Gromarks Certification & Inspection

Introduction

OHSAS 18001, developed in 1999 and revised in 2007, is a comprehensive Occupational Health and Safety (OH&S) management system specification, deigned to enable an organization to control OH&S risks and improve its performance. OHSAS 18001 Certification demonstrates that a safety oriented approach has been integrated into the company’s processes, a company’s commitment to a safe working environment and to protecting employees against injury at work.

OHSAS 18001 has been developed to be compatible with ISO 9001 and ISO 14001 management systems standards, in order to facilitate the integration of quality, environmental and OH&S management systems by organizations. Legislative & regulatory commitment and continual improvement are two important aspects of OHSAS 18001. The standard is in two sections; OHSAS 18001 is the specification against which certification is awarded. OHSAS 18002 provides guidance on implementing an occupational health and safety management system and corresponds directly to the specification.

The elements of OHSAS 18001 include:
> Policy and commitment
> Hazard identification, risk assessment & risk controls
> Legal requirements
> Objectives & Programs
> Organization & personnel
> Training, Communication & Consultation
> Documentation & records Operational Controls
> Emergency Readiness
> Measurement & monitoring
> Accident & incident investigation, corrective & preventive action Audit & Review

U&T Standardization Services

> Certification – We provide assessment and certification to OHSAS 18001 and HACCP.
> Gap Analysis – We offer gap analysis and preliminary assessments to prepare you for certification.
> Training – We will help you interpret the new concepts and understand the impact on your organization. U&T Marks provides on-site introduction and internal audit training which will prepare you and your staff prior to and after the OHSAS 18001 and/or HACCP certification process.

Introduction

The rising value of information to organizations combined with recent high profile information security breaches, are highlighting the ever mounting requirement for organizations to protect their information. In order to ensure the continuity of your operations and the safety of your data and systems, the security of information systems and critical business information must be constantly and actively managed. Unprotected systems are vulnerable to many threats,

ISO 27001 helps the organization to:

> Analyze risks related to information security
> Define specific and optimal security goals (the standard requires a company to specify its own security goals which an auditor verifies)
> Define defined and documented methods which all activities should follow
> Document all risks, goals, and methods
> Implement measures to mitigate and manage risks
> Assign accountability for risk management
> Measure information security
> Embed continuous improvement approach What Certification Does
> Demonstrates the integrity of your data and systems and your commitment to information security
> Transforms the organization’s culture both internally and externally
> Allows enforcing information security and reducing the possible risk of fraud, information loss and disclosure
> Demonstrates the independent assurance of your internal controls
> Meets corporate governance and business continuity requirements
> Independently demonstrates that applicable laws and regulations are observed
> Provides a competitive edge
> Meets contractual requirements
> Demonstrates to your customers that the security of their information is paramount
> Verifies that your organizational risks are properly identified, assessed and managed, while formalizing information security processes, procedures and documentation Benefits
> Enhances the credibility of your organization
> Opens up new business opportunities with security conscious customers
> Improves employee ethics
> Strengthens the climate of confidentiality throughout the workplace
> Provides a competitive advantage over companies that aren’t certified against ISO/IEC 27001:2005
> Reduces the risks associated with unsecured data and information
> Formalizes your corporate information system structure (infrastructure, buildings, cabling, environment, alarms, fire and flood prevention, access control, etc.)
> Effectively organizes all existing and necessary company IT security processes
> Protects vital business assets with regular backups
> Provides design of ongoing system optimization
> Potentially reduces insurance premiums with proven compliance
> Reduces the potential for law suits

U&T Standardization Marks Services

> Certification – We provide assessment and certification to ISO 27001.
> Gap Analysis – We offer gap analysis and preliminary assessments to prepare you for certification.
> Training – We will help you interpret the new concepts and understand the changes. U&T Marks provides on-site introduction and internal audit training which will prepare you and your staff prior to and after the ISO 27001 certification process.