ISO 28000


For organizations working within, or relying on, the logistics industry, certification to the ISO 28000:2007 supply chain management standard provides a valuable framework. It will help minimize the risk of security incidents and so help provide problem-free 'just in time' delivery of goods and supplies.

ISO 28000:2007 is a management system specification for the protection of people, property, information and infrastructure; in companies and organizations participating in local, national and international supply chain operations.

ISO 28000:2007 is suitable for all sizes and types of organizations that are involved in the production of goods, manufacturing, services, storage or transportation at any stage of the products’ development or movement in the supply chain. Supply chain security is an essential requirement for companies involved in the international supply chain, especially those having to comply with stronger security demands from Customs and/or their business partners.

ISO 28000:2007 is a risk-based standard, similar to ISO 14001, integrating the management system process-based approach of Plan-Do-Check-Act (PDCA) and the requirement for continual improvement. It provides a systems approach for any organization to manage its security program and can be the foundation for a variety of international security initiatives, including: the International Maritime Organization’s International Ship and Port Facility (ISPS) Code; the National Customs Department’s Authorized Economic Operator (AEO) program, which is based on the World Custom Organization’s Framework of Standards to Secure and Facilitate Global Trade by Operator program; the EC’s Regulation for Enhancing Supply Chain Security AEO program; and US Customs and Border Protection Initiative, the Customs- Trade Partnership Against Terrorism (C-TPAT).

The objective of these initiatives is to improve the movement of cross-border trade by ensuring that members of the supply chain are confirmed as secure traders. They are inclusive initiatives in that companies and operators that are confirmed as “secure traders”, and that are seeking the advantages of trade facilitation, will require their business partners -- both up-stream and down-stream -- to attain “secure trading” status.

Why ISO 28000

Companies using ISO 28000 will implement a protective security program based on the identification of risks. This security-risk assessment provides the means for an organization to identify and prioritize risks and implement management strategies to mitigate or eliminate those risks. This allows companies to plan and manage the security program, while at the same time directing budgets towards the areas of importance.

"Where companies apply best practice security they have demonstrated reductions in Customs inspections, increased the automated handling of imports, reduced transit times, improved on-time shipping to customers, reduced inventory theft, reduced excess inventory and reduced customer attrition rates." (Stanford University Study, 2006)

ISO 28000 is the international benchmark for managing security programs in different countries, while simultaneously applying a globally consistent standard of operations.

We are offering accredited certificate with Right accreditation Board for ISO 28000 globally.