Communicate Directly With TL 9000 Experts! BIZPHYX is a leading TL 9000 quality management consulting firm. As QuEST Forum TL 9000 Master Trainers and Experts, we assist organizations with TL 9000 (the telecom quality standard), ISO 9001 and ISO 14001 training, consulting and implementation. Our support desk provides complimentary education and current news regarding these standards. BIZPHYX has a 100% client certification rate.
2016 was a big year for ISO standards. BIZPHYX was busy assisting clients with ISO 9001:2015 transitions, internal audits and TL 9000 & ISO 14001 implementations. However, those are just a few of the standards in the ever expanding landscape of quality management standards. Here is a quick look back at 2016. ISO standards even took center stage at TED Talks.
For more information on taking your journey through quality management by implementing an ISO 9001 based standard, contact email@example.com.
We love to post (and create) great podcasts and videos on ISO quality standards. This video clip from ISO.org called “ISO and SMEs” makes the case for small and medium sized enterprises (SMEs) certifying to the standard. Need confidence?
BIZPHYX is an ISO 9001 and TL 9000 certified WBE and SME. We can certainly attest to the value of certifying to the standard, not only with clients, but also within our own organization. As global consultants and training providers, ISO 90001 has helped us deliver consistent, high quality products and services to clients around the world.
The latest revision of ISO 9001, ISO 9001:2015, presents a unique opportunity for SMEs, particularly those in the service industry, to embrace a level playing field. The time is now. The standard is ISO 9001. Motivated?
As you may be aware the seminars, workshops and webinars have begun! Many consultants are helping clients prepare for the impending changes with the ISO 9001:2015 revision. ASQ and the American Quality Institute hosted the ISO 9001 World Conference on March 8-10 in Houston. We facilitated our own “Intro To ISO 9001:2015” webinar earlier in March and will repeat this complimentary webinar on November 6, 2015.
Here is a link to an ASQ TV video featuring Denise Robitaille, who has been a member of the U.S. Technical Advisory Group to Technical Committee 176 (TAG 176) for more than 10 years and has worked on standards internationally. Everyone is providing their input on a significant change to the standard, Risk Based Thinking:
(click image to watch this video on ASQ TV)
In this video, Denise discusses how the revised version of ISO 9001 may handle risk, as well as the revision’s effect on small organizations. For more updates as they occur, including video features from ISO, please visit our Countdown To ISO 9001:2015 web page. For more information on ISO 9001, contact firstname.lastname@example.org.
When we first got notice of this video, we didn’t know if we should laugh– or gasp. The development of ISO standard is certainly a complicated process and probably worthy of distillation for the masses—but sock puppets, with names? We couldn’t help but share ISO’s recent video on how world quality standards are developed. While it’s a tongue and cheek video with actual sock puppets, the host does a very good job of breaking it all down and clearly defines the 5 stages of quality standards development. Learn (and laugh)…
Seriously….here are the 5 stages of development:
1. New Work Item Proposal (NWIP) Stage
2. The Working Document (WD) Stage
3. The Committee Draft (CD) Stage
4. The Draft International Standard (DIS) Stage
5. Final Draft International Standard (FDIS) Stage
For a detailed explanation of the various stages, click the image link below to go to ISO’s documentation page:
For more information on implementing ISO standards, contact email@example.com. We promise that sock puppets will not respond to your request for information!
As many of our clients are aware, ISO 9001: 2008 is under revision. ISO 9001 is one of the most widely used ISO quality standards. The proposed revisions have worked their way through the Working Draft (WD) and Committee Draft (CD) stages and are now available as a Draft International Standard (DIS), a key milestone in the revision process.
Since changes to ISO 9001: 2008 will impact other quality standards like TL 9000 and ISO 14001 (as examples), we like to keep to readers aware of the potential changes and impacts to their existing quality systems. As active members in QuEST Forum the governing body over TL 9000, we can report that organizationally we’re waiting to see what changes occur with ISO 9001 before significant revisions are made to the current TL 9000 quality standard. Since TL 9000 is the ISO based quality standard of the ICT and telecommunications industry, changes to ISO 9001 may have an impact on the standard as well.
We felt the timing was right to provide our readers with relevant information, as well as source material on the revision process and the proposed changes, especially coming off of the recent ASQ Conference on World Quality. Everyone is waiting to see how much of the DIS will be upheld and what we’ll have to work with in 2015.
Timeline For Change:
Like all ISO standards, ISO 9001 is reviewed every five years and is now being revised to ensure it is relevant and up-to-date. At the DIS stage all interested parties can submit feedback that will be considered before the final draft is published by the end of 2015. After public comments are collected, the revised standard will work its way to FDIS status (Final Draft International Standard), which is expected to take place by July 2015, with the published standard targeted for September 2015. Once the new standard is published in September (or by the end of December 2015), there begins a 3-year transition period for implementation to the revised standard.
Since the publication of the Draft International Standard (DIS), which is available at many sites including ISO (click here), many certifying bodies (CBs), Registrars, consultants, auditors and quality organizations have offered their opinions on the proposed changes. Below the video, you will find links to these source materials. While everyone has their own take on the DIS, generally here’s what we know will change and why:
Why The Standard Will Change:
It’s important that the standard remain relevant with regard to changing times, products and services and evolving economies of scale. As a result, ISO wants to develop a more consistent foundation for the long-term (25 years) and one that will facilitate better integration among all the various quality standards. Certainly it is ISO’s goal to increase adoption of the standard and to do so, it is necessary to address the rise of service organizations (vs. manufacturing) and the technological changes that impact the way we work in terms of telecommuting and the “virtual office”.
Quick Overview Of What Will Change:
ISO 9001 (along with ISO 14001 and ISO 27001) is under revision to the common framework. Annex SL is the generally used shorthand for this and there is a larger push to align all future ISO management system standards under the new Annex SL model. Revision to the common framework is intended to enhance the alignment and compatibility of standards. Some of the proposed changes include:
–An emphasis on risk based management. Risk management is in, preventive action out
—Organizational Context. A new clause that will require the organization to define itself, determine internal and external issues relevant to its purpose and that affect its ability to achieve the outcomes in their quality management system. It’s a new way of viewing the QMS.
—Process Approach is now embedded in requirements
–No Management Representative or Quality Manual is required
–Numerous terminology changes (for example “product” is now “goods and services”)
—New clause numbers in the High Level Structure
–More leadership requirements for management as well as an emphasis on achieving “value” for the organization and its customers
—A change in structure. There are now 10 main clauses proposed which speak to the alignment with other standards (see below):
Here’s a brief video clip from ASQ TV(the full video link is provided below with a list of source materials)
Source Materials For Your Consideration:
We’ve provided links to some of the better summaries, videos and source materials that we’ve reviewed:
(SGS is a multinational company headquartered in Geneva, Switzerland which provides inspection, verification, testing and certification services)
We will keep our readers aware of any updates to the process as they occur here on our blog and on the BIZPHYX Knowledgebase.
The most important thing you must consider is that change is coming and some believe for the better.
Learn about theses changes as you see fit. Evaluate whether or not these changes will impact your organization. Open a discussion with your quality consultant or Registrar. There will be time once the final standard is published to revise your quality system before the transition period (3-years) is complete. For more information on the ISO 9001: 2015 revision, contact firstname.lastname@example.org.
As our readers know, we certify clients in the telecommunications and ICT industry to quality standards such as TL 9000, ISO 90001, ISO 14001 and ISO 27001. We also help many of these clients solve their recycling and e-waste objectives by helping them obtain R2/RIOS certifications.
Much has happened in first quarter of 2014 that impacts the ICT industry in the areas of network quality, data security, environmental sustainability and recycling. Each of these business practices are subject to constant transformation and in some instances, are under assault. The reality is the environment is at stake, electronics waste is piling up, spying is the “new norm” and foreign hackers are chipping away at our US data fortresses. What is an ICT supplier to do in 2014? Implement quality standards to mitigate these risks.
What makes our work in ICT so interesting is that these areas often intersect, requiring more complex and thoughtful quality frameworks to be implemented within organizations. For example, as everything moves to the cloud, not only is data security an issue (ISO 27001), there have been serious discussions about the increasing energy footprint of the digital economy and ICT in general. This presents a bit of a quandary for suppliers who are also committed to energy reduction and sustainability practices through their EMS (ISO 14001) while shifting more of their services to the cloud. Can you effectively balance the goals and objectives of an ISMS and an EMS simultaneously? We believe that you can.
If you’re sitting on the fence with regard to implementing any of these standards or if you’re considering whether it’s time to add an additional quality framework in your organization, here are some factors to consider and a Q1 update on what’s in play for these quality standards.
ISO 27001:Could the Hearbleed bug be good for Internet security?
Q1 2014 has been plagued with numerous data hacks involving retailers like Target, Michael’s and a host of other vendors whose POS systems were compromised with very sophisticated malware. Verizon just published a study regarding the increase in espionage hacking from Eastern Europe. The continued revelations of Edward Snowden are the gift that keeps on giving and have forced many in ICT to examine the true value of privacy as practice of “data security”.
These headaches have been compounded by the recent Heartbleed Bug (a flaw in OpenSSL). It’s a bit unnerving to learn that the trusted “padlock of https” was been left essentially unlocked for quite some time. Many articles in the past few weeks illustrate how the NSA likely knew for at least two years about this massive flaw. The agency’s reported decision to keep the bug secret may have renewed the heated debate over the security of the Internet in general, which certainly impacts the entire ICT industry. This recent article by re/code demonstrates how Heartbleed’s worst-case scenario has already been proven possible. And what about the cloud? As providers utilize or shift to IaaS, PaaS, SasS and SECasS, what are the known and unknown risks? Is any data communication or transaction really secure?
Some IT experts have illustrated how the Heartbleed bug may have been a real wake-up call for information and Internet security. The breach could be viewed as a great test of vulnerability management and incident response. What have you done in your organization to protect your company and your customers against this type of threat? At a bare minimum, establish rules for what is allowed and not allowed on your network. Here is a great link to an ISO 27001 Google Group thread discussing responses to Heartbleed utilizing this ISMS.
If you don’t think ISO 27001 matters, here’s one company’s attempt at going on the offensive with positive public relations regarding their ISMS. Snap Survey explains how client data has been unaffected by the Heartbleed bug, due to their ISO 27001 certification. Consider implementing ISO 27001 today.
ISO 14001: Preventing pollution, eco-efficiency and life cycle thinking in the next revision?
We can attest to the value of ISO 14001 from the clients we’ve led to certification. Sustainability and environmental stewardship are no longer buzzwords. All reputable brands and corporations (not just ICT organizations) are implementing environmental benchmarks and reporting processes.
ISO recently conducted a survey of the environmental management system standard ISO 14001. The survey was designed in part to get a better idea of what organizations see as the main benefits of ISO 14001 and what could be improved, as the standard is currently being revised. According to the survey results, the most important issues that required more attention were:
• reducing and controlling pollution
• strategies for efficient use of resources and reducing waste and pollution
• evaluating the environmental aspects related to the life cycle of products and services
You can obtain a copy of all survey data and reports at ISO.The standard revision is currently at draft phase and the goal is to “future proof” ISO 14001 to address all elements of environmental management, including energy efficiency and energy reduction. Energy reduction has been the subject many technical articles with regard to the ICT industry, with some pointing out the Internet is far from green.
The energy requirement of a growing “digital” economy (telecom, data centers) appears to be placing an increased demand on the power grid at a time where energy reduction is the preferred trend. Potential conflict? Perhaps. That’s why it is very important for ICT companies to examine energy reduction and implement an EMS like ISO 14001 to set goals and objectives for environmental management. Want some ICT best practices guidance? AT&T and the Environmental Defense Fund (EDF) are releasing their best practices and a toolkit that other companies can use to assess performance at their own facilities.
R2/RIOS: How are you dealing with e-waste?
This leads to the subject of e-waste and recycling. Environmental management has many tentacles. Specific to the ICT supply chain, many of our clients who are certified to the TL 9000 (the telecommunications quality standard) are now required to address electronic waste and recycling, either in their own organizations or as a requirement of doing business as a Tier 1 supplier. There are multiple ways to meet this objective and we’ve been writing about this on our blog since 2011.
The two prevailing approaches are R2/RIOS and e-Stewards. In our industry, we are assisting more clients with R2/RIOS certifications and you will soon see this as a new practice area on our website.
In fact, a recent article from GreenBiz addresses how e-waste is now a serious problem in the developing world and another provides a quick breakdown on the current rules of recycling electronic waste. We see this trend continuing and we know that most of our ICT clients will be forced to address this issue internally and with corporate customers in 2014 and beyond. Consider obtaining a R2/RIOS certification as a potential solution.
As you can see, ICT quality has many layers outside of general quality and network quality (which is well managed through TL 9000 and ISO 9001 certification). TL 9000 is expanding to deal with network security and next generation technologies. However, ICT quality intersects with other important business quality challenges.
How will you deal with data security, energy management and e-waste? Consider the additional standards we’ve outlined!
For more information on ISO 14001, ISO 27001 and R2/RIOS ertification please contact us at email@example.com.
Today, nearly all Fortune 500 companies are faced with the challenge of sourcing and developing diverse suppliers. It is now a basic practice in strategic sourcing and supply management. Corporate customers are looking for new suppliers who can address demand, innovation, collaboration, problem solving and niche solutions. Their suppliers must be able to provide metrics and performance data regarding speed to market, time to delivery, reliability (risk mitigation) and common measures of performance.
If any supplier (diverse in status or not) can meet these customer needs, they can effectively compete in large supply chains. As a result, quality management certifications like TL 9000 have (and ISO 9001) either become a requirement or a recognized competitive advantage that customers look for.
This year, BIZPHYX published a case study that revealed what impact TL 9000 (and ISO 9001) certifications have on companies that choose to certify to the standard. The study focused on a population of diverse supplier companies.
Certified companies make a commitment when they become a “quality” organization. With that decision comes the investment of both financial and human capital. While we know that ISO 9001 and TL 9000 certifications will over time help a company to reduce costs, improve efficiency and provide a process for scalability and growth, diverse suppliers are primarily interested in certification if they can grow top line revenue.
The companies who participated in this study have revenues that range from less than $1M to $1B, providing a wide range of business perspectives
Some key findings and metrics from the study:
• 86% of the participants stated that certification to a quality management system (ISO 9001 and TL 9000) had a significant impact on their operations.
• When asked if TL 9000 has helped them scale their businesses to handle growth, 85% stated that it had, while 15% stated it had not.
• When asked if certifying to TL 9000 has helped their business grow in terms of market share or revenue, a surprising 75% reported business revenue growth. 25% stated their improvements were more operational, including cost reductions.
• Of the 75% who reported revenue growth, the range was from 20%-220% with an average of 108% growth and 71% reported an average of 3.4 years to realize revenue increases.
In terms of dollars, one diverse supplier stated that prior to certification they were less than a $5M company and they now report revenues in excess of $10M (less than 2 years). Another company reported going from $5M in revenue to $7.5M in revenue (less than 3 years).
• The suppliers were asked if they had tried to leverage their certification to obtain new business. 71% reported trying to leverage their quality certification in this way.
• 78% stated that certification to TL 9000 and ISO 9001 was worth the investment.
•Risk in the supply chain is sharply reduced when quality certified suppliers are used.
The study revealed some very powerful numbers in support of quality certifications for diverse suppliers both operationally and financially, in terms of opportunity for substantial revenue growth.