SECURITY MANAGEMENT SYSTEM
ISO 28000:2022
ISO 28000 specifies requirements for a security management system, including aspects relevant to the supply chain.
This standard is for organizations which intends to establish, implement, maintain and improve a security management system. It provides a holistic and common approach and is not industry or sector specific. It can be used throughout the life of the organization and can be applied to any activity, internal or external, at all levels.
This standard is applicable to all types and sizes of organizations (e.g. commercial enterprises, government or other public agencies and non-profit organizations.