ISO 28001:2007(E) Security management systems for the supply chain - Best practices for implementing supply chain security, assessmentsand plans —Requirements and guidance

ISO 28001:2007(E) Security management systems for the supply chain - Best practices for implementing supply chain security, assessmentsand plans —Requirements and guidance 1 Scope This International Standard provides requirements and guidance for organizations in international supplychains to devellop and implement supply chain security processes; establish and document a minimum level of security within a supply chain(s) or segment of a supplychain; assist in meeting the applicable authorized economic operator (AEO) criteria set forth in the WorldCustoms Organization Framework of Standards and conforming national supply chain securityprogrammes. NOTE Only a participating National Customs Agency can designate organizations as AEOs in accordance with itssupply chain security programme and its attendant certification and validation requirements. In addition，this International Standard establishes certain documentation requirements that would permitverification. users of this lnternational Standard will -define the portion of an international supply chain within which they have established security (see 4.1); conduct security assessments on that portion of the supply chain and develop adequatecountermeasures; develop and implement a supply chain security plan; —train security personnel in their security related duties. 2Normative references