Home  //  Training & Events Training  //  Certification Training Supply Chain Security Risk Management - ISO 28000 LA

Mastering the Audit of a Supply Chain Security Management System (SCSMS) based on ISO 28000

 

Summary


This five-day intensive course enables participants to develop the expertise needed to audit a Supply Chain Security Management System (SCSMS) and to manage a team of auditors by applying widely recognized audit principles, procedures and techniques. During this training, the participant will acquire the knowledge and skills needed to proficiently plan and perform internal and external audits in compliance with the certification process of the ISO 28000:2007 standard. Based on practical exercises, the participant will develop the skills (mastering audit techniques) and competencies (managing audit teams and audit program, communicating with customers, conflict resolution, etc.) necessary to conduct an audit efficiently.

 

Who should participate?


  • Internal auditors
  • Auditors wanting to perform and lead Supply Chain Security Management System (SCSMS)  certification audits
  • Project managers or consultants wanting to master the Supply Chain Security Management System audit process
  • Persons responsible for the supply chain security or conformity in an organization
  • Members of an supply chain security team
  • Expert advisors in information technology
  • Technical experts wanting to prepare for an supply chain security audit function

 

Learning objectives


  • Acquiring the expertise to perform an ISO 28000 internal audit following ISO 19011 guidelines
  • Acquiring the expertise to perform an ISO 28000 certification audit following ISO 19011 guidelines and ISO 17021, ISO 28003 specifications
  • Acquiring the expertise necessary to manage a SCSMS audit team
  • Understanding the application of the Supply Chain Security Management System in the context of ISO28000
  • Understand the relationship between a Supply Chain Security Management System, including risk management, controls and compliance with the requirements of different stakeholders of the organization
  • Improve the ability to analyze the internal and external environment of an organization, risk assessment and audit decision-making in the context of a SCSMS

 

Course Curriculum


Day 1: Introduction to the management of a Supply Chain Security Management System (SCSMS) based on ISO 28000 


  • Presentation of the standards ISO 28000, ISO 28001, ISO 28004 and regulatory and legal framework related to supply chain security
  • Fundamental principles of Supply chain security and physical security
  • The ISO 28000 certification process
  • The Supply Chain Security Management System (SCSMS)
  • Detailed presentation of the clauses 4 to 8 of the ISO28000 standard

 

Day 2: Planning and Launching an ISO 28000 audit


  • Fundamental audit concepts and principles
  • Audit approach based on evidence and on risk
  • Preparation of an ISO 28000 certification audit
  • Documenting of a SCSMS audit
  • Conducting an opening meeting

 

Day 3: Conducting an ISO 28000 audit


  • Communication during the audit
  • Audit procedures: observation, document review, interview, sampling techniques, technical verification, corroboration and evaluation
  • Drafting test plans
  • Formulation of audit findings
  • Drafting of nonconformity reports

 

Day 4: Concluding and ensuring the follow-up of an ISO 28000 audit


  • Audit documentation
  • Quality review
  • Conducting a closing meeting and conclusion of an ISO 28000 audit
  • Evaluation of corrective action plans
  • Surveillance audit
  • Audit management program
  • Internal audit and second party audit

 

Day 5: Exam


Prerequisites


ISO 28000 Foundation certification or basic knowledge of ISO 28000 and ISO 28001 is recommende

 

Instructional Approach

 

  • This training is based on the alternation of theory and practice:
    • Sessions of lectures illustrated with examples based on real cases
    • Practical exercises based on a full case study including role plays and narrative presentation
    • Review exercises to assist the exam preparation
    • Practice test similar to the certification exam
  • Given the practical exercises, the number of training participants is limited

 

Examination and certification


  • The “Certified ISO 28000 Lead Auditor” exam fully meets the requirements of the PECB Examination Certification Programme (ECP). The exam covers the following competency domains:
    • Domain 1: Fundamental principles and concepts of supply chain security
    •  Domain 2: Supply Chain Security Management System (SCSMS)
    •  Domain 3: Fundamental audit concepts and principles
    • Domain 4: Preparation of an ISO 28000 audit
    • Domain 5: Conduct of an ISO 28000 audit
    • Domain 6: Closing an ISO 28000 audit
    • Domain 7: Managing an ISO 28000 audit program
  • The “Certified ISO 28000 Lead Auditor” exam is available in different languages (the complete list of languages can be found in the examination application form)
  • Duration of the exam: 3 hours
  • After successfully completing the exam, participants can apply for the credentials of Certified ISO 28000 Provisional Auditor, Certified ISO 28000 Auditor or Certified ISO 28000 Lead Auditor
  • A certificate will be issued to participants who successfully passed the exam and comply with all the other requirements related to the selected credential


General Information


  • Certification fees are included in the exam price
  • A student manual containing over 450 pages of information and practical examples will be distributed to participants
  • A 31 CPE (Continuing Professional Education) participation certificate will be issued to participants

* CIMA reserves the right to change the schedule, location, cost or incentives for any event without notice. The price for any training reservations already booked prior to any change made by CIMA, will be honored.