More >>
ISO 31000 - Risk management - Principles and guidelines on implementation : This International Standard recognizes the variety of the nature, level and complexity of risks and provides generic guidelines on principles and implementation of risk management. To apply these generic guidelines in a specific situation, this International Standard sets out how an organization should understand the specific context in which it implements risk management..
ISO 26000 - Guidance on social responsibility : This International Standard provides guidance on the underlying principles of social responsibility, recognizing social responsibility and engaging stakeholders, the core subjects and issues pertaining to social responsibility (Human rights, Labour practices, The environment, Fair operating practices, Consumer issues, Community involvement and development, ) and on ways to integrate socially responsible behavior into the organization.
OHSAS 18002 - Occupational health and safety management systems. Guidelines for the implementation of OHSAS 18001 : OHSAS 18002 seeks to explain the underlying principles of OHSAS 18001. It describes the intent, typical inputs, processes and typical outputs, against each requirement of OHSAS 18001, to aid in the understanding and implementation of OHSAS 18001. It does not create additional requirements to those specified in OHSAS 18001. nor does it prescribe mandatory approaches to the implementation.
ISO 28001 - Security management systems for the supply chain - Best practices for implementing supply chain security, assessments and plans - Requirements and guidance : International supply chains are highly dynamic and consist of many entities and business partners. This standard recognizes this complexity. It has been developed to allow an individual organization in the supply chain to apply its requirements in conformance with the organization’s particular business model and its role and function in the international supply chain.
ISO 27002 - Information technology - Security techniques - Code of practice for information security controls : This International Standard is designed for organizations to use as a reference for selecting controls within the process of implementing an Information Security Management System (ISMS) based on ISO/IEC 27001 or as a guidance document for organizations implementing commonly accepted information security controls. This standard is also intended for use in developing industry- and organization-specific environment.
ISO 22398 - Societal security - Guidelines for exercises and testing : This International Standard describes the procedures necessary for planning, implementing, managing, evaluating, reporting and improving exercises, and the testing designs to assess the readiness of an organization to perform the mission. The organization should make maximum use of the controlled, risk managed environment of exercises and testing. Furthermore, practice for improvisation is only possible in the exercises and testing environment; once a real event occurs, the time for practice has ended.
ISO 22857 - Health informatics — Guidelines on data protection to facilitate trans-border flows of personal health information : This International Standard seeks to draw on, and harmonise, data protection requirements relating to the transfer of personal health data across international boundaries as given in authoritative international documents. It also seeks to take into account a range of national requirements so as to avoid, as far as practicable, conflict between the requirements of this International Standard and national specifications.
BS 8903 - Principles and framework for procuring sustainably – Guide : This British Standard is intended to help organizations and individuals consider and implement sustainable practices within their procurement processes, and ongoing management of their respective supply chains. Sustainable procurement means only purchasing goods that are really needed, and buying items or services whose production, use and disposal both minimize negative impacts and encourage positive outcomes for the environment, economy and society.
ISO 37500 - Guidance on Outsourcing : This International Standard would provide overarching guidance for outsourcing and a vocabulary to enable practitioners to harmonize the principles, procedures and vocabulary in existing and future standards, for the benefit of the organizations engaged in outsourcing. Besides standardization this standard thus provides concepts and procedures to improve the understanding of all parties involved in outsourcing, by providing a common set of practices.
ISO 22398 - Societal Security – Guidelines for exercises and testing : This International Standard describes the procedures necessary for planning, implementing, managing, evaluating, reporting and improving exercises, and the testing designs to assess the readiness of an organization to perform the mission. The organization should make maximum use of the controlled, risk managed environment of exercises and testing. Furthermore, practice for improvisation is only possible in the exercises and testing environment.
ISO/IEC 27042 - Guidelines for the analysis and interpretation of digital evidence : This International Standard provides guidance on the conduct of the analysis and interpretation of potential digital evidence in order to identify and evaluate digital evidence which can be used to aid understanding of an incident. The exact nature of the data and information making up the potential digital evidence will depend on the nature of the incident and the digital evidence sources involved in that incident.
