What Is ISO 28007?
ISO 28007 is widely known for providing the requirements for Ships and Marine Technology for private maritime security companies. The PMSC security management system enables organizations to manage the security of the company’s assets such as Ships, Cargo and any other content or assets entrusted by third parties including customers.
Like other ISO management system standards, certification to ISO 28007 is possible through the continual improvement process and Plan, Do, Check, Act. Some organizations choose to implement the standard in order to benefit from the best practice it contains while others decide they also want to get certified to reassure customers and clients that their information systems are secure, and that company have actioned any recommendations that have been questioned.
Candy Management Consultants offer payment plans. Contact Us for more information.
What Are The Benefits?
- Enhanced security with added confidence. ISO 28007 certification can enhance your organisation's credibility by demonstrating that you provide appropriate PCASP services on board ships
- Improved interrelationships and risk assessment
- Improved efficiency and reduce costs
Why Choose Candy?
Our Flexible 3 Step Process
Gap Analysis
We will complete a thorough gap analysis and review of your business processes to understand how best to implement an ISO compliant management system.
Build The System
Working with your management team we will build your new management system and where possible align to your existing processes to avoid disruptive change.
Implementation
We will train your workers on the new system and how to maintain it so that you remain compliant. We will also assist you in your preparation for third-party certification audits.
The Requirements Explained
Before developing processes or procedures we need to understand the business in regards to how it is run and what factors can hinder or contribute to the running of it, in other words, what does the business do? In determining the context we will identify internal and external issues, interested parties and the scope of the Maritime Security Management System
The leadership clause requires the company’s top management to actively lead the Maritime Security Management System and be able to demonstrate this through policies and responsibilities. Leadership has an emphasis on customer focus with specific applications ranging from support for customer regulatory requirements, risks to enhancing customer satisfaction.
The top management’s responsibilities include establishing and communicating a quality policy, the importance of Maritime Security and assigning responsibilities to ensure the ongoing effectiveness of the Maritime Security Management System.
Planning addresses the process of determining the activities required to achieve the desired goal. It requires critical thinking about the risks that may occur in future and addressing these through adequate control measures. Companies are required to take a risk-based approach and plan for the uncertainties proactively to prevent undesired effects.
Another aspect of planning is to identify objectives that can be used to monitor and track the progress made.
The company is required to determine and provide the resources needed for the establishment, implementation, maintenance, and continual improvement of the Maritime Security Management System. In doing so the organisation should consider the capabilities of, and constraints on, existing internal resources and what needs to be obtained from external providers. This will include people, infrastructure, the working environment, monitoring and measuring resources, organisational knowledge, competence & awareness, communication, documented information.
Plan, implement and control the processes needed to meet the requirements for the provision of products and services and to meet the requirements of the Maritime Security Management System. These include aspects of design, control of externally provided processes, production and service provision, the release of products and services and control of nonconforming outputs.
Assessment of the company’s own performance in meeting customer and regularity requirements as well as its performance in meeting the requirements of its own Maritime Security Management System and the ISO 28007 standard. These will include activities such as, establishing what needs to be monitored and measured, customer satisfaction, analysis and evaluation of data, completing internal audits and top management carrying out a formal review on the performance of the MSMS.
Determine and select opportunities for improvement and implement any necessary actions to meet customer requirements to enhance customer satisfaction. These activities may also include improving products and services to meet requirements and address future needs and expectations, correcting, preventing, or reducing undesired effects, improving the performance and effectiveness of the quality management system and investigating and correcting non-conformance.