ISO 28000:2007

ISO 28000:2007

Security management systems for the supply chain — Best practices for implementing supply chain security, assessments and plans — Requirements and guidance

develop and implement supply chain security processes;

establish and document a minimum level of security within a supply chain(s) or segment of a supply chain;

assist in meeting the applicable authorized economic operator (AEO) criteria set forth in the World Customs Organization Framework of Standards and conforming national supply chain security programs.

In addition, ISO 28000:2007 establishes certain documentation requirements that would permit verification.

Users of ISO 28000:2007 will

define the portion of an international supply chain within which they have established security;

conduct security assessments on that portion of the supply chain and develop adequate countermeasures;

develop and implement a supply chain security plan;

train security personnel in their security related duties.