ISO Approves New Standard for Resilience in the Supply Chain

The latest member of the ISO 28000 series, the ISO 28002 standard for resilience in the supply chain, has been unanimously approved for publication by the International Organization for Standardization (ISO). Based on the ANSI/ASIS Organizational Resilience Standard (ANSI/ASIS.SPC.1), the ISO 28002 provides a basis for an organization to evaluate both its organizational and supply chain risks and to develop a comprehensive strategy to manage the risks that may disrupt its operations. The ISO 28000 series of standards integrate with the ISO 31000 risk management standard, which allows organizations to develop a cost-effective, holistic approach to managing risk. With ratification of the ISO 28002, the ASIS/ANSI.SPC.1 Standard becomes the only U.S. Department of Homeland Security Private Sector Preparedness (PS-Prep) standard with a ratified ISO counterpart.

“Nearly all organizations today are in some sort of supply chain,” said Dr. Marc Siegel, commissioner, ASIS International Global Standards Initiative. “By implementing the ISO 28002 with the ANSI/ASIS.SPC.1 Standard, organizations can demonstrate conformance with all the requirements of the PS-Prep Program, C-TPAT Program, the security requirements of the ISO 28000, as well as the requirements of the upcoming ISO business continuity and organizational resilience standards, not to mention the key reason for implementing a standard in the first place: assuring uninterrupted delivery of products and services.”

ISO/TC 8 is the ISO technical committee that developed the ISO 28000 series, a single approach for organizations to manage the risks of disruptive events. Like the ANSI/ASIS.SPC.1, the ISO 28002 eliminates the old paradigm of siloing disciplines into separate security, crisis, and continuity programs. By converging disciplines in one approach, organizations can better manage risks before, during and after a disruptive event.

To help organizations implement the ANSI/ASIS.SPC.1 and ISO 28002 standards, ASIS is working on an organizational resilience maturity model for phased implementation ANSI standard. In addition, ASIS is in the final stages of certification for an accredited RABQSA-RES lead auditor course. The classroom program will follow the internationally accepted standards for management system auditing and covers all the PS-Prep management system standards, as well as the ISO 28000 series and the upcoming ISO business continuity and organizational resilience standards.

Featured

  • Using Modern Technology

    Using Modern Technology

    Workplace violence is a serious and growing challenge for many organizations — including those in the healthcare industry. Read Now

  • The Core Value Proposition

    The Core Value Proposition

    Machine and deep learning algorithms are everywhere in our lives. Masquerading as AI, they are only in their infancy. Have a conversation with a ChatGPT chatbot, and it becomes clear just how far we have come in a short time and how far we have to go. Read Now

  • Progressing in Capabilities

    Progressing in Capabilities

    Hazardous areas within industries like oil and gas, manufacturing, agriculture and the like, have long-sought reliable video surveillance cameras and equipment that can operate safely in these harsh and unpredictable environments. Read Now

  • A Comprehensive Nationwide Solution

    A Comprehensive Nationwide Solution

    Across the United States, manufacturing facilities, distribution centers, truck yards, parking lots and car dealerships all have a common concern. They are targets for catalytic converters. In nearly every region, cases of catalytic converter thefts have skyrocketed. Read Now

Featured Cybersecurity

New Products

  • ComNet CNGE6FX2TX4PoE

    The ComNet cost-efficient CNGE6FX2TX4PoE is a six-port switch that offers four Gbps TX ports that support the IEEE802.3at standard and provide up to 30 watts of PoE to PDs. It also has a dedicated FX/TX combination port as well as a single FX SFP to act as an additional port or an uplink port, giving the user additional options in managing network traffic. The CNGE6FX2TX4PoE is designed for use in unconditioned environments and typically used in perimeter surveillance. 3

  • FlexPower® Global™ Series (FPG) from LifeSafety Power

    FlexPower® Global™ Series (FPG) from LifeSafety Power

    The FlexPower® Global™ Series (FPG) from LifeSafety Power—designed to provide DC power for access control systems in international applications—is now PSE listed for Japan and compatible with the country’s 100VAC applications. 3

  • BIO-key MobileAuth

    BIO-key MobileAuth

    BIO-key International has introduced its new mobile app, BIO-key MobileAuth™ with PalmPositive™ the latest among over sixteen strong authentication factors available for BIO-key's PortalGuard® Identity-as-a-Service (IDaaS) platform. 3