ISO 28000

ISO 28000 - Supply Chain Security Management System

ISO 28000 standard specifies the requirements for a supply chain security management system, linking security management to many other aspects of business management. These include all activities controlled or influenced by organizations that impact supply chain security, including transportation of these goods along the supply chain.

  • Allows security to be managed as a process so that the effectiveness of security management can be measured and improved.
  • Allows management to focus resources and efforts on areas with high-risk concerns (through a security risk assessment).
  • Allows management to benchmark its security management efforts with international standards.
  • Training, awareness and competence
  • Demonstrates to stakeholders the commitment to enforce a systematic security management

ISO 28000 is one of several developments underway for intermodal supply chain security that include the following documents:

Ships and marine technology – Maritime port facility security assessments and security plan development , which was published in June 2004, is designed to assist in the implementation of the International Maritime Organization's International Ship &Port Security (ISPS) Code. ISO 28001, Best practices for custody in supply chain security, will assist industry to meet best practices as outlined in the World Customs Organization Framework.

Security management systems for the supply chain – General guidelines on principles, systems and supporting techniques, will assist users of ISO 28000. It will reference ISO 19011, Guidelines for quality and environmental management systems auditing, and the future ISO 17021, Conformity assessment – Requirements for bodies providing audit and certification of management systems.