ISO certificate
ISO 28000 Certification (Supply Chain Security Management)
A practical guide to securing logistics and supply chain operations with risk-based controls and audit-ready evidence.
What ISO 28000 is (in operational terms)
ISO 28000 is a management system focused on security across the supply chain: transport, warehousing, ports/terminals, and logistics operations. It helps organizations identify security risks (theft, tampering, fraud, insider risks) and implement controlled processes with evidence.
Common audit focus areas
- Security scope and boundaries: sites, routes, partners, and outsourced logistics activities.
- Security risk assessment for shipments, facilities, and information flow.
- Access control and physical security: visitor control, zones, CCTV where applicable.
- Cargo integrity controls: sealing, handover, chain-of-custody evidence.
- Incident reporting, investigation, and corrective actions.
- Supplier/partner security requirements and monitoring.
Typical evidence pack (examples)
- Security risk register + treatment plan.
- Access control logs + visitor registers.
- Seal and handover records + chain-of-custody sampling.
- Incident logs + investigations + corrective actions.
- Supplier security clauses + evaluation records.
Next step
Want a clear path to certification?
Send your scope and target date and we’ll reply with an implementation path and quotation.