|
ISO 28000 2007 SUPPLY CHAIN SECURITY STANDARD
PLAIN ENGLISH OVERVIEW |
|
Also see a MORE DETAILED VERSION OF ISO 28000 |
This web page
presents a plain English overview
of the
ISO 28000 Supply Chain Security Management Standard.
NOTE:
ISO 28000 presents its
requirements in
sections 4.1 to 4.6. Therefore, the following
overview begins with section 4.1.
|
OVERVIEW OF ISO 28000 2007 REQUIREMENTS |
|
4.1 GENERAL SECURITY REQUIREMENTS |
|
• Establish an effective security management system (SMS). • Define the scope of your security management system. |
|
4.2 SECURITY POLICY REQUIREMENTS |
|
• Authorize the establishment of a security management policy. • Document your organization's security management policy. • Implement your organization's security management policy. • Maintain your organization's security management policy. |
|
4.3 SECURITY PLANNING REQUIREMENTS |
|
4.3.1 Analyze security threats and select controls. 4.3.2 Respect legal and other security requirements. 4.3.3 Set unique security management objectives. 4.3.4 Specify your security management targets. 4.3.5 Develop security management programs. |
|
4.4 SECURITY IMPLEMENTATION REQUIREMENTS |
|
4.4.1 Create a security management structure. 4.4.2 Ensure competence and provide security training. 4.4.3 Develop security communication procedures. 4.4.4 Establish your SMS documents and records. 4.4.5 Control your SMS documents and data. 4.4.6 Implement operational SMS control measures. 4.4.7 Prepare emergency SMS plans and procedures. |
|
4.5 SECURITY CHECKING REQUIREMENTS |
|
4.5.1 Monitor and measure security performance. 4.5.2 Evaluate your security management system. 4.5.3 Investigate security incidents and take action. 4.5.4 Control your security management records. 4.5.5 Audit your security management system. |
|
4.6 SECURITY REVIEW REQUIREMENTS |
|
• Review your SMS by examining inputs. • Assess the results of management reviews. • Generate management review outputs. |
|
SMS means Security Management System. Also see a MORE DETAILED VERSION OF ISO 28000. |
|
|
|
This page summarizes the ISO 28000 standard.
See a more detailed version of
ISO 28000 |
|
Our Title 80 provides a detailed, accurate, and complete
|
| Home Page | Our Libraries | A to Z Index | Our Customers |
| How to Order | Our Products | Our Prices | Our Guarantee |
|
PRAXIOM RESEARCH GROUP
LIMITED |
|||
|
Updated on January 20, 2010. On the Web since May 25, 1997. |
|||
Legal
Restrictions on the Use of this Page
Thank
you for visiting this page. You are, of course, welcome to view our
material as often as you wish, free of charge. And as long as you
keep intact
all copyright notices, you are also welcome to print or make one
copy of this
page for your own personal, noncommercial, home use.
But, you are not
legally authorized to print or produce additional copies, or to
copy and paste
any of our material onto another web site. If you would like
to purchase our
material, please contact our Sales Desk. Our staff would be very
pleased to
take your order or to answer any questions you might have.
Copyright © 2010 by Praxiom Research Group Limited. All Rights Reserved.
