Σχόλια στο report on AIFS

Από: Daniel Blander

Daniel Blander — Sun, 02 May 2010 19:41:02 +0000

Thanks for digging up another one of my old mail-list messages! :-)

It was a pleasure to speak there, and the greatest reward is knowing that people enjoyed it, and it was useful for them.

Από: George Simos

George Simos — Tue, 02 Feb 2010 12:35:45 +0000

I’m keen to see the amount of Certifications for the next years also the recertifications and annual subsequent audits.
Just for the record, ISO Standards are sharing a common base, that means that if you have ISO 9001 in place in your organization then some clauses of another standard will be covered from it, this is not bad at all it is preferrable and the ISO organization made the standards this way in order to offload and streamline the adoption of subsequent standards.

Από: Kostas P.

Kostas P. — Tue, 02 Feb 2010 12:11:40 +0000

Actually 4 organizations in 2004.

George Simos, this was the case a couple of years ago. Nowadays some public tenders will give you points for having 27001. As a result, consulting companies that massively implement 9001 projects also undertake 27001 projects in a similar way, thinking that if you have 9001 it does not require much effort to get 27001 and of course passing the same idea to their clients. Also I think that ELOT can provide ISO 27001 certifications so things will become easier eventually (if not already, I think you know what I mean).

In total I can’t agree more with what you say, but I’m afraid things will change sooner or later, esp. in Greece.

Από: Tweets that mention report on AIFS « Blogs are like opinions. Everybody has one… -- Topsy.com

Sat, 30 Jan 2010 18:49:46 +0000

[...] This post was mentioned on Twitter by Yiorgos Adamopoulos and George K., Petros Gavalakis. Petros Gavalakis said: @hakmem Great AIFS report http://ow.ly/11FVw ! Nowadays "scripta manent" should be paraphrased to "the network never forgets" :-) #in [...]

Από: adamo

adamo — Fri, 29 Jan 2010 15:21:48 +0000

Thank you for your comment! IIRC, it was 3 organizations in 2006, 5 in 2007 and 20 in 2008. Do you have any data for 2009?

Unfortunately, I did not get to attend Kevin Henry’s speech.

Από: George Simos

George Simos — Fri, 29 Jan 2010 14:16:50 +0000

I’m pushing over the auditor’s tag and will talk as an external observer (I’m an external auditor and am not biased in any way).

Commodity is something that is “nice to have”, ISO 9001 is mandatory for Greek businesses if they want to participate in public tenders of the Greek State and this is a reason that made it so popular, but there is a great amount of certified businesses that understood it’s real power as an Improvement Tool and continuous Evolution.

This is why it became a widely adopted standard (i can’t say commodity because it’s not the proper word), however for 27001 this is not the case, it is a management system that can be adapted to any organization but needs commitment and resources, it is not easily certified but if it is adopted (even in specific business sectors of an organization) then this is a great step forward and when the organization is ready then the certification should be easy, you have to understand the purpose of it first and then decide if and how you’ll implement it.

I was speaking with Daniel Blander for about half of an hour, great person and great opinions! George Raikos also is a great person, both of them are truly professionals.

I like Kevin Henry’s keynote speech, he was the kind of speakers that magnetize their audience.

Από: Kostas P.

Kostas P. — Fri, 29 Jan 2010 09:28:12 +0000

Only 20? 3 years ago only 5 were certified!!! And it’s 2010 now so yes, it’s becoming a commodity. :)

Από: adamo

adamo — Fri, 29 Jan 2010 08:35:02 +0000

ISO27001 a commodity? According to a presentation only 20 organizations were certified in Greece in 2008. IMHO AIFS was not a trade show in the sense that no one tried to “sell” his company’s products or services via the presentations.

BTW, I think everything has its place, but the practitioners of every something try overemphasize its importance.

Από: Kostas P.

Kostas P. — Fri, 29 Jan 2010 08:11:44 +0000

People in such conferences (which IMNSHO are tradeshows) always preach about ISO27001 and how everyone should have it or at least implement it even without getting certified. However it is not a panacea and especially nowadays that it has nearly become a commodity, pretty much like ISO9001 (and I’m mostly talking about Greece).