Janco releases Supply Chain Security Audit Program meets ISO 28000 mandates

Key component for implementation and management of an ISO 28000 Supply Chain Management System

Security ManualPark City, UT Janco Associates, Inc. Janco Associates Inc. (e-janco.com) has just released an ISO 28000 Supply Chain Security Audit Program and updated its suite of full suite of Compliance Management Kits. The CEO of Janco Associates, Mr. M.V. Janulaitis said: “Supply chain shortfalls have impacted companies that have a high reliance on just-in-time delivery. In many environments aging infrastructure, dependence on remote suppliers, and increased natural and human-made threats have exacerbated delivery and security. As a result, Supply Chain Security has become a very important item for manufacturing, distribution, and marketing companies. Companies need to understand the impact on supply change management for record processing and transmission, risk management, information, and asset security.” The CEO added, “The Supply Chain Security Audit Program and Compliance Management Kits address these issues directly.”

Supply Chain Audit program comes as an Excel Spread sheet that is 23 pages in length with 369 individual audit points covering:

    1. Security Risk Assessment
      • Risk Assessment
    2. Supply Chain Security Management Objectives
      • Internal Security Organization
      • Implementation and Operation of Supply Chain Security
    3. Organizational Supply Chain Management Objectives
      • Responsibility for Supply Chain
      • Information Classification System
    4. Human Resource Management Objectives
      • Security prior to employment
      • Security during employment
      • Security at termination
    5. Physical and Environmental Supply Chain Security Management Objectives
      • Secure areas
      • Enterprise equipment
      • Remote Devices
    6. Communication and Operations Management Objectives
      • Procedures and Responsibilities
      • Third Party Service Delivery
      • System Planning Activities
      • Malicious and Mobile Code
      • Backup Procedures
      • Computer Networks
      • Information Media
      • Exchange of Information
      • Interfaces (Blockchain)
    7. Information Access Control Management Objectives
      • Access to Information
      • User Access Rights
      • Access Practices
      • Access to Network Services
      • Access to Operation Systems
      • Access to Applications
      • Mobile and Remote Users
    8. System Development and Maintenance Objectives
      • Information System Application Security
      • Applications Processing Information
      • Cryptographic Controls
      • System files
      • Development and Support Processes
    9. Information Security Incident Management Objectives
      • Security Events and Weaknesses
      • Managing Security Incidents and Improvement
    10. Disaster Recovery Plan and Business Continuity Objectives
      • DRP/BCP
    11. Compliance Management Objectives
      • Mandated Security Requirements
      • Security Compliance Reviews
      • Information System Audits

Security Supply Chain Audit Program is easy to use and automatically generates graphics that can be used in management and compliance review presentations.

28000 Supply Chain Compliance Review

The CEO added “Supply chains have been disproportionally impacted by ransomware, data breaches, and cyber-attacks. ISO mandates that enterprises conduct risk assessments and mitigation exercises. The ISO 28000 Supply Chain Security Audit Program is a critical component in that process. We have also added it to our Compliance Management Kit so enterprises of all sizes can take advantage of the tools developed to address those threats.”
The ISO 28000 Supply Chain Security Audit Program is now available for immediate download. The Audit Program comes in three versions Standard, Premium, and Gold. Each contains the Audit program. All the versions are available either with 12 or 24 months of update service. With the updated service, Janco’s clients can be assured they will have the tools necessary to meet all mandated requirements and risk mitigation tools. The versions are:

  • Standard Edition - ISO 28000 Supply Chain Security Audit Program as an Excel spreadsheet that generates graphics that can be used in management and compliance presentations. Included is a sample of a completed audit program which was for a larger inter-modal shipper that implemented Blockchain technologies.
  • Premium Edition - ISO 28000 Supply Chain Security Audit Program plus a complete copy of Janco's industry-standard Security Manual that includes easy-to-customize procedures which support all the security and compliance mandates in the US, the EU, and the UK.
  • Gold Edition - ISO 28000 Supply Chain Security Audit Program, Security Manual Template, 26 full job descriptions for security management, and 28 ready-to-use electronic forms.

Janulaitis said, “Each component has been reviewed and updated within the last 90 days and meets the latest mandates. In addition, the firm has looked ahead at proposed legislation and addressed many of the issues impacting privacy and security.” He also said, “With this offering, Janco has balanced enterprise operational needs, with legal record retention and disposition requirements, and privacy mandates for the US, UK, and the EU in a workable cost-effective solution.

This offering and the tools provided are discussed on Janco’s website https://e-janco.com/iso-security-28000-audit.html.

All of Janco’s products are delivered electronically in formats that are easily customizable by the user. Janulaitis said, “We have clients in over 100 countries that rely on the leading-edge work that we deliver. We will continue to be at the forefront of infrastruc

Janco is an international consulting firm that follows issues that concern CIOs and CFOs. The firm publishes a series of IT and business Infrastructure HandiGuides® and Templates including IT Infrastructure Policies and Procedures, Disaster Recovery/Business Continuity Template, Security Template, IT Job Descriptions, and its semi-annual IT Salary Survey.

Read on Order Supply Chain Audit Program Download sample