ISO 28001 Certification - Supply Chain Safety Management System

The ISO 28001 standard defines the requirements for the implementation of a security management system along the supply chain (Supply Chain Security).
Companies are increasingly called upon to guarantee their customers compliance with stringent security parameters for their supply chains, identifying and managing the risks and threats present, thus ensuring business continuity. These aspects include all those activities managed, controlled or influenced by the organization that have a direct or indirect impact on the security of the supply chain.

The ISO 28000 standard makes it possible to meet these needs, representing the reference standard for improving the security of the supply chain. The standard is applicable to organizations of any size operating in all sectors, from production to services, from logistics to transport and covers every stage of production or supply, including distribution (supply chain).

Contents of the ISO 28001 standard

The standard has been structured according to the points of ISO 14001 and is divided into 4 sections, of which the fourth develops the definition of the requirements, taking up the classic PDCA model (plan-do-check-act), whose objectives are:

  • establish, implement, maintain and improve a safety management system
  • ensure compliance with the safety management policy
  • prove this compliance to third parties.

Advantages of the ISO 28001 standard

The ISO 28001 certification issued by CSI will allow to:

  • adopt a risk management approach to develop a preventive approach to the management of hazards for supply chain control
  • manage "supply chain security" as an organic process within a more complex management system, such as the quality and environmental management system (integrated systems)
  • reduce customs times and make administrative procedures more efficient
  • facilitate the process of obtaining TAPA certifications and AEO authorization
  • strengthen the relationship of trust with Stakeholders and with insurance companies
  • ensure compliance with own security policies or those of large customers.

 Examination of the application and documentation sent by the Company, listed in the "Special rules" specific to the product to be certified. Any deficiencies and significant deviations from the requirements, found at this stage, will be communicated so that the appropriate changes can be introduced before the assessment visit is carried out. Upon request, CSI will appoint an inspector to visit the organisation to verify the conformity of the product, process or service. If the results of the visit include non-conformities or observations, a corrective action plan will be required to meet the requirements for the issue of the product certificate. After all the non-conformities that may have emerged from the assessment visit have been passed, and after the positive outcome of the laboratory tests, certification will be granted. The issue of the certificate will be followed by surveillance visits to verify that compliance is being maintained. The frequency of surveillance visits and laboratory tests, if any, is fixed by the special rules applicable. The certification shall have the validity defined in the specific special rules, on expiry the contract shall be deemed to be tacitly renewed unless terminated by one of the two contracting parties 4 (four) months before the expiry date. Tool to certify, though an official recognized third-party body endorsement, that the company is compliant to the requirement... Tool to certify the capability of an organization to gain and maintain steadily, service standard declared to the public... Formal act of a third-party body that certify the conformity of the product technical reference documents, marketing deed to enhance and diversify the product... For years the training offered by IMQ group represented a point of reference for professional development and the update of freelance and employees. Second and third-party, inspections and testing: expert auditors capable to understand the situation of the company...