ISO 28000 security management system for the supply chain

ISO 28000 has been updated from a supply chain security management system to a more holistic security management system that includes your supply chain. These changes enable organizations to take a more robust approach that is more relevant to the risks of today, and tomorrow.

Key changes in this update include:

• the adoption of the ISO harmonized structure, to improve clarity, and bring consistency through alignment with other management systems you may have implemented;
• terms and definitions no longer include specific supply chain terminology, e.g. supply chain, downstream, upstream but they are included in the wording of the standard;
• clause 4 (context of the organization) includes a new section (4.2.3) which provides the recommended principles for security management that an organization should apply; and
• clauses have been added that are specific to security management or aspects of supply chain management.

Starting September 2023 audits to the ISO 28000:2022 standard will be available from BSI. The transition period ends 31 March 2025.

ISO 28000 brings big benefits to companies of all sizes. By allowing you to respond to the increasing customer demands for proof of systematic security management, an ISO 28000 compliant management system can improve your business confidence, reputation and future growth. It also helps you:

• facilitate trade and expedite the transport of goods across borders;
• monitor and manage security risks throughout your business and supply chain;
• gain a competitive advantage and win new business;
• encourage companies to secure their own processes within supply chains;
• reassure stakeholders of  your organization’s commitment to the safety of individuals and the security of goods and services;
• allows management to focus finite resources in areas of greatest concern;
• benchmarks your organization’s security management practices with international best practice;
• achieve cost savings through a reduction in security incidents and potential reduction in corporate insurance premiums; and
• gain opportunities to improve efficiency across the working practice.

No matter what the size of your business or your stage in the production or supply chain, ISO 28000 can help smaller organizations in the manufacturing, service, storage and transportation sectors to manage security risks and ensure continuity of supply. Supply chain security management helps SMEs have the confidence to meet expectations – from legal to new business opportunities – giving you a solid and secure base to grow.

We pioneered standards more than 100 years ago and today we’re the market leader. We help over 80,000 clients ranging from top global brands to small ambitious businesses in 182 countries worldwide to gain an edge over their competition.

As one of the few organizations that understands standards from start to finish, we don’t only assess how well you’re meeting them, we create new standards from scratch and train teams globally to use them and perform better. Our knowledge can transform your organization.