Meeting IAQG’s &

Customers’ Requirements
Miranda Whitcher, VP Global Accounts - Aerospace
Debra Good, Aerospace Technical Advisor
September 14, 2018

1
Agenda

• Post transition
• IAQG Highlights Risk Everyone is in a
Human Factors different place on
Environmental
Information Security
their journey to
Organizational
• Integrating Management
Resilience.
Systems
• How BSI can help
…making excellence a habit 2
Copyright © 2018 BSI. All rights reserved.
Transition - It’s Over! You have reached the end of
the long transition road in
the AS9100-Series
According to OASIS:
8767 – total sites in the US
CONGRATULATIONS ! 681 non-BSI customers – are
either still waiting for their
certificates or have decided to let
them lapse

All of BSI’s customers have

received their certificates

3
So now that the transition is over – what’s next?

Copyright © 2018 BSI. All rights reserved 4

11/10/2018
So now that the transition is over – what’s next?

RISK
“Risk-based thinking enables an organization to determine the factors that
could cause its processes and its quality management system to deviate
from the planned results, to put in place preventive controls to minimize
negative effects and to make maximum use of opportunities as they arise.”
*

*SAE International, Aerospace Standard, AS9100 Rev. D, page 6

Copyright © 2018 BSI. All rights reserved 5

11/10/2018
Biggest risk is often what you don’t see
Biggest risk is often what you don’t see
 RISK

Management System
Quality

Now that the management

system must be viewed
through the prism of Risk,
what else is out there? 8
 • The IAQG recognizes that
the quality of a supplier’s
product or service is directly
impacted by the employees’
work environment.
Health & Safety
Risks • Listed as “human and
physical factors” in the latest
version of AS9100-series,
under Section 7.1.4
Environment for the
Operation of Processes. 9
 • First globally recognized standard for
OH&S
• Globalization & Corporate responsibility
necessitates a harmonized health &
safety approach going beyond
regulatory to create a strong safety
ISO 45001 culture
• Ease of integration using a common
business framework focused on
Quality, Sustainability and Safety
• Adoption of industry best practices to
create an effective, strong safety
program
• Takes Regulatory and Safety from
reactive to proactive 10
Why ISO 45001:2018

Demonstrating brand
Protecting and
responsibility by Legal and regulatory
enhancing your most
committing to safe, compliance while
important asset to drive
healthy and sustainable reducing business losses
business excellence
work

Copyright © 2018 BSI. All rights reserved 11

11/10/2018
Detail of Requirements for an Effective OH&S Management system.
What you may already have in place
PLAN DO CHECK ACT

4 5 6 7 8 9 10
Context of Leadership Planning Support Operation Performance Improvement
organization evaluation

Understanding of the Monitoring Incident

organization and its Leadership and Actions address risk Resources Operations of measurement nonconformity and
context commitment and opportunity planning and control analysis and corrective action
evaluation
Expectations of OH&S objectives and Management of Continual
workers and other OH&S Policy planning Competence change Internal Audit improvement
interested parties

Scope of Roles responsibilities Awareness Outsourcing Management review

management system and authorities

OH&S Participation and Information and Procurement

consultation communication

Documented Contractors
information

Emergency
preparedness and
response

ISO OSHA 45001

12
 • The production of aircraft has other
environmental issues:
• Waste
• Industrial emissions
• Water risk

Environmental
Health & Safety • The use of commercial airplanes
Risks contributes to three main
environmental issues:
• aviation emissions that affect global
climate,
• aircraft noise, and
• aircraft emissions, which affect local air
quality
13
 • An EMS is an important management tool
and provides numerous benefits to an
Aerospace organization

Environmental
Health & Safety • An effective EMS
• Ensures & demonstrates compliance
Risks • Reduces business risk
• Saves resources
• Reduces waste

14
 • Internationally-recognized as best
practice
• Engages management

ISO
Health
14001
& Safety • Drives improvement
• Identifies risk & opportunity
• Meets OEM requirements

15
 • Theft of classified information
• Loss of OEM-specific designs and specs
• Ransomware

Information
Health & Safety •
• Deters cyber-attacks
Identifies risk
Security • Protects consumers’ safety

Risks •
•
Reduces costs
Helps with evolving threats
• Meets OEM requirements

16
 • DFARS • ISO/IEC 20000
ISO/IEC 27001
• NIST • COBIT
• PCI • Sarbanes
• SOC2 Oxley
• GLBA • HIPPA
Manages data governance
across multiple schemes and
locations

17
…making excellence a habit
 ISO 14001 (Environmental)
Increased understanding and awareness of

AS9100D
environmental impact
• Improvements to energy and environmental
management can help the bottom line
Increased Leadership • Increased legislation regarding environmental
responsibility
and Accountability
• Increases market ISO 45001 (Health & Safety)
competitiveness Better understand risk prevention
• Reduce the likelihood of accidents
• Inspire trust in your
• Inspire trust in your business
business/products • Understand the interaction of other aspects of health
• Expands focus on & safety, including wellness and wellbeing
quality across ISO /IEC 27001 (Information Security)
organizationon Inspires trust and meets OEM/IAQG requirements
• Protects data and proprietary information
• DFARS specifications and other protocols can fit under framework
• Keeps consumers safer

18
HLS Enables the Integration of Management Systems
• Annex SL is a framework for writing management systems standards, with:
̵ High Level Structure (HLS)
̵ Identical core text
̵ common terms and core definitions to enable clarity and consistency
• Primarily for ISO technical committees who develop standards
̵ Increased emphasis on achieving value for the organization and its customers QEH&
̵ Enhanced emphasis on risk-based thinking S
̵ Increase flexibility on the creation and use of documentation
• Benefit to you
̵ Will absolutely help integrate multiple standards in your organization

5 Leadership
10
Improvement 6 Planning
4 Context of the
Organization
9 Performance
Evaluation 7 Support

8 Operation
19
20

IMR = Organizational Resilience with a QEH&S Management System

Foundations of the Management System Framework
AS 9100 + ISO 14001 + ISO 45001 + ISO/IEC 27001 ≠ Integrated

• Combined Audits

• Combined audits are silo-ed

• Do not roll up as a holistic view of the organization
• Key metrics are often managed on disparate systems
• Redundancies prevail in multiple internal audits

• Integrated Audits V.S.

• Single Internal Audit program

• Single Management Review
• Clients, Interested Parties, Process, Controls, Incidents are viewed
from a multi-point perspective of an organization’s aspects and
impacts of the manufacture of their product or service

20
Multipoint perspective - Integrated Standards and Organizational Resilience

IMS requires evolutionary organizational change

• Engagement of Leadership
• Process-approach
• Risked-based thinking
• Context of the organization
• Bridging silos, ensuring effective communication and adequately
resourcing projects
• Holistic approach to sustainability and growth

High Level Framework Assessment Services

• Streamlines • Gap Analysis Tools / Pre-Assessment
• Reduces duplication • Assessment & Certification
• Creates efficiencies • Entropy/BAP – BSI Solutions
• Crosses multiple • Training
ISO standards • Program Management
• Apply as many schemes as desired • Unaccredited Certificate to Integrated
• Wrap Business Continuity around Management Certification (IMR)
• Executive Workshop – review long term
strategy & alignment of organization for
effective change management

21
The benefits our clients enjoyed speak for themselves

QEH&S

Copyright © 2012 BSI. All rights reserved. 22

Thank You!
Address: BSI Group America Inc.
12950 Worldgate Drive, Suite 800
Herndon, VA 20170
Email Miranda.Whitcher@bsigroup.com

Debra.Good@bsigroup.com
Main Office
Telephone: 800-862-4977
Links: http://www.bsiamerica.com

Copyright © 2014 BSI. All rights reserved.