1) The International Organization for Standardization (ISO) is an independent, non-governmental international organization with 164 national standards body members that develops voluntary consensus-based international standards.
2) ISO was founded in 1947 and is headquartered in Geneva, Switzerland. It began in 1926 as the International Federation of the National Standardizing Associations.
3) ISO standards cover a wide range of industries and technologies and aim to harmonize technical specifications of products and services globally.
2. OVERVIEW
ā¢ The International Organization for Standardization (ISO) is an international standard-setting
body composed of representatives from various national standards organizations.
ā¢ ISO is an independent, non-governmental international organization with a membership of
164 national standards bodies. It brings together experts to share knowledge and develop
voluntary, consensus-based, market relevant International Standards that support
innovation and provide solutions to global challenges.
ā¢ The ISO Central Secretariat is based in Geneva, Switzerland.
3. ā¢ ISO began in 1926 as the International Federation of the National Standardizing
Associations (ISA).
ā¢ The ISA with United Nations Standards Coordinating Committee (UNSCC) and delegates
from 25 countries founded the ISO on 23 February 1947.
ā¢ It was one of the first organizations granted general consultative status with the United
Nations Economic and Social Council.
HISTORY
4. Benefits of ISO
Benefits Of International Standard-
International Standards bring technological, economic and societal benefits. They help to harmonize
technical specifications of products and services making industry more efficient and breaking down
barriers to international trade.
Conformity to International Standards helps reassure consumers that products are safe, efficient and
good for the environment.
Benefits of standards: the ISO Materials
ISO has developed materials describing the economic and social benefits of standards, the ISO
Materials. They are intended to be shared with decision makers and stakeholders as concrete
examples of the value of standards.
5. Benefits of ISO
For Business-
International Standards are strategic tools and guidelines to help companies tackle some of the most
demanding challenges of modern business. They ensure that business operations are as efficient as
possible, increase productivity and help companies access new markets.
Benefits include:
Cost savings - International Standards help optimise operations and therefore improve the bottom line
Enhanced customer satisfaction - International Standards help improve quality, enhance customer
satisfaction and increase sales
Access to new markets - International Standards help prevent trade barriers and open up global markets
Increased market share - International Standards help increase productivity and competitive advantage
Environmental benefits - International Standards help reduce negative impacts on the environment
6. Decision to develop a Standard-
ļ± Development of new standards in response to sectors and stakeholderās need.
ļ± Proposal of new item to the technical committee.
ļ± For Development- Proposed item must receive majority of support from participating
members of technical committee.
ļ± Other Criteria's- Global Relevance, Need of developing countries, Consumers etc.
Development of a Standard-
ļ± Experts from sectors.
ļ± Representatives can join
ļ± Others organizations can also apply to participate.
Public Feedback-
7. Voting's and appeal-
ļ± Two-third of national members must approve.
ļ± Not be disapproved by more than a quarter of all ISO members.
ļ± Right of appeal to technical management board.
8. 1) Proposal- a) New item proposal is submitted.
b) Project leader is appointed.
2) Preparatory- a) Working group is formed.
b) Best working solutions is forwarded to parent committee.
3) Committee- a) 1st working draft is registered by ISO central secretariat.
b) Draft International Standard- Finalized for submission.
4) Enquiry- a) Circulated for Voting and comments
b) Final draft international standards.
5) Approval- a) Circulated to all ISO member bodies.
6) Publication- a) Sent to ISO central Secretariat for publication.
9. ISO 3166
ā¢ It is a standard published by the ISO that defines codes for the names of countries, dependent
territories, special areas of geographical interest, and their principal subdivisions.
ā¢ The official name of the standard is Codes for the representation of names of countries and their
subdivisions.
ā¢ It consists of three parts:
1. ISO 3166-1
2. ISO 3166-2
3. ISO 3166-3
10. ISO 3166-1
ā¢ It is part of the ISO 3166 standard, and defines codes for the names of countries, dependent
territories, and special areas of geographical interest.
ā¢ Official name is Codes for the representation of names of countries and their subdivisions ā Part 1:
Country codes.
ā¢ Currently 249 countries, territories, or areas of geographical interest are assigned official codes in ISO
3166-1.
ā¢ It defines three sets of country codes:
1. ISO 3166-1 alpha-2 ā two-letter country codes which are the most widely used of the three, and
used most prominently for the Internet's country code top-level domains (with a few
exceptions).
2. ISO 3166-1 alpha-3 ā three-letter country codes which allow a better visual association between
the codes and the country names than the alpha-2 codes.
3. ISO 3166-1 numeric ā three-digit country codes which are identical to those developed and
maintained by the United Nations Statistics Division, with the advantage of script independence,
and hence useful for people or systems using non-Latin scripts.
11.
12. ISO 3166-2
ā¢ It is part of the ISO 3166 standard, and defines codes for identifying the
principal subdivisions of all countries coded in ISO 3166-1.
ā¢ First published in 1998.
ā¢ Official name is Codes for the representation of names of countries and their subdivisions ā
Part 2: Country subdivision code.
ā¢ It establishes an international standard of short and unique alphanumeric codes to
represent the relevant administrative divisions and dependent territories of all countries in
a more convenient and less ambiguous form than their full names.
ā¢ Currently more than 4000 codes are defined in ISO 3166-2. For some countries, codes are
defined for more than one level of subdivisions.
13.
14. ISO 3166-3
ā¢ It is part of the ISO 3166 standard, and defines codes for country names which have been deleted
from ISO 3166-1 since its first publication in 1974.
ā¢ Official name of the standard is Codes for the representation of names of countries and their
subdivisions ā Part 3: Code for formerly used names of countries.
ā¢ First published in 1999.
15.
16. ISO 26000
ā¢ International Standard providing guidelines for social responsibility (SR) named ISO
26000 or simply ISO SR.
ā¢ Published on November 1, 2010.
ā¢ Its goal is to contribute to global sustainable development, by encouraging business and
other organizations to practice social responsibility to improve their impacts on their
workers, their natural environments and their communities.
ā¢ ISO 26000 provides guidance on how businesses and organizations can operate in a
socially responsible way.
17. ISO 26000
ā¢ The ISO 26000 standard provides guidance on:
1. The seven key underlying principles of social responsibility: accountability, transparency,
ethical behavior, respect for stakeholder interests, respect for the rule of law, respect for
international norms of behavior, and respect for human rights.
2. Recognizing social responsibility and engaging stakeholders.
3. The seven core subjects and issues pertaining to social responsibility: organizational
governance, human rights, labor practices, the environment, fair operating practices,
consumer issues, and community involvement and development.
4. Ways to integrate socially responsible behavior into the organization.
18. SCOPE OF 1SO 26000
ā¢ Assist organizations in addressing their social responsibilities while respecting cultural, societal,
environmental, and legal differences and economic development conditions
ā¢ Provide practical guidance related to making social responsibility operational
ā¢ Assist with identifying and engaging with stakeholders and enhancing credibility of reports and
claims made about social responsibility
ā¢ Emphasize performance results and improvement
ā¢ Increase confidence and satisfaction in organizations among their customers and other
stakeholders
ā¢ Achieve consistency with existing documents, international treaties and conventions, and existing
ISO standards
ā¢ Promote common terminology in the social responsibility field
ā¢ Broaden awareness of social responsibility
19. Anti-bribery management systems-
Specifies a series of measures to help organizations prevent, detect and address bribery.
This System Includes-
-Anti-bribery policy,
-Appointing a person to oversee anti-bribery compliance,
-Training,
-Risk assessments and due diligence on projects and business associates,
-Implementing financial and commercial controls,
-Instituting reporting
-Investigation procedures.
Target-
ISO 37001 can be used by any organization, It is a flexible tool, which can be adapted according to the size and nature
of the organization and the bribery risk it faces.
20. ISO 31000- RISK MANAGEMENT
ā¢ Risks affecting organizations can have consequences in terms of economic performance and professional
reputation, as well as environmental, safety and societal outcomes.
ā¢ It provides Principles, Framework and a process to avoid risks
ā¢ It can be used by any organization regardless of its size, activity or sector.
ā¢ It helps in increase the likelihood of achieving objectives, improve the identification of opportunities and
threats and effectively allocate and use resources for risk treatment.
ā¢ Organizations using it can compare their risk management practices with an internationally recognised
benchmark, providing sound principles for effective management and corporate governance.
21. ISO 45001- OCCUPATIONAL HEALTH AND
SAFETY
ā¢ Over 6300 people die each day from work-related accidents or diseases - thatās nearly 2.3million every year.
ā¢ ISO 45001 Occupational health and safety management systems
ā¢ It provides framework to improve employee safety, reduce workplace risks and create better, safer working
conditions, all over the world.
ā¢ It is currently being developed by a committee of occupational health and safety experts
22. ANTICIPATED BENEFITS OF ISO 45001
ā¢ Reduce work related injuries, ill health and death
ā¢ Eliminate or minimize OH&S risks
ā¢ Improve OH&S performance and effectiveness
ā¢ Demonstrate corporate responsibility and meet supply chain requirements
ā¢ Protect brand reputation
ā¢ Motivate and engage staff through consultation and participation
23. ā¢ ISO Guide 73:2009, Risk management - Vocabulary complements ISO 31000 by providing a collection of
terms and definitions relating to the management of risk.
ā¢ ISO/IEC 31010:2009, Risk management ā Risk assessment techniques focuses on risk assessment
24. ISO 27001 (27000 FAMILY) - MYTHS
1.āThe standard requiresā¦ā
āThe standard requires passwords to be changed every 3 months.ā āThe standard requires the disaster recovery
site to be at least 50 km distant from the main site.ā
2. āWeāll let the IT department handle itā
This is the managementās favourite ā āInformation security is all about IT, isnāt it?ā. The most important aspects
of information security include not only IT measures, but also organizational issues and human resource
management, which are usually out of reach of IT department.
3.āWeāll implement it in a few monthsā
You could implement your ISO 27001 in 2 or 3 months, but it wonāt work ā you would only get a bunch of policies
and procedures no one cares about. Implementation of information security means you have to implement
changes, and it takes time for changes to take place.
4.āThe only benefit of the standard is for marketing purposesā
āWe are doing this only to get the certificateā Well, this is (unfortunately) the way 80 percent of the companies
think. Not saying that ISO 27001 shouldnāt be used in promotional and sales purposes, but you can also achieve
other very important benefits
25. WHAT IS ISO 27001?
Information Security Management
ISO/IEC 27001 formally specifies an Information Security Management System (ISMS), a suite of activities
concerning the management of information security risks.
The ISMS is an overarching management framework through which the organization identifies, analyzes and
addresses its information security risks.
The ISMS ensures that the security arrangements are fine-tuned to keep pace with changes to the security
threats, vulnerabilities and business impacts - an important aspect in such a dynamic field, and a key
advantage of ISO27kās flexible risk-driven approach as compared to, say, PCI-DSS.
The standard covers all types of organizations (e.g. commercial enterprises, government agencies, non-
profits), all sizes (from micro-businesses to huge multinationals), and all industries or markets (e.g. retail,
banking, defence, healthcare, education and government). This is clearly a very wide brief.
26. The fact that many of the ISO-created standards are ubiquitous has led, on occasion, to common usage
of "ISO" to describe the actual product that conforms to a standard. Some examples of this are:
1. CD images end in the file extension "ISO" to signify that they are using the ISO 9660 standard file
system as opposed to another file systemāhence CD images are commonly referred to as "ISOs."
Virtually all computers with CD-ROM drives can read CDs that use this standard. Some DVD-ROMs
also use ISO 9660 file systems.
2. Photographic film's sensitivity to light, its "film speed," is described by ISO 5800:1987. Hence, the
film's speed is often referred to as its "ISO number."
PRODUCTS NAMED AFTER ISO
28. WHAT IS A STANDARD?
A standard is a document that provides requirements,
specifications, guidelines or characteristics that can be used
consistently to ensure that materials, products, processes and
services are fit for their purpose.
29. ISO 14000
The ISO 14000 family of standards provides practical tools
for companies and organizations of all kinds looking to
manage their environmental responsibilities.
30. ISO 22000 - FOOD SAFETY MANAGEMENT
ā¢ The ISO 22000 family of International Standards addresses food safety
management.
ā¢ The consequences of unsafe food can be serious and ISOās food safety
management standards help organizations identify and control food safety
hazards. As many of today's food products repeatedly cross national
boundaries, International Standards are needed to ensure the safety of the
global food supply chain.
31. ISO 50001 - ENERGY MANAGEMENT
Using energy efficiently helps organizations save money as well as
helping to conserve resources and tackle climate change. ISO 50001
supports organizations in all sectors to use energy more efficiently,
through the development of an energy management system (EnMS).