Featured Product
This Week in Quality Digest Live
Standards Features
Matthew Barsalou
How failure modes and effects analysis became commonplace
Meg Sinclair
100% real, 100% anonymized, 100% scary
Michael Mills
The answer might surprise you
Alonso Diaz
Consulting the FDA’s Case for Quality program
Master Gage and Tool Co.
Why it matters for accurate measurements

More Features

Standards News
HaloDrive Omnidirectional Drive System for heavy-duty operations
Draft publication aims to help measure and evaluate security programs
Progress via sustainability standards
Has played pivotal role in servicing and supporting the conformity assessment industry
Handle document, audit, and concerns management more effectively
Businesses with $300 million or more revenue in Europe must comply
Helps managers integrate statistical insights into daily operations
Providing practical interpretation of the EU AI Act

More News



New ISO Standard for Ensuring Supply-Chain Resilience

ISO 28002 offers a comprehensive process for prevention, recovery from disruptive incidents.

Published: Tuesday, August 23, 2011 - 12:48

(ISO: Geneva) -- Emergencies, crises, and disasters like the tsunami in Japan or the recent riots in London can happen at any time. Organizations around the world are increasingly implementing risk management processes to deal with uncertainty and ensure continuity. But if their suppliers are unable to deliver or customers unable to purchase, the ability of an organization to achieve its objectives would be compromised.

To promote resilience at every step of the supply chain, the International Organization for Standardization (ISO) has developed a new standard, ISO 28002:2011—“Security management systems for the supply chain–Development of resilience in the supply chain–Requirements with guidance for use.”

“Organizations are realizing more and more that to be resilient, it is not enough to focus on internal processes,” says Capt. Charlie Piersall, chair of the committee that developed the standard. “As they seek assurance that their suppliers and the extended supply chain in general have planned for and taken steps to prevent and mitigate the threats and hazards to which they may be exposed, there is a strong demand for standards and best practice. For resiliency, ISO 28002 is that standard.”

ISO 28002 offers a comprehensive and systematic process to enhance prevention, protection, preparedness, mitigation, response, continuity of operations, and recovery from disruptive incidents. Its generic auditable criteria, when implemented in a management system, can be used to establish, implement, monitor, review, maintain, and improve an organization’s resiliency policy to plan for, take action, and make decisions before, during, and after an incident to its supply chain.

“Today, the leadership of any organization has a duty to its stakeholders to plan for its survival,” Piersall adds. “ISO 28002 offers them an invaluable tool. Its integrated approach is both flexible and proactive, and utilizes to the maximum the knowledge, capabilities, and expertise within an organization. In this way the standard helps meet individual needs for risk management within an economically sound context.”

ISO 28002 can be applied to any organization, including private, nonprofit, nongovernmental, and public sector. Implemented within a management system, the standard enhances an organization’s capacity to manage and survive any disruptive event and take appropriate actions to help ensure its viability and continued operation. This international standard was developed as part of the ISO 28000 series on security management systems for the supply chain. ISO 28000:2007—“Specification for security management systems for the supply chain,” is the only published, certifiable international management systems standard that takes a holistic, risk-based approach to managing risks associated with any disruptive incident in the supply chain.

ISO 28002:2011 was developed by the ISO technical committee ISO/TC 8—“Ships and marine technology.” It costs 158 Swiss francs and is available from ISO national member institutes (see the complete list with contact details) and from ISO Central Secretariat through the ISO Store, or by contacting ISO’s marketing, information, and communication department.


About The Author

ISO’s picture


The International Organization for Standardization (ISO) is the world’s largest developer and publisher of international standards. ISO is a network of the national standards institutes of 162 countries, one member per country, with a Central Secretariat in Geneva, Switzerland, that coordinates the system. ISO is a nongovernmental organization that forms a bridge between the public and private sectors. ISO enables a consensus to be reached on solutions that meet both the requirements of business and the broader needs of society. View the ISO Standards list.