ISO 28000

In 2007 the International Organization for Standardization (ISO) released its ISO 28000 series of standards on supply chain security management systems. These standards are designed to help reduce risks to people and cargo within the supply chain, targeting threats such as terrorism, fraud and piracy. They address potential security issues at all stages of the supply process, including in ports. Certification is voluntary, and is used by organizations to help comply with mandatory security initiatives, as well as for marketing purposes.

The ISO 28000 series is intended to assist in implementing governmental and international customs agency security initiatives, including the International Maritime Organization’s (IMO) International Ship and Port Facility Security (ISPS) Code, U.S. Customs-Trade Partnership against Terrorism (C-TPAT) and the EU Authorized Economic Operator Program.

In 2007, DP World Vancouver became the first marine terminal in the Americas to achieve ISO 28000 certification. The following year, the Port Authority of Houston (PHA), USA, became the first port authority in the world to do so. In January 2010, the Contecon Guayaquil terminal at the Port of Guayaquil, Ecuador, became the first container terminal in Latin America to be certified. Since then, several terminals throughout the region have achieved certification.

The International Organization for Standardization, based in Geneva, Switzerland, develops and maintains ISO standards. However, certification is carried out independently of ISO by the various national and international certification bodies operating around the world. The national ISO member organization in your country can provide contact information for local certifying organizations. You can find a list of national ISO members here.

If you would like to share information about ISO 28000 certification in your port or terminal, please visit the ISO 28000 discussion in the Forum.