Ion Iordache

My Life in Motion

Through my company iQuality Services, I am able to provide consulting services for the design, documentation and implementation of ISO standards certification for Quality Management Systems (QMS), Information Security Management Systems (ISMS), Supply Chain Security Management Systems (SCSMS), Anti-Bribery Management Systems (ABMS), Food Safety Management System (FSMS) and European Union’s General Data Protection Regulation (GDPR).

It is an indisputable fact that quality is of prime importance for success, especially in view of world-wide competition and progressive globalization. The question is not whether but rather how high quality standards can be upheld. The certification of management systems based on international standards plays a major role on the way to “Total Quality Management“.

There is a basic principle that should be followed by every company, large or small, local or international:

Quality always pays off!

Here is our areas of consulting and expertise:

1

Training

We help you understand which is the best course for you. We can also provide seminars or training courses to bring your people up to the certification level, and help you choose the perfect solution for you.

2

Quality Management System

We develop and build an ISO 9001 Quality Management Systems ready for ISO 9001 certification.

3

Information Security Management Systems

We develop and build an ISO 27001 Information Security Management Systems ready for ISO 27001 certification.

4

European Union’s General Data Protection Regulation (GDPR)

We initiate, implement and manage the requirements of GDPR.

5

Supply Chain Security Management Systems

We develop and build an ISO 28000 Supply Chain Security Management Systems ready for ISO 28000 certification.

6

Anti-Bribery Management Systems

We develop and build an ISO 37001 Anti-Bribery Management Systems ready for ISO 37001 certification.

7

Food Safety Management System

We develop and build an ISO 22000 Food Safety Management System ready for ISO 22000 certification.

8

Business Continuity Management System

We develop and build an ISO 22301 Business Continuity Management System ready for ISO 22301 certification.

9

Maintain and improve

Management Systems Certificate

10

Update documents

of Management Systems Certified conform to the revised standards

Reasons to become ISO certified

ISO standards are voluntary standards, but the requirement implement a quality management system according to ISO 9001 (for example) is dictated primarily by market competition, the position that you want to have on the market, recognition in the field.

Requirements of implementing a certified quality management system

1. Ability of top management to manage employees and processes in a quality environment;

2. Staff activities tied to organizational strategy;

3. Expertise of qualified specialists in quality management;

4. Clarity vision, missions and values.

Implementing a management system is considered complete after certification by an independent certification body.

Advantages

  • Improved Management Efficiency – documenting your company’s routine operations will not only streamline your operations, but also capture your employees’ knowledge;
  • Increased Marketability — this benefit is evident not only in increased customer retention, but also in heightened ability to enter into new markets, where you virtually were unable to do business with before your certification;
  • Improved Public Image – ISO certification provides competitive advantage over competitors;
  • Improved Consistency of your Operations – commitment of senior management to monitor, control, and improve quality creates a more efficient, effective operation, taking your company on the Road to Quality;
  • Increased Confidence of Business Partners – ISO certification provides your business with the credentials to satisfy growing market demands, giving your clients and those in your supply chain absolute confidence that your business will add value, satisfy their product and service requirements. It shows that your business strives to be consistent and accountable, reassuring your clients that your products and services are of high quality, as well as respecting contractual terms;
  • Increased customer satisfaction – as the certification process inevitably uncovers areas in which the product quality can be improved;
  • Achieved International Quality Recognition – obtaining ISO certification puts your company in a very select group, and increase attractiveness to investors;/li>
  • Improved Internal Communication — ISO certification process’s emphasis on self-analysis encourages various departments of an organization to interact with one another in the hopes of gaining a complete understanding of company’ needs and desires;
  • Reduced Operational Expenses – ISO certification often exposes significant shortcomings in various operational areas pressuring the company take the appropriate steps to improve its processes. Increased efficiency means cost savings.

Arguments for the implementation of ISO standards with an iQS consultant

International Standards are the backbone of our society, ensuring the safety and quality of products and services, facilitating international trade and improving the environment in which we live in.

Conformity to International Standards helps reassure consumers that products, systems and organizations are safe, reliable and good for the environment.

Numerous studies have shown that standards boost business and economies. In Australia, sampling standards in the mining industry generate economic benefits between AUD 24 million and AUD 100 million annually. The implementation of standards in the electrical and water industries generates economic benefits estimated at approximately AUD 1.9 billion annually (Standards Australia (SA) and Centre for International Economics, Australia)

Introduction

You have two certification options when implementing an ISO standard: DIY or hiring an iQuality Services consultant to assist you. The first option is more cost effective but the failing rate is really high. The second one is more expensive and carries the risk any consulting activity does. The risk is the recommendations made by the consultant are not implemented within the organization, because implementing an ISO standard could fundamentally change the way the organization does business and not everyone likes it.

The benefits of implementing an ISO standard could be extremely high if all the tools created for this project are professionally done by a professional who really knows what needs to be done. Implementing an ISO standard could lead to a higher profit, avoiding raw material losses, financial losses and even preventing the loss of life. An ISI standard is an excellent branding tool in the particular industry.

In conclusion, a number of local and global organizations decide to  implement one or more management systems every day, but getting certified is not always easy.

Our consultants can assist you getting certified for the following management systems:

  • ISO 9001:2015 – Quality Management Systems (QMS);
  • ISO/IEC 27001:2013 – Information Security Management Systems (ISMS);
  • ISO 28000:2010 – Supply Chain Security Management Systems (SCSMS);
  • ISO 37001:2016 – Anti-Bribery Management Systems (ABMS);
  • ISO 22000:2005 – Food Safety Management System (FSMS).

Having our consultants on your side, you have our assurance that you wil get ISO certified from the international certification body of choice. We know exactly how to start and finalize a project like this. Our consultants will assist you prior to the start of the consulting process to help you understand what ISO standard is and what are the advantages for your organization. We will work together to determine what ISO standard is and what the ISO standard isn’t.

Pluses and minuses in hiring an iQS consultant

iQS consultants have the professional skills and experience to implement the above mentioned standards. Some of the tasks your iQS consultant will undertake as part of the consulting process are: organization analysis, interviews, documenting and implementing the requirements of the standard in your name.

Advantages in hiring an iQS consultant:

  • Your iQS consultant will do all the work in your place and this will save you time to invest in your organization;
  • Your iQS consultant will make sure your current documentation is compatible with the ISO standard;
  • Your iQS consultant will offer you assistance during the certification audit and throughout the period of certification.

Due to our honesty towards our clients and due to our ethical code, we would like to list possible disadvantages in using an external consultant:

  • An external consultant is expensive and their services are not cheap;
  • If you hire an external consultant, you will have to share with them sensitive information and maybe some of your organization’s secrets (organization’s hierarchy, operating processes, key competitive advantages, key person of contact, etc…);
  • In some cases, due to the documentation being done from someone outside the organization, your staff might think the policies and procedures are imposed on them and will try to find ways to avoid their implementation.

We do have the right approach to all these possible disadvantages:

  • Hiring an iQS consultant doesn’t come cheap due to the time the consultant needs to spend on the premises, but a shady consultant could cost you even more due to his ways of doing things;
  • An iQS consultant will be on your premises, learning your organization’s strengths and weaknesses, will study your strategies and objectives and all these will be done under non-disclosure clauses;
  • At the end of the project, your consultant won’t leave without making sure your staff understood the principles and requirements of the standard and how to abide by the implemented measures.

Hire an iQS consultant if:

  • Time is important to you. We will assist you implementing an ISO standard in a reasonable timeframe;
  • You do not have access to allocate internal staff to an ISO standard implementation project. Throughout the project, your iQS consultant will do all the work in your place;
  • Costs are not important to you in implementing an ISO standard. Your iQS consultant will only charge you as per the signed agreement;
  • You want to benefit from access to an elite professional consultant who will offer the necessary service to get your organization ISO certified.

iQS Approach for ISO standard’s implementation methodology

We can assist you securing your ISO certification for the following:

  • ISO 9001 – Quality Management Systems (QMS);
  • ISO/IEC 27001 – Information Security Management Systems (ISMS);
  • ISO 28000 – Supply Chain Security Management Systems (SCSMS);
  • ISO 37001 – Anti-Bribery Management Systems (ABMS);
  • ISO 22000 – Food Safety Management System (FSMS);
  • ISO 22301 – Business Continuity Management System (BCMS).

We use 10 steps in our approach to implement the ISO standards – The iQS Approach. This methodology is integrated into a master plan. The iQS Approach methodology has proved to be efficient time and time again and we see it as being an ideal approach to implement any of the ISO standards. Our services can be hired for the whole iQS Approach package and this will address the full master plan or just several steps out of the master plan.

STEP 1 – Establishing the reasoning/reasons behind implementing and/or obtaining and ISO certification

Throughout this step, our advisers will help you understand what your ISO standard deals with and what are the advantages of implementing it and getting certified.We will clarify together what is/isn’t the ISO standard you are looking to implement and getting certified for.

NOTE! This step is free and there are no obligations for the parties involved.

STEP 2 – Top management commitment and providing information on the activities aimed at implementation/certification of ISO standard.

In any implementation/certification of an ISO standard activity, the top management must be fully engaged and involved. Throughout this step, our client’s management team will be informed about the purpose of the management system. This includes the way the management system works, the benefits, and the staff responsibilities and role in the management system.

NOTE! This step is mandatory and creates contractual obligations for the parties involved.

STEP 3 – Establishing the implementation team

The iQuality Services advisor assisted by the client’s representative will form the implementation team who will lead the implementation/certification process.

STEP 4 – Carrying out an GAP analysis

The GAP analysis involves reviewing the current situation in the company and what needs to be done to reach the ISO standard objective. (Where we are and where we want to be?). We will discuss, review and agree upon an action plan to implement the management system required by the customer.

STEP 5 – Management system documentation

The iQuality Services advisor will document the management system and will provide a personalized solution according to the specific needs of our client.

STEP 6 – Creating the Implementation Plan

Once the management system is documented according to the ISO standard requirements, an implementation plan will be developed. This plan will detail the way the new management system will be implemented and address any identified nonconformities.

STEP 7 – The delivery of training

The whole organization is affected by the implementation of the new management system therefor, the fundamental concepts and the impact it will have throughout the organization will be presented to staff through info seminars. Training sessions will be implemented if deemed necessary.

STEP 8 – The implementation

There are cases when a management system’s implementation will be executed in stages (especially in the case of large enterprises) or one stage only. We offer flexibility when it comes to our client’s needs. We can conduct a comprehensive analysis of the existing management system (if one exists) and the internal audit system quality to ensure that each management system implementation stage is efficient and according to the ISO standard.

STEP 9 – The internal audit

We will provide a full cycle for the management system internal audit, analyzing the implementation of procedures and controls and their efficiency. The internal auditing process will reflect an external auditor’s techniques therefor, this process has the role of preparing the staff for the process of certification audit.

STEP 10 – Support the certification audit and/or post-certification

Our advisors can offer assistance during the certification auditing process and throughout the period of validity.

iQS GDPR Approach – Compliance Methodology

We can assist you to comply with and implement the European Union’s General Data Protection Regulation (GDPR) requirements. iQuality Services recommends a simple four-step methodology to comply and implement the European Union’s General Data Protection Regulation (GDPR) requirements, we named The iQS GDPR Approach.

The iQS GDPR Approach methodology uses the following four steps: Awareness, Evaluation, Implementation, and Maintenance. Each step is made up of a series of support activities. The main requirement is for each step to be completed in an iterative sequence with the purpose of fulfilling the main objective: the successful execution of each operation. The ultimate purpose of the methodology is the successful implementation of GDPR requirements. This methodology is integrated into a master plan. Our services can be hired for the whole iQS GDPR Approach package and this will address the full master plan or just several steps out of the master plan. It is important to remember the principle of responsibility provided by the GDPR article 5, paragraph (2) requires organisations to prove compliance with GDPR requirements.

Step 1 – Awareness

Objectives: project implementation positioning, project reasoning explanations and internal support assurance.

This is where we begin! The first step is to ensure that management and key personnel from your organisation, are aware of the fact that GDPR has changed the national legislation. They need to understand the impact this fact has and they need to identify the areas that could potentially raise problems of compliance with GDPR.

Operations:

  1. Management agreement;
  2. Main stakeholders’ agreement;
  3. Project preparation and presentation – resources/budget planning;
  4. Setting up the project implementation team;
  5. Informing the staff;

Step 2 – Evaluation

Objectives: Current situation identification and evaluation (“as-is”), and performing a GAP analysis.

Operations:

  1. Data mapping;
  2. Identifying the current policies/procedures that contain data protection;
  3. Risk analysis / GAP analysis;

Step 3 – Implementation

Objectives: Implementation and application of GDPR requirements and operational controls

GDPR is not a simple IT project. It is a complex process made up of a logical project assembly that requires intense team work. What are the steps to implement a project like this one? Various schools and management cultures recommend different recipes, based on a series of predefined steps. There is no default recipe or a software that you can run to implement GDPR. Each of us must choose those sets of procedures that fix the most important high risk business flows.

Operations:

  1. Data protection management system:
    1. Defining the roles and responsibilities;
    2. Procedures and concepts;
    3. Professional development / training staff;
    4. Documentation/Controls;
  2. Data processing agreements;

Step 4 – Maintenance

Objectives: Maintenance and proof of compliance with GDPR requirements / Auditing / Certification.

Article 30 – “Records of processing activities” and article 31 – “Cooperation with supervision authority” dictate the ways you can demonstrate compliance.

Operations:

  1. Setting up periodic review methods for GDPR compliance operations;
  2. Performing internal audit.