MOST POPULAR STANDARDS ARE:-
(A) ISO 9000 family - Quality management
ISO 9000 family addresses various aspects of quality management and contains some of ISO’s best known standards. The standards provide guidance and tools for companies and organizations who want to ensure that their products and services consistently meet customer’s requirements, and that quality is consistently improved.
ISO 9001:2015 - sets out the criteria for a quality management system and is the only standard in the family that can be certified to (although this is not a requirement). It can be used by any organization, large or small, regardless of its field of activity. In fact, there are over one million companies and organizations in over 170 countries certified to ISO 9001.
This standard is based on a number of quality management principles including a strong customer focus, the motivation and implication of top management, the process approach and continual improvement.
Using ISO 9001:2015 helps ensure that customers get consistent, good quality products and services, which in turn brings many business benefits.
Sector-specific applications of ISO 9001 - ISO has a range of standards for quality management systems that are based on ISO 9001 and adapted to specific sectors and industries. These include:
ISO/TS 29001 - Petroleum, petrochemical and natural gas industries
ISO 13485 - Medical devices
ISO/IEC 90003 - Software engineering
ISO 17582 - Electoral organizations at all levels of government
ISO 18091 - Local government
(B) ISO/IEC 27000 family - Information security management systems
ISO/IEC 27000, family of standards helps organizations keep information assets secure. Using this family of standards will help your organization manage the security of assets such as financial information, intellectual property, employee details or information entrusted to you by third parties.
ISO/IEC 27001 is the best-known standard in the family providing requirements for an information security management system (ISMS).
What is an ISMS?
An ISMS is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process.
It can help small, medium and large businesses in any sector keep information assets secure.
There are more than a dozen standards in the 27000 family, these include:
ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.
Other standards are ISO/IEC 27000:2018; ISO/IEC 27005:2011; ISO/IEC 27002:2013; etc. ( Find Details on FAQs below)
(C) ISO 22000 family - Food safety management
ISO 22000 family of International Standards addresses food safety management.
The consequences of unsafe food can be serious and ISO’s food safety management standards help organizations identify and control food safety hazards. As many of today's food products repeatedly cross national boundaries, International Standards are needed to ensure the safety of the global food supply chain.
ISO 22000:2005 sets out the requirements for a food safety management system and can be certified to. It maps out what an organization needs to do to demonstrate its ability to control food safety hazards in order to ensure that food is safe. It can be used by any organization regardless of its size or position in the food chain.
(D) ISO 14000 family - Environmental management
The ISO 14000 family of standards provides practical tools for companies and organizations of all kinds looking to manage their environmental responsibilities.
ISO 14001:2015 - sets out the criteria for an environmental management system and can be certified to. It maps out a framework that a company or organization can follow to set up an effective environmental management system. It can be used by any organization regardless of its activity or sector.
Using ISO 14001:2015 can provide assurance to company management and employees as well as external stakeholders that environmental impact is being measured and improved.
ISO 14004:2016 - is applicable to any organization, regardless of size, type and nature, and applies to the environmental aspects of its activities, products and services that the organization determines it can either control or influence, considering a life cycle perspective.
The guidance in this International Standard can be used in whole or in part to systematically improve environmental management. It serves to provide additional explanation of the concepts and requirements.
ISO 14005:2010 - provides guidance for all organizations, but particularly small- and medium-sized enterprises, on the phased development, implementation, maintenance and improvement of an environmental management system. It also includes advice on the integration and use of environmental performance evaluation techniques.
ISO 14005:2010 is applicable to any organization, regardless of its level of development, the nature of the activities undertaken or the location at which they occur.
ISO 14006:2011 - provides guidelines to assist organizations in establishing, documenting, implementing, maintaining and continually improving their management of ecodesign as part of an environmental management system (EMS).
(E) ISO/IEC 20000 family - is an Information Technology Service Management (ITSM). The first overall universal standard for IT service management
SO/IEC 20000 is a global IT standard that permits organizations to exhibit greatness and demonstrate best practice in IT administration. The standard guarantees organizations can accomplish proof based benchmarks to ceaselessly enhance their conveyance of IT administrations. The selection of ISO/IEC 20000 has developed quickly in the universal coliseum of IT administration suppliers and it has turned into a focused differentiator for conveyance of IT administrations. ISO/IEC 20000 is adjusted to and corresponding to the procedure methodology characterized inside ITIL from the Office of Government Commerce (OGC).
Formally, ISO/IEC 20000-1:2011 ('part 1') includes "the design, transition, delivery and improvement of services that fulfill service requirements and provide value for both the customer and the service provider. This part of ISO/IEC 20000 requires an integrated process approach when the service provider plans, establishes, implements, operates, monitors, review, maintains and improves a service management system (SMS).
(F) OHSAS - Occupational Health and Safety Management System
Any Occupational Health and Safety (OH&S) Management system specifies processes to continuously improve your OH&S performance and at the same time, comply with legislation. It provides the framework to seamlessly integrate the OH&S management system with your overall business plan.
The (OHSAS) specification gives clearer direction to an occupational health and safety management system. OHSAS 18001:2007 is an audit/certification specification, not a legislative requirement or a guide to implementation. It should be noted that OHSAS 18001:2007 does not state specific performance criteria, or give detailed specifications for the design of a management system. Instead, the system is geared towards reducing and preventing accidents and accident-related loss of lives, resources, and time.
OHSAS 18001:2007 has been developed to be compatible with the ISO 9001 (Quality) and ISO 14001 (Environmental) management systems standards. It is its hope that any organization that implements OHSAS 18001:2007 can easily integrate it with other quality, environmental or occupational health and safety management systems. The OHSAS 18001:2007 Specification follows the Plan-Do-Check-Review cycle, with a concurrent emphasis on continual improvement. This model aligns well with the structure of other management system documents such as ISO 14001, thus aiding the progress of integrated management systems.
(G) ISO 14385:2016
This is internationally recognized quality management system that specifies a requirement for a quality management system. ISO 13485:2016 provides an extensive framework to meet the extensive requirements for a medical device quality management system.
(H) ISO/TS 16949
ISO 16949 is the globally recognized certification for the quality management systems in the automotive industry. This TS Certification is developed by the International Automotive Task Force (IATF) and helps in bringing the common processes in the automotive industry globally.
(I) ISO 29990:2010
The main focus of ISO 29990:2010 International Standards is to provide a basic model for quality professional practice and performance. Therefore, this standard is used to define learning service providers for non-formal education and training.
(J) ISO 50001:2011 - is the International Standard for Energy Management System. Certification specifies all the requirements that are necessary for the implementation of energy management system. The purpose of the certification is to enable an organization to follow the appropriate approach to enhance the energy performance.