ISO 28004-1:2007
Security management systems for the supply chain -- Guidelines for the implementation of ISO 28000 -- Part 1: General principles
Product Details
It explains the underlying principles of ISO 28000 and describes the intent, typical inputs, processes and typical outputs for each requirement of ISO 28000. This is to aid the understanding and implementation of ISO 28000.
ISO 28004:2007 does not create additional requirements to those specified in ISO 28000, nor does it prescribe mandatory approaches to the implementation of ISO 28000.