ISO 18788 provides a framework for establishing, implementing, maintaining, and improving the management of security operations. It can be applied to Private Security Companies (PSCs), and their clients worldwide.
What is the ISO 18788 system?
ISO 18788 specifies the necessities and guides organizations that conduct or contract security operations. Moreover, it offers a framework for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving a Security Operations Management System. It enables the constant development of security services while ensuring customer safety and respect for human rights. This standard validates compliance with laws and regulations, respect for human rights, and the founding of professional security operations to better meet the customer’s and stakeholder’s needs.
Why is the ISO 18788 standard for Security Operations Management systems important?
The ISO 18788 stands for the ability of the organization to detect appropriate legal and regulatory guidelines and also support business functions and the supply chain. This standard is suitable for any kind of organization involved in conducting or contracting security operations. The ISO 18788 certification helps to establish, implement, maintain and improve a Security Operations Management System and at the same time guarantees that the organization has implemented effective management controls. So, the ISO 18788 consultant helps to get a quick certification, as well as provides guidance for preparing documents, audits, gap analysis, risk management, etc…
In addition, it demonstrates the organization’s promise to continuously provide quality services that meet customers’ needs, and protect the customer’s and organization’s status, while adhering to applicable laws and human rights requirements. By attending the ISO 18788 auditor training courses participants will gain the necessary knowledge to support an organization in applying and managing a Private Security Operations Management System. Furthermore, it will help to acquire the appropriate skills to manage a Security Operations team.
What are the Key points of ISO 18788 Structure?
Like many other standards, ISO 18788 is structured in the format of annex SL which helps modernize the creation of new standards and makes implementing multiple standards within one organization easier. Here are some of the important key areas of ISO 18788:
- Context of the organization – It is fundamentally understanding the internal and external factors that affect the business and includes understanding the needs and opportunities of interested stakeholders, also organizations who conduct security operations, and their clients must respect the lives and human dignity of both internal and external participants.
- Scope - The scope identifies the 'boundaries' of the Security Operations Management System It will operate in many different environments and offer a variation of services. Once the scope has been acknowledged, all assets, activities, products, and services within that possibility become essentials to be accomplished as part of the SOMS.
- Leadership - The leaders should have evidence of their assurance to effectively control their organization through a consistent Security Operations Management System, this is done in numerous ways including:
- creating, interacting, and promoting the Security Operations Policy;
- setting objectives at all levels and purposes across the business;
- ensuring the organization is properly resourced;
- certifying staff are competent to accept their job function;
- communicating awareness of risk and the necessities of the SOMS.
- Planning – It is an important part of effective distribution management in the planning stage this sets out two sub-clauses:
- actions to discourse risks and opportunities;
- Security operations objectives and planning to achieve them
It needs to constantly manage risk to the client while also managing risk to the organization and impacted investors and users. The organization needs to accomplish its tactical, operational, and business objectives within the context of defending the life and property of its clients, persons working on its behalf, and local communities while respecting human rights.
- Support – It should ensure that the resources needed to run the company consistently through their SOMS are acknowledged. This can range from human resources and specialist skillsets to the organization’s requirements such as equipment, intelligence, and technology to name a few.
- Operations – It should evaluate which operations existing identified significant risks, and should ensure that they are conducted in a way that will control or reduce the risk in a manner reflective of its security operations management policy and supports the achievement of its objectives and goals.
- Performance evaluation - It is an important practice to monitor, measure, and evaluate all important aspects of the performance, it also includes the management of security operations to ensure there is compliance with the predetermined, legal, and human rights requirements identified, as well as other inclusive requirements to which the organization has contributed. Some of the performance evaluation techniques include:
- Audit - internal and third party. It should be planned in contradiction to an audit schedule and based on your actual business processes.
- Management review – It evaluates the sustainability, adequacy, and efficiency of the management of security operations over the recognized SOMS controls.