ISO 28000 Supply Chain Security System Certificate

ISO 28000 Supply Chain Security Management System

This standard is an international standard, defines the requirements of the Supply Chain Security Management System and provides a management model to organizations that want to implement this system. The meaning of the term Security in the Supply Chain Security Management System standard is defined as resisting activities that may harm the Supply Chain with deliberate or unauthorized actions. In this context; It enables the organization to take the risks that may occur in the supply chain under control by making an effective risk assessment in some areas.

This standard draws a new framework that draws attention to critical security points in the supply chain for organizations that are in any way connected to the supply chain. This framework includes but is not limited to finance, production, information management and production facilities. On the one hand, it supports organizations operating in all industry sectors in assessing and controlling security risks, on the other hand, it aims to reduce the effects that may arise from security threats, and while doing this, it uses basic management principles such as quality, occupational safety and customer satisfaction management.


ISO 28000 Supply Chain Security Management System Standard Series

· ISO 28000 was developed by the ISO Technical Committee (TC8) “Ship and Marine Technology”. Due to its risk-based approach to security systems, it is based on the ISO format adopted by ISO 14001:2004. The standards constitute the ISO 28000 series;

· ISO 28000:2007- Supply Chain Security Management Standard (SMS) requirements standard, specifications for Supply Chain Security Management System against compliant certified organizations.

· Provides ISO 28001:2007- Requirements and guidance for international supply chain organizations.

Contributes to the integration of the Applicable Authorized Economic Operator (AEO) criteria set forth in the framework of the standards by the World Customs Organization and the implementation of national supply chain security programs.

· ISO 28002:2010 PAS - Development of flexibility in the supply chain - Requirements with user manual.

· ISO 28003:2007 – Requirements for audit and certification bodies of supply chain security systems.

· ISO 28004:2007 – Provides general recommendations on ISO 28000:2007 implementation.

· ISO/AWI 28005 – (In Development) Electronic Link Permission - Part 1: Message structures

ISO/AWI 28005- Electronic Link Permission – Part 2: Core data elementsISO 28000 Supplier Chain Security Management System Clauses
General Security Terms

4.2 Security Policy Terms
4.3 Security Planning Requirements

4.3.1 Security Threat Analysis and Selection of Controls
4.3.2 Complying with Legal and Other Security Requirements
4.3.3 Security Management Purposes Setup
4.3.4 Setting Security Management Objectives
4.3.5 Development of Security Management Programs

4.4 Security Implementation Conditions

4.4.1 Creating a Security Management Structure
4.4.2 Authorization and Security Training
4.4.3 Developing a Security Communication Procedure
4.4.4 Preparation and Recording of SMS Documents
4.4.5 Control of SMS Documents and Data
4.4.6 Implementation of Operational NES Control Measures
4.4.7 Preparation of Emergency SMS Plans and Procedures

4.5 Security Requirements Audit

4.5.1 Monitor and Measure Safety Performance
4.5.2 Evaluation of the Security Management System
4.5.3 Investigation and Action of Security Incidents
4.5.4 Security Management Records Check
4.5.5 Audit of the Security Management System

4.6 Security Review Conditions

What Are the Benefits of ISO 28000?

· Your products; It ensures that damages such as theft, loss, damage, injury and deterioration are minimized during production, storage and transportation operations.

· By bringing the activities related to the subject to the agenda of the senior management, it ensures that they are managed together with other business decisions.

Provides convenience to customs authorities by demonstrating your ability to identify and control security risks.

· It helps to gain the trust of the organizations that provide products/services.

It eliminates the possibility of damage as a result of deliberate actions against buildings, facilities and vehicles, the use of organizational tools in malicious acts, terrorist attacks, and actions aimed at harming the managers or employees of the Organization.

It ensures that security risks are identified in all sectors of the industry, necessary precautions are taken, and possible damage is minimized.

Provides convenience to customs authorities by demonstrating your ability to identify and control security risks.

Follow us :
Ekol Certification
  • AMaslak Meydan Sokak. Beybi Giz Plaza No:1 Kat:15 D:55 Sarıyer İstanbul
  • P0212 909 12 07
  • W0552 746 10 51
  • Minfo@ekolbelgelendirme.com