Certification consulting is an advisory service that is geared towards ISO certifications. nagel + associates uses a systematic process of identifying and prioritizing the distinct needs of an organization, which often include an expressed desire to reduce the risk of potential fraud. In addition, an emphasis is placed on increasing productivity and savings, limiting errors and their residual impact on an organization’s overall viability, and creating a greater demand for the services and products that the organization sells.  Each of these objectives contribute to an enhanced, overall sense of satisfaction with both employees and customers.

nagel + associates will guide you through each subsequent stage of certification by offering guidance with internal audits, unearthing internal weaknesses and vulnerabilities within company processes, and arming the organization with the essential tools and organizational improvements in anticipation of the Registrar’s onsite visit.

shutterstock_25459057

Overview

ISO Certification

The ISO (International Organization for Standardization) develops a number of different standards for which businesses or organizations can become certified. These certifications are handled by third parties and are tested annually. The four-digit number that immediately follows ‘ISO’ represents the classification of the standard. For example, for ISO 9001:2008, “9001” falls within the ISO 9000 family, denoting quality management. The four-digit number that immediately follows the colon (in this example, “2008”) refers to the calendar year in which the standards were developed and launched.

ISO 9001 Certification

ISO 9001 Certification

Our experienced team of professionals have been involved in a variety of certification consulting engagements. Unlike a forensic investigation, which is reactive and is typically carried out in response to specific allegations of fraud, there are generally no allegations that serve as a precursor to an ISO 9001 certification. Instead, the organization is being proactive and is required to have an ISO 9001 certification in order to qualify as a supplier for certain customer contracts or other business opportunities. Customer satisfaction is, as always, the primary objective. When seen to fruition, it benefits an organization’s quality management systems, profitability inevitably rises through quality assurance throughout all levels of the organization, and new customer opportunities are created which scrupulously adhere to an established set of global quality management standards.

All requirements of the ISO 9001 certification are intended to be applicable to each organization, regardless of their size, product or core competencies.

Typical Procedures:

  • Review of policies and procedures
  • Analysis of processes
  • Review of process mapping
  • Review of internal control procedures and testing
  • Review of audit reporting to management
  • Inquiries of key management and staff
  • Mapping of risks to internal controls

ISO 37001 Certification

ISO 37001 Certification

ISO 37001 is an anti-bribery management system standard published in October 2016. It is designed to help an organization establish, maintain, implement and improve an anti-bribery compliance program. It includes a series of widely accepted measures and controls that are critical to, and are representative of, global anti-bribery good practice.

The Road to ISO 37001 Certification

  • Once your company is sufficiently prepared, establish an audit date and select a qualified auditor with the necessary knowledge, experience, competencies and proven results for your sector.
  • The duration of the audit is dependent upon the size, scope and complexity of your operations.
  • During the initial assessment, the auditor will evaluate whether your company meets the requirements of ISO 37001
  • Once the audit is complete, you will receive a detailed report, outlining the findings and potential for improvement and growth.
  • Should there be any non-conformities, you will have three months to implement the appropriate corrective measures.
  • As soon as all non-conformities have been resolved and subsequently closed, the ISO 37001 certificate will be issued, and will remain valid for three years. The certificate will be published in a publicly accessible database.
  • In order to maintain the validity of the certificate, yearly surveillance audits will occur during the second and third years of the certification cycle.
  • The certificate will expire three years after the initial audit. If you elect to renew the certificate, a cycle with a duration of three years will commence.

The Benefits of Implementing ISO 37001

  • ISO 37001 builds on years of experience with class-leading anti-bribery management systems. As such, it is a standard which provides invaluable guidance to organizations that are actively engaged in the process of developing practical anti-bribery procedures.
  • Adopting and implementing an efficient anti-bribery management system ensures that suppliers, sub-contractors and agents are staunchly committed to anti-bribery best practices.
  • Implementing the measures of the standard reduces the risk of wrongdoing and the ensuing reputational damage that could occur.
  • Commitment to the standard and its principles will promote and encourage trust and confidence. The checks and balances introduced by the system will act as a deterrent for offences related to bribery.
  • Implementation and certification can be used as evidence of due diligence in case of disputes.
  • The ISO 37001 standard follows the same structure as ISO 9001, ISO 14001 and ISO 45001, and can easily be integrated into existing management systems.
  • During the certification audit, auditors identify potential areas for improvement and make recommendations to increase the effectiveness of your anti-bribery system.

Typical Procedures:

  • Define and articulate an anti-bribery policy and program consistent with your organizational mandate
  • Effectively communicate the aforementioned policy and program to all vested stakeholders, including employees, business associates, suppliers, shareholders, investors, consultants and others
  • Appoint a suitable compliance manager to supervise and oversee the policy and program
  • Provide anti-bribery training to relevant staff
  • Assess and actualize the inherent risks of bribery, including mapping out appropriate due diligence
  • Take reasonable and proportionate steps to ensure that controlled organizations and business associates have implemented appropriate anti-bribery controls, checks and balances. Your supply chain would be a prime example.
  • Implement reasonable controls to confirm that staff are compliant with the anti-bribery policy
  • Verify that gifts, hospitality, donations and similar benefits comply with, and are consistent with this policy
  • Design and incorporate suitable financial, procurement and other commercial controls in order to help mitigate the risk of bribery
  • Implement reporting and whistle-blowing procedures for your staff
  • Investigate by swiftly managing and resolving any actual or suspected cases of bribery

In 2008, the board members of New Times County School District (NTCSD) in Newfoundland conducted a vote, unanimously deciding that they would become ISO 9001:2000 certified.

The results were an overwhelming success. Administrators succeeded in accommodating a rapidly expanding student population, while achieving over $200 million in cost avoidance and cost savings over the ten year period from when the ISO 9001:2000 certification had been implemented.

To determine whether your organization requires certification consulting, take the following brief survey: