Management System Standardization – Annex SL

The Annex SL brings the following major clause numbers and titles to all management systems and the need to be identical and easy to integrate. The main sections of your management system will include the following, and content for the specific standard that will be added (environment, health and safety, etc.). The revised standards will follow this outline, starting with the revised ISO 9001:2015 Quality management system.

1. Scope

2. Normative References

3. Terms and Definitions

4. Context of the Organization

5. Leadership

6. Planning

7. Support

8. Operation

9. Performance Evaluation

10. Improvement

Detailed Content in Management System Clauses

4. Context of the Organization

4.1 Understanding Organization and Its Context

4.2 Understanding Needs and Expectations of Interested Parties

4.3 Determining Scope of the XXX Management System

4.4 XXX Management System

5. Leadership

5.1 Leadership and Commitment

5.2 Policy

5.3 Organization Roles, Responsibilities, and Authorities

6. Planning

6.1 Actions to Address Risks and Opportunities

6.2 Objectives and Planning

6.3 Planning of Changes

7. Support

7.1 Resources

7.2 Competence

7.3 Awareness

7.4 Communication

7.5 Documented Information

7.5.1 General

7.5.2 Creating and Updating

7.5.3 Control of Documented Information

8. Operation

8.1 Operational Planning and Control

9. Performance Evaluation

9.1 Monitoring, Measurement, Analysis, and Evaluation

9.2 Internal Audit

9.3 Management Review

Integrated Management Systems

Many organizations operate their businesses in “silos,” duplicating functions rather than harmonizing and directing all parts of the organization in an integrated management system approach.

Document management can be costly. The cost of producing a single document can reach $250 or more, depending on the number of people involved in its development and approval, not to mention the costs associated with copying, filing, and retrieving documents (costs can exceed $120 for misfiled documents). Filing electronically does help but only if you know the right keywords or file names.

An integrated management system is a framework that integrates the management of your business processes so that they function together, aligning their direction with common goals to improve process operations and, ultimately, the performance of the whole organization. By having an integrated management system you will eliminate redundancies, documentation, conflicting and duplicated procedures, and the chance of conflict with responsibilities and relationships, and gain the ability to create harmonizing and optimizing business practices and prioritize the plans for the company. This will also result in improving communication and facilitating training, competence, and employee development.

The ISO standards ensure the monitoring and control of your processes, which are supported by verification of your management system through audits, both internal and external.

An organization may wish to integrate two or more management systems. Examples of typical management systems that can be integrated include: ISO 9001 (quality), ISO 14001 (environmental management), ISO 50001 (energy), OHSAS 18001 (occupational health and safety), ISO/IEC 27001 (information security), ISO/IEC 2000 (IT service management), ISO 22000 (food safety), and BSI ISO 22301 (business continuity management).

The framework for integration starts with a quality management system (ISO 9001) as the baseline, identifying one's business processes. This standard ensures that goods and services (previously referred to as products or services) consistently meet customers' requirements and that quality is improving. This standard, as outlined in the previous chapters, is based on a number of quality management principles and the process approach.

Organizations that have a mature quality management system would find it easy to introduce environment and health and safety to their ISO 9001 structure, as they have already identified their processes and process flow, addressing quality risks, and they now can address the risks tied to environment and health and safety. Addressing each process can also include addressing and prioritizing the objectives tied to the process.

The implementation and operation's processes have required a manual; however, the new ISO 9001:2015 is getting away from documentation, as many organizations have computerized systems in place and online structures.

Integrated Management System Standard – PAS 99:2006

The British Standards Institute (BSI) in partnership with BSI Management Systems developed the first specification that accommodated the interest in an integrated approach to management systems and governance of organizational risk, called “PAS 99:2006 – Specification of Common Management System Requirements as a Framework for Integration.” Should an organization wish to apply for registration for PAS 99, you would be required to demonstrate that there is one management system that encompasses all existing management systems standards.

An organization does not necessarily need to have its integrated management system registered to the British Standard PAS 99. Your organization can have its integrated management system registered for all three standards – ISO 9001, 14001, and OHSAS 18001 – but audited all at the same time with three certificates provided. Check with your registration body to see if it accepts registration for PAS 99, as many registrars are authorized for certification for the individual standards: ISO 9001, ISO 14001, and OHSAS 18001. With the revised ISO standards following the Annex SL, integration will be easier to implement.

< Prev   CONTENTS   Next >