Implementing and certifying ISO 14001 in Portugal: motives, difficulties and benefits after ISO 9001 certification

The purpose of this study is to characterise the environmental management systems (EMS) certification process (International Organization for Standardization (ISO) 14001) in Portuguese small and medium enterprises (SMEs) following quality management system (QMS) certification (ISO 9001). The study is based on a sample from Portuguese SMEs which characterise the local reality in terms of companies certified in accordance with ISO 14001 after ISO 9001 certification. Some Portuguese SMEs have the EMS implemented but not certified, mainly given the lack of investment support and because it is considered merely a form of marketing. As such, they do not feel motivated to certificate an EMS in the company since they consider that it is a form of advertising and not a way to protect the environment. Nonetheless, it is already evident form other Portuguese SMEs that gained EMS certification that gains supersede marketing benefits and allow for evermore enduring benefits such as prevention of environmental risks, environment protection, improved company image, compliance with legislation and efficient use of natural resources. This paper also presented the main difficulties in achieving an EMS certification, including high certification costs, human resources, motivation issues and difficulties in changing the company’s culture.

Relationship between ISO 9001 certification maturity and EFQM business excellence model results

Purpose: This exploratory research evaluates if there is a relationship between the number of years since an organization has achieved ISO 9001 certification and the highest level of recognition received by the same organization with the EFQM Business Excellence Model. Methodology/Approach: After state of the art review a detailed comparison between both models was made. Fifty two Portuguese organizations were considered and Correlation coefficient Spearman Rho was used to investigate the possible relationships. Findings: Conclusion is that there is indeed a moderate positive correlation between these two variables, the higher the number of years of ISO 9001 certification, the higher the results of the organization EFQM model evaluation and recognition. This supports the assumption that ISO 9001 International Standard by incorporating many of the principles present in the EFQM Business Excellence Model is consistent with this model and can be considered as a step towards that direction. Research Limitation/implication: Due to the dynamic nature of these models that might change over time and the possible time delays between implementation and results, more in-depth studies like experimental design or a longitudinal quasi-experimental design could be used to confirm the results of this investigation. Originality/Value of paper: This research gives additional insights on conjunct studies of both models. The use of external evaluation results carried out by the independent EFQM assessors minimizes the possible bias of previous studies accessing the value of ISO 9001 certification.

Reasons and benefits associated with ISO 9001 - Certification for sugar and ethanol companies

With increasing business competitiveness, companies have sought to adapt their processes and / or products to worldwide established quality standards in order to achieve a greater share of consumers having as favorable aspect the quality assurance of the products and/or services provided. It was observed that companies of different sizes have different challenges regarding the certification however, the degree of difficulty is the same for all of them. The objective of this paper is to verify the reasons for the implementation of ISO 9001, the obstacles encountered during the implementation, the benefits arising from the use of the quality management system and the degree of difficulty to implement this standard. This work was developed based on a survey involving companies certified with ISO 9001:2008 from the productive sector of sugar, ethanol and derivatives of sugarcane, located in all Brazilian states. It was observed that companies of different sizes have different challenges regarding the certification however the degree of difficulty is the same for all of them. Thus, we believe that expected results represent a very important contribution to examining the reasons, benefits and difficulties of the ISO 9001 to both, the companies and certification bodies, and to researchers.

Implantacion ISO 27001 LAMUTA

Implantacion de la ISO27001 en una empresa.

Implantacion ISO 27001 LAMUTA

Implantacion de la ISO27001 en una empresa.

Quality management, environmental management maturity, green supply chain practices and green performance of Brazilian companies with ISO 14001 certification: Direct and indirect effects

This study aims to test a new conceptual model based on the relationship between quality management (QM), environmental management maturity (EMM), adoption of external practices of green supply chain management (GSCM) (green purchasing and collaboration with customers) and green performance (GP) with data from 95 Brazilian firms with ISO 14001. To our knowledge, such links and relationships are not simultaneously identified and tested in the literature. The results indicate the validation of all of the research hypotheses. This paper highlights that an improvement in green performance will require attention to quality management, environmental management maturity, and green supply chain. (C) 2014 Elsevier Ltd. All rights reserved.

Quality management, environmental management maturity, green supply chain practices and green performance of Brazilian companies with ISO 14001 certification: Direct and indirect effects (Reprint from vol 67C, pg 39-51)

This study aims to test a new conceptual model based on the relationship between quality management (QM), environmental management maturity (EMM), adoption of external practices of green supply chain management (GSCM) (green purchasing and collaboration with customers) and green performance (GP) with data from 95 Brazilian firms with ISO 14001. To our knowledge, such links and relationships are not simultaneously identified and tested in the literature. The results indicate the validation of all of the research hypotheses. This paper highlights that an improvement in green performance will require attention to quality management, environmental management maturity, and green supply chain.

Introducción a los sistemas de gestión de la seguridad basados en ISO 27001 y desarrollo de herramienta de soporte a la implantación

El presente proyecto presenta una introducción a los sistemas de gestión de la Seguridad de la Información (o SGSI) y describe el proceso de desarrollo de una herramienta informática de soporte a la implantación de forma fácil, eficaz y eficiente de un SGSI (se referirá a partir de ahora a esta herramienta como Herramienta de Implantación y Seguimiento de SGSI o HIS-SGSI) según lo definido por el estándar ISO/IEC 27001:2005.

Guía de auditoría para evaluar el aseguramiento de la disponibilidad e integridad de la información en el sistema de contratación de la Secretaría Distrital de Integración Social, basada en la norma ISO 27001:2013

60 p.

Fatores que influenciam a aceitação de práticas avançadas de gestão de segurança da informação: um estudo com gestores públicos estaduais no Brasil

This study examines the factors that influence public managers in the adoption of advanced practices related to Information Security Management. This research used, as the basis of assertions, Security Standard ISO 27001:2005 and theoretical model based on TAM (Technology Acceptance Model) from Venkatesh and Davis (2000). The method adopted was field research of national scope with participation of eighty public administrators from states of Brazil, all of them managers and planners of state governments. The approach was quantitative and research methods were descriptive statistics, factor analysis and multiple linear regression for data analysis. The survey results showed correlation between the constructs of the TAM model (ease of use, perceptions of value, attitude and intention to use) and agreement with the assertions made in accordance with ISO 27001, showing that these factors influence the managers in adoption of such practices. On the other independent variables of the model (organizational profile, demographic profile and managers behavior) no significant correlation was identified with the assertions of the same standard, witch means the need for expansion researches using such constructs. It is hoped that this study may contribute positively to the progress on discussions about Information Security Management, Adoption of Safety Standards and Technology Acceptance Model

Fatores que influenciam a aceitação de práticas avançadas de gestão de segurança da informação: um estudo com gestores públicos estaduais no Brasil

This study examines the factors that influence public managers in the adoption of advanced practices related to Information Security Management. This research used, as the basis of assertions, Security Standard ISO 27001:2005 and theoretical model based on TAM (Technology Acceptance Model) from Venkatesh and Davis (2000). The method adopted was field research of national scope with participation of eighty public administrators from states of Brazil, all of them managers and planners of state governments. The approach was quantitative and research methods were descriptive statistics, factor analysis and multiple linear regression for data analysis. The survey results showed correlation between the constructs of the TAM model (ease of use, perceptions of value, attitude and intention to use) and agreement with the assertions made in accordance with ISO 27001, showing that these factors influence the managers in adoption of such practices. On the other independent variables of the model (organizational profile, demographic profile and managers behavior) no significant correlation was identified with the assertions of the same standard, witch means the need for expansion researches using such constructs. It is hoped that this study may contribute positively to the progress on discussions about Information Security Management, Adoption of Safety Standards and Technology Acceptance Model

Fatores que influenciam a aceitação de práticas avançadas de gestão de segurança da informação: um estudo com gestores públicos estaduais no Brasil

This study examines the factors that influence public managers in the adoption of advanced practices related to Information Security Management. This research used, as the basis of assertions, Security Standard ISO 27001:2005 and theoretical model based on TAM (Technology Acceptance Model) from Venkatesh and Davis (2000). The method adopted was field research of national scope with participation of eighty public administrators from states of Brazil, all of them managers and planners of state governments. The approach was quantitative and research methods were descriptive statistics, factor analysis and multiple linear regression for data analysis. The survey results showed correlation between the constructs of the TAM model (ease of use, perceptions of value, attitude and intention to use) and agreement with the assertions made in accordance with ISO 27001, showing that these factors influence the managers in adoption of such practices. On the other independent variables of the model (organizational profile, demographic profile and managers behavior) no significant correlation was identified with the assertions of the same standard, witch means the need for expansion researches using such constructs. It is hoped that this study may contribute positively to the progress on discussions about Information Security Management, Adoption of Safety Standards and Technology Acceptance Model

Elaboración de un plan de implementación de la ISO/IEC 27001:2005 en le empresa Ahorraya

Implementación de un sistema de gestión de seguridad de la información (SGSI), basado en las normas ISO 27001:2005 e ISO 27002:2005, en la empresa financiera Ahorraya, el cual pretende administrar el modelo de seguridad y gestionar los riesgos presentados en la organización llevándolos a su mínima expresión.

Non-linear pathways of corporate environmental management: a survey of ISO 14001-certified companies in Brazil

A study was conducted to verify whether the theory on the evolution of corporate environmental management (CEM) is applicable to organizations located in Brazil. Some of the most important proposals pertaining to the evolution of CEM were evaluated in a systematic fashion and integrated into a typical theoretical framework containing three evolutionary stages: reactive, preventive and proactive. The validity of this framework was tested by surveying 94 companies located in Brazil with ISO 14001 certification. Results indicated that the evolution of CEM tends to occur in a manner that is counter to what has generally been described in the literature. Two evolutionary stages were identified: 1) synergy for eco-efficiency and 2) environmental legislation view, which combine variables that were initially categorized into different theoretical CEM stages. These data, obtained from a direct study of Brazilian companies, suggest that the evolution of environmental management in organizations tends to occur in a non-linear fashion, requiring a re-analysis of traditional perceptions of CEM development, as suggested by Kolk and Mauser (2002). (C) 2010 Elsevier Ltd. All rights reserved.

ISO 9001 and business performance: a quantitative study in portuguese organizations

The effects of ISO 9001 quality certification process inside an organization may be considered on a wide range. This article places this phenomenon under a theoretical perspective and aims to analyze the impact of ISO 9001 quality standard on business performance according to the financial information data. More specifically, the impact of ISO 9001on productivity, business value and increase on sales is viewed through an econometric model of analysis concerning a panel data of Portuguese companies from the agro-food and to the construction sector. This analysis has presented interesting different results and in brief revealed that it may not be deterministically ascertained a direct connection between ISO 9001 certification and the improvement on business performance. Many other variables are committed to its success.