DEKRA Certification ISO 27000:2013 SHAPING THE FUTURE

Size: px
Start display at page:

Download "DEKRA Certification ISO 27000:2013 SHAPING THE FUTURE"

Transcription

1 DEKRA Certification ISO 27000:2013 SHAPING THE FUTURE Henk Keijzer, 24 september 2013

2 Over DEKRA DEKRA HQ based in Stuttgart, Germany Active in more than 50 countries worldwide Organised in 3 Business Units with 15 specialised Services Lines Generating 1.7 billion euros in sales and employs staff DEKRA Certification BV Based in Arnhem All auditing, certification, testing and inspection activities of the former KEMA Quality are an integral part of the DEKRA Certification Group; This also applies to all related safety, conformity and certification marks, such as KEMA-KEUR Management System Certification portfolio - ISO 9001, ISO 14001, OHSAS 18001, ISO 13485, ISO , ISO 27001, TL 9001, AS 9100, TS HKZ, AHHAP - BRL 6000, BRL 9500, Borg, Toezicht, VCA*, VCA**, VCU,

3 Over ISO/IEC TC JTC1/SC27 IT Security Scope The development of standards for the protection of information and ICT. This includes generic methods, techniques and guidelines to address both security and privacy aspects, such as - Security requirements capture methodology; - Management of information and ICT security; in particular information security management systems (ISMS), security processes, security controls and services; - Cryptographic and other security mechanisms, including but not limited to mechanisms for protecting the accountability, availability, integrity and confidentiality of information; - Security management support documentation including terminology, guidelines as well as procedures for the registration of security components; - Security aspects of identity management, biometrics and privacy; - Conformance assessment, accreditation and auditing requirements in the area of information security; - Security evaluation criteria and methodology. Working Group 1 gaat over de ISO serie Ongeveer 42 landen zijn lid van de subcommittee Twee bijeenkomsten per jaar

4 ISO series of standards

5 ISO 27000, wat staat er in? Terms and definitions Geen afkortingen en definities meer in ISO27001 en ISO What is an ISMS? An Information Security Management System (ISMS) consists of the policies, procedures, guidelines, and associated resources and activities, collectively managed by an organization, in the pursuit of protecting its information assets. Overview and principles Process approach Establishing, monitoring, maintaining and improving an ISMS ISMS critical success factors ISMS family of standards Beschrijft alle documenten van het overzicht:

6 Ontwikkeling ISO Managementsysteem standaards The aim is to enhance the consistency and alignment of ISO management system standards by providing a unifying and agreed high level structure, identical core text and common terms and core definitions The aim being that all ISO management system requirements standards are aligned and the compatibility of these standards is enhanced It is envisaged that individual management systems standard will add additional discipline-specific requirements as required. Eisen voor de opzet van deze High Level Structure zijn vastgelegd in ISO/IEC Directives - Annex SL, (normative) Proposal for management system standards» Appendix 3, (normative) High level structure, identical core text and common terms and core definitions for use in Management Systems Standards

7 FDIS 27001: Introduction 1. Scope 2. Normative references 3. Terms and definitions 4. Context of the organization 5. Leadership 6. Planning 7. Support 8. Operation 9. Performance evaluation 10. Improvement A. Reference control objectives and controls

8 Common text Directives Annex XL: FDIS Leadership and commitment Top management shall demonstrate leadership and commitment with respect to the XXX management system by ensuring that the XXX policy and XXX objectives are established and are compatible with the strategic direction of the organization ensuring the integration of the XXX management system requirements into the organization s business processes ensuring that the resources needed for the XXX management system are available 5.1 Leadership and commitment Top management shall demonstrate leadership and commitment with respect to the information security management system by: a) ensuring the information security policy and the information security objectives are established and are compatible with the strategic direction of the organization; b) ensuring the integration of the information security management system requirements into the organization s processes; c) ensuring that the resources needed for the information security management system are available; d)

9 Belangrijkste wijzigingen 4 Context of the organization 4.1 Understanding the organization and its context 4.2 Understanding the needs and expectations of interested parties 4.3 Determining the scope of the information security management system 4.4 Information security management system 5 Leadership 5.1 Leadership and commitment 5.2 Policy 5.3 Organizational roles, responsibilities and authorities 6 Planning 6.1 Actions to address risks and opportunities General

10 Belangrijkste wijzigingen Information security risk assessment In lijn gebracht met de principes van ISO Define and apply an information security risk assessment process» Criteria for risk acceptance» Criteria for performing risk assessment» Identify risks associated with loss of Confidentiality, Integrity and Availability» Identify risk owners» Assess potential consequences» Assess realistic likelihood» Determine risk levels» Compare with acceptance criteria and Prioritize risks

11 Belangrijkste wijzigingen Information security risk treatment - Define and apply an information security risk treatment process» Select appropriate information security risk treatment options» Determine all controls that are necessary to implement the information security risk treatment option(s) chosen NOTE: Organizations can design controls as required, or identify them from any source» Compare the controls with those in Annex A and verify that no necessary controls have been omitted» Produce a Statement of Applicability that contains the necessary controls and justification for inclusions, whether they are implemented or not, and the justification for exclusions of controls from Annex A» Formulate an information security risk treatment plan» Obtain risk owners approval of the information security risk treatment plan and acceptance of the residual information security risks

12 Belangrijkste wijzigingen 6.2 Information security objectives and plans to achieve them 7 Support 7.1 Resources 7.2 Competence 7.3 Awareness 7.4 Communication 7.5 Documented information General Creating and updating Control of documented information

13 Belangrijkste wijzigingen 8 Operation 8.1 Operational planning and control 8.2 Information security risk assessment 8.3 Information security risk treatment 9 Performance evaluation 9.1 Monitoring, measurement, analysis and evaluation 9.2 Internal audit 9.3 Management review 10 Improvement 10.1 Nonconformity and corrective action 10.2 Continual improvement

14 Transitie NB HET VOLGENDE ONDER VOORBEHOUD Transitieperiode van 2 jaar Start op de datum van de publicatie van de nieuwe norm In het eerste jaar: - Audits volgens de oude of de nieuwe norm - Upgrade naar nieuwe norm mag, maar hoeft nog niet - Upgrade tijdens surveillance of verlengingsaudit - Certificaten volgens de oude norm zijn geldig tot einde transitieperiode In het tweede jaar: - Audits alleen nog maar volgens de nieuwe norm - Upgrade naar de nieuwe norm moet - Upgrade tijdens surveillance audit of verlengingsaudit Ge-upgrade certificaten hebben dezelfde looptijd als de oorspronkelijke 2005 certificaten

15 Vragen

16 Thank you! Henk Keijzer Lead Auditor Management Systemen Product Expert voor o.a. ISO

Informatiebeveiliging volgens ISO/IEC 27001:2013

Informatiebeveiliging volgens ISO/IEC 27001:2013 Informatiebeveiliging volgens ISO/IEC 27001:2013 Dave Hagenaars, directeur BSI Group Nederland Copyright 2012 BSI. All rights reserved. Inhoud Wie zijn wij? Waarom informatiebeveiliging? Wat is de relevantie

More information

The new ISO standard Standard Template

The new ISO standard Standard Template How Many Business Management Systems do we Need? Hunterston A, 26 September 2012 The new ISO standard Standard Template Graham Watson Integre Ltd. Outline Background to Annex SL ISO/IEC directives TMB

More information

Voorbeeld. Preview ISO 9001 INTERNATIONAL STANDARD. Quality management systems Requirements

Voorbeeld. Preview ISO 9001 INTERNATIONAL STANDARD. Quality management systems Requirements INTERNATIONAL STANDARD ISO 9001 Fourth edition 2008-11-15 Corrected version 2009-07-15 Quality management systems Requirements Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik

More information

ISO 31000 de internationale richtlijn voor risicomanagement

ISO 31000 de internationale richtlijn voor risicomanagement ISO 31000 de internationale richtlijn voor risicomanagement Dick Hortensius NEN-Managementsystemen Agenda Achtergrond en ontwikkeling ISO Guide 73 en ISO 31000 De betekenis voor risicomanagers 1 overheid

More information

Preparation for ISO 45001 OH&S Management Systems

Preparation for ISO 45001 OH&S Management Systems Preparation for ISO 45001 OH&S Management Systems HEALTH & SAFETY MANAGEMENT QUALITY MANAGEMENT ACCESSIBILITY ENVIRONMENTAL MANAGEMENT ENERGY MANAGEMENT ISO 45001 TIMELINE ISO project committee ISO PC

More information

INTRODUCTION TO ISO 9001 REVISION - COMMITTEE DRAFT

INTRODUCTION TO ISO 9001 REVISION - COMMITTEE DRAFT INTRODUCTION TO ISO 9001 REVISION - COMMITTEE DRAFT AGENDA Introduction Annex SL Changes to ISO 9001 Future Development How SGS can support you 2 INTRODUCTION ISO 9001 Revision Committee Draft Issued 2013

More information

Improving global standard to be a key driver of innovation. Colin MacNee. 2012, 2013, 2014 Duncan MacNee Limited. www.apcergroup.

Improving global standard to be a key driver of innovation. Colin MacNee. 2012, 2013, 2014 Duncan MacNee Limited. www.apcergroup. Improving global standard to be a key driver of innovation Colin MacNee Caveat The views expressed are my own and do not represent BSI CQI IAF IBM IRCA ISO IT Governance Content Where we ve come from A

More information

Market Intelligence & Research Services. CRM Trends Overview. MarketCap International BV Januari 2011

Market Intelligence & Research Services. CRM Trends Overview. MarketCap International BV Januari 2011 Market Intelligence & Research Services CRM Trends Overview MarketCap International BV Januari 2011 Index 1. CRM Trends generiek 2. CRM & IT 3. CRM in Nederland 2011 2 Index 1. CRM Trends generiek 2. CRM

More information

ISO/TC 176/SC 2 2014-07-10 2014-10-10. Quality management systems Requirements

ISO/TC 176/SC 2 2014-07-10 2014-10-10. Quality management systems Requirements DRAFT INTERNATIONAL STANDARD ISO/DIS 9001 ISO/TC 176/SC 2 Secretariat: BSI Voting begins on: Voting terminates on: 2014-07-10 2014-10-10 Quality management systems Requirements Systèmes de management de

More information

Voorbeeld. Preview ISO 10018 INTERNATIONAL STANDARD. Quality management Guidelines on people involvement and competence

Voorbeeld. Preview ISO 10018 INTERNATIONAL STANDARD. Quality management Guidelines on people involvement and competence INTERNATIONAL STANDARD ISO 10018 First edition 2012-09-01 Quality management Guidelines on people involvement and competence Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik

More information

IAF Informative Document. Transition Planning Guidance for ISO 9001:2015. Issue 1 (IAF ID 9:2015)

IAF Informative Document. Transition Planning Guidance for ISO 9001:2015. Issue 1 (IAF ID 9:2015) IAF Informative Document Transition Planning Guidance for ISO 9001:2015 Issue 1 (IAF ID 9:2015) Issue 1 Transition Planning Guidance for ISO 9001:2015 Page 2 of 10 The (IAF) facilitates trade and supports

More information

Voorbeeld. Preview ISO 14518 INTERNATIONAL STANDARD. Cranes Requirements for test loads

Voorbeeld. Preview ISO 14518 INTERNATIONAL STANDARD. Cranes Requirements for test loads INTERNATIONAL STANDARD ISO 14518 First edition 2005-02-01 Cranes Requirements for test loads Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan

More information

LRQA ISO 9001:2015. What you need to know. Improving performance, reducing risk

LRQA ISO 9001:2015. What you need to know. Improving performance, reducing risk LRQA ISO 9001:2015 What you need to know Improving performance, reducing risk Background to the changes ISO survey 2013 1.1m of 1.5m certificates were ISO 9001. The last major revision was in 2000 (minor

More information

Preparing yourself for ISO/IEC 27001 2013

Preparing yourself for ISO/IEC 27001 2013 Preparing yourself for ISO/IEC 27001 2013 2013 a Vintage Year for Security Prof. Edward (Ted) Humphreys (edwardj7@msn.com) [Chair of the ISO/IEC and UK BSI Group responsible for the family of ISMS standards,

More information

Review and Revision of ISO/IEC 17021

Review and Revision of ISO/IEC 17021 Review and Revision of ISO/IEC 17021 History - September 2000 to present ISO/IEC 17021:2006 ISO/IEC 17021:2011 Revision of ISO/IEC 17021 NWIP Discussion of progress History Developed by ISO/CASCO Working

More information

Road map for ISO 27001 implementation

Road map for ISO 27001 implementation ROAD MAP 1 (5) ISO 27001 adopts the "Plan-Do-Check-Act" (PDCA) model, which is applied to structure all ISMS processes: PDCA Plan (establish the ISMS) Do (implement and operate the ISMS) Descriprion Establish

More information

EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG

EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG WORKSHOP CWA 14167-2 AGREEMENT March 2002 ICS 03.120.20; 35.040 Dit document mag slechts op een

More information

Voorbeeld. Preview ISO/TS TECHNICAL SPECIFICATION. Road vehicles Child seat presence and orientation detection system (CPOD) Part 3: Labelling

Voorbeeld. Preview ISO/TS TECHNICAL SPECIFICATION. Road vehicles Child seat presence and orientation detection system (CPOD) Part 3: Labelling TECHNICAL SPECIFICATION ISO/TS 22239-3 First edition 2009-12-15 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

ISO 14001:2004 vs. ISO 14001:2015

ISO 14001:2004 vs. ISO 14001:2015 ISO 14001:2004 vs. ISO 14001:2015 1. General Changes at the second Committee Draft Stage The new standard: Adopts high-level structure and terminology of Annex SL, a unified guideline used for the development

More information

ISO/IEC Information & ICT Security and Governance Standards in practice. Charles Provencher, Nurun Inc; Chair CAC-SC27 & CAC-CGIT

ISO/IEC Information & ICT Security and Governance Standards in practice. Charles Provencher, Nurun Inc; Chair CAC-SC27 & CAC-CGIT ISO/IEC Information & ICT Security and Governance Standards in practice Charles Provencher, Nurun Inc; Chair CAC-SC27 & CAC-CGIT June 4, 2009 ISO and IEC ISO (the International Organization for Standardization)

More information

ISO 9001: 2008 Boosting quality to differentiate yourself from the competition. xxxx November 2008

ISO 9001: 2008 Boosting quality to differentiate yourself from the competition. xxxx November 2008 ISO 9001: 2008 Boosting quality to differentiate yourself from the competition xxxx November 2008 ISO 9001 - Periodic Review ISO 9001:2008 Periodic Review ISO 9001, like all standards is subject to periodic

More information

Specific Requirements Certification scheme for Food Safety Systems in compliance with FSSC 22000

Specific Requirements Certification scheme for Food Safety Systems in compliance with FSSC 22000 Specific Requirements Certification scheme for Food Safety Systems in compliance with FSSC 22000 Organisation s SANAS No/s. Name of Certification Body Name of person observed Role in the audit: Type of

More information

Updates on CD/ISO 9001:2015

Updates on CD/ISO 9001:2015 Updates on CD/ISO 9001:2015 Presented by Zainab Ibrahim, Senior Auditor, TUV SUD PSB Pte Ltd 30 th January 2014 27/01/2014 Corporate Presentation Slide 1 Agenda 1 About ISO 9001 & the Revision Timeline

More information

NEW SCHEME FOR THE INFORMATION SECURITY MANAGEMENT WITH ISO 27001:2013

NEW SCHEME FOR THE INFORMATION SECURITY MANAGEMENT WITH ISO 27001:2013 NEW SCHEME FOR THE INFORMATION SECURITY MANAGEMENT WITH ISO 27001:2013 INTRODUCTION The Organization s tendency to implement and certificate multiple Managements Systems that hold up and align theirs IT

More information

ISO/IEC Directives, Part 1 Consolidated ISO Supplement Procedures specific to ISO

ISO/IEC Directives, Part 1 Consolidated ISO Supplement Procedures specific to ISO ISO/IEC Directives, Part 1 Consolidated ISO Supplement Procedures specific to ISO Directives ISO/IEC, Partie 1 Supplément ISO consolidé Procédures spécifiques à l ISO Sixth edition, 2015 [Based on the

More information

ISO 9001:2015 Transition Lunch & Learn. Presenter: Conrad Soltero

ISO 9001:2015 Transition Lunch & Learn. Presenter: Conrad Soltero ISO 9001:2015 Transition Lunch & Learn Presenter: Conrad Soltero Purpose Background to the ISO 9001 development and revision timeline What the key changes are: New Structure New Content Risk Based Approach

More information

The Information Security Management System According ISO 27.001 The Value for Services

The Information Security Management System According ISO 27.001 The Value for Services I T S e r v i c e M a n a g e m e n t W h i t e P a p e r The Information Security Management System According ISO 27.001 The Value for Services Author: Julio José Ballesteros Garcia Introduction Evolution

More information

GMP-Z Annex 15: Kwalificatie en validatie

GMP-Z Annex 15: Kwalificatie en validatie -Z Annex 15: Kwalificatie en validatie item Gewijzigd richtsnoer -Z Toelichting Principle 1. This Annex describes the principles of qualification and validation which are applicable to the manufacture

More information

INTERNATIONAL STANDARD. Video systems (525/60) Video and accompanied data using the vertical blanking interval Analogue interface

INTERNATIONAL STANDARD. Video systems (525/60) Video and accompanied data using the vertical blanking interval Analogue interface INTERNATIONAL STANDARD IEC 61880-2 First edition 2002-09 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

What can Kind en Gezin (Child and Family) do for you and your family?

What can Kind en Gezin (Child and Family) do for you and your family? What can Kind en Gezin (Child and Family) do for you and your family? Discover our broad range of free services Engelse vertaling van Kennismakingsfolder ouders You are pregnant Je bent zwanger This is

More information

(normative) Appendix 2

(normative) Appendix 2 ISO/IEC Directives, Part 1, Consolidated ISO Supplement, 2014 Appendix 2 (normative) High level structure, identical core text, common terms and core definitions NOTE In the Identical text proposals, XXX

More information

Relationele Databases 2002/2003

Relationele Databases 2002/2003 1 Relationele Databases 2002/2003 Hoorcollege 5 22 mei 2003 Jaap Kamps & Maarten de Rijke April Juli 2003 Plan voor Vandaag Praktische dingen 3.8, 3.9, 3.10, 4.1, 4.4 en 4.5 SQL Aantekeningen 3 Meer Queries.

More information

ISO STANDARDS UPDATES SEMINAR CHANGES AHEAD

ISO STANDARDS UPDATES SEMINAR CHANGES AHEAD ISO STANDARDS UPDATES SEMINAR CHANGES AHEAD SEMINAR AGENDA Annex SL 18:30 ISO 9001 18:45 ISO 14001 19.30 ISO 45001 20:15 Finish 20:30 WHAT IS ANNEX SL? ANNEX SL PURPOSE Annex SL prescribes a high level

More information

Voorbeeld. Preview ISO 15031-6 INTERNATIONAL STANDARD

Voorbeeld. Preview ISO 15031-6 INTERNATIONAL STANDARD INTERNATIONAL STANDARD ISO 15031-6 Second edition 2010-08-15 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

OIML D 27 DOCUMENT. Edition 2001 (E) ORGANISATION INTERNATIONALE INTERNATIONAL ORGANIZATION

OIML D 27 DOCUMENT. Edition 2001 (E) ORGANISATION INTERNATIONALE INTERNATIONAL ORGANIZATION INTERNATIONAL DOCUMENT OIML D 27 Edition 2001 (E) Initial verification of measuring instruments utilizing the manufacturer's quality management system Vérification primitive des instruments de mesure utilisant

More information

ISO 9001 REVISION INTRODUCTION TO ISO 9001: 2015

ISO 9001 REVISION INTRODUCTION TO ISO 9001: 2015 ISO 9001 REVISION INTRODUCTION TO ISO 9001: 2015 AGENDA Introduction Structure and Terminology Changes to ISO 9001 Future Developments How SGS can support you 2 INTRODUCTION ISO/DIS 9001 Issued May 2014

More information

2014/10/21 DISCLAIMER SEMINAR FOR PREPARING FOR THE LATEST DEVELOPMENT OF ISO 9001:2015 (DIS) & ISO 14001:2015 (DIS) OVERVIEW HIGH LEVEL STRUCTURE

2014/10/21 DISCLAIMER SEMINAR FOR PREPARING FOR THE LATEST DEVELOPMENT OF ISO 9001:2015 (DIS) & ISO 14001:2015 (DIS) OVERVIEW HIGH LEVEL STRUCTURE DISCLAIMER The content of the Standards shown in this presentation is subject to change as the Standards evolve to more update version. SGS HK will continue to provide the most current SEMINAR FOR PREPARING

More information

Voorbeeld. Preview ISO 6487 INTERNATIONAL STANDARD. Road vehicles Measurement techniques in impact tests Instrumentation

Voorbeeld. Preview ISO 6487 INTERNATIONAL STANDARD. Road vehicles Measurement techniques in impact tests Instrumentation INTERNATIONAL STANDARD ISO 6487 Fifth edition 2012-10-01 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

Voorbeeld. Preview. Diagrams for the chemical and petrochemical industry. Part 1: Specification of diagrams

Voorbeeld. Preview. Diagrams for the chemical and petrochemical industry. Part 1: Specification of diagrams INTERNATIONAL STANDARD ISO 10628-1 First edition 2014-09-15 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

September 2015 Global Unit Technology & Services SAFER, SMARTER, GREENER

September 2015 Global Unit Technology & Services SAFER, SMARTER, GREENER Brief presentation of: - ISO High Level Structure for Management system standards - Key changes in ISO 9001:2015 and ISO 14001:2015 - Transition period - How to prepare for implementation of the new standards?

More information

(Draft) Transition Planning Guidance for ISO 9001:2015

(Draft) Transition Planning Guidance for ISO 9001:2015 ISO/TC 176/SC2 Document N1223, July 2014 (Draft) Transition Planning Guidance for ISO 9001:2015 ISO 9001 Quality management systems Requirements is currently being revised. The revision work has reached

More information

CQI briefing note. Annex SL

CQI briefing note. Annex SL CQI briefing note Annex SL The most important event since ISO 9001? A quarter of a century ago, in December 1987, ISO 9001 Quality systems Model for quality assurance in design/development, production,

More information

Stork after leaving the exchange: Quiet before or after the storm!

Stork after leaving the exchange: Quiet before or after the storm! CIO Track Session #2 The Future is yours! CIO Track Session #2 Stork after leaving the exchange: Quiet before or after the storm! CIO Track Session #2 The Future is yours! Bas van Werven Anchorman BNR

More information

Voorbeeld. Preview. Dit document is een voorbeeld van NEN / This document is a preview by NEN

Voorbeeld. Preview. Dit document is een voorbeeld van NEN / This document is a preview by NEN Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst voor netwerkgebruik met NEN is afgesloten. This

More information

ISO/DIS 9001:2015. Version 1.1: 12/19/ Whittington & Associates, LLC Slide 1. ISO 9001 Standard

ISO/DIS 9001:2015. Version 1.1: 12/19/ Whittington & Associates, LLC Slide 1. ISO 9001 Standard ISO/DIS 9001:2015 Plan for the Changes Whittington & Associates, LLC 6175 Hickory Flat Highway, Suite 110-303, Canton, GA 30115 www.whittingtonassociates.com 770-517-7944 Version 1.1: 12/19/14 2014 Whittington

More information

Moving from ISO/IEC 27001:2005 to ISO/IEC 27001:2013

Moving from ISO/IEC 27001:2005 to ISO/IEC 27001:2013 Transition guide Moving from ISO/IEC 27001:2005 to ISO/IEC 27001:2013 The new international standard for information security management systems ISO/IEC 27001 - Information Security Management - Transition

More information

Frequency Asked Questions Information Security Management System (ISMS) Standards Version 3.0 May 2005

Frequency Asked Questions Information Security Management System (ISMS) Standards Version 3.0 May 2005 Frequency Asked Questions Information Security Management System (ISMS) Standards Version 3.0 May 2005 The following are a set of frequently asked questions that relate to new developments regarding ISO/IEC

More information

Risk-Based Monitoring

Risk-Based Monitoring Risk-Based Monitoring Evolutions in monitoring approaches Voorkomen is beter dan genezen! Roelf Zondag 1 wat is Risk-Based Monitoring? en waarom doen we het? en doen we het al? en wat is lastig hieraan?

More information

Voorbeeld. Preview TECHNICAL SPECIFICATION IEC TS Recommendations for small renewable energy and hybrid systems for rural electrification

Voorbeeld. Preview TECHNICAL SPECIFICATION IEC TS Recommendations for small renewable energy and hybrid systems for rural electrification TECHNICAL SPECIFICATION IEC TS 62257-5 First edition 2005-07 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

IP-NBM. Copyright Capgemini 2012. All Rights Reserved

IP-NBM. Copyright Capgemini 2012. All Rights Reserved IP-NBM 1 De bescheidenheid van een schaker 2 Maar wat betekent dat nu 3 De drie elementen richting onsterfelijkheid Genomics Artifical Intelligence (nano)robotics 4 De impact van automatisering en robotisering

More information

Voorbeeld. Preview ISO 8058 INTERNATIONAL STANDARD. Air cargo Insulated containers Thermal efficiency requirements

Voorbeeld. Preview ISO 8058 INTERNATIONAL STANDARD. Air cargo Insulated containers Thermal efficiency requirements INTERNATIONAL STANDARD ISO 8058 Second edition 1999-04-01 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

Voorbeeld B C. Preview ISO/IEC 9834-3 INTERNATIONAL STANDARD

Voorbeeld B C. Preview ISO/IEC 9834-3 INTERNATIONAL STANDARD INTERNATIONAL STANDARD ISO/IEC 9834-3 Second edition 1998-10-01 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

#BMIT. Welcome. Seminar Business Continuity

#BMIT. Welcome. Seminar Business Continuity #BMIT Welcome Seminar Business Continuity Smart Business Strategies Business Meets IT - Agenda 9.30: Market Research: William Visterin, Smart Business Strategies 10.00: Chris De Blende, PwC Business

More information

EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG

EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG EUROPEAN COMMITTEE FOR STANDARDIZATION COMITÉ EUROPÉEN DE NORMALISATION EUROPÄISCHES KOMITEE FÜR NORMUNG WORKSHOP CWA 14174-3 AGREEMENT July 2001 ICS 35.240.15 Dit document mag slechts op een stand-alone

More information

Implementation Guidance for ISO 9001:2015

Implementation Guidance for ISO 9001:2015 International Organization for Standardization BIBC II, Chemin de Blandonnet 8, CP 401, 1214 Vernier, Geneva, Switzerland Tel: +41 22 749 01 11, Web: www.iso.org Implementation Guidance for ISO 9001:2015

More information

Chapter 1. The ISO 9001:2000 Standard and Certification Process

Chapter 1. The ISO 9001:2000 Standard and Certification Process CH01_pp.001-008 15/08/01 12.15 pm Page 1 Chapter 1 The ISO 9001:2000 Standard and Certification Process Overview Introduction This chapter describes the ISO 9000 Standards, ISO 9001:2000 concepts, and

More information

ISO 9001:2015 Draft International Standard Overview

ISO 9001:2015 Draft International Standard Overview BUSINESS ASSURANCE ISO 9001:2015 Draft International Standard Overview A Survey of Proposed Changes to ISO 9001:2008 Burt Holm Northern District Sales Manager 1 SAFER, SMARTER, GREENER Who is DNV GL? Is

More information

INTERNATIONAL STANDARD. Lighting of indoor work places. Éclairage intérieur pour des lieux de travail

INTERNATIONAL STANDARD. Lighting of indoor work places. Éclairage intérieur pour des lieux de travail INTERNATIONAL STANDARD ISO 8995 CIE S 008/E Second edition 2002-05-15 Lighting of indoor work places Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen.

More information

Revision of ISO 9001 Quality Management Systems Requirements

Revision of ISO 9001 Quality Management Systems Requirements Revision of ISO 9001 Quality Management Systems Requirements Frequently Asked Questions When will the new ISO 9001 be published? The international standard ISO 9001:2008 Quality management systems Requirements

More information

Voorbeeld. Preview. Anodizing of aluminium and its alloys Terms and definitions. Anodisation de l aluminium et de ses alliages Termes et définitions

Voorbeeld. Preview. Anodizing of aluminium and its alloys Terms and definitions. Anodisation de l aluminium et de ses alliages Termes et définitions INTERNATIONAL STANDARD ISO 7583 Second edition 2013-08-01 Anodizing of aluminium and its alloys Terms and definitions Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een

More information

ISO 9001:2015 QUALITY MANAGEMENT SYSTEMS AUDITOR/LEAD AUDITOR

ISO 9001:2015 QUALITY MANAGEMENT SYSTEMS AUDITOR/LEAD AUDITOR Knowledge RECOGNITION Skills retention Further excellence behaviour Ability COMPETENCE QUALIFICATION ISO 9001 Training services SGS ACADEMY www.sgs.com sgs academy transforming people and businesses As

More information

UKAS Guidance for bodies operating certification of Trust Service Providers seeking approval under tscheme

UKAS Guidance for bodies operating certification of Trust Service Providers seeking approval under tscheme CIS 3 EDITION 2 February 2014 UKAS Guidance for bodies operating certification of Trust Service Providers seeking approval under tscheme CONTENTS SECTION PAGE 1 Introduction 2 2 Requirements for Certification

More information

Annex SL (normative) Proposals for management system standards

Annex SL (normative) Proposals for management system standards Annex SL (normative) Proposals for management system standards SL.1 General Whenever a proposal is made to prepare a new management system standard (MSS), or to revise an existing one, including sectoral

More information

Voorbeeld. Preview ISO 9012 INTERNATIONAL STANDARD. Gas welding equipment Air-aspirated hand blowpipes Specifications and tests

Voorbeeld. Preview ISO 9012 INTERNATIONAL STANDARD. Gas welding equipment Air-aspirated hand blowpipes Specifications and tests INTERNATIONAL STANDARD ISO 9012 Second edition 1998-09-15 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

Is het nodig risico s te beheersen op basis van een aanname..

Is het nodig risico s te beheersen op basis van een aanname.. Is het nodig risico s te beheersen op basis van een aanname.. De mens en IT in de Zorg Ngi 19 april 2011 René van Koppen Agenda Er zijn geen feiten, slechts interpretaties. Nietzsche Geen enkele interpretatie

More information

04 Introduction and consequences

04 Introduction and consequences Briefing note Contents 03 Foreword 04 Introduction and consequences 05 Overview 06 Applicability 07 Identical core text 11 Migration 12 Bibliography Published in April 2015 by the International Register

More information

ISO WHITEPAPER. When Recognition Matters INFORMATION TECHNOLOGY SECURITY TECHNIQUES INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS

ISO WHITEPAPER. When Recognition Matters INFORMATION TECHNOLOGY SECURITY TECHNIQUES INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS When Recognition Matters WHITEPAPER ISO 27001 INFORMATION TECHNOLOGY SECURITY TECHNIQUES INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS www.pecb.com CONTENT 3 4 4 5 6 7 8 8 8 9 11 12 12 14 15 16

More information

Voorbeeld. Preview ISO 22006 INTERNATIONAL STANDARD. Quality management systems Guidelines for the application of ISO 9001:2008 to crop production

Voorbeeld. Preview ISO 22006 INTERNATIONAL STANDARD. Quality management systems Guidelines for the application of ISO 9001:2008 to crop production INTERNATIONAL STANDARD ISO 22006 First edition 2009-12-15 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information

IAF Mandatory Document

IAF Mandatory Document IAF-MD 11:2013 IAF Mandatory Document IAF MANDATORY DOCUMENT FOR THE APPLICATION OF ISO/IEC 17021 FOR AUDITS OF INTEGRATED MANAGEMENT SYSTEMS (IAF MD 11: 2013) 2013 Page 2 of 12 The (IAF) details criteria

More information

9001:2008. common. Issues. Interested. parties. Requirements. Leadership. the highest level. ons. Communication. Page 1 of 8

9001:2008. common. Issues. Interested. parties. Requirements. Leadership. the highest level. ons. Communication. Page 1 of 8 Comparing the new version of ISO 9001:2015 with ISO 9001:2008 ISO 9001: 2015 will be based on Annex SL the new high level structure (HLS) that brings a common framework to all ISO management systems. This

More information

ISO/IEC 17021:2011 Conformity assessment Requirements for bodies providing audit and certification of management systems

ISO/IEC 17021:2011 Conformity assessment Requirements for bodies providing audit and certification of management systems ISO/IEC 17021:2011 Conformity assessment Requirements for bodies providing audit and certification of management systems The publication of ISO/IEC 17021:2011 introduces some important new requirements

More information

xxxxx Conformity assessment Requirements for third party certification auditing of environmental management systems - competence requirements

xxxxx Conformity assessment Requirements for third party certification auditing of environmental management systems - competence requirements NEW WORK ITEM PROPOSAL Date of presentation 2011-02-25 Reference number (to be given by the Secretariat) Proposer ISO/TC 207/SC 2 ISO/TC 207 / SC 2 N 251 Secretariat NEN A proposal for a new work item

More information

Voorbeeld. Preview ISO 10362-1 INTERNATIONAL STANDARD. Cigarettes Determination of water in smoke condensates Part 1: Gas-chromatographic method

Voorbeeld. Preview ISO 10362-1 INTERNATIONAL STANDARD. Cigarettes Determination of water in smoke condensates Part 1: Gas-chromatographic method INTERNATIONAL STANDARD ISO 10362-1 Second edition 1999-12-15 Dit document mag slechts op een stand-alone PC worden geinstalleerd. Gebruik op een netwerk is alleen. toestaan als een aanvullende licentieovereenkomst

More information