The document summarizes the key changes between ISO 19011:2002 and ISO 19011:2011. Some of the main changes include:
1) The title was updated to reflect auditing of all management systems rather than just quality and environmental.
2) Additional annexes were added providing guidance on discipline-specific auditor skills and planning/conducting audits.
3) More references were included linking it to ISO/IEC 17021 on third-party audits and emphasizing competence requirements.
Sections on objectives, programs, and auditor evaluation included more details, and figures/tables were updated. Overall it provides more comprehensive guidance for all types of internal and external audits.
Are you prepared to transition to ISO 9001:2015?Geoff Doole
Find out about the main differences between ISO 9001:2008 and ISO 9001:2015 and how it will affect your organisation. Learn how you can implement the changes and get your team up to speed on the new 2015 standard with BywaterExcel.
PECB Webinar: ISO 9001:2015 Transition – Understanding the changes PECB
This webinar was organized and presented by PECB International to learn about the changes of ISO 9001 standard, which is the world’s most popular standard for quality management.
In this webinar, you will learn about:
• Why ISO 9001 is changing?
• The new ISO 9001 structure
• What are the significant proposed changes?
• Understanding the difference between ISO 9001: 2008 and ISO 9001: 2015
• Planning the QMS transition
• Benefits of the new standard
This webinar was hosted by Lorika Bina, Course Development Manager for Quality Management Systems (QMS) at PECB International. She is in charge of developing and maintaining training courses related to QMS. Lorika holds a B.S. in Business Management from Rochester Institute of Technology.
Are you prepared to transition to ISO 9001:2015?Geoff Doole
Find out about the main differences between ISO 9001:2008 and ISO 9001:2015 and how it will affect your organisation. Learn how you can implement the changes and get your team up to speed on the new 2015 standard with BywaterExcel.
PECB Webinar: ISO 9001:2015 Transition – Understanding the changes PECB
This webinar was organized and presented by PECB International to learn about the changes of ISO 9001 standard, which is the world’s most popular standard for quality management.
In this webinar, you will learn about:
• Why ISO 9001 is changing?
• The new ISO 9001 structure
• What are the significant proposed changes?
• Understanding the difference between ISO 9001: 2008 and ISO 9001: 2015
• Planning the QMS transition
• Benefits of the new standard
This webinar was hosted by Lorika Bina, Course Development Manager for Quality Management Systems (QMS) at PECB International. She is in charge of developing and maintaining training courses related to QMS. Lorika holds a B.S. in Business Management from Rochester Institute of Technology.
Indicadores medioambientales para la empresaMeinzul ND
Esta guía traslada el concepto a la gestión medioambiental en la empresa mostrando detalladamente
cómo pueden obtenerse valiosos indicadores medioambientales a partir de extensos datos ambientales
Sistema de gestion de seguridad y salud laboral - ocupacional- ohsasMeinzul ND
Seguridad y salud ocupacional:
Condiciones y factores que inciden en la salud y seguridad de los empleados, trabajadores temporales, contratistas, visitantes y cualquier otra persona en el lugar de trabajo
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
Revision de los cambios -changes-ISO 19011
1. Review of Changes from ISO 19011:2002 to ISO 19011:2011
Introduction
Given that ISO 19011 is a guidance standard rather than a compliance standard, it is worth noting that the changes made to the standard will be unlikely to have an
immediate impact on any organisations. It will, however, affect the way in which auditor training is delivered as organisations such as IRCA quote the standard
regularly in their training course criteria and training organisations will be expected to update their courses to comply with the changes made.
General
The first point to note is that the title is now ‘Guidelines for auditing management systems’, rather than ‘Guidelines for quality and/or environmental management
systems auditing’. This reflects the fact that there are many management systems standards in use and that the basic principles of auditing these systems are the
same.
The basic structure of the standard remains quite similar but notable additions to the new version are:
Annex A – (informative) Guidance and illustrative examples of discipline-specific knowledge and skills of auditors, and
Annex B - (informative) Additional guidance for auditors for planning and conducting audits
In the previous version, some of this information was provided in boxes throughout the standard in the form of ‘practical help’.
The other significant change is the cross references made to ISO/IEC 17021:2011. It states that this version of ISO 19011 has been written to primarily address 1st
party (internal) audits and 2nd party (supplier) audits whilst ISO 17021 is primarily aimed at 3rd party (certification body) audits. It does make the point that the
information in this standard may be useful to all auditors.
This linkage to ISO 17021 does show itself in the standard with the inclusion of more references to the competence requirements for auditors for example.
Colin Partington Associates Ltd Page 1 of 3 December 2011
2. Summary of Changes
Section No Title Changes
4 Principles of auditing Some of the principles have changed and there is more detail explaining why each principle is required.
Confidentiality has been added as a principle and the principle of independence has additional explanation
regarding the level of independence for internal audits.
5 Managing an audit programme There is a little more information regarding the management of an audit programme and the standard
introduces the concept of ‘risk-based auditing’ but then goes on to say that the standard does not give further
information on the subject.
Figure 1 – the process flow for the management of an audit programme has been re-developed.
5.2 Establishing the audit objectives – has been expanded and further detail added
5.3 Establishing the audit programme – contains more detail and further detail added
5.4 Implementing the audit programme – this section has had considerably more detail added to it and now
expands on the detail of topics such as the duties of team leaders and team members
5.5 The ‘old’ 5.5 has been split and is now covered in 5.5 & 5.6 and has added detail regarding the
monitoring, reviewing and improving the audit programme
6 Performing an audit Figures 2 and 3 have been redeveloped and more detail added though the section is much the same, though the
term ‘correction’ has been added with reference to the ‘audit follow-up’ activities
7 Competence and evaluation of The old Figure 4 has been removed from this section and considerably more detail has been added to the
auditors section compared to the previous version.
Once again, reference is made to ‘risk’ and there is more emphasis on ‘sector specific skills’ and their
importance.
Most likely because of the fact that the standard is now for use in all management system audits, there is more
reference made to ‘multi disciplinary skills’ and further information regarding the achievement of competence
and auditor evaluation.
A new Table 2 has been included which refers to ‘possible evaluation methods’.
The old Table 1 and Figure 5 have been removed.
Colin Partington Associates Ltd Page 2 of 3 December 2011
3. Section No Title Changes
Annex A Guidance and illustrative This gives specific examples of the type of knowledge and skills required by auditors in certain situations e.g.
examples of discipline-specific
knowledge and skills of auditors • Illustrative example of discipline-specific knowledge and skills of auditors in quality management
• Illustrative example of discipline-specific knowledge and skills of auditors in environmental management
Annex B Additional guidance for auditors This gives practical guidance on more detailed issues such as:
for planning and conducting audits
• Conducting document review
• Sampling documents
• Preparing working documents
• Sources of information
• Visiting the auditee’s location
• Conducting interviews
• Dealing with finding – conformance & non-conformance
Colin Partington Associates Ltd Page 3 of 3 December 2011