"Quality Innovation"


In today's global economic context, security management has become a complex problem in all industries, particularly the supply chain. Safety incidents occurring in the international supply chain are likely to be a menace to international trade and economic growth of nations. People, goods, infrastructure, and equipment which includes means of transport should be protected from safety incidents and impacts which are likely to damage them. This protection benefits the entire economy and society. Therefore, ISO 28000 was born to ensure security, prevent potential threats, assess risks affecting the success of businesses.

  1. WHAT IS ISO 28000?
  • ISO 28000: 2007 is an International Organization for Standardization which includes requirements of a security management system particularly dealing with security assurance in the supply chain. Security management is linked to many other aspects of business management. These aspects include all activities controlled or influenced by organizations that impact on supply chain security.
  • ISO 28000 applies to organizations of all sizes, from small businesses to multinational companies, in manufacturing, service, storage or transportation at any stage of the production or supply.
  1. Why should businesses apply ISO 28000?

    The common reasons why organizations and businesses should apply ISO 28000 is related to:

  • The development of a security management system
  • Internal compliance with the objectives of security management policies,
  • External compliance with the best practice benchmarks
  • ISO certification.
  1. SCOPE

       ISO 28000: 2007 was developed to encrypt security activities in the wider supply chain management system. The structure of the PDCA management system has been applied in the development of ISO 28000: 2007 so that elements of this standard can be suitable with related standards such as ISO 9001: 2000 and ISO 14001: 2004.

Improve integrated risk management

       The development of an international standard which aims to address security risk management, wider the interface with existing risk management of enterprises in a common integrated platform. This integrated approach of managing risks is often employed to better coordinate with cross-functional risk management mechanisms, improve performance measurement, ensure continuous progress, and reduce misalignment of goals. Risk management among silos. [3]


The application of ISO 28000 has significant benefits in the strategy, organization and operations of large businesses that are implemented throughout the supply chain and business practices. [4]

Integrated enterprise resilience

Systematized management practice

Enhance reputation and brand awareness

Improve supply chain performance

Guaranteed according to international law

Better compliance process

Favorable for trading and transporting goods across borders

Establish prevention plans

Maintain optimal security

In a recent report, Maritime Safety Committee of International Maritime Organization (IMO) said, "Currently, a number of organizations, stations and ports have adopted ISO 28000 and are certified by an accredited third-party independent certification body", simultaneously, acknowledged, "ISO standards can be applied to ships of all sizes, types, using purposes and internationally, inland or autonomous region operations. "A similar perception could also apply to any other transport stage in the supply chain.


Mr. Alan Bryden - ISO Secretary - General said, "Threats in the international market seem to be borderless. The ISO 28000 series provides a global solution to this global problem. With a security management system is internationally recognized, supply chain stakeholders can ensure the safety of goods and people, in the context of convenient international trade and thus will contribute, create prosperity for the whole society in general ".

Chia sẻ

Dịch vụ liên quan Protection Status