Sociologi. Service. Företagsorganisation och företagsledning. Administration. Transport Administration

Ämnesområden: Ledningssystem; IT-säkerhet
Kommittébeteckning: SIS/TK 318 (Informationssäkerhet)
Källa: CEN
Svarsdatum: den 21 jan 2020
Se merSe mindre
 

This document provides guidance on managing an information security management system (ISMS) audit programme, on conducting audits, and on the competence of ISMS auditors, in addition to the guidance contained in ISO 19011:2011.

This document is applicable to those needing to understand or conduct internal or external audits of an ISMS or to manage an ISMS audit programme.

Se merSe mindre
 

This document provides guidance based on ISO/IEC 27002:2013 applied to process control systems used by the energy utility industry for controlling and monitoring the production or generation, transmission, storage and distribution of electric power, gas, oil and heat, and for the control of associated supporting processes. This includes in particular the following:

— central and distributed process control, monitoring and automation technology as well as information systems used for their operation, such as programming and parameterization devices;

— digital controllers and automation components such as control and field devices or Programmable Logic Controllers (PLCs), including digital sensor and actuator elements;

— all further supporting information systems used in the process control domain, e.g. for supplementary data visualization tasks and for controlling, monitoring, data archiving, historian logging, reporting and documentation purposes;

— communication technology used in the process control domain, e.g. networks, telemetry, telecontrol applications and remote control technology;

— Advanced Metering Infrastructure (AMI) components, e.g. smart meters;

— measurement devices, e.g. for emission values;

— digital protection and safety systems, e.g. protection relays, safety PLCs, emergency governor mechanisms;

— energy management systems, e.g. of Distributed Energy Resources (DER), electric charging infrastructures, in private households, residential buildings or industrial customer installations;

— distributed components of smart grid environments, e.g. in energy grids, in private households, residential buildings or industrial customer installations;

— all software, firmware and applications installed on above-mentioned systems, e.g. DMS (Distribution Management System) applications or OMS (Outage Management System);

— any premises housing the above-mentioned equipment and systems;

— remote maintenance systems for above-mentioned systems.

This document does not apply to the process control domain of nuclear facilities. This domain is covered by IEC 62645.

This document also includes a requirement to adapt the risk assessment and treatment processes described in ISO/IEC 27001:2013 to the energy utility industry-sector–specific guidance provided in this document.

Kommittébeteckning: SIS/TK 262 (Lyftkranar)
Källa: ISO
Svarsdatum: den 21 jan 2020
Se merSe mindre
 

This document specifies the minimum training to be given to trainee crane slingers and crane signallers to develop the basic slinging skills and to impart the requisite knowledge for competency required for slingers and signallers as defined in ISO 15513.

Ämnesområden: Personaladministration
Kommittébeteckning: SIS/TK 562 (Human Resource Management)
Källa: ISO
Svarsdatum: den 9 feb 2020
Se merSe mindre
 

This International Standard provides guidance on diversity and inclusion for organizations, including their governance bodies, leaders, workforce and their recognized representatives, and other stakeholders. It is intended to be scalable to the needs of all types of organizations in different sectors, whether in public, private, government or non-governmental organizations (NGO), regardless of size, type, activity, industry or sector, growth phase, or country-specific requirements.

This international standard identifies a set of principles, roles and responsibilities, actions, policies, processes, practices, and measures to evaluate impacts and outcomes to enable and support effective diversity and inclusion in the workplace. It recognizes that each organization is different and that decision-makers need to determine the most appropriate approach according to their organization’s context.

This International Standard is voluntary and does not address the specific aspects of relations with labour unions, work councils, country-specific compliance or legal requirements or litigation.

Ämnesområden: Personaladministration
Kommittébeteckning: SIS/TK 562 (Human Resource Management)
Källa: ISO
Svarsdatum: den 9 feb 2020
Se merSe mindre
 

This International Standard provides guidance on diversity and inclusion for organizations, including their governance bodies, leaders, workforce and their recognized representatives, and other stakeholders. It is intended to be scalable to the needs of all types of organizations in different sectors, whether in public, private, government or non-governmental organizations (NGO), regardless of size, type, activity, industry or sector, growth phase, or country-specific requirements.

This international standard identifies a set of principles, roles and responsibilities, actions, policies, processes, practices, and measures to evaluate impacts and outcomes to enable and support effective diversity and inclusion in the workplace. It recognizes that each organization is different and that decision-makers need to determine the most appropriate approach according to their organization’s context.

This International Standard is voluntary and does not address the specific aspects of relations with labour unions, work councils, country-specific compliance or legal requirements or litigation.

Kommittébeteckning: SIS/TK 255 (Vägtrafikinformatik)
Källa: CEN
Svarsdatum: den 17 feb 2020
Se merSe mindre
 

This document specifies the test suite structure (TSS) and test purposes (TP) to evaluate the conformity of on-board equipment (OBE) and roadside equipment (RSE) to ISO 12813:2019.

It provides a basis for conformance tests for dedicated short-range communication (DSRC) OBE and RSE to support interoperability between different equipment supplied by different manufacturers.

ISO 12813 defines requirements on the CCC interface level, but not for the RSE or OBE internal functional behaviour. Consequently, tests regarding OBE and/or RSE functional behaviour remain outside the scope of this document.

Kommittébeteckning: SIS/TK 255 (Vägtrafikinformatik)
Källa: CEN
Svarsdatum: den 17 feb 2020
Se merSe mindre
 

This document specifies the test suite structure (TSS) and test purposes (TP) to evaluate the conformity

of on-board equipment (OBE) and roadside equipment (RSE) to ISO 12813:2019.

It provides a basis for conformance tests for dedicated short-range communication (DSRC) OBE and RSE

to support interoperability between different equipment supplied by different manufacturers.

ISO 12813 defines requirements on the CCC interface level, but not for the RSE or OBE internal functional

behaviour. Consequently, tests regarding OBE and/or RSE functional behaviour remain outside the scope

of this document.

Kommittébeteckning: SIS/TK 255 (Vägtrafikinformatik)
Källa: ISO
Svarsdatum: den 17 feb 2020
Se merSe mindre
 

This document specifies the test suite structure (TSS) and test purposes (TP) to evaluate the conformity of on-board equipment (OBE) and roadside equipment (RSE) to ISO 12813:2019.

It provides a basis for conformance tests for dedicated short-range communication (DSRC) OBE and RSE to support interoperability between different equipment supplied by different manufacturers.

ISO 12813 defines requirements on the CCC interface level, but not for the RSE or OBE internal functional behaviour. Consequently, tests regarding OBE and/or RSE functional behaviour remain outside the scope of this document.

Ämnesområden: Tjänster för konsumenter
Kommittébeteckning: SIS/TK 562 (Human Resource Management)
Källa: ISO
Svarsdatum: den 26 feb 2020
Se merSe mindre
 

ISO 10667-1 establishes requirements and guidance for the client working with one or more service provider(s) to carry out the assessment of an individual, a group, or an organization for work-related purposes. This document enables the client to base its decisions on sound assessment results.

This document specifies the requirements of the client with respect to:

a) the needs and rationale for using assessments;

b) the conditions under which the assessment will be used;

c) the decisions about the assessment approach together with the implementation and evaluation of assessment procedures and methods;

d) the required competence and professionalism of any person working under its control with a role in the assessment process;

e) the decisions about the access, use, and storage of assessment results and subsequent reports; and

f) organizational decisions related to the delivery of assessment services.

ISO 10667-1 also specifies assessment methods and procedures that can be carried out for one or more of the following work-related purposes made by or affecting individuals, groups or organizations, including, but not limited to:

— employment-related decisions (e.g., recruitment, selection, development, appraisal, promotion, outplacement, succession planning and reassignment);

— career-related decisions (e.g., recruiting, coaching, guidance, vocational rehabilitation and outplacement counselling);

— group decisions (e.g., training initiatives, team building); and

— organizational decisions (e.g., restructuring, morale and culture initiatives, mergers and acquisitions).

No detailed technical or professional specifications are included within ISO 10667; however, an explanation of some of the more common professional guidelines used in assessment (e.g., validity, reliability, fairness, standardization) are included in Annex B. Despite the informative nature of this annex, the quality of assessment procedures and methods is important to the client in relation to the purposes of the assessment, the relevance of the measures involved, their validity, reliability, fairness, standardization and any issues relating to special needs of the assessment participant and other factors that affect the practicality, acceptability and utility of the assessment.

NOTE 1 Requirements for the service provider are specified in ISO 10667-2.

NOTE 2 See Bibliography for examples of various professional guidelines and national standards.

NOTE 3 See Annex B for further details of generally accepted technical quality guidelines.

This document does not detail the specific competences required for assessors as these are dependent upon the nature of the assessment.

NOTE 4 See Annex C for further information on assessor competence.

Ämnesområden: Tjänster för konsumenter
Kommittébeteckning: SIS/TK 562 (Human Resource Management)
Källa: ISO
Svarsdatum: den 26 feb 2020
Se merSe mindre
 

ISO 10667-2 establishes requirements and guidance for one or more service provider(s) in working with a client to carry out the assessment of an individual, group or organization for work-related purposes and to deliver quality assessment services.

This document addresses the requirements for the service provider with respect to, among other areas:

a) the choice, integration, implementation and evaluation of assessment procedures and methods in making recommendations to a client who has an assessment need, carrying out and delivering such assessments, and assisting the client in communicating with assessment participants and others;

b) the interpretation of assessment results and subsequent reports;

c) the collection, processing, and storage of personal data of assessment participants and of assessment data;

d) ensuring the required competence and professionalism of any person working under its control with a role in the assessment process;

e) organizational decisions related to the delivery of assessment services.

ISO 10667-2 also specifies assessment methods and procedures that can be carried out for one or more of the following work-related purposes made by or affecting individuals, groups or organizations, including, but not limited to:

— employment-related decisions, e.g., recruitment, selection, development, appraisal, promotion, outplacement, succession planning and reassignment;

— career-related decisions (e.g., recruiting, coaching, guidance, vocational rehabilitation and outplacement counselling);

— group decisions (e.g., training initiatives, team building); and

— organizational decisions (e.g., restructuring, morale and culture initiatives, mergers and acquisitions).

No detailed technical or professional specifications are included within ISO 10667-2; however, an explanation of some of the more common professional terms used in assessment (e.g., validity, reliability, fairness, standardization) are included in Annex B. Despite the informative nature of this annex, the quality of assessment procedures and methods is important to the client in relation to the purposes of the assessment, the relevance of the measures involved, their validity, reliability, fairness, standardization and any issues relating to special needs of the assessment participant and other factors that affect the practicality, acceptability and utility of the assessment.

NOTE 1 Requirements for the client are specified in ISO 10667-1.

NOTE 2 See Bibliography for examples of various professional guidelines and national standards.

NOTE 3 See Annex B for further details of generally accepted technical quality guidelines.

This document does not detail the specific competences required for assessors as these are dependent upon the nature of the assessment.

NOTE 4 See Annex C for further information on assessor competence.

Ämnesområden: Ledningssystem; Miljöledning
Kommittébeteckning: SIS/TK 207 (Miljöledning)
Källa: ISO
Svarsdatum: den 23 mar 2020
Se merSe mindre
 

This document provides guidelines to assist organizations in establishing, documenting, implementing, maintaining and continually improving material circulation in their design and development in a systematic manner, using an environmental management system (EMS) framework.

These guidelines are intended to be used by those organizations that implement an EMS in accordance with ISO 14001. The guidelines can also help in integrating material circulation strategies in design and development when using other management systems. The guidelines can be applied to any organization regardless of its size or activity.

This document provides guidelines for design strategies on material circulation to achieve the material efficiency objectives of an organization, by focusing on the following aspects:

— Type and quantity of materials in products

— Product lifetime extension

— Recovery of products, parts, and materials

In design and development, many aspects are considered, such as safety, performance, and cost. Although important, they are not addressed in this document.

Kommittébeteckning: SIS/TK 318 (Informationssäkerhet)
Källa: CEN
Svarsdatum: den 24 mar 2020
Se merSe mindre
 

This International Standard provides guidelines in addition to the guidance given in the ISO/IEC 27000 family of standards for implementing information security management within information sharing communities.

This International Standard provides controls and guidance specifically relating to initiating, implementing, maintaining, and improving information security in inter-organizational and intersector communications. It provides guidelines and general principles on how the specified requirements can be met using established messaging and other technical methods.

This International Standard is applicable to all forms of exchange and sharing of sensitive information, both public and private, nationally and internationally, within the same industry or market sector or between sectors. In particular, it may be applicable to information exchanges and sharing relating to the provision, maintenance and protection of an organization’s or nation state’s critical infrastructure. It is designed to support the creation of trust when exchanging and sharing sensitive information, thereby encouraging the international growth of information sharing communities.

Ämnesområden: Ledningssystem; IT-säkerhet
Kommittébeteckning: SIS/TK 318 (Informationssäkerhet)
Källa: CEN
Svarsdatum: den 24 mar 2020
Se merSe mindre
 

The scope of this Recommendation | International Standard is to define guidelines supporting the implementation of information security controls in telecommunications organizations.

The adoption of this Recommendation | International Standard will allow telecommunications organizations to meet baseline information security management requirements of confidentiality, integrity, availability and any other relevant security property.

Se merSe mindre
 

This International Standard gives guidelines for how to process and resolve potential vulnerability information in a product or online service.

This International Standard is applicable to vendors involved in handling vulnerabilities.