Management Systems

ISO 28000

ISO 28000:2022(Specification for security management systems for the supply chain)

ISO 28000:2022, Security and resilience – Security management systems – Requirements, is a management system standard published by the International Organization for Standardization (ISO). It specifies requirements for establishing, implementing, maintaining, and improving a security management system (SeMS), including aspects relevant to the supply chain.

Key points of ISO 28000:

  • Leadership commitment : Requires leadership to demonstrate commitment to security by establishing policies, setting objectives, and integrating security into operations.
  • Risk management : Identifies, analyzes, and evaluates security risks and implements controls to mitigate them.
  • Supply chain security : Addresses security throughout the supply chain, from suppliers to customers.
  • Continuous improvement : Encourages organizations to continuously improve their security management system.

Benefits of ISO 28000:

An organization would be able to implement efficient security management system

  • Enhanced credibility amongst stake holders
  • Reduction in costs related to regulations
  • Related authorities are assured that the organization is abide by applicable laws and regulations
  • Organization would gain competitive advantage with peers and market differentiation as well.