Supply Chain Security: Germanischer Lloyd Accredited for ISO 28000

Germanischer Lloyd Certification (GLC) has been authorized to audit and certify according to the industry standard ISO 28000. The new ISO standard for security management systems for the supply chain evaluates the risk management system of companies. It specifies the requirements to establish, implement, maintain and improve a security management system and how to assure and demonstrate conformity with other and legal security requirements. GLC is the first certification body worldwide accredited for ISO 28000.

“The application of ISO 28000 helps to reduce risks within the supply chain”, says Wilhelm Loskot, Head of Department Shipping and Logistics at GLC. “With an internationally recognized security risk management, companies in the supply chain can demonstrate their commitment to security to their customers and business partners. The benefit of ISO 28000 is the risk based approach which ensures effective security measures for companies.”

A certified security management system enables the supply chain stakeholders to keep ahead of threats to their operations. The risk-based approach of ISO 28000 allows to adapt the process to suit each company’s specific size, situation and needs. Compliance with the catalogue of the “Authorised Economic Operator” EU-customs initiative and C-TPAT (the US-customs initiative) can be achieved through an ISO 28000 system.

Germanischer Lloyd has developed a checklist for supply chain security management system, which guides through the system as prescribed by ISO 28000. It covers topics like the identification and assessment of risks, risk mitigation and security planning, implementation of countermeasures, monitoring and the preparation for the certification audit. GL offers the ISO 28000 certification worldwide. With its “Guidelines for the Organizations in the Supply Chain” Germanischer Lloyd additionally provides a step by step guideline for the performance of security risk assessments according to ISO 28001.

The ISO 28000 management system can be combined with other standards (e.g. ISO 9001, ISO 14001, TAPA, OHSAS) to create an integrated management system (IMS), avoid multiple audits and to achieve a reduction of costs, efforts and time.