ISO 28000:2007 specifies the requirements for a security management system, including those aspects critical to security assurance of the supply chain. Security management is linked to many other aspects of business management. Aspects include all activities controlled or influenced by organizations that impact on supply chain security. These other aspects should be considered directly, where and when they have an impact on security management, including transporting these goods along the supply chain.

ISO 28000 Cerification is suitable for all sizes and types of organisations that are involved in the production of goods, manufacturing, services, storage or transportation at any stage of the products development or movement in the supply chain.