What is ISO 28000 certification?
ISO 28000 is the international security standard against which organisations may seek independent certification of their supply chain security management system. It specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving security management, using a continual improvement approach.
The ISO 28000:2022 standard provides a best practice framework to reduce security risks across all activities, functions and operations that have an impact on the security management of the organisation including (but not limited to) its supply chain. It can be also be implemented alongside other related standards such as ISO 27001.
Do you need assistance in achieving ISO 28000 certification or do you already have ISO 28000:2007 certification and need to transition to the 2022 version of the standard?
How it can make a difference to your organisation
Monitor and manage security risks throughout your business and supply chain
Win more buisness
ISO 28000 Certification can be a key differentiator or a condition to supply, opening the doors to more opportunities and increased sales.
Achieve cost savings through a reduction in security incidents and potential reduction in corporate insurance premiums
This international best-practice certification will demonstrate your compliance with recognised standards and legal obligations when it comes to information security.
Reassure stakeholders of your organization’s commitment to the safety of individuals and security of goods and services
Adopting an internationally recognised standard will improve your organisation’s reputation and allow you to attain stakeholder requirements on a worldwide scale.
Our ISO 28000 certification lifecycle
We compare your current processes against information security best practice
We project manage your implementation, developing key documentation and providing consultancy support
We liaise with the external ISO assessors to organise the assessment and support you through the certification process
Following certification, we help you to maintain and improve your system to ensure continued compliance
Why choose Teamwork IMS?
Since 2007, Teamwork has been solving compliance challenges for a huge range of organisations, from SMEs to large international corporates. Our team of professionals includes CISSP, PCI Security Standards Council QSA, MBCI, GDPR, IEMA, ESOS, NEBOSH and CMIOSH qualified consultants.
Our knowledge and experience across a broad base of management and technical Standards make us uniquely equipped to help organisations to develop a Supply Chain Security Management System and integrate with existing management systems to achieve significant savings and efficiencies.
Part of your business
Our success has been firmly based on two key principles: the ability of Teamwork consultants to look beyond the standard in question and identify, define and align with the real business drivers of our customers, and our innate ability to become one with our customer’s own management teams.
We have developed and led UKAS-accredited ISO and other standards-based service improvement programmes for private and public-sector organisations across an international client base.
Have you considered multiple standards?
- Save time and money by implementing standards in parallel
- Create an effective integrated management system and avoid duplication
- Become globally recognised for best practices with multiple standards
- Add value to your business and strengthen your sales proposition
- Gain a long-term compliance partner with our passionate consultants
- Protect your business from threats by complying with all relevant standards
Frequently asked questions
The time it takes to implement an ISO 28000 compliant management system can vary depending on the size and complexity of your organisation, but it typically takes between 4 – 6 months.
We have a 100% success rate guiding our clients through ISO 28000 certification, however, it’s important to note that the certification we support you through is carried by an entirely separate, accredited certification body and by its nature is not something we can ever guarantee. We believe that this gives you a level of compliance that is second to none.
We can help you at every step of the way, firstly by conducting a gap analysis of your current supply chain security management practices, then by developing a customised implementation plan, providing training and support to your staff, and finally by helping you navigate the certification process.
Yes absolutely. We can provide ongoing support to help you maintain compliance with the standard and continuously improve your service management system. This can include conducting regular internal audits, facilitating management reviews, providing training and guidance on process improvements, and helping you address areas where you are no longer meeting the standards and suggesting effective remedies.
For a consultancy team who routinely manage compliance programs for other organisations, progressing through our own certification process is always a valuable reminder of how the experience feels and we think that this contributes towards our efficient but sympathetic approach to consulting for others.