June, 2009 Newsletter Articles

ANAB’s Bill of Rights

Jun 21, 2009 in Newsletter | 0 comments

Third-party accredited certification is a professional relationship between a client being certified, the certification body (CB), the CB’s auditors, the accreditation body (AB), and the AB’s assessors. In the United States, the recognized AB for management systems certification is the ANSI-ASQ National Accreditation Board (ANAB). These parties all contribute to the integrity of accredited certification and continual improvement based on processes that assure capability, competence, and impartiality. From time to time, a certified...

Read More

Ten Audit Questions

Jun 21, 2009 in Newsletter | 0 comments

The Automotive Industry Action Group (AIAG) publishes a monthly newsletter titled, Quality Standards and Tools. Their May and June issues included articles written by Craig Cochran that describe his “10 Essential Audit Questions”. The author suggests ten important questions to ask during an audit to determine the effectiveness of the management system and the overall performance of the organization: 1. How do you contribute to the achievement of your organization’s objectives? 2. What happens if your products (or materials...

Read More

Corrective Actions

Jun 21, 2009 in Newsletter | 0 comments

When reviewing responses to audit nonconformities, you should look for correction, root cause analysis, and then corrective action. The ANSI-ASQ National Accreditation Board (ANAB) that accredits certification bodies (CBs) knows the proper corrective action process. When ANAB was experiencing less than adequate responses to nonconformities they issued during audits of certification bodies, they issued a “Heads Up” to their auditors to provide guidance on evaluating corrective action responses. Guidance: ANAB said that...

Read More

Data Breach Report

Jun 21, 2009 in Newsletter | 0 comments

2008 will likely be remembered as a tumultuous year for corporations and consumers alike. Fear, uncertainty, and doubt seized global financial markets; corporate giants toppled with alarming regularity; and many who previously lived in abundance found providing for just the essentials to be difficult. Among the headlines of economic woes came reports of some of the largest data breaches in history. These events served as a reminder that, in addition to our markets, the safety and security of our information could not be assumed...

Read More

ISO 19772:2009 for Data Security

Jun 21, 2009 in Newsletter | 0 comments

Security is perhaps one of the greatest concerns of millions of users that routinely exchange data over the Internet or store information in computers which may be accessed by unauthorized parties. To protect the confidentiality and integrity of data being transferred or stored, ISO and the International Electrotechnical Commission (IEC) jointly developed a new standard that defines authenticated encryption mechanisms that provide an optimum level of security. ISO 19772:2009, Information technology – Security techniques –...

Read More