KS A ISO 28001-2012 Security management systems for the supply chain-Best practices for implementing supply chain security assessments and plans-Requirements and guidance《供应链的安全管理系.pdf

1、 KSKSKSKSKSKSKSK KSKSKS KSKSK KSKS KSK KS KS A ISO 28001 , KS A ISO 28001:2012 2012 10 25 http:/www.kats.go.krKS A ISO 28001:2012 : ( ) ( ) ( ) ( ) () ( ) : (http:/www.standard.go.kr) ： ：2007 12 27 ：2012 10 25 2012-0558 ： ： ( 02-509-7274) (http:/www.kats.go.kr). 10 5 , . KS A ISO 28001:2012 i . iii

2、. iv 1 1 2 1 3 .1 4 .5 4.1 5 4.2 5 4.3 .6 4.4 .6 4.5 .6 5 .6 5.1 .6 5.2 6 5.3 .7 5.4 .8 5.5 .8 5.6 8 5.7 .8 5.8 .8 A( ) 10 A.1 .10 A.2 11 A.3 .11 A.4 .14 A.5 .15 A.6 16 A.7 16 B( ) .17 B.1 .17 B.2 1 .18 B.3 2 .20 B.4 3 21 B.5 4 21 B.6 5 .22 B.7 6 .22 B.8 7 .22 B.9 8 22 B.10 .22 C( ) .23 KS A ISO 280

3、01:2012 ii C.1 .23 C.2 KS V ISO 28001 .23 C.3 3 KS V ISO 28001 .23 24 KS A ISO 28001:2012 iii ISO( ) (ISO ) . ISO (Technical Committee) . . ISO . ISO IEC( ) . ISO/IEC Directive, Part 2 . . . 75 % . . ISO . KS A ISO 28001 ISO/TC 8/SC 11 ISO 28001 . KS A ISO 28001:2012 iv 2007 1 ISO 28001, Security ma

4、nagement systems for the supply chainBest practices for implementing supply chain security, assessments and plans Requirements and guidance , . . , , . . (business partner) . . . . . (WCO) (framework) . , . . , (baseline) , . , , . . 3 , (IAF) 3 ( C ). (WCO) (SAFE framework) . . . . . . KS A ISO 280

5、01:2012 v ( ) . . , . (countermeasures) . . A B , . / . . , . . . , C . KS A ISO 28001:2012 , Security management systems for the supply chain Best practices for implementing supply chain security, assessments and plans Requirements and guidance 1 . (WCO) (Authorized Economic Operators) (validation)

6、 (AEO) . , . . (4.1 ) 2 . . ( ) . KS V ISO 20858, (SOLAS, 1974. ), (IMO) 3 KS A ISO 28001:2012 2 . 3.1 (appropriate law enforcement and other government officials) 3.2 (asset) , , , , , , , (delivery) . 3.3 (authorized economic operator) 1 . 2 , , , , , (consolidators), , , , , (integrated operators

7、), . 3.4 (business partner) (3.15) , 3.5 (cargo transport unit) , , , , 3.6 (consequence) , 3.7 (conveyance) , , , , , , 3.8 (countermeasures) KS A ISO 28001:2012 3 3.9 (custody) , , 3.10 (downstream) , 3.11 (goods) , , 3.12 (international supply chain) 1 . 2 , . . 3.13 (likelihood) . 3.14 (manageme

8、nt system) . KS Q ISO 9001( ), KS I ISO 14001( ), KS V ISO 28000( ) (IMO) (ISM Code) . 3.15 (organization in the supply chain) . , , , , , KS A ISO 28001:2012 4 , , 3.16 (risk management) , . 3.17 (scope of service) 3.18 (security declaration) , . 3.19 (security plan) (arrangements) 1 . 2 . 3.20 (se

9、curity) 3.21 (security incident) (3.6) 3.22 (security personnel) . 3.23 (security sensitive information) (security sensitive materials) , . . KS A ISO 28001:2012 5 3.24 (supply chain) , , , , , , , , . 3.25 (target) , , , , , 3.26 (security threat scenario) 3.27 (upstream) , 3.28 (World Customs Orga

10、nization) WCO . 4 4.1 (statement of application) . . a) b) c) d) e) . , . 4.2 , 4.3 4.4 . . KS A ISO 28001:2012 6 4.3 , , , . , (SOLAS XI-2/4 SOLAS XI-2/10) . 1. , (AEO) . 4.4 . a) KS V ISO 20858 b) 4.3 c) (WCO) (SAFE framework) (AEO) . 4.5 4.3 4.4 . . . , “ ” . 5 5.1 . / . . 5.2 KS A ISO 28001:2012 7 (4.1 ). . . , . 4.3 4.4 . 5.3 5.3.1 . , , , / , , , . 5.3.2 , . . . . 4.2 , / . . . 4.3 4.4 . . a) b) c) KS A ISO 28001:2012 8 5.4 . 4.3 4.4 . / . A B . 5.5 . 5.6 5.6.1 . . . 5.6.2 . 5.7 . . a) b) c) 5.3.2 / . . 5.8 , , , . . a) KS A ISO 28001:2012 9 b) c)