Supply Chain Security Management

Want to protect your company from information security risks in the supply chain, meet compliance obligations and win new business? Our experienced ISO 28000 consultants can help. 

Get a quote Other ISO Standards

What is ISO 28000 certification?

ISO 28000 is the international security standard against which organisations may seek independent certification of their supply chain security management system. It specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving security management, using a continual improvement approach.

The ISO 28000:2022 standard provides a best practice framework to reduce security risks across all activities, functions and operations that have an impact on the security management of the organisation including (but not limited to) its supply chain. It can be also be implemented alongside other related standards such as ISO 27001.

Do you need assistance in achieving ISO 28000 certification or do you already have ISO 28000:2007 certification and need to transition to the 2022 version of the standard?

Please contact us to see how our consultancy team can help

How it can make a difference to your organisation

Better risk management

Reduced risk

Monitor and manage security risks throughout your business and supply chain

Edge over the competition

Win more buisness

ISO 28000 Certification can be a key differentiator or a condition to supply, opening the doors to more opportunities and increased sales.

Increased security

Security incidents

Achieve cost savings through a reduction in security incidents and potential reduction in corporate insurance premiums

Improved documentation

Regulatory compliance

This international best-practice certification will demonstrate your compliance with recognised standards and legal obligations when it comes to information security.

Ensure accountability

Customer assurance

Reassure stakeholders of  your organization’s commitment to the safety of individuals and security of goods and services

International recognition

International recognition

Adopting an internationally recognised standard will improve your organisation’s reputation and allow you to attain stakeholder requirements on a worldwide scale.

Our ISO 28000 certification lifecycle

Gap analysis

Gap Analysis

We compare your current processes against information security best practice

Find out more



We project manage your implementation, developing key documentation and providing consultancy support

Find out more



We liaise with the external ISO assessors to organise the assessment and support you through the certification process

Find out more



Following certification, we help you to maintain and improve your system to ensure continued compliance

Managed Services

Why choose Teamwork IMS?

Experienced Professionals

Experienced Professionals

Since 2007, Teamwork has been solving compliance challenges for a huge range of organisations, from SMEs to large international corporates. Our team of professionals includes CISSP, PCI Security Standards Council QSA, MBCI, GDPR, IEMA, ESOS, NEBOSH and CMIOSH qualified consultants.

Multi-disciplinary team

Multi-disciplinary team

Our knowledge and experience across a broad base of management and technical Standards make us uniquely equipped to help organisations to develop a Supply Chain Security Management System and integrate with existing management systems to achieve significant savings and efficiencies.

Part of your business

Part of your business

Our success has been firmly based on two key principles: the ability of Teamwork consultants to look beyond the standard in question and identify, define and align with the real business drivers of our customers, and our innate ability to become one with our customer’s own management teams.

Global credentials

Global credentials

We have developed and led UKAS-accredited ISO and other standards-based service improvement programmes for private and public-sector organisations across an international client base.

Have you considered multiple standards?

  • Save time and money by implementing standards in parallel
  • Create an effective integrated management system and avoid duplication
  • Become globally recognised for best practices with multiple standards
  • Add value to your business and strengthen your sales proposition
  • Gain a long-term compliance partner with our passionate consultants
  • Protect your business from threats by complying with all relevant standards

Related Standards

ISO 27001

ISO 27001

Information Security Management System Certification (ISMS)



Data Protection and GDPR Consultancy

ISO 22301

ISO 22301

Business Continuity Management Certification (BCMS)

ISO 20000

Service Management Systems Certification (SMS)

Frequently asked questions

How long does it take to implement an ISO 28000 compliant supply chain security management system?

The time it takes to implement an ISO 28000 compliant management system can vary depending on the size and complexity of your organisation, but it typically takes between 4 – 6 months.

Can Teamwork IMS guarantee successful certification?

We have a 100% success rate guiding our clients through ISO 28000 certification, however, it’s important to note that the certification we support you through is carried by an entirely separate, accredited certification body and by its nature is not something we can ever guarantee. We believe that this gives you a level of compliance that is second to none.

How do you help us prepare for ISO 28000 certification?

We can help you at every step of the way, firstly by conducting a gap analysis of your current supply chain security management practices, then by developing a customised implementation plan, providing training and support to your staff, and finally by helping you navigate the certification process.

Can Teamwork help with maintenance and continuous improvement after certification?

Yes absolutely. We can provide ongoing support to help you maintain compliance with the standard and continuously improve your service management system. This can include conducting regular internal audits, facilitating management reviews, providing training and guidance on process improvements, and helping you address areas where you are no longer meeting the standards and suggesting effective remedies.

We practice what we preach

For a consultancy team who routinely manage compliance programs for other organisations, progressing through our own certification process is always a valuable reminder of how the experience feels and we think that this contributes towards our efficient but sympathetic approach to consulting for others.

View our certifications

Get in touch today


    Email address

    Phone number