Management Solutions Group • 2879 Hoag NE • Grand Rapids, MI 49525 •  Phone: (616) 365-9822
slogan image

Nonconformance for Objectives and Metrics

Auditing and non conformances Inspector 118311269Common Nonconformance

Another of the Common nonconformances relating to the standard requirements we will discuss in this article is how Metrics and Objectives are addressed in a management system.

Objectives and Metrics

ISO 9001: 2015 requires:

4.4.1 The organization shall determine the processes needed for the QMS… and shall:

c) determine and apply the criteria and methods (including monitoring, measurements and related performance indicators) needed to ensure the effective operation and control of these processes;

There are also other requirements in section 9.1.3 (Analysis and evaluation) and 6.1 (Quality Objectives and planning to achieve them) and 5.3 leadership that address setting objectives / goals and measure them.

Continue Reading

ISO 45001 Overview

iso 45001 accident avoidanceOccupational Health & Safety Management Systems

ISO 45001:2018 is a standard that specifies requirements for an occupational health and safety (OH&S) management system.  The purpose is to promote a safe and healthy workplace that prevents work-related injuries.

Any organization can use the ISO 45001:2018 standard.  The management system promotes the establishment, implementation and maintenance of an OH&S to improve occupational health and safety, eliminate hazards and minimize OH&S risks (including system deficiencies), take advantage of OH&S opportunities, and address system nonconformities.

The intended outcomes of an OH&S management system include:

  1. continual improvement of OH&S performance
  2. fulfilment of legal requirements and other requirements
  3. achievement of OH&S objectives
ISO 45001:2018 is applicable to any organization regardless of its size, type and activities. It is applicable to the OH&S risks under the organization's control, taking into account factors such as the context in which the organization operates and the needs and expectations of its workers and other interested parties.

We have created a short overview course for your review. 

Click her to go to for the ISO 45001 Introduction Course.

What is ISO 27001?

black site reputation management removing defamationCyber Attacks on organizations are on the rise, hitting company’s sensitive information and data. Pressuring organizations to pay ransoms to recover data and to prevent release of confidential and sensitive data to the public, customers and competitors. Many companies have had ransom demands soar into the millions.

Continue Reading

When to do an ISO 27001 gap analysis

ISO 27001 is a recognized standard that organizations use to audit and certify their Information Security Management System (ISMS). Being awarded an ISO 27001 certification demonstrates that the organization has known management procedures to protect the confidentiality, integrity, and availability of the organization’s IT infrastructure.

When you do your gap analysis depends on where you are implementing your Information Security Managemen System (ISMS).

If you are just starting you need to combine your risk assessment along with your gap analysis.  In this case your analysis by definition will show many gaps, but it will provide a road map to implementing the ISMS.

Be sure you have purchased the ISO 27001 standard from directly.
new logo white

We review your requirements, then give you a menu of options to meet your budget and schedule.  MSG helps you determine:
  • Goals and objectives
  • Which certifications or standards are applicable
  • What individuals should be involved to tailor your training
  • A time schedule
  • Resources necessary to ensure a successful program launch

Stay Connected with Us