Search results

ISO20000 - Design and Transition of New or Changed Service

Design and Transition of new or changed services is related to other processes, as you noticed. Process description in our ISO 20000 documentation toolkit defines activities related to the process - you can find it here https://advisera.com/20000academy/iso-20000-documentation-toolkit/

Service Catalogue process is not covered in ISO 20000 documentation toolkit, but you can see a preview of the document here https://advisera.com/20000academy/itil-documentation-toolkit/

The following article can help you with design and transition process

“Overview of ISO 20000:2018 structure and requirements” https://advisera.com/20000academy/blog/2019/09/05/iso-20000-requirements-and-structure/

For more about Service Catalogue please read these articles: Service Catalogue – Defining the service” https://advisera.com/20000academy/blog/2014/03/11/service-catalogue-defining-service/ 
Choosing four main inputs for the ITIL/ISO 20000 Service Catalogue to avoid bureaucracy” https://advisera.com/20000academy/blog/2015/09/29/choosing-four-main-inputs-for-the-itiliso-20000-service-catalogue-to-avoid-bureaucracy/

Safe distance for redundant sites

ISO 22301, ISO standard for business continuity management, and most regulations and industry practices do not define any specific distance to recovery sites, because many factors can affect what would be considered a “safe” distance (e.g., type of disaster, access to public services, risk level, etc.). From our experience, I suggest you start a discussion suggesting a distance between 30 miles (50 kilometers) and 100 miles (160 kilometers) away from your primary location and from that analyze your organization's context (a geographic situation, available resources, required investment, etc.).

This article will provide you a further explanation about distance of recovery site:
- Disaster recovery site – What is the ideal distance from primary site? https://advisera.com/27001academy/knowledgebase/disaster-recovery-site-what-is-the-ideal-distance-from-primary-site/

This material will also help you regarding the distance of recovery site:
- Book Becoming Resilient: The Definitive Guide to ISO 22301 Implementation https://advisera.com/books/becoming-resilient-the-definitive-guide-to-iso-22301-implementation/

ISMS awareness

This is one way to evidence awareness, but you should also consider other alternatives, since this document is normally signed at the beginning of work relationship and stored in the employee file.

Like other methods of awareness, you should consider training sessions, and use of newsletters, which can be performed at a regular basis.

These articles will provide you a further explanation about awareness:
- What are the benefits of security awareness training for organizations? https://advisera.com/27001academy/blog/2019/03/27/what-are-the-benefits-of-security-awareness-training-for-organizations/
- How to perform training & awareness for ISO 27001 and ISO 22301 https://advisera.com/27001academy/blog/2014/05/19/how-to-perform-training-awareness-for-iso-27001-and-iso-22301/
- 8 Security Practices to Use in Your Employee Training and Awareness Program https://advisera.com/27001academy/blog/2015/03/02/8-security-practices-to-use-in-your-employee-training-and-awareness-program/

This material will also help you regarding awareness:
- Free Security Awareness Training: https://advisera.com/training/awareness-session/security-awareness-training/ - this is a series of 25 videos that cover various topics related to security.

Quality Manual best approach

The best simple approach would be to cover all requirements of the standard with a simple explanation of how your company complies with them. You should also include a link that will lead to a document that describes with more details how you meet the requirements of the standard

For more about Quality Manual, please read the article: How to write the IATF 16949 Quality Manual https://advisera.com/16949academy/blog/2017/05/31/how-to-write-the-iatf-16949-quality-manual/  

For a shorter version please read the article: Writing a short Quality Manual https://advisera.com/9001academy/knowledgebase/writing-a-short-quality-manual/

Concern about corporate quality policy

Think about the purpose of a quality policy: aligning people around a set of priorities.

I will give you my thoughts, I will write about my own practice. When I work with an organization’s top management in developing their quality policy I recommend thinking about a set of questions:

• Who are your target customers and other very relevant interested parties?
• What are the most important requirements for those target customers and other very relevant interested parties? In other words, what do they value and look for?
• In what activities should your organization be excellent to be able to satisfy target customers and other very relevant interested parties?

After discussing the questions and answers and after arriving at some consensus, I invite the organization to write a text with the following structure:

• To whom do we work (We work for clients that value …) 
• What are our top priorities. In what things we need to be excellent
• Add the commitments included and required by ISO 9001
   

The following material will provide you more information about quality policy:

How to Write a Good Quality Policy – https://advisera.com/9001academy/blog/2014/03/25/write-good-quality-policy/

[free course] ISO 9001:2015 Foundations Course - https://advisera.com/training/iso-9001-foundations-course/

[free course] ISO 9001:2015 Internal Auditor Course - https://advisera.com/training/iso-9001-internal-auditor-course/

Book - Discover ISO 9001:2015 Through Practical Examples – https://advisera.com/books/discover-iso-9001-2015-through-practical-examples/

Want to achieve AS9100 Rev D

Certification audit at multi-site organization

Once I worked as a consultant implementing a quality management system for a service company with 23 sites (21 in the mainland and 2 in two different islands. When we had the certification audit, auditors visited the headquarters and a sample of 3 site visits. But they were very interested in our internal audits and verified if all sites were audited. After certification, during surveillance audits they were always changing the sample of sites to visit. Same works for a construction company (headquarters, central yard, construction sites). 

The following material will provide you more information about certification audits:

How to prepare your company for the ISO 9001 certification audit - https://advisera.com/9001academy/03/how-to-prepare-your-company-for-the-iso-9001-certification-audit/
What questions to expect on the ISO 9001 certification audit - https://advisera.com/9001academy/blog/2016/04/19/what-questions-to-expect-on-the-iso-9001-certification-audit/
Enroll for free in the course - ISO 9001:2015 Lead Auditor Course - https://advisera.com/training/iso-9001-lead-auditor-course/
 Book – Preparing for ISO Certification Audit: A Plain English Guide - https://advisera.com/books/preparing-for-iso-certification-audit-plain-english-guide/
 

Implementing ISO 9001 and get the certification

Start with a Gap Analysis, take a picture about your organization’s starting point. With that information develop an implementation plan. After implementation, start internal audits, do your management review and after deciding to go to certification, chose the certification body.

The following material will provide you more information about implementing a quality management system:

Free ISO 9001:2015 Gap Analysis Tool - https://advisera.com/9001academy/iso-9001-gap-analysis-tool/
ISO 9001 Implementation diagram - https://info.advisera.com/9001academy/free-download/iso-9001-implementation-diagram
Checklist of ISO 9001 implementation & certification steps - https://advisera.com/9001academy/knowledgebase/checklist-of-iso-9001-implementation-certification-steps/
How long does it take to implement an ISO 9001-based QMS? - https://advisera.com/9001academy/blog/2016/07/05/how-long-does-it-take-to-implement-an-iso-9001-based-qms/
How should you pick an ISO 9001 certification body? - https://advisera.com/blog/2021/01/11/how-to-choose-an-iso-certification-body/
Free webinar on demand – Overview of ISO 9001 implementation steps - https://advisera.com/9001academy/webinar/overview-of-iso-9001-implementation-steps-free-webinar-on-demand/
Enroll for free in the course - ISO 9001:2015 Lead Implementer Course - https://advisera.com/training/iso-9001-lead-implementer-course/
Book – Discover ISO 9001:2015 Through Practical Examples – https://advisera.com/books/discover-iso-9001-2015-through-practical-examples/
 

All policies in place

Having only some policies written does not make you compliant. A policy framework is just a part of your compliance effort. You need to ensure that the policies are respected and processes are in place to support the applicability of the policies.