Free Tutorial on New ISO/IEC 17021

Having trouble viewing this email?
Click here

 Sustaining Edge Solutions, Inc. Newsletter

Performance Improvement Solutions for Your Business                                   May 2011


This Month
* Free Tutorial on ISO/IEC 17021
* Hackers Putting Your Business in Danger?
* Missing Ingredients
* In the News
* Training Courses


Lunch and Learn  
May 19, 2011   


Information Security Management 

Presented by Sustaining Edge Solutions, Inc. 


Information and Registration 



Quick Links…

Join Our Newsletter List!

Our newsletters provide information on business management systems ISO 9001, AS9100 Aviation, Space and Defense, ISO/TS 16949 Automotive, ISO 27001 Information Security, ISO 13485 Medical Devices, ISO 14001 Environmental, and others.  This includes process auditing techniques and process improvement methods Six Sigma, Lean Enterprise, and other topics of interest to our readers.


If you have any questions regarding the content or have a topic of interest for a future newsletter, please let us know.


Free online Tutorial on New ISO/IEC 17021  


Last month in our April issue, we discussed the ISO/IEC 17021:2011 Conformity Assessment  and how the new edition adds new requirements developed in response to market feedback on the use of the first edition. The new requirements provided in ISO/IEC 17021:2011 relate to the competence of the auditors who carry out certification and to the way in which they are managed and deployed. Certification bodies that use the new edition will be able to ensure competent audit teams, with adequate resources, following a consistent process and reporting audit results in a consistent manner.

This issue we want to inform our readers that a free tutorial is available on the website on the improved second edition of ISO/IEC 17021 published on 1 February 2011. 

The purpose of ISO/IEC 17021:2011 is to increase the value of management system certification to public and private sector organizations worldwide. The online tutorial on the standard has been made available by the ISO Committee on conformity assessment, (ISO/CASCO). It was developed by Randy Dougherty and Alister Dalrymple, the two leaders of the working group responsible for the standard.


The tutorial explains the differences to the first edition, published in 2006, and the new requirements. The explanations are displayed in the speakers note of each slide. The tutorial (available in English only), consists of three PowerPoint presentations, including notes.  The first is an Overview (27 slides), the second is the Audit Process (62 slides), and the third is Auditor Competence (19 slides).


View all the downloadable presentations here on the iso website    


Are Hackers Putting Your Business in Danger? 

With all organizations susceptible to cyber-attacks, a new International Standard on business continuity management processes has a huge potential to improve security measures taken against hacking, denial of service and malware attacks.


ISO/IEC 27031:2011: Information technology – Security techniques – Guidelines for information and communication technology readiness for business continuity, gives advice that will be useful for all types of security-conscious organizations, regardless of their size, complexity and risks.


Information and communication technologies (ICT) have become an integral part of the critical infrastructure in all sectors, whether public, private or voluntary. The proliferation of networking services, and the capabilities of systems and applications, has also meant that organizations are ever more reliant on safe and secure ICT infrastructures. Failure of these systems will impact the continuity of business operations.  


 The critical functions that require business continuity are usually dependent upon ICT. This dependence means that ICT disruptions can constitute strategic risks to organizational reputation.


The standarddescribes the concepts and principles of ICT readiness. It provides a framework of methods and processes to identify and specify all aspects, such as performance criteria, design, and implementation for improving an organization’s ICT readiness. It also enables an organization to measure performance parameters that correlate to its ICT readiness for business continuity programme (IRBC) in a consistent and recognized manner.  


ISO/IEC 27031:2011 covers all events and incidents (including security related) that could have an impact on ICT infrastructure and systems. It includes and extends the practices of information security incident handling and management and ICT readiness planning and services.


Purchase the ISO/IEC 27031:2011:Information technology – Security techniques at the ISO Store.   


Missing Ingredients  

Improvement initiatives may help your organization improve, but are they really giving you a competitive advantage? Probably not, according to Michael Bremer, co-author of “Escape the Improvement Trap: Five Ingredients Missing in Most Improvement Recipes”.


That’s because the competition is likely implementing the same improvement methods and the end result is most companies are merely average. His book identifies five characteristics that the most effective companies display, yet are missing or underused in most improvement programs:

1. Customer Value

 You need not only a clearly articulated value proposition to grow your desired business, but also the correct value proposition. That well-conceived proposition should drive improvement initiatives. 

2. People Engagement

 The most effective organizations create environments that actively encourage everyone to do their best work, develop critical thinking skills, and collaboratively innovate.

3. Key Metrics


A few very meaningful metrics are more important than having a lot of metrics that provide overwhelming amounts of data that are not useful.   



4. Process Thinking


Effective organizations manage and improve business performance along cross-functional process lines rather than by individual business functions.  


5. Executive Mindset


Leaders must understand and manage the four ingredients listed above, as well as, how they are being used to make a difference in the marketplace.  


In the News  

International Forum on DFMA


Boothroyd Dewhurst Inc. will host the 26th annual International Forum on Design for Manufacture and Assembly (DFMA) to be held June 13-15, 2011, at the Crowne Plaza Hotel in Providence, Rhode Island. This year’s theme is “Manufacture Success: Meeting the Challenge of Growth in Product Development and Manufacturing.”

For more information visit the DFMA Event Website.  


Machine Vision Market Soared 54% in 2010  

Sales of machine vision components and systems in North America soared 54 percent in 2010 to nearly $1.8 billion, according to new figures released by the Automated Imaging Association (AIA), the world’s largest machine vision trade group.

The substantial market growth in 2010 demonstrates the importance of machine vision technology to companies in manufacturing and nonmanufacturing sectors,” says AIA president Jeff Burnstein. “We saw strong evidence of this at the recent Automate 2011 Show and Conference, which was our largest in a decade. Exhibitors reported strong interest in machine vision solutions, and conference sessions focusing on vision were packed.”

Training Courses 

To see the course description, schedule, and on-line registration click on the course title below. We deliver onsite training for these courses and customized training to fit your specific needs.  We offer group discounts.  


View all our Courses 


View Our Web Based E-Training Courses    


ISO 9001 Quality Management   


Understanding and Implementing ISO9001:2008 

ISO 9001:2008 Process Based Internal Auditor  

Documenting Your Management System    


AS9100 Aviation, Space and Defense  


Understanding and Implementing AS9100C (9110 &9120) Aviation, Space and Defense

AS9100C:2009 Process Based Internal Auditor  

Documenting Your Management System   


ISO/TS 16949 Automotive    


Understanding and Implementing ISO/TS16949:2009 Automotive

ISO/TS16949:2009 Process Based Internal Auditor
Documenting Your Management System  


ISO 14001 Environmental

Understanding and Implementing ISO14001:2004 Environmental
ISO14001:2004 Process Based Internal Auditor

Lean Enterprise and CI 

5S Five Pillars of a Lean Workplace Organization
Continuous Process Improvement
Lean Six Sigma
8 Disciplines (8D) of Problem Solving


ISO 13485 Medical Devices  


Understanding and Implementing ISO 13485:2003 Medical Devices
ISO 13485 Process Based Internal Auditor  


ISO 27001 Information Security   


Understanding and Implementing ISO 27001:2005 Information Security
ISO 27001 Process Based Internal Auditor   


All courses can be delivered at your company. Don’t see a course, location, or date that fits your needs?

Contact Us   



Phone: 888-572-9642 toll free

Leave a Reply