Nature of Business
Legal Status of Firm
Private Limited Company
The need for standardization was felt during the Second World War.
USA used MIL Standard MIL-Q-9858, NATO used AQAP [Allied Quality Assurance Publications] series published between 1968 and 1970 which were adopted virtually unchanged by the ministry of Defence as the DEF-STAN 05.21 series in January 1973.
Within Civil Industry, at large there was need for quality standards to work to. Early attempts to meet this need in Britain resulted in quality system standards being published by the British Standards Institution. In November 1972, it published BS 4891 ` Guide to Quality Assurance’, which set out recommendations on organization for, and management of, quality. This was followed in 1974 by the publication of BS 5179 ` A Guide to the Operation and Evaluation of Quality Assurance Systems’.
A committee was formed to prepare the ISO standards, which would be applicable to all types of industries, regardless of their location, size or turnover. Technical Committee 176 consisting of technical experts was formed in 1979. In 1986, ISO 8402 was published, which is the Quality Management and Quality Assurance – Vocabulary. TC 176 considered national inputs and in 1987 produced a series of standards, which was largely based on BS 5750, its notes and commentaries. (In 1987, BS 5750 was revised to bring it in line with the ISO 9000.)
The series duly revised in 2005,2008 and 2009 now comprises of ISO 9000, ISO 9001and ISO 9004.
These standards were re-published incorporating revisions. These revisions became necessary as a result of periodic review carried out by ISO Technical Committee 176 based on the inputs from member bodies, who have been using these standards.
ISO 9000 SERIES
An internationally agreed common standards quality management system drawn by Technical Committee.. They are:
ISO 9000:2005 Quality Management Systems --- Fundamentals and Vocabulary.
ISO 9001:2008 Quality Management Systems --- Requirements
ISO 9004:2009 Quality Management Systems --- Guidelines for performance improvements
ISO 9004 is intended as guidelines only and cannot be used as reference standards against which to assess the adequacy of quality management systems. ISO 9001 may be contractually specified where appropriate and used as a base for assessment.
In ISO 9001 Certification, highly competent market industries with ISO 9001:2008 certification hold a distinguished position. These industries hold an advantage over others and have gained trust & credibility. The ISO 9001:2008 Quality Certification is based on the following eight fundamental quality management principles:
• Customer focus
• Involvement of people
• Process approach
• System approach to management
• Continual improvement
• Factual approach to decision making
• Mutually beneficial supplier relationships
• Overview of the ISO 9001 : 2008 standard
ISO 9001:2008 contains five requirements sections, each dealing with one of the fundamental building blocks required by any process. These are:
Quality Management System: This section details the general and documentation requirements that are the foundation of the management system. The general requirements ask you to look at the processes of the management system, how they interact with each other, what resources you need to run the processes; and how you will measure and monitor the processes. The second part of the section then sets out the requirements for the documentation needed to effectively operate the system and how the documentation should be controlled.
IT Service Management requires an integrated approach to effectively deliver those services that truly meet customer and business requirements. To do this, established and professional methods and processes are needed.
A recognized solution to this problem is to use an IT Service Management System (ITSMS) based on ISO/IEC 20000, the international standard for IT service management. Certification to this standard enables you to independently demonstrate to your customers that you meet best practice.
ISO/IEC 20000 is aligned with and complementary to the process approach defined within ITIL from the Office of Government Commerce (OGC).
ISO/IEC 20000 consists of two parts:
ISO/IEC 20000-1:2011 defines the requirements for a service provider to deliver managed services. It is based on BS 15000-1, which has been superseded.
ISO/IEC 20000-1:2011 promotes the adoption of an integrated process approach to effectively deliver managed services to meet business and customer requirements. For an organization to function effectively it has to identify and manage numerous linked activities. Co-ordinated integration and implementation of the service management processes provides the ongoing control, better efficiency and opportunities for continual improvement.
Organizations require increasingly advanced facilities (at minimum cost) to meet their business needs. With the increasing dependencies in support services and the diverse range of technologies available, service providers can struggle to maintain high levels of customer service. Working reactively, they spend too little time planning, training, reviewing, investigating, and working with customers. The result is a failure to adopt structured, proactive working practices. Those same service providers are being asked for improved quality, lower costs, greater flexibility, and faster response to customers.
In contrast, effective service management delivers high levels of customer service and customer satisfaction. It also recognizes that services and service management are essential to helping organizations generate revenue and be cost-effective. The ISO/IEC 20000 series enables service providers to understand how to enhance the quality of service delivered to their customers, both internal and external.
The ISO/IEC 20000 series draws a distinction between the best practices of processes, which are independent of organizational form or size and organizational names and structures. The ISO/IEC 20000 series applies to both large and small service providers, and the requirements for best practice service management processes are independent of the service provider's organizational form. These service management processes deliver the best possible service to meet a customer's business needs within agreed resource levels, i.e. service that is professional, cost-effective and with risks which are understood and managed.
An Information Security Management System (ISMS) is a management system based on a systematic business risk approach, to establish, implement, operate, monitor, review, maintain, and improve information security. It is an organizational approach to information security. ISO/IEC 27001 (BS 7799) is a standard for information security that focuses on an organization’s ISMS
Information is an asset, which, like other important business assets, has value to an organization and consequently needs to be suitably protected. Information security protects information from a wide range of threats in order to ensure business continuity, minimize business damage and maximize return on investments and business opportunities
Information can exist in many forms. It can be printed or written on paper, stored electronically, transmitted by post or using electronic means, shown on films, or spoken in conversation. Whatever forms the information takes, or means by which it is shared or stored, it should always be appropriately protected.
Information security is characterized here as the preservation of:
1. Confidentiality: ensuring that information is accessible only to those authorized to have access.
2. Integrity: safeguarding the accuracy and completeness of information and processing methods.
3. Availability: ensuring that authorized users have access to information and associated assets when required.
Information security is achieved by implementing a suitable set of controls, which could be policies, practices, procedures, organizational structures and software functions. These controls need to be established to ensure that the specific security objectives of the organization are met.
ISO 27000 Certification focus for providing a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving to any organization. We are one of the reliable names providing ISO 27001 Information Security Certification Services in India. Backed by an experienced team, we have been offering services in a professional manner that aid in acquiring ISO 27001 Certification.
ISO 50001 is a newly developed international standard for an energy management system (EnMS). ISO 50001:2011 (the first and current version) provides a framework for establishing energy management best practice to help organizations to improve their energy efficiency in a logical, controlled and systematic way.ISO 50001 has been structured to align with other popular industry management system standards such as those for quality, health & safety and environmental management. Organizations can thus, if appropriate, integrate an energy management system (EnMS) with their existing management system(s).
Implement and maintain a process to identify and quantify an organization’s activities that use energy and assess their current energy
Profile and baseline of performance
Establish a specific energy policy with clear objectives and a program to achieve these ensure document and record control
Maintain processes to ensure applicable legislation is identified, communicated within and compliance assessed
Resource roles and responsibilities with regard to direct and indirect energy usage within the organization.
Maintain good operational control in relation to energy usage and future consumption
Monitor and measure the energy management systems performance as well as energy usage and related factors
Apply energy management principles across all functions, from design, procurement through to operations.
Audit the system and review the system at a management level periodically
By achieving certification to ISO 50001 your organization will be able to reap numerous benefits. These include and are not limited to:
Energy cost savings
Reduced greenhouse-gas emissions and carbon footprint
Increased energy awareness among staff
ISO 22301:2012 addresses Business Continuity Management Systems – Requirements. These standards can be used by organizations of all sizes and types. These organizations will be able to obtain accredited certification against this standard and so demonstrate to legislators, regulators, customers, prospective customers and other interested parties that they are adhering to good practice in Business Continuity Management.
While ISO 22301 may be used for certification and therefore includes rather short and concise requirements describing the central elements of BCM, a more extensive guidance standard (ISO 22313) is being developed to provide greater detail on each requirement in ISO 22301.
Business continuity requirements include:
Business continuity policy
Business impact analysis
Business continuity strategy.
Management support & Identification of requirements
Management willing to invest both financial and human resources effort, the effort will depend on requirements of the business in terms of operational continuity. The requirements can be from clients, regulations / law, investors etc.
Business continuity policy & objectives
Top management definition and approval of main responsibilities and rules for business continuity and business continuity policy. Policy has to be supported by measurable objectives.
Documents for Business continuity management system
Managements systems, whether business continuity, information security, quality management or environmental protection, all have in common a set of procedures upon which such systems rely.
Risk assessment & treatment
To be prepared for disruptive incidents and prevent some of them to the degree possible these need to be identified. First one needs to find out which incidents can happen, and then define which controls (i.e., safeguards) can be applied to mitigate them. This is the basis for risk assessment and treatment .
Business impact analysis
The purpose of business impact analysis is to define the recovery time objective (RTO) and Recovery Point Objective from impacts resulting out of different scenarios. It then specifies the contingency plan(s) for these scenarios.
Business continuity plan
Business continuity plans and its types will depend on the nature and complexity of operations of the company. These address incident response plans and recovery plans
Training & awareness
Awareness and training of identified staff is required to ensure how to implement the plans.
Exercising & testing
Training is not going to be enough unless testing of plans are carried out. Testing can be from mock drills to full scale simulated environment including top management and outsourcing partners and suppliers.
In 2000, the extended the CMMI model was published with a focus on systems engineering and software development. The predecessor of the Capability Maturity Model Integration, the CMM (Capability Maturity Model), was developed in 1991 by the Software Engineering Institute at Carnegie Mellon University, USA. Like other CMMs, the Capability Maturity Model Integration (CMMI) models provide guidance to use when developing processes. The CMMI models are not processes or process descriptions.
The purpose of the CMMI is to provide guidance for improving your organization's processes and your ability to manage the development, acquisition, and maintenance of products or services
CMMI integrates proven approaches into a structure that
• Helps your organization examine the effectiveness of your processes
• Establishes priorities for improvement
• Helps you implement these improvements
How CMMI is different: The CMMI provides an integrated, consistent, enduring framework for enterprise-wide process improvement and can accommodate new initiatives as future needs are identified. Unlike single-discipline or stove-pipe models that can result in confusion and higher costs when implemented together.
Who it is for: Those providing systems and software engineering products and services to organizations who transform customer need expectations, and constraints into products, and supporting these products throughout their life. If you manufacture, code, analyze, maintain or document a product, you need this
A maturity level is a well-defined evolutionary plateau toward achieving a mature software process. Each maturity level provides a layer in the foundation for continuous process improvement.
In CMMI models with a staged representation, there are five maturity levels designated by the numbers 1 through 5
• Permanent Recruitment - Executive Search:
• Identifying, hiring and training professionals to be outsourced for IT Service management roles,information security roles.
Product aims to help defense establishment to automate and control its public and regimental assets.
Integrated property management system software has been especially designed with an objective to manage ledger and voucher activities within any army unit / defense organization. It will help increase accountability, availability of real time all stack data and reduce effort in stock management. The design created and refined by ex-army officers ensures a property management work flow for all types of voucher entry to ledger management to depreciation as is done in units today
Quality of IT service at grassroots level depends on handling of each and every call/ticket. Most organizations verify the quality of these deliverables by internal audits. The Internal audit can verify a very limited sample of tickets. The ratio of “volumes of ticket generated” vs. “number of tickets checked by internal audit” will always be very low. This is because of the designed and implemented processes. Therefore a need to verify a much larger sample to improve the quality of service delivery is becoming a requirement.
The checking parameters for the tickets, its method of inspection and the frequency are generally not defined for internal audits. Thus with a low sample size and non defined parameter, internal audits do not produce consistent results.
A consistent quality check can be done by regular transactional or ticketing inspections against a defined Inspection plan.
• Design ticket audits / Inspections
• Deploying trained audit teams, ensure conduct of audit / inspection as per agreed sample size
• Report of daily performance and cumulative performance of the IT service management
Integrated Property Management System software has been especially designed with an objective to manage ledger and voucher activities within any army unit / defense organization. It will help increase accountability, availability of real time all stack data and reduce effort in stock management. The design created and refined by ex-army officers ensures a property management work flow for all types of voucher entry to ledger management to depreciation as is done in units today.
The software is web-based, user-friendly and easy-to-use. This facilitates easier deployment over the Local Area Network, Wide Area Network as well as over internet whenever required. The user can access the system using standard Internet browser such as Internet Explorer or Firefox after necessary authentication. The complete system works with a centralized back-end database to store the necessary structured information, captured by the user.
Manage inventories of multiple regimental / public funds accounts maintained by sub units such as Regimental Officers Mess, ACG, ATG, TTG, etc. The features are:-
Authenticated access to assigned modules
Users can operate assigned account only. For e.g. an Officer Mess Clerk will get access to Officer Mess data but an officer looking after Officer Mess and CSD can access both.
Maintaining / Viewing of ledgers for any account. Initial physical data entries can be assisted.
Print Voucher to follow up transactions.
Immediate access to any bill, voucher ledger or inventory
Correct accounting of bundled items such as monitors, key board and mouse with computers.
Option of change of location of any item
Generating room inventories to assist in handing taking over/ASTB.
Facility of tagging photo for easy identification and accounting.
Alerts for pending jobs
Uniform interface for all accounts - easy to learn
Web based - no client application required
View consolidated inventories e.g. Total chairs in regiment bought from different funds or location of all TV sets in regt.
Core Quality It Management Consultancy Private Limited
322, Pride Purple Square, 3rd Floor,Kalewadi Phata, PCMC Area,
Pune-411057, Maharashtra, India