ISO 28003-2007 供应链安全管理系统.供应链安全管理系统机构审计和认证要求

标准号：ISO 28003-2007
中文标准名称：供应链安全管理系统.供应链安全管理系统机构审计和认证要求
英文标准名称：Security management systems for the supply chain - Requirements for bodies providing audit and certification of supply chain security management systems
标准类型：U02
发布日期：2007/8/1 12:00:00
实施日期：1999/12/31 12:00:00
中国标准分类号：U02
国际标准分类号：03.120.10;47.020.99
引用标准：ISO/IEC 17000-2004;ISO 19011-2002;ISO 28000
适用范围：This International Standard contains principles and requirements for bodies providing the audit andcertification of supply chain security management systems according to management system specificationsand standards such as ISO 28000.It defines the minimum requirements of a certification body and its associated auditors, recognizing the uniqueneed for confidentiality when auditing and certifying/registering a client organization.Requirements for supply chain security management systems can originate from a number of sources, andthis International Standard has been developed to assist in the certification of supply chain securitymanagement systems that fulfil the requirements of ISO 28000, Specification for security managementsystems for the supply chain, and other supply chain security management system International Standards.The contents of this International Standard may also be used to support certification of supply chain securitymanagement systems that are based on other specified supply chain security management systemrequirements.This International Standard- provides harmonized guidance for the accreditation of certification bodies applying for ISO 28000 (orother specified supply chain security management system requirements) certification/registration;- defines the rules applicable for the audit and certification of a supply chain security management systemcomplying with the supply chain security management system standard’s requirements (or other sets ofspecified supply chain security management system requirements);- provides the customers with the necessary information and confidence about the way certification of theirsuppliers has been granted.NOTE 1 Certification of a supply chain security management system is sometimes also called registration, andcertification bodies are sometimes called registrars.NOTE 2 A certification body can be nongovernmental or governmental (with or without regulatory authority).NOTE 3 This International Standard can be used as a criteria document for accreditation or peer assessment or otheraudit processes.