DD ISO/PAS 28000:2005 specifies the requirements for a security management system, including those aspects critical to security assurance of the supply chain. These aspects include, but are not limited to, financing, manufacturing, information management and the facilities for packing, storing and transferring goods between modes of transport and locations. Security management is linked to many other aspects of business management. These other aspects should be considered directly, where and when they have an impact on security management, including transporting these goods along the supply chain.
DD ISO/PAS 28000:2005 is applicable to all sizes of organizations, from small to multinational, in manufacturing, service, storage or transportation at any stage of the production or supply chain that wishes to:
establish, implement, maintain and improve a security management system
assure compliance with stated security management policy
demonstrate such compliance to others
seek certification/registration of its security management system by an Accredited third party Certification Body or
make a self-determination and self-declaration of compliance with this Publicly Available Specification.
Contents
Foreword Introduction 1 Scope 2 Normative references 3 Terms and definitions 4 Security management system elements 4.1 General requirements 4.2 Security management policy 4.3 Security risk assessment and planning 4.4 Implementation and operation 4.5 Checking and corrective action 4.6 Ma...
DD ISO/PAS 28000:2005 history
2006DD ISO/PAS 28000:2005 Specification for security management systems for the supply chain