October, 2005
Visit and bookmark our web site today: http://www.WhittingtonAssociates.com
This e-Newsletter is in HTML format and may not be displayed properly by some email programs. Please click on our web site address above to see the e-Newsletter with its proper formatting.
October Articles
|
Public Classes |
Click on an article title to jump to the article:
1. AS9100 Certified Supplier OASIS Database
2. ISO 9001:2000 Quick Reference Checklist
3. New IEEE Software Standards
4. Sarbanes-Oxley: Environmental Implications
5. Latest ISO Certification Survey Results
6. Classes: October, 2005 - December, 2005
BOOKS: See recommended ISO 9001, Auditing, and Six Sigma books at:
http://www.whittingtonassociates.com/v2/books.shtml
To see previous articles, go to Newsletter Archives.
To avoid this newsletter being rejected, or placed in a junk folder, please add <Larry@WhittingtonAssociates.com> to your address book or accepted list. |
Click on a course to see its description and class schedule:
ISO 9001:2000 Lead Auditor
ISO 9001:2000 Internal Auditor
Implementing ISO 9001:2000
Understanding ISO 9001:2000
Quality System Documentation
ISO 17799 - Understanding an ISMS
BS 7799-2 - ISMS Auditor
ISO 17799 - ISMS Implementation
Understanding ISO 14001:2004
Implementing an EMS
EMS Internal Auditor |
| Atlanta Classes |
Enroll and pay for an Atlanta class at least 30 days in advance of the class and receive a 10% discount.
|
Students at previous Atlanta classes receive a 20% discount on future Atlanta classes.
|
|
ISO 17799:2005 - Information Security
|
ISO 9001:2000 - Quality Systems
|
ISO 17799 Understanding an Information Security Management System
October 24-25, 2005
BS 7799-2 Information Security Management System Auditor
November 14-18, 2005
ISO 17799 Information Security Management System Implementation
December 5-9, 2005 |
ISO 9001:2000 Lead Auditor
October 17-21, 2005; December 12-16, 2005
ISO 9001:2000 Internal Auditor
November 29-December 1, 2005
Understanding ISO 9001:2000 Requirements
November 14, 2005
Quality System Documentation
November 15-16, 2005
Implementing ISO 9001:2000
November 17-18, 2005 |
ISO 14001:2004 - Environmental Systems
|
Six Sigma |
Understanding ISO 14001:2004 Requirements
November 7, 2005
Implementing an Environmental Management System
November 8-9, 2005
|
Introduction to Statistics
October 10-12, 2005
Green Belt Certification
October 10-12, 2005
Black Belt Certification
Group 18 (3 weeks): November 7-11
+ December 5-9 + January 16-20 |
|
1. AS9100 Certified Supplier OASIS Database
|
The International Aerospace Quality Group (IAQG) has an Online Aerospace Supplier Information System (OASIS) database that lists AS9100, AS9110, and AS9120 certified suppliers. You can register for free to have access to this database and search for certified suppliers by country, state, registrar, or certificate number.
When specific suppliers are selected from the database, their certificate details and history are displayed, including address, certificate number, issue history, registration scope, and expiration date.
If you want to view the certified supplier's assessment results summary and scoring data in the database, you can submit a request to the supplier's designated OASIS administrator. For more information, go to OASIS.
2. ISO 9001:2000 Quick Reference Checklist
|
BSI Management Systems has published an ISO 9001:2000 Quick Reference Checklist based on the Summary of Requirements created by Whittington & Associates. You can download a copy of the document at the BSI web site: (http://www.bsiamericas.com/Quality/GuidanceDocuments2/index.xalter).
3. New IEEE Software Standards
|
IEEE 1220:2005 - Application and Management of the Systems Engineering Process
The interdisciplinary tasks that are required throughout a system’s life cycle to transform stakeholder needs, requirements, and constraints into a system solution are defined. This standard is intended to guide the development of systems for commercial, government, military, and space applications. The information applies to a project within an enterprise that is responsible for developing a product design and establishing the life cycle infrastructure needed to provide for life cycle sustainment.
The 96 page standard can be ordered at the IEEE web site.
IEEE 828:2005 - Software Configuration Management Plans
The IEEE standard for Software Configuration Management Plans has been revised as 828:2005. This standard establishes the minimum required contents of a Software Configuration Management (SCM) Plan. It applies to the entire life cycle of critical software, e.g., where failure would impact safety or cause large financial or social losses. It also applies to noncritical software and to software already developed. The application of this standard is not restricted to any form, class, or type of software.
The 30 page standard can be ordered in softcover print format or PDF download format.
|
4. Sarbanes-Oxley: Environmental Implications
|
Do you know about the environmental implications of the Sarbanes-Oxley Act? Although SOX legislation has focused primarily on financial issues, the environmental implications are very important. Below are items that business continuity professionals should know about SOX:
1. Regulation S-K, Item 101 (17 CFR 229.101) - Description of Business - Requires that registrants reveal any material effects that compliance or non-compliance with federal, state and local environmental regulations are likely to have on earnings, competitive position and capital expenditures.
2. Regulation S-K, Item 103 (17 CFR 229.103) - Legal Proceedings - Requires disclosure of any environmental administrative or judicial proceeding if the proceeding is
material, involves a claim for more than 10% of current assets, or involves potential monetary sanctions in excess of $100,000.
3. Regulation S-K, Item 303 (17 CFR 229.303) - Management’s Discussion and Analysis - Companies must disclose known trends, events or uncertainties that may have a material effect on their financial condition. These guidelines include environmental trends such as the cost of compliance with anticipated new regulations.
What this means is that executives, managers and employees must be more prepared to enter the often messy world of environmental issues. Specifically, SOX increases the responsibilities of management to implement control procedures within the company. Senior management will be held accountable to ensure: 1) that procedures are in place to transmit environmental information to the appropriate corporate officer within a timely manner so that informed disclosure decisions can be made, 2) that environmental disclosures comply with requirements, and 3) that environmental liabilities are reflected in the financial statements. SOX does not actually change the disclosure requirements, but requires management to certify that the correct controls and procedures are in place to accurately disclose material changes in the company’s financial condition.
Companies are now required to have a company protocol in place for identifying, tracking, quantifying, and assessing environmental issues. The required actions to comply with SOX will include reviewing pending or threatened litigation, current regulatory obligations, emerging trends and potentially new environmental regulations. Senior managers will need to be involved in the evaluation of information required to assess costs and liabilities. It is of the utmost importance that these managers possess the tools and support to understand the significance of the information they are provided. These elements can only be satisfied through the cooperation and regular communication of senior managers and staff, outside environmental consultants and legal counsel.
Recognizing that increased disclosure would improve compliance, the Environmental Protection Agency (EPA) has joined the Securities and Exchange Commission (SEC) by intensifying its efforts to ensure that companies are in compliance with environmental disclosure rules. The EPA even features a section on their web site, which presents compliance history on companies for the public to view. This makes it easy to compare environmental disclosures made in the past with current SEC filings.
Executives of a privately held company who believe that the Sarbanes-Oxley regulations do not impact them are mistaken. Any private firm that one day hopes to become public needs to assess their ability to meet SOX requirements. Furthermore, a perception of social responsibility is becoming a requirement to do business with many customers, investors and partners.
The Sarbanes-Oxley Act is a financial regulation with environmental implications. Senior management must realize the importance of ensuring that a system is in place in which information is collected and then distributed to the correct individuals within the company to make disclosure decisions. Those that are able to use the requirements to increase knowledge of their own company will be taking a reporting requirement and using it to their advantage.
This article was written by Thomas Anderson and Jason Schnellenberger (Copyright 2005 Witter Publishing Corporation. Reprinted with permission)
|
5. Latest ISO Certification Survey Results
|
The annual ISO Survey of Certifications, now in its 14th edition, provides a worldwide view of certification to ISO’s quality and environmental management system standards. The latest edition reveals the situation at the end of 2004, the first full year after the three-year period allowed for transition to the ISO 9001:2000 version.
The worldwide total of certificates to the ISO 9001:2000 quality management systems standard at the end of last year was 670,399, an increase of 35% over the previous year and 64% over 2000, the year before the transition to ISO 9001:2000 began. Certificates have been issued in 154 countries.
With 90,569 ISO 14001 certificates at the end of 2004, an increase of 37% over the previous year, ISO’s environmental management system standard confirms its global progression. Certificates have been issued in 127 countries. The increase in the number of certificates in 2004 is the largest so far recorded in the ten surveys in which ISO 14001 has been included.
For the first time, the survey provides certification data on two ISO standards that include the requirements of ISO 9001:2000, plus sector-specific requirements. It shows that at least 10,056 certificates had been issued in 62 countries to ISO/TS 16949:2002, which gives quality management systems requirements for suppliers to the international automotive industry.
In addition, at least 3,068 certificates had been issued in 56 countries to ISO 13485:2003, the sector-specific quality management standard for the medical device sector.
The survey points out that if the number of certifications to the ISO 9001:2000-based specific quality requirements published by ISO for the automotive industry and the medical device sector is added to the total for ISO 9001:2000 then the aggregate total at the end of 2004 was 683,523.
“Even this figure does not fully reflect the market penetration of ISO 9001:2000,” ISO Secretary General Alan Bryden commented. “ISO 9001:2000 is also the core for specific quality standards developed by major sectors. An example is the telecommunication sector’s TL 9000, which accounts for well over 1,000 certificates. ISO has also worked with the oil and gas industry to develop the ISO 9001:2000 based ISO/TS 29001 and this will no doubt generate many more certifications. The conclusion is that ISO 9001:2000 is providing a common, harmonized base of quality system requirements for global supply chains in one major sector after another.
“In fact, the survey results confirm that both ISO 9001:2000 and ISO 14001 are thoroughly integrated with the world economy. They show that the transition to the improved, more rigorous ISO 9001:2000 version has been a success as the world total of certifications is now far in excess of the total before the transition began. This augurs well for the current transition to the improved ISO 14001:2004.
“One of the development objectives for ISO 9001:2000 was to make it easier for service providers to achieve benefits from the ISO 9000 approach. Therefore, it is both encouraging and highly significant that not only ISO 9001:2000 but also ISO 14001 certification is now highest in the service sectors, each accounting for 31% of all certificates. This validates ISO’s decision to make standards for services one of its major growth areas.”
Top Ten Countries for ISO 9001 Certificates
Rank
|
Country
|
Certificates
|
1
|
China |
132,926
|
2
|
Italy |
84,485
|
3
|
United Kingdom
|
50,884
|
4
|
Japan |
48,989
|
5
|
Spain |
40,972
|
6
|
United States |
37,285
|
7
|
France |
27,101
|
8
|
Germany |
26,654
|
9
|
Australia |
17,365
|
10
|
India |
12,558
|
Top Ten Countries for ISO 14001 Certificates
Rank
|
Country
|
Certificates
|
1
|
Japan |
19,584
|
2
|
China |
8,862
|
3
|
Spain
|
6,473
|
4
|
United Kingdom
|
6,253
|
5
|
Italy |
4,785
|
6
|
United States |
4,759
|
7
|
Germany |
4,320
|
8
|
Sweden |
3,478
|
9
|
France |
2,955
|
10
|
Korea |
2,609
|
Top Ten Countries for ISO/TS 16949 Certificates
Rank
|
Country
|
Certificates
|
1
|
USA |
3,693
|
2
|
Germany |
1,043
|
3
|
Mexico
|
566
|
4
|
Spain
|
526
|
5
|
China |
459
|
6
|
Korea |
366
|
7
|
United Kingdom
|
366
|
8
|
Czech Republic
|
307
|
9
|
Brazil |
299
|
10
|
Canada |
258
|
Top Ten Countries for ISO 13485 Certificates
Rank
|
Country
|
Certificates
|
1
|
USA |
770
|
2
|
Italy |
678
|
3
|
United Kingdom |
548
|
4
|
Germany |
178
|
5
|
Switzerland |
161
|
6
|
France |
147
|
7
|
Austria
|
70
|
8
|
Sweden |
67
|
9
|
Canada |
57
|
10
|
Israel |
54
|
For more information, go to the survey results at ISO’s web site, including world, regional and country breakdowns.
|
6. Class Schedule: October, 2005 - December, 2005
|
Classes taught by Larry Whittington are shown in yellow.
ISO 9001:2000 Lead Auditor (RABQSA Certified) - BSI Management Systems
Initial course version developed by Larry Whittington
| October |
November |
December |
| 03-07 Reston, VA |
07-11 Detroit, MI |
05-09 Chicago, IL |
| 17-21 Atlanta, GA |
14-18 Roanoke, VA |
12-16 Atlanta, GA |
| 17-21 Houston, TX |
14-18 San Jose, CA |
12-16 Las Vegas, NV |
| 24-28 San Diego, CA |
28-02 Reston, VA |
- - |
| 31-04 Orlando, FL |
- - |
- - |
ISO 9001:2000 Internal Auditor (RABQSA Certified) - BSI Management Systems
Initial course version developed by an Associate at Whittington & Associates
| October |
November |
December |
| 11-13 Roanoke, VA |
01-03 San Diego, CA |
06-08 Reston, VA |
| 18-20 Reston, VA |
15-17 Chicago, IL |
- - |
| - - |
29-01 Atlanta, GA |
- - |
Implementing ISO 9001:2000
Course developed by Larry Whittington
| October |
November |
December |
| 25-26 Reston, VA |
17-18 Atlanta, GA |
- - |
| - - |
29-30 San Diego, CA |
- - |
Understanding ISO 9001:2000
| October |
November |
December |
| 24 Reston, VA |
28 San Diego, CA |
- - |
Understanding ISO 9001:2000 Requirements (Atlanta Only - $295)
Course developed by Larry Whittington
Quality System Documentation (ISO 9001:2000)
Course developed by Larry Whittington
| October |
November |
December |
| 27-28 Reston, VA |
15-16 Atlanta, GA |
01-02 San Diego, CA |
ISO 17799 - Understanding an Information Security Management System
| October |
November |
December |
| 12-13 Chicago, IL |
- -
|
19-20 Reston, VA |
24-25 Atlanta, GA
|
- -
|
- - |
BS 7799-2 - Information Security Management System Auditor
| October |
November |
December |
| 03-07 Philadelphia, PA |
07-11 Reston, VA
|
05-09 San Jose, CA |
- -
|
14-18 Atlanta, GA
|
- - |
ISO 17799 - Information Security Management System Implementation
| October |
November |
December |
17-21 Reston, VA
|
14-18 Las Vegas, NV
|
05-09 Atlanta, GA |
- -
|
- -
|
12-16 Atlanta, GA |
Understanding ISO 14001:2004
| October |
November |
December |
31 Dallas, TX
|
07 Atlanta, GA
|
- - |
Implementing an Environmental Management System
| October |
November |
December |
- -
|
01-02 Dallas, TX
|
13-14 San Diego, CA |
- -
|
08-09 Atlanta, GA
|
- - |
EMS Internal Auditor
| October |
November |
December |
10-11 Atlanta, GA
|
03-04 Dallas, TX
|
- - |
19-20 Las Vegas, NV
|
21-22 Reston, VA
|
- - |
On-site Courses
The above public courses can be offered on-site at your facility. In addition, we offer these on-site courses:
- ISO 9001:2000 Auditor Update - The Process Approach (1 Day) - Course developed by Larry Whittington
- Understanding ISO/TS 16949:2002 Requirements (1 Day) - Course developed by Larry Whittington
- Internal Quality Auditing (2 Days) - Course developed by Larry Whittington (based on ISO 19011)
- AS9100B: Requirements Beyond ISO 9001:2000 (1 Day) - Course developed by Larry Whittington
To arrange an economical on-site class, please call us at 800-404-7585.
© 2000-2005 Whittington & Associates, LLC. All rights reserved.
You may copy this e-Newsletter provided you copy it completely, do not change it, and include this copyright notice.
|
