Annex SL

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

The Annex SL is a section of the ISO/IEC Directives part 1 that prescribes how ISO Management System Standard (MSS) standards should be written. The aim of Annex SL is to enhance the consistency and alignment of MSS by providing a unifying and agreed upon high level structure, identical core text and common terms and core definitions. The aim being that all ISO Type A MSS (and B where appropriate) are aligned and the compatibility of these standards is enhanced.

Before 2012, various standards for management systems were written in different ways. Several attempts have been made since the late 90s to harmonize the way to write these but the first group that succeeded to reach an agreement was the Joint Technical Coordination Group (JTCG) set up by ISO/Technical Management Board.

Various of Technical Committees within ISO are currently working on revising all MSS published before Annex SL was adopted. Many standards are already following Annex SL such as ISO 9001, and ISO 14001).

High level structure[edit]

According to Annex SL, a Management System Standard should follow the structure:

  1. Scope
  2. Normative references
  3. Terms and definitions
  4. Context of the organisation
  5. Leadership
  6. Planning
  7. Support
  8. Operation
  9. Performance evaluation
  10. Improvement


Types of standards[edit]

Two kinds of standards for management systems are defined by the Annex SL:

  • Type A MSS: in regard to management system requirement (for example ISO 9001/14001)
  • Type B MSS: in regard to guidelines (for instance ISO 9004/14004)

MSS (Type A) following Annex SL[edit]

  • ISO 9001:2015, Quality management systems - Requirements
  • ISO 14001:2015, Environmental management systems - Requirements with guidance for use
  • ISO 14298:2013, Graphic technology - Management of security printing processes
  • ISO 18788:2015, Management system for private security operations - Requirements with guidance for use
  • ISO/IEC 19770-1:2017, Information technology - IT asset management - Part 1: IT asset management systems - Requirements
  • ISO 20121:2012, Event sustainability management systems - Requirements with guidance for use
  • ISO 21001:2018, Educational organizations - Management systems for educational organizations - Requirements with guidance for use
  • ISO 21101:2014, Adventure tourism - Safety management systems - Requirements
  • ISO 22000:2018, Food safety management systems - Requirements for any organization in the food chain '
  • ISO 22301:2012, Societal security - Business continuity management systems - Requirements
  • ISO/IEC 27001:2013, Information technology - Security techniques - Information security management systems - Requirements
  • ISO 30301:2011, Information and documentation - Management systems for records - Requirements
  • ISO 37001:2016, Anti-bribery management systems - Requirements with guidance for use
  • ISO 37101:2016, Sustainable development in communities - Management system for sustainable development - Requirements with guidance for use
  • ISO 39001:2012, Road traffic safety (RTS) management systems - Requirements with guidance for use
  • ISO 41001:2018, Facility management - Management systems - Requirements with guidance for use
  • ISO 44001:2017, Collaborative business relationship management systems - Requirements and framework
  • ISO 45001:2018, Occupational health and safety management systems - Requirements with guidance for use
  • ISO 55001:2014, Asset management - Management systems - Requirements

Sector specific to ISO 9001

  • ISO 15378:2017, Primary packaging materials for medicinal products — Particular requirements for the application of ISO 9001:2015, with reference to good manufacturing practice (GMP)

MSS (Type A) not yet revised in accordance with Annex SL[edit]

  • ISO 10012:2003, Measurement management systems - Requirements for measurement processes and measuring equipment
  • ISO/IEC 20000-1:2011, Information technology - Service management - Part 1: Service management system requirements (under revision)
  • ISO 20252:2012, Market, opinion and social research - Vocabulary and service requirements
  • ISO 28000:2007, Specification for security management systems for the supply chain (under revision)
  • ISO 30000:2009, Ships and marine technology - Ship recycling management systems - Specifications for management systems for safe and environmentally sound ship recycling facilities
  • ISO 50001:2011, Energy management systems - Requirements with guidance for use (under revision)

Sector specific to ISO 9001

  • ISO 13485:2016, Medical devices - Quality management systems - Requirements for regulatory purposes
  • ISO/IEC 80079-34:2011, Explosive atmospheres - Part 34: Application of quality systems for equipment manufacture (under revision)

MSS (Type A) under development[edit]

  • ISO 21401, Accommodation facilities - Sustainability management system - Requirements
  • ISO 24526, Water efficiency management systems - Requirements with guidance for use
  • ISO 30401, Human resource management - Knowledge management systems - Requirements
  • ISO 34101-1, Sustainable and traceable cocoa beans - Part 1: Requirements for sustainability management systems
  • ISO 35001, Laboratory biorisk management system - Requirements

Sector specific to ISO 9001

  • ISO 16000-40, Indoor air - Part 40: Indoor Air Quality Management System
  • ISO 19443, Quality management systems - Specific requirements for the application of ISO 9001 and IAEA GS-R requirements by organizations in the supply chain of the nuclear energy sector

Sector specific to ISO/IEC 27001

  • ISO/IEC 27552, Information technology - Security techniques - Enhancement to ISO/IEC 27001 for privacy management - Requirements

MSS (Type B) following Annex SL[edit]

  • ISO 14004:2016, Environmental management systems - General guidelines on implementation
  • ISO 19600:2014, Compliance management systems - Guidelines
  • ISO 22313:2012, Societal security - Business continuity management systems - Guidance
  • ISO 24518:2015, Activities relating to drinking water and wastewater services — Crisis management of water utilities
  • ISO 55002:2014, Asset management — Management systems — Guidelines for the application of ISO 55001

MSS (Type B) not following Annex SL[edit]

  • ISO 9004:2009, Managing for the sustained success of an organization - A quality management approach
  • ISO 22004:2014, Food safety management systems — Guidance on the application of ISO 22000
  • ISO 28001:2007, Security management systems for the supply chain - Best practices for implementing supply chain security, assessments and plans - Requirements and guidance
  • ISO 28002:2011, Security management systems for the supply chain - Development of resilience in the supply chain - Requirements with guidance for use
  • ISO 28007-1:2015, Ships and marine technology - Guidelines for Private Maritime Security Companies (PMSC) providing privately contracted armed security personnel (PCASP) on board ships (and pro forma contract) - Part 1: General
  • ISO 50004:2014, Energy management systems — Guidance for the implementation, maintenance and improvement of an energy management system

MSS (Type B) under development[edit]

  • ISO 50501, Innovation management - Innovation management system - Guidance

External links[edit]