ISO 28000:2007 specifies the requirements for a security management system, including those aspects critical to security assurance of the supply chain. Security management is linked to many other aspects of business management. Aspects include all activities controlled or influenced by organizations that impact on supply chain security. These other aspects should be considered directly, where and when they have an impact on security management, including transporting these goods along the supply chain.

The framework of ISO 28000:2007 is structurally very similar to ISO 14001:2004 Environmental Management Systems (EMS) standard. The environmental aspects identification and evaluation process in EMS is similar to security risk assessment in security management.

ISO 28000 brings big benefits to companies of all sizes. By allowing you to respond to the increasing customer demands for proof of systematic security management, an ISO 28000 compliant management system can improve your business confidence, reputation and future growth.