Start a new topic and get direct answers from the Expert Advice Community.
CREATE NEW TOPIC +Search results
11277 results
Guest
Guest
Create New Topic As guest or Sign in
Assign topic to the user
-
ISO 27001 4 Context Of the Organization
Hi Rhandleal,
The scope is IT Infrastructure along with HR Administration. -
Providing evidence for requirements regarding interested parties
Answer:
The auditor will try to determine whether you identified relevant interested parties and their needs and expectations and how you are meeting those needs and expectations. Although it is not required by the standard, the best way to provide evidence that you've identified interested parties and their needs and expectations is to document them in some kind of record or register.
For more information, see: How to determine interested parties and their requirements according to ISO 9001:2015 https://advisera.com/9001academy/blog/2015/11/10/how-to-determine-interested-parties-and-their-requirements-according-to-iso-90012015/ -
Internal Audit after the ISMS release
Thank you for your answer. -
Becoming an ISO 9001 consultant
Answer:
There is no certification required to be an ISO 9001 consultant, at least in most countries. Put yourself in the shoes of a potential customer and think about what they would look and care when searching for an ISO 9001 consultant, things like background, experience with ISO 9001 and economic sectors. Most customers expect a consultant to have some certificates
These materials will also help you regarding the topic of becoming an ISO 9001 consultant:
• article - How to become an ISO 9001 consultant - https://advisera.com/9001academy/blog/2016/11/15/how-to-become-an-iso-9001-consultant/
• article - How to sell your ISO 9001 consulting services - https://advisera.com/9001academy/blog/2017/06/20/how-to-sell-your-iso-9001-consulting-services/
• article - What does ISO 9001 lead auditor training look lik e? - https://advisera.com/9001academy/blog/2020/04/10/how-to-become-an-iso-9001-lead-auditor/
• free webinar – How to sell ISO consulting services - https://advisera.com/9001academy/webinar/how-to-sell-iso-consulting-services-free-webinar-on-demand/
• free checklist - List of questions to ask an ISO 9001 consultant - https://info.advisera.com/9001academy/free-download/list-of-questions-to-ask-an-iso-9001-consultant
• - free online training ISO 9001:2015 Internal Auditor Course - https://advisera.com/training/iso-9001-internal-auditor-course/ -
Mandatory documents and records
Answer: We're sorry about this confusion. You should use the list that comes with your documentation toolkit. Besides the mandatory documents, the documents listed in the toolkit also include forms for mandatory records. -
ISMS in a bank
Answer: For implementing an ISMS, we recommend you to use the ISO 27001 standard as reference. These material can help you understand this standard and the steps required for an implementation project:
- What is ISO 27001? https://advisera.com/27001academy/what-is-iso-27001/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
- What is an Information Security Management System (ISMS) according to ISO 27001?
- The basic logic of ISO 27001: How does information security work? https://advisera.com/27001academy/knowledgebase/the-basic-logic-of-iso-27001-how-does-information-security-work/
- ISO 27001 implementation checklist https://advisera.com/27001academy/knowledgebase/iso-27001-implementation-checklist/
- ISO 27001 project – How to make it work https://advisera.com/27001academy/blog/2013/04/22/iso-27001-project-how-to-make-it-work/
- Seven key problems to avoid in ISO 27001 implementation [free webinar on demand] https://advisera.com/27001academy/webinar/seven-key-problems-to-avoid-in-iso-27001-implementation-free-webinar-on-demand/
All these materials are applicable to a bank or to any other organization.
Additionally, I suggest you to take a look at the free demo of our ISO 27001 Documentation Toolkit at this link: https://advisera.com/27001academy/iso-27001-documentation-toolkit/
This toolkit has all documents required to comply with ISO 27001, together with additional material and support to guide you through your implementation project. These templates are also applicable to any kind of organization.
These materials will also help you regarding ISO 27001 implementation:
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Conformio (online tool for ISO 27001) https://advisera.com/conformio/ -
Connecting nonconformity to the clause of the standard
These are parts made internally, not from outside suppliers.
Answer:
There are two things to be distinguished when it comes to dealing with nonconformites. First is how to handle nonconforming output or product, and this is covered with the clauses 8.7 and 10.2. These clauses define how the organization should behave when nonconformity occur.
Then you need to examine the nonconformity and determine which requirements of the standard or procedures were violated and what caused the nonconformity. In case when the employee makes and error that leads to nonconforming product, there can be various causes, from lack of competence to vague product requirements or procedure for production. All this is part of corrective action.
For more information, see: How to deal with nonconformities in an ISO 9001 certification audit https://advisera.com/9001academy/blog/2015/06/09/how-to-deal-with-nonconformities-in-an-iso-9001-certification-audit/
These materials will also help you regarding nonconformities and corrective actions:
- Free online training ISO 9001:2015 Foundations Course https://advisera.com/training/iso-9001-foundations-course/
- Conformio (online tool for ISO 9001) https://advisera.com/conformio/ -
First off/last off part validation
Ще одна поширена помилка – полив зверху, коли вода потрапляє на листя. Краще наливати воду в піддон або обережно під корінь, щоб уникнути загнивання. Блог -
Options for ISO 9001 implementation and certification
I am the head of QA department in Water utility services. I am planning for a budget to implementing ISO 90001:2015 project for next year. I am wondering what is the approximate budget to implement such project to implement the full package criteria of ISO 90001:2015 along with the certification?
I look forward to your response.
Answer:
The price of certification will depend on the certification body and the country your're in. Certification bodies determine their price by the number of audit days their certification auditors needs to spend for your certification audit. The number of audit days is determined by the number of locations you have, scope of the certification, number of employees and other factors. The best approach is to find several offers and pick the best one.
As far as the price of implementation goes, it depends on the option you select for the implementation. You can implement the standard by yourself without any help; this option will be the least expensive but it will require lot of effort and time and, at the end, you wont be 100% sure whether your ace compliant with the standard until the certification audit.
The second option is to hire a consultant and let him or her to do all the job. This is the fastest and the most expensive option, but the standard will be implemented properly. Since this option requires the least effort from your side, the chances are that you wont get sufficient knowledge during the implementation and you will need to hire a consultant from time to time when you prepare for the certification audit and this can cause additional costs.
The third option is to implement the standard by using some online solution such as ours, where you will do most of the work but all the technical stuff will be covered by the solution. This option also include the online support, so you'll get the help from the experts when you need it making it the most cost effective. Also, you will get sufficient knowledge along the implementation project to maintain the system in the future, so you won't need any external help.
For more information, see: Comparison matrices for ISO 9001 implementation solutions https://advisera.com/9001academy/comparison/