What Is ISO 28007?
ISO 28007 is widely known for providing the requirements for Ships and Marine Technology for private maritime security companies. The PMSC security management system enables organizations to manage the security of the company’s assets such as Ships, Cargo and any other content or assets entrusted by third parties including customers.
Like other ISO management system standards, certification to ISO 28007 is possible through the continual improvement process and Plan, Do, Check, Act. Some organizations choose to implement the standard in order to benefit from the best practice it contains while others decide they also want to get certified to reassure customers and clients that their information systems are secure, and that company have actioned any recommendations that have been questioned.
What Are The Benefits?
- Enhanced security with added confidence. ISO 28007 certification can enhance your organisation's credibility by demonstrating that you provide appropriate PCASP services on board ships
- Improved interrelationships and risk assessment
- Improved efficiency and reduce costs
Why Choose Candy?
Our team have a minimum of 10 years of experience each within the ISO and health and safety industries. We're here to guide you through the processes and answer any questions you may have.
When you follow our guidance, you are guaranteed to achieve your ISO Certification. We are proud to say we have a 100% sucess rate to date!
We make sure all of our services are provided promptly and within the specified timeframe given. We have a set day rate and will never charge you for the days you don't use.
Our team are here to help, we want to ensure that you full understand your new management system and the importance of maintaining it in the future. No question is too silly, ask away!
Our Flexible 3 Step Process
We will complete a thorough gap analysis and review of your business processes to understand how best to implement an ISO compliant management system.
Build The System
Working with your management team we will build your new management system and where possible align to your existing processes to avoid disruptive change.
We will train your workers on the new system and how to maintain it so that you remain compliant. We will also assist you in your preparation for third-party certification audits.
The Requirements Explained
Before developing processes or procedures we need to understand the business in regards to how it is run and what factors can hinder or contribute to the running of it, in other words, what does the business do? In determining the context we will identify internal and external issues, interested parties and the scope of the Maritime Security Management System
The leadership clause requires the company’s top management to actively lead the Maritime Security Management System and be able to demonstrate this through policies and responsibilities. Leadership has an emphasis on customer focus with specific applications ranging from support for customer regulatory requirements, risks to enhancing customer satisfaction.
The top management’s responsibilities include establishing and communicating a quality policy, the importance of Maritime Security and assigning responsibilities to ensure the ongoing effectiveness of the Maritime Security Management System.
Planning addresses the process of determining the activities required to achieve the desired goal. It requires critical thinking about the risks that may occur in future and addressing these through adequate control measures. Companies are required to take a risk-based approach and plan for the uncertainties proactively to prevent undesired effects.
Another aspect of planning is to identify objectives that can be used to monitor and track the progress made.
The company is required to determine and provide the resources needed for the establishment, implementation, maintenance, and continual improvement of the Maritime Security Management System. In doing so the organisation should consider the capabilities of, and constraints on, existing internal resources and what needs to be obtained from external providers. This will include people, infrastructure, the working environment, monitoring and measuring resources, organisational knowledge, competence & awareness, communication, documented information.
Plan, implement and control the processes needed to meet the requirements for the provision of products and services and to meet the requirements of the Maritime Security Management System. These include aspects of design, control of externally provided processes, production and service provision, the release of products and services and control of nonconforming outputs.
Assessment of the company’s own performance in meeting customer and regularity requirements as well as its performance in meeting the requirements of its own Maritime Security Management System and the ISO 28007 standard. These will include activities such as, establishing what needs to be monitored and measured, customer satisfaction, analysis and evaluation of data, completing internal audits and top management carrying out a formal review on the performance of the MSMS.
Determine and select opportunities for improvement and implement any necessary actions to meet customer requirements to enhance customer satisfaction. These activities may also include improving products and services to meet requirements and address future needs and expectations, correcting, preventing, or reducing undesired effects, improving the performance and effectiveness of the quality management system and investigating and correcting non-conformance.