Day 1: Introduction to Supply Chain Security Management System (SCSMS) concepts as required by ISO 28000;initiating a SCSMS
•Introduction to management systems and the process approach
•Presentation of the ISO 28000 family of standards and the regulatory and legal framework related to supply chain security
•Fundamental principles of Supply chain security and physical security
•Preliminary analysis and establishment of the maturity level of an existing Supply Chain Security Management System based upon ISO 21827
•Writing a business case and a project plan for the implementation of a SCSMS
Day 2: Planning a SCSMS based on ISO 28000
•Definition of the scope of a SCSMS
•Development of a SCSMS policy and ocbjectives
•Selection of the approach and methodology for security risk assessment
•Security risk management (identification, analysis and treatment of risk)
•Development of a security plan
Day 3: Implementing a SCSMS based on ISO 28000
•Implementation of a document management framework
•Design of controls and writing procedures
•Implementation of processes and controls
•Development of a training & awareness program and communication about the supply chain security
•Incident management
•Operations management of a SCSMS
Day 4: Controlling, monitoring,measuring and improving a SCSMS; certification audit of a SCSMS
•Controlling and monitoring the SCSMS
•Development of metrics, performance indicators and dashboards
•ISO 28000 internal Audit
•Management review of a SCSMS
•Implementation of a continuous improvement program
•Preparing for an ISO 28000 certification audit
Day 5: Certification Exam
Prerequisites
ISO 28000 Foundation Certification or a basic knowledge of ISO 28000 and ISO 28001 is recommended
Educational approach
•This training is based on both theory and practice:
oSessions of lectures illustrated with examples based on real cases
oPractical exercises based on a full case study including rôle playings and narrative presentation
oReview exercises to assist the exam preparation
oPractice test similar to the certification exam
•To benefit from the practical exercises, the number of training participants is limited
Examination and certification
•The “Certified ISO 28000 Lead Implementer” exam fully meets the requirements of the PECB Examination and Certification Programme (ECP). The exam covers the following competence domains:
oDomain 1: Fundamental principles and concepts of supply chain security
oDomain 2: Supply chain security Control Best Practice based on ISO 28001
oDomain 3: Planning a SCSMS based on ISO 28000
oDomain 4: Implementing a SCSMS based on ISO 28000
oDomain 5: Performance evaluation, monitoring and measurement of a SCSMS based on ISO 28000
oDomain 6: Continual improvement of a SCSMS based on ISO 28000
oDomain 7: Preparing for a SCSMS certification audit
•The “Certified ISO 28000 Lead Implementer” exam is available in different languages (the complete list of languages can be found in the examination application form)
•Duration: 3 hours
Taken from PECB <https://pecb.com