE... 5 1.3 TOP MANAGEMENT

More information

This circular replaces and annuls the preceding circular ACCREDIA n 01/2014 ref. DC2013UTN076 of 10/01/2014.

This circular replaces and annuls the preceding circular ACCREDIA n 01/2014 ref. DC2013UTN076 of 10/01/2014. To all accredited Certification Bodies Their email Our ref.: DC2015SSV104 Milan, 23/03/2015 Re: ACCREDIA Department of Certification and Inspection circular N 5/2015 Informative communication regarding

More information

Pre Audit Transition Gap Analysis EMS (ISO 14001:2015 Only)

Pre Audit Transition Gap Analysis EMS (ISO 14001:2015 Only) Pre Audit Transition Gap Analysis EMS (ISO 14001:2015 Only) Company: Contact Name: Certification Number: Email: Contact Number: This document should be used in conjunction with the ISO 14001:2015 standards

More information

Diversified Services. Our Diversified Services include:

Diversified Services. Our Diversified Services include: Diversified Services GRC s innovative approach to risk management entails consistent development of new services to better serve our clients. By continuously striving to meet our clients' needs, GRC's

More information

Process Management Framework

Process Management Framework Process Management Framework Responsible Owner: Business Improvement Coordinator Date: February 2013 UNCONTROLLED DOCUMENT WHEN PRINTED Please refer to the BMS for the latest version Executive Summary

More information

Quality management systems

Quality management systems L E C T U R E 9 Quality management systems LECTURE 9 - OVERVIEW Quality management system based on ISO 9000 WHAT IS QMS (QUALITY MANAGEMENT SYSTEM) Goal: Meet customer needs Quality management system includes

More information

ASIS Standards: Auditing for. Improvement. Security, Risk and Resilience. Auditing. Value Added. Auditing

ASIS Standards: Auditing for. Improvement. Security, Risk and Resilience. Auditing. Value Added. Auditing Opportunities for Improvement ANSI/ASIS SPC.1 2009 Planning an Audit Value Added Auditing Evaluating Effectiveness Implementing a Successful Audit ASIS Standards: Auditing for Improvement Security, Risk

More information

ISO 9001:2015 Transition Evidence Guide

ISO 9001:2015 Transition Evidence Guide ISO 9001:2015 Transition Evidence Guide Purpose: This document provides a guide about interpretation and acceptable evidence that demonstrates compliance to the new requirements of ISO 9001:2015 Standard.

More information

Energy Management System (EnMS) White Paper

Energy Management System (EnMS) White Paper Energy Management System (EnMS) White Paper ISO 50001 / BS EN 16001:2009 Lakshy Management Consultant Pvt Ltd www.lakshy.com aiming excellence WHAT ISISO 50001 / BS EN 16001:2009STANDARD? Standard for

More information

Introduction to ISO 14001:2015

Introduction to ISO 14001:2015 ISO 14001 Introduction to ISO 14001:2015 ISO 14001 is an internationally agreed standard that sets out the requirements for an environmental management system. It helps organizations improve their environmental

More information

Moving to the AS9100:2016 series. Transition Guide

Moving to the AS9100:2016 series. Transition Guide Moving to the AS9100:2016 series Transition Guide AS9100-series - Quality Management Systems for Aviation, Space and Defense - Transition Guide Successful aviation, space and defense businesses understand

More information

Melanie Quinlan, Business Continuity & Compliance Manager, Resources & Quality Assurance

Melanie Quinlan, Business Continuity & Compliance Manager, Resources & Quality Assurance Executive Board meeting, 26 June 2017 Agenda item: 8 Report title: Report by: Action: Business Continuity Working Group update Melanie Quinlan, Business Continuity & Compliance Manager, Resources & Quality

More information

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Guidelines for information security management systems auditing

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Guidelines for information security management systems auditing INTERNATIONAL STANDARD ISO/IEC 27007 First edition 2011-11-15 Information technology Security techniques Guidelines for information security management systems auditing Technologies de l'information Techniques

More information

BINDT AUDIT PROCEDURE CONFORMITY ASSESSMENT AND CERTIFICATION/VERIFICATION OF MANAGEMENT SYSTEMS

BINDT AUDIT PROCEDURE CONFORMITY ASSESSMENT AND CERTIFICATION/VERIFICATION OF MANAGEMENT SYSTEMS Certification Services Division Midsummer House Riverside Way, Bedford Road Northampton, NN1 5NX United Kingdom Tel: +44(0)1604-438-300. E-mail: pcn@bindt.org CP14 ISSUE 6 DATED 1 st OCTOBER 2017 IMPLEMENTATION

More information

The Relevance of Risk Based Thinking in ISO 9001:2015 and ISO 14001:2015. March 4, 2016 Our webinar will begin at 1:00 PM

The Relevance of Risk Based Thinking in ISO 9001:2015 and ISO 14001:2015. March 4, 2016 Our webinar will begin at 1:00 PM The Relevance of Risk Based Thinking in ISO 9001:2015 and ISO 14001:2015 March 4, 2016 Our webinar will begin at 1:00 PM 1 The Relevance of Risk Based Thinking in ISO 9001:2015 and ISO 14001:2015 Carmine

More information

EHQMS Manual & Policy Document

EHQMS Manual & Policy Document Quality management input comprises the standard requirements from ISO 9001:2015 which are strategically deployed by our organization to achieve customer satisfaction through process control. Environmental

More information

SPECIAL AUDITS WHAT, WHY AND HOW?

SPECIAL AUDITS WHAT, WHY AND HOW? SPECIAL AUDITS WHAT, WHY AND HOW? Mike McRandall and Don McFarland (NSF-ISR) Introductions: Mike McRandall NSF-ISR Business Unit Manager, Aerospace mmcrandall@nsf.org Don McFarland NSF-ISR Technical Scheme

More information

Risk Based Thinking & QMS Risk Management as per ISO

Risk Based Thinking & QMS Risk Management as per ISO Risk Based Thinking & QMS Risk Management as per ISO 9001-2015 PMI, PMP, PMBOK and the PMI Registered Education Provider logo are registered marks of the Project Management Institute, Inc. At the end of

More information

Presentation on Crisis Management and Business Continuity. ISCA Breakfast Talk 13 September See Hong Pek, Partner, PwC

Presentation on Crisis Management and Business Continuity. ISCA Breakfast Talk 13 September See Hong Pek, Partner, PwC Presentation on Crisis Management and Business Continuity ISCA Breakfast Talk 13 September 2017 See Hong Pek, Partner, . Some definitions.. Business Continuity is the: Capacity of the organization to continue

More information

Analysis of ISO 9001:2015 against the ICoCA Certification Assessment Framework

Analysis of ISO 9001:2015 against the ICoCA Certification Assessment Framework Analysis of ISO 9001:2015 against the ICoCA Certification Assessment Framework As detailed in the ICoCA Certification Procedure, the Board of Directors assesses and recognizes standards for potential recognition

More information

ISO/IEC TR TECHNICAL REPORT

ISO/IEC TR TECHNICAL REPORT TECHNICAL REPORT ISO/IEC TR 20000-3 First edition 2009-11-01 Information technology Service management Part 3: Guidance on scope definition and applicability of ISO/IEC 20000-1 Technologies de l'information

More information

ENVIRONMENTAL AUDITING GUIDE TD 16/16/E

ENVIRONMENTAL AUDITING GUIDE TD 16/16/E ENVIRONMENTAL AUDITING GUIDE MIDDLE EAST GASES ASSOCIATION (MEGA) European Business Center, Office BC 25 Dubai Investments Park, PO Box: 166 Dubai-UAE Tel: +971-4-8135525 / Fax: +971-4-8135575 / E-mail:

More information

Governance in a Multi-Supplier Environment

Governance in a Multi-Supplier Environment Governance in a Multi-Supplier Environment This paper provides advice and guidance for organisations faced with governing a multi-supplier environment. 1. The Need for Governance ISACA, the global IT governance

More information

Managing risk and supporting innovation. Terry Mundy Business Development Manager

Managing risk and supporting innovation. Terry Mundy Business Development Manager Managing risk and supporting innovation Terry Mundy Business Development Manager Lloyd s Register EMEA BANK 26 th September Meeting with banker 2pm Developer arranges a meeting with a banker to seek agreement

More information

Gap Analysis Checklist ISO 14001:2015 Self-assessment

Gap Analysis Checklist ISO 14001:2015 Self-assessment The gap analysis checklist is one of the first tools available from the auditor s toolbox. The self-assessment questions will help you to identify gaps between your existing Environmental Management System

More information

APPLICATION for ISO Certification (All Standards) Contents

APPLICATION for ISO Certification (All Standards) Contents Section 1 APPLICATION for ISO Certification (All Standards) Contents General Information (Please complete this section for All standards) (Please complete ONLY the sections for the Standard(s) that you

More information

LB35: Verifying IT and Business Continuity. Lucas G. Aimes & Terry DiVittorio, Project Performance Corporation (PPC)

LB35: Verifying IT and Business Continuity. Lucas G. Aimes & Terry DiVittorio, Project Performance Corporation (PPC) LB35: Verifying IT and Business Continuity Lucas G. Aimes & Terry DiVittorio, Project Performance Corporation (PPC) Introductions Lucas G. Aimes Deputy Practice Lead, Verification & Verification Practice

More information

Risk Management Strategy. Version: V3.0

Risk Management Strategy. Version: V3.0 Risk Management Strategy Version: V3.0 Date: October 2016 Classification: DCC Public Document Control (Document Control Heading) Revision History (Document Control Subtitle) Revision Date Summary of Changes

More information

ISO 9001:2015 Readiness Review

ISO 9001:2015 Readiness Review ISO 9001:2015 Readiness Review Company Name Address Certification No. Contact Name Job Title Telephone Email BSI is committed to ensuring a smooth assessment for all clients wishing to certify to ISO 9001:2015,

More information

Business Framework Change How You Manage Safety

Business Framework Change How You Manage Safety Business Framework Change How You Manage Safety December 1, 2017 Joseph Muratore Mark Drozdov Today s Speakers Joseph Muratore Commercial Director BSI USA & Canada Mark Drozdov BSI CES SVP & Technical

More information

BSI ISO Revision Seminar Copyright 2014 BSI. All rights reserved.

BSI ISO Revision Seminar Copyright 2014 BSI. All rights reserved. BSI ISO Revision Seminar 2015 Copyright 2014 BSI. All rights reserved. General Awareness / Emergency Evacuation 16/11/15 Kempinski Marza Malaz We are expecting no alarms or fire drills Incase of any emergency

More information

NATIONAL HIGHWAY SECTOR SCHEMES FOR QUALITY MANAGEMENT IN HIGHWAY WORKS SCHEME 3B. Particular requirements for the application of ISO 9001:2015 FOR

NATIONAL HIGHWAY SECTOR SCHEMES FOR QUALITY MANAGEMENT IN HIGHWAY WORKS SCHEME 3B. Particular requirements for the application of ISO 9001:2015 FOR NATIONAL HIGHWAY SECTOR SCHEMES FOR QUALITY MANAGEMENT IN HIGHWAY WORKS SCHEME 3B Particular requirements for the application of ISO 9001:2015 FOR STOCKING AND DISTRIBUTION ACTIVITIES FOR STRUCTURAL STEEL

More information

New protocol FSSC version 4 What you need to know

New protocol FSSC version 4 What you need to know New protocol FSSC 22000 version 4 What you need to know i The protocol version 4, what exactly? The FSSC 22000 certification is managed by a protocol published by the FSSC Foundation, which defines the

More information

INTEGRATING ISO 9000 METHODOLOGIES WITH PROJECT QUALITY MANAGEMENT

INTEGRATING ISO 9000 METHODOLOGIES WITH PROJECT QUALITY MANAGEMENT INTEGRATING ISO 9000 METHODOLOGIES WITH PROJECT QUALITY MANAGEMENT M a r ch 2015 OBJECTIVE ISO and Project Quality Management Process Are they different or the same? ISO 9000 QMS FAMILY ISO 9000:2005 Vocabulary

More information

Internal Controls and Risk Management Report

Internal Controls and Risk Management Report 42 Internal Controls and Risk Management Report Responsibility Our Board of Directors has the overall responsibility to ensure that sound and effective internal controls are maintained, while management

More information

ISO 9001:2015. Presented By: ASEAN Eng. DEXTER T. CHUA, PIE. Conference Room, University of Mindanao March 17, 2017

ISO 9001:2015. Presented By: ASEAN Eng. DEXTER T. CHUA, PIE. Conference Room, University of Mindanao March 17, 2017 ISO 9001:2015 Presented By: ASEAN Eng. DEXTER T. CHUA, PIE Conference Room, University of Mindanao March 17, 2017 @CQL Business Systems Consulting (11-2015) ISO The International Organization for Standardization

More information

Making the Transition to ISO 14001:2015 ISO EMS Support Tools

Making the Transition to ISO 14001:2015 ISO EMS Support Tools Making the Transition to ISO 14001:2015 ISO EMS Support Tools Friday 15 th September 2017 12:30-13:30 BST (GMT +1) For more information, view the SC1 website: https://committee.iso.org/home/tc207sc1 Speakers

More information

Moving from ISO/TS 16949:2009 to IATF 16949:2016. Transition Guide

Moving from ISO/TS 16949:2009 to IATF 16949:2016. Transition Guide Moving from ISO/TS 16949:2009 to IATF 16949:2016 Transition Guide IATF 16949:2016 - Automotive Quality Management System - Transition Guide An effective Quality Management System is vital for organizations

More information

Management System Manual International Compliance Group

Management System Manual International Compliance Group Granting, refusing, maintaining, renewing, suspending, restoring or withdrawing certification. Page 1-1 Initial certification audit General - ICG s auditing work is conducted in two stages: Stage 1 and

More information

Corporate policy. Business Continuity Management Policy. Issue sheet

Corporate policy. Business Continuity Management Policy. Issue sheet Corporate policy Business Continuity Management Policy Issue sheet Document reference Document location Title Author Issued to Reason issued NHSBSADPN001b S:\BSA\IGM\Mng IG\Developing Policy and Strategy\Develop

More information

IATF 16949:2016 TRANSITION INFORMATION

IATF 16949:2016 TRANSITION INFORMATION IATF 16949:2016 TRANSITION INFORMATION ISO/TS 16949 Overview ISO/TS 16949 Technical Specification for Automotive Quality Management Systems, in conjunction with ISO 9001, defines the quality system requirements

More information

Risk Management Strategy

Risk Management Strategy Risk Management Strategy 2017-2019 Created by: Role Name Title Author / Editor Kevin McMahon Head of Risk Management & Resilience Lead Executive Margo McGurk Director of Finance & Performance Approved

More information

ISO 9001 Quality Management Systems

ISO 9001 Quality Management Systems ISO 9001 Quality Management Systems INFORMATION GUIDE ISO 9001 Background ISO 9001:2015 is the world s foremost quality management standard, used by hundreds of thousands of organisations in over 170 countries

More information

Update from the Business Continuity Working Group

Update from the Business Continuity Working Group Agenda item: 13 Report title: Report by: Action: Update from the Business Continuity Working Group Steve Jones, Head of Facilities, Resources and Quality Assurance, stjones@gmc-uk.org, 0161 923 6287 To

More information

NATIONAL HIGHWAY SECTOR SCHEMES FOR QUALITY MANAGEMENT IN HIGHWAY WORKS SCHEME 19A. Particular requirements for the application of ISO 9001:2015 FOR

NATIONAL HIGHWAY SECTOR SCHEMES FOR QUALITY MANAGEMENT IN HIGHWAY WORKS SCHEME 19A. Particular requirements for the application of ISO 9001:2015 FOR NATIONAL HIGHWAY SECTOR SCHEMES FOR QUALITY MANAGEMENT IN HIGHWAY WORKS SCHEME 19A Particular requirements for the application of ISO 9001:2015 FOR CORROSION PROTECTION OF FERROUS MATERIALS BY INDUSTRIAL

More information

ISO /TS 29001:2010 SYSTEMKARAN ADVISER & INFORMATION CENTER SYSTEM KARAN ADVISER & INFORMATION CENTER

ISO /TS 29001:2010 SYSTEMKARAN ADVISER & INFORMATION CENTER SYSTEM KARAN ADVISER & INFORMATION CENTER SYSTEM KARAN ADVISER & INFORMATION CENTER PETROLEUM, PETROCHEMICAL AND NATURAL GAS INDUSTRIES -- SECTOR-SPECIFIC QUALITY MANAGEMENT SYSTEMS -- REQUIREMENTS FOR PRODUCT AND SERVICE SUPPLY ORGANIZATIONS

More information