<img height="1" width="1" style="display:none;" alt="" src="https://dc.ads.linkedin.com/collect/?pid=981514&amp;fmt=gif">

When Choosing A Business Performance/Risk Management/Data Solutions Company - What Differences Do ISO 9001 And ISO27001 Certifications Make?

Posted by Mark Hobart on Jan 7, 2019 12:42:00 PM
When Choosing A Business Performance

Happy New Year from all of us at Clearview. It was a busy but rewarding time for us in the run-up to Christmas. We have just been re-certified for ISO 27001 (2013) and ISO 9001 (2015) for the fourth year running. Certification to ISO standards requires careful structuring and a thorough audit – and very few business performance, risk management or data solutions companies go to the trouble of doing so. So why do we seek re-certification year after year, and what difference does choosing an ISO 27001- and 9001-certified supplier make to you?

What Do ISO 27001 & ISO 9001 Signify?

Let’s start with some quick definitions. The International Standards Organisation (ISO) helps facilitate business between companies across the world by establishing internationally recognized standards for quality in different areas:

ISO 9001: Quality Management

Assesses businesses based on seven criteria:

  • Customer focus
  • Leadership
  • Employee engagement
  • Business processes
  • Evidence-based decision making
  • Risk management
  • Supplier relationship management

ISO 27001: Information Security Management

Establishes an information security management system (ISMS) based on a framework of data controls and safeguards. The latest 2013 criteria include 35 categories a business must comply with to certify, subdivided into 114 individual controls. ISO 27001 sets a high benchmark for data security and risk management, increasing trust between organisations, suppliers, customers and stakeholders.

Advantages Of Working With An ISO 27001- & 9001-Certified Company:

The million-dollar question: how do these dual certifications impact the service we provide our customers?

1) Clarity

Certification by both ISO 27001 and 9001 requires a high degree of transparency and clarity across a company’s business processes. In practical terms this gives a boost to customer-focused activities such as project delivery, communication and product development – leading to improved reliability, reasonable pricing, faster turnaround and better customer service!

2) Consistency

Dual-certified businesses can apply consistent standards across their business, whether in leadership, data management, people development or other aspects. Our auditor identified our internal software platform as a key to achieving this. This allows us to plan our priorities, objectives and projects to be consistent with our company mission and values; identify and manage our risks and risk controls; establish and maintain regular policy and procedure reviews; and schedule and track our own internal audit program. For customers it means a more informed approach to risk management and enhanced trust.

3) Accountability

Accountability (whether for project delivery, after sales support etc.) devolves across different teams and individuals within a business. Preparing your business for ISO 27001- and 9001-certification means establishing a good structure that crystallizes ownership and accountability across the business and building a framework for continual improvement in which each employee recognizes their area of responsibility. We use our own software to allocate activities to individuals and for ongoing management of staff performance and development requirements.

The result for customers: a supplier whose people all know the job they’re supposed to do, the standards they need to reach and the means by which to attain them. No bodged deadlines, no miscommunication, no delays while the supplier passes the buck around different departments!

4) Delivery

Quality management and information security structures ultimately serve one goal: successful delivery of a company’s products or services. It is in improved customer service, better quality and value-enhanced after-care that ISO 27001- and 9001-certifications demonstrate. Businesses with dual-certification are poised to deliver successful outcomes for their clients. Furthermore, certification requires businesses to set up internal feedback and auditing processes through which service delivery can be monitored and improved on.

Positive Feedback

The icing on the cake for us was the positive feedback received from the auditor following our re certification:

It was a pleasure to conduct an audit within such a well-structured, well informed and progressive company as Clearview Systems. I found Clearview to be a company which knows where it is, where it wants to be and how it intends to get there. Most importantly, it knows it is making a difference. Congratulations on demonstrating clear and incremental evidence of improvement.”

  • Peter O’Neill, Senior Lead Assessor, ISO Quality Services Ltd, 30th November 2018

Find Out More

If you would like to discuss your requirements with us in person, please get in touch. We offer efficient software solutions that help businesses manage all aspects of their operation, from ISO certification to marketing to KPI setting and health and safety compliance. We can arrange a free demo of any of our software products so you can see the benefits for yourself. We look forward to hearing from you.

New Call-to-action

Topics: Performance management, Risk Management

The Clearview Blog

Find the best tips, tricks and news about business management and support software. Enjoy the educational articles by our experienced and knowledgable team.
New call-to-action

Follow us

Download the Infoboss brochure

Subscribe Here!

Recent Posts

Download the complete strategic planning toolkit
Best Practice Guide To Risk Management