Management System Standards
ISO management system standards (MSS) help organizations improve their performance by specifying repeatable steps that organizations consciously implement to achieve their goals and objectives, and to create an organizational culture that reflexively engages in a continuous cycle of self-evaluation, correction and improvement of operations and processes through heightened employee awareness and management leadership and commitment.
The benefits of an effective management system to an organization include:
- More efficient use of resources and improved financial performance,
- Improved risk management and protection of people and the environment, and
- Increased capability to deliver consistent and improved services and products, thereby increasing value to customers and all other stakeholders.
MSS are the result of consensus among international experts with expertise in global management, leadership strategies, and efficient and effective processes and practices. MSS standards can be implemented by any organization, large or small. (www.iso.org)
ISO MS Standards:
- Make the development, manufacturing and supply of products and services more efficient.
- Provide for global acceptance of certified organizations.
- Allow for sharing of technological advances and good management practices
- Provide governments with a technical base for legislation and conformity assessment.
- Make life simpler by providing solutions to common problems.
There have been more than 21,000 ISO standards issued by the International Organization for Standardization, the most popular of which are the ISO management system standards such as ISO 9001 (for quality management systems) and now ISO 20000-1 (for IT service management systems) and ISO 27001 (for IT security management systems). For aerospace companies, the ISO 9001 standard is enhanced in the aerospace standards: AS 9100 for the design and manufacture of aerospace products, AS 9110 for aviation maintenance facilities and AS 9120 for stock list distributors of aerospace components.
QMS Solutions offers consulting and training support for the following standards, among others, and would be pleased to work with your organization to achieve certification to these standards or to improve your management systems.
ISO 9001: Quality Management System
ISO 9001 is the leading international standard for a quality management system. The standard specifies the requirements for a quality management system which are recognized as being aligned with accepted good practice for running a business. ISO certification is rapidly becoming mandatory in order to do business with other countries, the government and prime contractors.
The ISO 9001 standard was completely revised in 2015 to make it user friendly and easier for small and medium sized companies to achieve certification regardless of whether they produce a product or provide a service.
There is now only one requirement standard, i.e., ISO 9001:2015. It is structured to follow the process approach for implementing a quality management system. The emphasis is no longer on documentation but rather on the effectiveness and improvement of the quality management system and the business to enhance customer satisfaction by meeting and/or exceeding customer expectations and requirements.
ISO 14001 – Environmental Management System
This international standard specifies the requirements for an environmental management system that an organization can use to enhance its environmental performance. ISO 14001 is intended for use by organizations seeking to manage its environmental responsibilities in a systematic manner that contributes to environmental sustainability. The most recent version of the standard was published in 2015.
ISO 14001:2015 helps an organization achieve the intended outcomes by implementing an environmental management system that provides value for the environment, the organization itself and interested parties. Consistent with an organization’s environmental policy, the intended outcomes of an environmental management system include:
- enhancement of environmental performance,
- fulfillment of compliance obligations,
- achievement of environmental objectives.
ISO 20000-1: IT Service Management
ISO/IEC 20000-1 is the first worldwide standard specifically devised for IT Service Management (ITSM). It describes an integrated set of managed processes for the effective delivery of services to the business and its customers. It is aligned and complimentary to the process approach defined within ITIL. ISO/IEC 20000 consists of several parts, two of which are:
- ISO/IEC 20000-1:2011 is the formal Specification. It defines the requirements to deliver managed services of an acceptable quality for its customers. It is used to assess conformance for certification.
- ISO/IEC 20000-2:2012 provides guidelines for the application of ISO/IEC 20000-1. It describes the best practices for service management processes within the scope of ISO/IEC 20000-1. It is of particular use to organizations preparing to be audited against ISO/IEC 20000 or planning service improvements
- A new version of ISO/IEC 20000-1 is expected in September, 2018, which includes adoption of the ten-clause High Level Structure for ISO management systems.
ISO 27001: Information Security Management System
ISO 27001 is the standard for an Information Security Management System (ISMS). The basic objective of the standard is to provide a model for establishing and maintaining an effective IT information management system based on the process approach.
ISO/IEC 27001:2013 is the formal requirements Specification. It is used in order to assess conformance for certification.
ISO/IEC 27002:2013 is the Code of Practice. It is aligned with the specification and used to guide the implementation of an information security management system.
ISO 45001 – Occupational Health andSafety
ISO 45001:2018 is a new ISO standard designed to help organizations improve employee safety, reduce workplace risks, and create better and safer working conditions.
ISO 21001 – Educational Organization Management System
ISO 21001:2018 is a new ISO standard designed to assist a broad range of educational organizations (any organization or part of an organization using a curriculum to support the development of competence through teaching, learning, or research) in demonstrating their capabilities and enhancing the satisfaction of learners, other beneficiaries, and staff. If you are an educational organization looking for a robust framework to help you achieve your goals and balance the needs and expectations of the various constituencies you serve, this standard may be just what you're looking for.
Aerospace Specific QMS Standards
The aerospace industry developed a series of quality management standards specifically for the industry. These standards are all based on ISO 9001 with additional requirements specific to the aerospace industry. AS 9100, 9110 and 9120 can be used to assess conformance for certification.
- AS 9100:2016 is intended for use by organizations whose primary business is to design, develop, manage and produce aviation, space and defense products and services.
- AS 9110:2016 is for use by organizations whose primary business is providing maintenance, repair and overhaul for aviation and military products; and original equipment manufacturers with maintenance, repair and overhaul operations that operate autonomously for their primary business.
- AS 9120:2016 is for use by organizations that procure parts, and assemblies and resell these products to a customer in the aviation, space and defense industries.
Related ISO Standards
In addition to the ISO Management System Standards, there are standards that do not fall under the definition of "management system standards" (and thus do not follow the ten-clause High Level Structure), but are nevertheless useful standards for organizations using one of the management system standards. These standards are guideline standards, so organizations do not get certified to them, but instead apply them to the extent appropriate to meet the organization's needs. These include:
ISO 31000 – Risk Management Guidelines
ISO 31000:2018 provides guidance for managing risk. This guidance goes above and beyond the "risk based thinking" generally required by the management system standards themselves in order to provide support for a robust risk management system tailored to the needs of the organization and its goals and objectives.
ISO 19011 – Guidelines for Auditing Management Systems
ISO 19011:2018 is a new version of the auditing guidelines that provides a firm focus on process auditing and information on how to audit some of the more challenging aspects of the new management system standards, such as context, leadership and commitment, and risks and opportunities.