Blog

Focus to customer and interested parties Leadership Engagement of People Process Approach Encourage Improvement Evidence-based Decision Making Relationship Management

Information security policies (2 controls): how policies are written and reviewed. Organization of information security (7 controls): the assignment of responsibilities for specific tasks. Human resource security (6 controls): ensuring that employees understand their responsibilities prior to employment and once they’ve left or changed roles. Asset management (10 controls): identifying information assets and defining appropriate […]

Authority means a formal, institutional, or legal power in a particular job, function or position that empowers the holder of that job, function or position to successfully perform his task. Responsibility is the obligation of a subordinate to perform a duty, which has been assigned to him by his superior

Understand the structure of QMS. Understand the processes involved in auditing. Plan, manage, and schedule an audit program. Develop a cost-effective and compliant audit system. Provide value addition to the system  

ISO/IEC 17025 is an international standard for continuous improvement and self-correction. A laboratory that complies with ISO/IEC 17025 benefits in the following ways: It enhances the reliability of test results generated by the laboratory It can establish technical competency in the event of a speculation and/or legitimacy issues The efficiency of the laboratory increases, customer […]

ISO 17025 is the international standard for testing and calibration laboratories. It’s a set of requirements those laboratories use to show that they operate a quality management system and that they’re technically competent to do the work that they do. The standard is set out in five clauses: Scope Normative references Terms and definitions Management […]

A management system is a system with incorporated policies, standards operating procedures, plans, criteria and results of management norms that simply leads towards its business processes to achieve organizational core objective(s). Its core parts are EEF (Enterprise Environment Factors) and OPA (Operational Processes Assets)

Some of the major changes in the controls are: Inclusion of System engineering and project management: New controls added to address information security in project management, Secure development policy, Secure system engineering principles. Mobile device policy: This is to address increasing use of mobile devices in information processing and also use of personal devices to […]

Together these 5 risk management process steps combine to deliver a simple and effective risk management process. Step 1: Identify the Risk The first step is to identify the risks that the business is exposed to in its operating environment. There are many different types of risks – legal risks, environmental risks, market risks, regulatory […]

According to the ‘international organization for standardization’, a good organizational performance on social responsibility can have a positive impact in: HR, as it attracts and retains workers, members, clients, and users; Marketing and customer engagement, since it improves brand reputation; Increasing the commitment and productivity of employees; The relationships with stakeholders such as governments, the […]