How to get ISO 28000 Certification?

ISO 28000:2007 – Specification for security management systems for the supply chain is the International Organization for Standardization standard on requirements of a security management system particularly dealing with security assurance in the supply chain.I SO 28000:2007 was developed to codify operations of security within the broader supply chain management system. The PDCA management systems structure was adopted in developing ISO 28000:2007

 

 Key steps in the certification process are:

 

 

·         Definition of certification scope

·         Pre-audit (optional): gap analysis and diagnosis of your current position against standard Certification audit performed in 2 stages:

–       Stage 1 – readiness review performed to verify that the organization is ready for certification

–       Stage 2 – evaluation of implementation, including the effectiveness, of the management system of the organization

·         A certificate valid for 3 years is issued upon satisfactory results of stage 2 audit

·         Surveillance audits to verify that the management system continues to fulfill the requirements of the standard and monitor the continual improvement

·         Re-certification after 3 years to confirm the continued conformance and effectiveness of the management system as a whole.