How ISO 27001 Can Help You Win Trust Fast!

How ISO 27001 Can Help You Win Trust Fast!

Send us a text [https://www.buzzsprout.com/twilio/text_messages/2401053/open_sms] Summary In this conversation, Ian Shorten, an independent information security consultant, discusses the fundamentals of ISO 27001, a standard for managing information security. He explains its importance in today's interconnected world, the core concepts of the standard, and the journey organisations face during implementation. Ian emphasises the need for a culture of security awareness across all levels of an organisation and provides practical tips for successfully implementing ISO 27001. Takeaways ISO 27001 is a management system for information security. It's not just for IT companies; all organisations need it. Understanding information as an asset is crucial. Confidentiality, integrity, and availability are key attributes of information security. Creating a culture of security awareness is vital for all employees. The implementation journey can take from three months to several years. Risk management doesn't have to be overly complicated. Regular maintenance of the ISMS is essential for effectiveness. Most problems in security are caused by human error, not technology. Get a grip on your information assets early in the process. Chapters 00:00 Introduction to ISO 27001 and Information Security 02:55 Understanding Information Security Management Systems 05:35 The Importance of ISO 27001 in Today's World 08:09 Core Concepts of ISO 27001 10:39 Identifying and Managing Risks in Information Security 13:11 The Role of Controls in ISO 27001 15:51 Flexibility and Adaptability of ISO 27001 18:33 Implementation Journey for ISO 27001 21:49 Implementation Timeline for ISO 27001 23:24 Understanding Existing Controls and Technology 25:15 Common Pitfalls in Information Security Management 28:57 Scalability of ISO 27001 for Small Businesses 31:01 Creating a Culture of Security Awareness 33:45 Maintaining ISO 27001 Compliance 36:52 Top Tips for Starting ISO 27001 Journey Key Links Auva Website: www.auva.com [http://www.auva.com] Apple Podcast:  https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594 [https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594] Spotify: https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6 [https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6] Youtube: https://www.youtube.com/@auvacertification/podcasts [https://www.youtube.com/@auvacertification/podcasts] LinkedIN: https://www.linkedin.com/company/auva-certification-ltd [https://www.linkedin.com/company/auva-certification-ltd]  Instagram: @auvacert Michael Venner:  https://www.linkedin.com/in/michaelvenner-isocertificationexpert/ [https://www.linkedin.com/in/michaelvenner-isocertificationexpert/]  Ian Shorten: https://www.linkedin.com/in/ian-shorten-8a100012/ [https://www.linkedin.com/in/ian-shorten-8a100012/] Ian Shorten: ian@ianshorten.co.uk

Understanding ISO 45001: Consultation and Participation

Send us a text [https://www.buzzsprout.com/twilio/text_messages/2401053/open_sms] Summary This conversation delves into the requirements of ISO 45001, focusing on the importance of consultation and participation in health and safety management. Martin Graham explains the definitions of consultation and participation, the legal requirements surrounding them, and the significance of involving workers in decision-making processes. The discussion highlights the barriers to effective consultation, the role of leadership in fostering a safety culture, and practical tips for improving worker participation. Ultimately, the conversation emphasises the need for open communication and the importance of listening to workers' feedback to enhance safety practices within organisations. Takeaways ISO 45001 emphasises the need for consultation and participation. Consultation involves seeking workers' views, while participation involves decision-making. Involving workers can lead to better health and safety outcomes. Legal requirements exist for worker participation in health and safety. Barriers to effective consultation include fear of reprisals and lack of communication. Leadership plays a crucial role in fostering a positive safety culture. Simple mechanisms like suggestion boxes can improve participation. Feedback from workers should be acknowledged and acted upon. Consultation and participation are distinct but interconnected processes. Creating an open environment encourages workers to voice their concerns. Chapters 00:00 Understanding ISO 45001: Consultation and Participation 04:00 Legal Requirements and Cultural Impact 07:36 Engaging All Workers: Beyond Employees 10:23 Mechanisms for Effective Consultation 15:12 Common Pitfalls in Consultation Practices 16:54 Navigating Workplace Personalities 17:20 Overcoming Barriers to Safety Engagement 18:07 Creating a Culture of Open Communication 19:59 The Importance of Participation in Safety 22:01 Integrating Safety Standards Across the Organisation 23:37 Leadership's Role in Safety Culture 25:21 Building Trust Through Engagement 28:03 Defining Consultation vs. Participation 28:59 Simple Steps to Enhance Participation Key Links Auva Website: www.auva.com [http://www.auva.com] Apple Podcast:  https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594 [https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594] Spotify: https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6 [https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6] Youtube: https://www.youtube.com/@auvacertification/podcasts [https://www.youtube.com/@auvacertification/podcasts] LinkedIN: https://www.linkedin.com/company/auva-certification-ltd [https://www.linkedin.com/company/auva-certification-ltd]  Instagram: @auvacert Michael Venner:  https://www.linkedin.com/in/michaelvenner-isocertificationexpert/ [https://www.linkedin.com/in/michaelvenner-isocertificationexpert/]  Martin Graham:  https://www.linkedin.com/in/martin-graham-657251173/ [https://www.linkedin.com/in/martin-graham-657251173/]

The Truth About Aspects and Impacts in ISO 14001

Send us a text [https://www.buzzsprout.com/twilio/text_messages/2401053/open_sms] Summary In this conversation, Alex from JWA Management Consulting discusses the intricacies of ISO 14001 and environmental management systems. He explains the concepts of aspects and impacts, common pitfalls organisations face, and the importance of engaging employees in the process. The discussion also covers how to identify significant aspects, the role of legal compliance, and the importance of stakeholder engagement. Alex emphasises the need for continuous improvement and shares tools and resources that can aid organisations in their environmental management journey. The conversation concludes with success stories and contact information for further engagement. Takeaways Aspects are how an organisation interacts with the environment. Impacts are the consequences of those interactions. Many organisations treat environmental management as a tick-box exercise. Engaging employees at all levels is crucial for effective environmental management. Identifying aspects requires a thorough understanding of the organisation's operations. Significant aspects are those that could have a major impact on the environment. Legal compliance is a key component of environmental management. Stakeholder engagement can drive improvements in environmental practices. Continuous improvement is essential for effective environmental management. Tools and resources are available to assist organisations in their environmental journey. Key Links Auva Website: www.auva.com [http://www.auva.com] Apple Podcast:  https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594 [https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594] Spotify: https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6 [https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6] Youtube: https://www.youtube.com/@auvacertification/podcasts [https://www.youtube.com/@auvacertification/podcasts] LinkedIN: https://www.linkedin.com/company/auva-certification-ltd [https://www.linkedin.com/company/auva-certification-ltd]  Instagram: @auvacert Michael Venner:  https://www.linkedin.com/in/michaelvenner-isocertificationexpert/ [https://www.linkedin.com/in/michaelvenner-isocertificationexpert/]  JWA Management Consultancy Website: https://www.jwallcock.co.uk/ [https://www.jwallcock.co.uk/] JWA Management Consultancy LinkedIN: https://www.linkedin.com/in/robert-clements-6a9a8b10/https://www.linkedin.com/company/jwa-management-consulting/posts/?feedView=all [https://www.linkedin.com/company/jwa-management-consulting/posts/?feedView=all] Alex Holford LinkedIN: https://www.linkedin.com/in/alex-holford-pcqi-564414240/ [https://www.linkedin.com/in/alex-holford-pcqi-564414240/]

What Leaders Can Learn From ISO Consultants

Send us a text [https://www.buzzsprout.com/twilio/text_messages/2401053/open_sms] Summary In this conversation, Robert Clements from Assent Risk Management discusses the evolution of ISO standards, the role of consultants, and common misconceptions about ISO certification. He emphasises the importance of documentation, communication, and leveraging ISO standards for business growth. The discussion also covers the challenges faced during audits, the differences in approach for startups versus established businesses, and strategies for promoting ISO certification post-achievement. Takeaways ISO consulting has evolved significantly over the years. Documentation should be practical and not overly burdensome. Clients often misunderstand the role of consultants in ISO certification. ISO standards can help businesses grow and scale effectively. Internal audits are crucial for identifying potential risks. Startups can benefit greatly from implementing ISO standards early on. Communication with consultants is key to successful ISO implementation. Overcomplicating ISO processes can hinder effectiveness. Promoting ISO certification can enhance business credibility. The human aspect of consulting is vital for successful client relationships. Chapters 00:00 Introduction to Assent Risk Management 00:49 The Evolution of ISO Standards 03:02 Rob's Journey into ISO Consulting 05:19 Understanding the Role of a Consultant 08:48 Common Misconceptions about ISO Standards 10:42 The Importance of Documentation 12:41 Effective Communication in ISO Implementation 14:36 Changing Perceptions of ISO Standards 16:39 Knowledge Transfer and Client Involvement 19:02 The Leadership Role in ISO Implementation 21:30 Navigating the Certification Process 24:27 Tailoring Approaches for Startups vs Established Businesses 26:58 The Value of Internal Audits 29:17 Maximising the Benefits of Certification 32:04 Learning from Audit Experiences 34:27 Engaging Effectively with Consultants Key Links Auva Website: www.auva.com [http://www.auva.com] Apple Podcast:  https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594 [https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594] Spotify: https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6 [https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6] Youtube: https://www.youtube.com/@auvacertification/podcasts [https://www.youtube.com/@auvacertification/podcasts] LinkedIN: https://www.linkedin.com/company/auva-certification-ltd [https://www.linkedin.com/company/auva-certification-ltd]  Instagram: @auvacert Michael Venner:  https://www.linkedin.com/in/michaelvenner-isocertificationexpert/ [https://www.linkedin.com/in/michaelvenner-isocertificationexpert/]  Assent Risk Management Website: assentriskmanagement.co.uk [https://www.assentriskmanagement.co.uk/]& clemarkgroup.com [https://www.clemarkgroup.com/] Rob Clements LinkedIN: https://www.linkedin.com/in/robert-clements-6a9a8b10/ [https://www.linkedin.com/in/robert-clements-6a9a8b10/]

If I Built an ISO System in 2025, I’d Do This

Send us a text [https://www.buzzsprout.com/twilio/text_messages/2401053/open_sms] To learn more check out www.auva.com Summary In this conversation, Michael Venner and Ian Battersby delve into the intricacies of ISO systems, discussing the interconnectedness of standards, the impact of Annex SL, and the importance of context setting in management systems. They explore how risk assessments, operational controls, and management reviews play crucial roles in achieving intended outcomes. The discussion emphasises the need for clarity in documentation and the alignment of management systems with business strategies, ultimately advocating for a holistic approach to quality management. Takeaways * Implementing an ISO system requires a comprehensive understanding of interconnected clauses. * The PDCA cycle is fundamental to effective management systems. * Annex SL has significantly improved the integration of various management standards. * Context setting is crucial for determining the scope and objectives of a management system. * Risk assessments should be linked to context and opportunities for improvement. * Measurement and monitoring are essential for evaluating the effectiveness of management systems. * Auditing should be based on a risk assessment approach to ensure relevant areas are covered. * Operational controls must align with compliance obligations and customer requirements. * Management reviews are vital for assessing the adequacy of resources and achieving intended outcomes. * Documentation should be structured to clearly reference and link different parts of the management system. Chapters 00:00 Understanding Management System Standards 03:10 The Importance of Context in Standards 07:15 Interconnectedness of Clauses in Standards 11:22 Risk and Opportunity Assessment 16:11 Measuring Success in Management Systems 18:29 Connecting Shop Floor Control to Standards 20:08 Operational Control and Risk Management 21:50 The Importance of Auditing and Management Review 25:03 Assessing Resource Adequacy and Management Review 26:43 Interconnectedness in Operational Processes 28:00 Environmental Considerations in Operational Control 30:10 Aligning Risk Assessments Across Standards 31:31 Common Causes and Streamlined Auditing 33:16 Structuring Documentation for Clarity 35:08 Conclusion and Future Discussions Key Links Auva Website: www.auva.com [http://www.auva.com] Apple Podcast:  https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594 [https://podcasts.apple.com/gb/podcast/by-all-standards/id1771677594] Spotify: https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6 [https://open.spotify.com/show/79OUNj3vY9dmESR3okwHJa?si=871837f56dc149b6] Youtube: https://www.youtube.com/@auvacertification/podcasts [https://www.youtube.com/@auvacertification/podcasts] LinkedIN: https://www.linkedin.com/company/auva-certification-ltd [https://www.linkedin.com/company/auva-certification-ltd]  Instagram: @auvacert Michael Venner:  https://www.linkedin.com/in/michaelvenner-isocertificationexpert/ [https://www.linkedin.com/in/michaelvenner-isocertificationexpert/]  Ian Battersby:   [https://www.linkedin.com/in/martin-graham-657251173/]https://www.linkedin.com/in/ianthomasbattersby/ [https://www.linkedin.com/in/ianthomasbattersby/] Blackmores UK:  https://blackmoresuk.com/ [https://blackmoresuk.com/] Blackmores Linkedin Page:  https://www.linkedin.com/company/blackmoresuk/posts/?feedView=all [https://www.linkedin.com/company/blackmoresuk/posts/?feedView=all]