ISO 28000:2007 - Specification for Security Management Systems for the Supply Chain

ISO 28000:2007 identifies the needs for a security management system, including those aspects dangerous to security assurance. Security management is linked to many other aspects of business management. Aspects include all activities controlled by organizations that impact on supply chain security. Other aspects should be considered where and when they have an impact on security management, including transporting these goods beside the supply chain.

For organizations working within, or relying on, the logistics industry, certification to the ISO 28000:2007 supply chain management standard offers a precious framework. It will minimize the risk of security incidents and therefore support offer problem-free 'just in time' delivery of goods and supplies.

Standard is appropriate for all sizes and types of organizations that are involved in the production of goods, manufacturing, services, storage or transportation at any stage of the products, enlargement or movement in the supply chain. It recognize necessities for implementing and operating a SMS, including organizational (security) structure, authorized personnel dependable for security management, assessing and maintaining competence of personnel and training for personnel responsible for security.


  • Improved credibility and brand acknowledgment
  • Greater compliance procedures and systematized practices
  • Integrated enterprise pliability
  • Benchmarking against globally identifiable criteria
  • Enhanced supply chain performance