167 episodes

Blackmores is a pioneering consultancy firm with a distinctive approach to working with our clients to achieve and sustain high standards in Quality, Risk and Environmental Management. We'll be posting podcasts discussing ISO standards here very soon!

The ISO Show Blackmores UK

    • Business
    • 4.9 • 7 Ratings

Blackmores is a pioneering consultancy firm with a distinctive approach to working with our clients to achieve and sustain high standards in Quality, Risk and Environmental Management. We'll be posting podcasts discussing ISO standards here very soon!

    #167 How Lifelong Learner embedded ISO 22301 in just 4 months

    #167 How Lifelong Learner embedded ISO 22301 in just 4 months

    According to the ISO Survey, there’s been a 82.9% increase in worldwide ISO 22301 certificates issued following 2020.
    Business Continuity is a must have for businesses who want to ensure long-term survivability following a disruptive event. Many turn to ISO 22301 to help put a framework in place, including today’s guest – Lifelong Learner.
    However, what usually takes businesses a minimum of 6 months, Lifelong Learner managed to accomplish in just 4 months across an international organisation! That is no small part due to the tremendous effort of Lifelong Learner’s Manager of Information Security, Governance, Risk and Compliance, Lauren Taylor.
    Lauren joins Mel on this weeks’ episode to share her journey and explains the challenges associated with implementing a Business Continuity Management System in just 4 months.
    You’ll learn
    ·       Who are Lifelong Learner?
    ·       Why did they decide to Implement ISO 22301?
    ·       What did they learn from implementing ISO 22301?
    ·       What was the biggest challenge with Implementation?
    ·       What are the benefits of implementing ISO 22301?
     
    Resources
    ·       Isologyhub
    ·       Lifelong Learner
    ·       PSI Testing Excellence
    ·       Talogy
     
    In this episode, we talk about:
    [00:30] Join the isologyhub – To get access to a suite of ISO related tools, training and templates. Simply head on over to isologyhub.com to either sign-up or book a demo.
    [02:05] Episode summary: Today Mel is joined by guest Lauren Taylor who is the Manager of Information Security, Governance, Risk and Compliance at Lifelong Learner Holdings LLC.
    Lifelong Learner and it’s brands represent a fusion of comprehensive workforce solutions, with a human-first focus of changing lives through assessment. This includes helping people advance in educational and career aspirations, earning or maintaining licensing or certifications, or providing the tools to develop future leaders.
    Lauren has helped Lifelong Learner accomplish a massive milestone, and that’s the implementation of the Business Continuity Standard ISO 22301 across an international organisation, which she managed to do in just 4 months! She’s here to share her journey and lessons learned from implementing ISO 22301.
    [03:30] Not many people know this about Lauren  – She had previously trained to be a mental health counsellor.
    [04:05] Who are Lifelong Learner LLC? – Lifelong Learner is the parent company of two subsidiaries:
    PSI Testing Excellence: a leading provider of assessment solutions for the licensing and certification markets, to Educational Testing Services.
    Talogy: A market leader in the talent management space whose core purpose is helping organizations achieve their potential. They manage the talent management side of the business. So what they'll do is they'll put together psychometric tests that help companies find the right person for the right job, and will assist with skills development.
    [05:00] Adding to Lifelong Learner’s ISO Collection: Lifelong Learner already have an impressive ISO Library, being certified to:
    ·       ISO 9001 – Quality Management
    ·       ISO 14001 – Environmental Management
    ·       ISO 27001 – Information Security Management
    [05:20] What was the main driver behind obtaining ISO 22301? – The main driver, as with most companies, is usually a client contractor requirement, but business continuity has been something that we've wanted to look further into for a while, just because there's elements of ISO 27001 that cover the business continuity.
    While we were able to get through the audits with what we had, we just felt that it just needed a little bit more building out. Business Continuity is a requirement in part of ISO 27001, but for Stakeholders that want assurance that a business has robust business continuity plans in place, ISO 22301 is

    • 24 min
    #166 What is ISO 42001 AI Management?

    #166 What is ISO 42001 AI Management?

    There’s no escaping it, AI is here to stay. Over the course of 2023 we’ve seen more general and public use of popular AI tools such as ChatGPT and Gemini (previously Google Bard).
    It’s now even being integrated into everyday applications such as Microsoft Word and Teams. There is no doubt that there are a lot of benefits to using AI, however, with new technology comes new risks.
    So how do we address the growing concerns around AI development and use? That’s where the new Standard for AI Management Systems, ISO 42001 comes in!
    Join Mel this week as she explains exactly what ISO 42001 is, who it’s applicable to, why it was created and how ISO 42001 can help businesses manage AI risks.
    You’ll learn
    ·       What ISO 42001 AI Management Systems is
    ·       Who it’s applicable to
    ·       Why it was created
    ·       How ISO 42001 can help businesses manage AI risks
     
    Resources
    ·       Isologyhub
    ·       ISO 42001 Webinar registration
     
    In this episode, we talk about:
    [00:30] Join the isologyhub – To get access to a suite of ISO related tools, training and templates. Simply head on over to isologyhub.com to either sign-up or book a demo.
    [02:05] Episode summary: Today we’re touching on a very topical subject – AI, and more specifically the brand new AI Management System Standard – IS0 42001. We’ll also be exploring who it’s applicable to, why it was created and how it can help businesses manage AI risks.
    [03:30] What is AI? – AI – otherwise known as Artificial intelligence, as it’s most simplest description is the science of making machines think like humans.
    We’ve seen a lot of AI tools be released to the public over the last year or so, tools such as ChatGPT and Google Bard. It’s already being integrated with some of the most commonly used apps and programs like Microsoft word and Teams.
    In short, AI integration is here to stay, so we may as well get to grips with it and make sure we’re using it responsibly.
    [05:10] What is ISO 42001? – , ISO 42001 is the first International Standard for Artificial Intelligence Management Systems, designed to help organisations implement, maintain, and improve AI management practices.
    It was jointly published in December 2023 by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).
    The emphasis of ISO 42001 is on integrating an AI Management System with an organisations existing management system – i.e. ISO 9001 or ISO 27001 compliant management systems.
    Interestingly, a lot of the specific mentions of Artificial Intelligence and Machine Learning are within the Annexes rather than the body of the Standard. The Standard itself is very similar to ISO 27001 in that it’s mostly about what organisations should be doing to manage computer systems regardless of any AI components.
    [08:00] The 4 Annexes of ISO 42001:
    Annex A: This acts as a Management guide for AI system development, with a focus on trustworthiness.
    Annex B: This provides implementation guidance for AI controls, with specific measures for Artificial intelligence and Machine Learning – if you’d like to learn more about the difference between the two, go back and listen to episode 135.
    Annex C: Which addresses AI-related organisational objectives and risk sources.
    Annex D: This one is about the domains and sectors in which an AI system may be used. It also addresses certification, and we’re pleased to see that it actively encourages the use of third-party conformity assessment. This just ensures that your AI claims have more validity.
    [09:15] Who is ISO 42001 applicable to? – Those annex descriptions may have you assuming that this Standard is only applicable to organisations developing AI technology but in actuality it’s applicable to any organisation who is involved in developing, deploying OR Using AI systems.
    So if you’re

    • 23 min
    #165 What is isology? How to Implement any ISO Standard

    #165 What is isology? How to Implement any ISO Standard

    We have over 18 years experience of implementing various ISO’s, covering a wide range of topics such as Quality, Sustainability, Information Security and Risk.
    With a 100% success rate, we’re confident in our consistent approach to implementing ISO’s, so much so that we’ve coined our own unique methodology.  
    Our regular listeners may be familiar with the term ‘isology’ from previous episodes referencing our online platform – the isologyhub. But what is isology exactly?
    Put simply, isology is our 7-step method for implementing any ISO Standard. Join Mel this week as she breaks down each of the 7 steps, including the planning, creation and review of an ISO Management System.
    You’ll learn
    ·       Our experience implementing ISO’s
    ·       The origin of isology
    ·       What is isology?
    ·       The seven steps of isology
     
    Resources
    ·       Isologyhub
    ·       Isology synopsis
     
    In this episode, we talk about:
    [00:25] Episode Summary – Mel Blackmore will be explaining our world leading methodology to implement any ISO Standard, which we’ve affectionately named ‘Isology’.
    [00:45] The creation of isology: We’ve been implementing ISO Standards for 18 years, starting with ISO 9001 and have since expanded our repertoire to over 20 ISO Standards covering risk, sustainability, quality and Information Security.
    The creation of the isology methodology has been a team effort from all of the consultants who have worked with Blackmores over the years, and is primarily built on best practice.
    [01:35] Step 1: Plan – Get a copy of the Standard, determine your scope, timescales, leadership commitment, resources and selecting a Certification Body.
    Timescales: This is typically around 6 months, but could be longer or shorter depending on your specific requirements.
    Resources: As an example, if you were looking to obtain ISO 14001 certification, you may need to appoint a sustainability champion. For ISO 27001 you’ll need a representative from the IT department.
    Selecting a Certification Body: Ensure whichever Certification Body you choose is UKAS accredited. You can check this on the UKAS website. International listeners will need to verify on your country’s national accreditation body website.  
    [03:45] Step 2: Discover – Time to understand what you have in place already and what you’re missing – this is done through a Gap Analysis.
    This will often involve an initial meeting with the leadership team to establish what you already have in place, i.e. relevant policies and procedures or any relevant objectives.
    We break this down step-by-step and document it all in a Gap Analysis, which will deduce your current level of compliance. From this an action plan can be created to indicate what needs to be done to become fully compliant, including assigning roles to assist with the Implementation.
    [05:30] Step 3: Expose - This is where we look at risks and opportunities related to your desired Standard (both internally and externally). This is typically done through a SWOT (Strengths, Weaknesses, Opportunities and Threats) and PESTLE (Policital, Economic, Social, Technological, Legal and Ethical).
    In this stage you will also need to understand the key requirements of any relevant stakeholders, so this can include clients, subcontractors, regulatory bodies ect.
    A Risk Register may be created to capture the findings to be addressed later. Some ISO’s require a Risk Register, others don’t, but in our experience it’s beneficial to have one regardless.
    Companies are also encouraged to create a Legal Register to keep track of all their statutory, regulatory and contractual requirements.
    [07:50] Step 4: Create – Time to review the requirements of the Standard in terms of documentation – and create what’s needed. This includes capturing your way of working with documented Procedures, so make sure you have the rel

    • 20 min
    #164 The ISO 27001:2022 Transition Gameplan - A step-by-step guide to complete your Transition

    #164 The ISO 27001:2022 Transition Gameplan - A step-by-step guide to complete your Transition

    The deadline is looming over the horizon as October 2025 marks end of the validity of ISO 27001:2013 certificates.
    Have you made a start on your transition journey? If not, you really should make a start in 2024 to ensure you’re all set well before that final deadline. The first step is to decide if you want to do it yourself or enlist the help of a professional consultant.
    For those that want to tackle it yourselves, you’re in luck! As we have just the tool to help: The ISO 27001:2022 Transition Gameplan.
    In this weeks’ episode, Steph Churchman, Communications Manager at Blackmores, explains why you need to transition to the 2022 version of the Standard and outlines the 7-step ISO 27001:2022 Transition Gameplan available on the isologyhub.
    You’ll learn
    ·       Why do you need to transition to ISO 27001:2022?
    ·       What happens if you don’t transition?
    ·       What is the ISO 27001:2022 Transition Gameplan?
    ·       An overview of the 7-step Gameplan
     
    Resources
    ·       Isologyhub
    ·       ISO 27001 Transition Gameplan
     
    In this episode, we talk about:
    [00:25] A different host – Steph Churchman, Communications Manager at Blackmores, steps in to cover today’s episode. She’s heavily involved with the development and updating of the isologyhub, and will be explaining one of the latest Gameplan’s: The ISO 27001:2022 Transition Gameplan
    [01:15] Why do you need to transition to ISO 27001:2022? The October 2025 deadline is fast approaching, so you really should be making a start in 2024 if you’ve not already.
    [01:45] Who needs to transition to ISO 27001:2022? – Basically, anyone who is currently certified under ISO 27001:2013 will have to transition to the updated Standard.
    One of the main reasons why we recommend getting a head start on this is , Certification Bodies will undoubtedly have a large demand for transition audits in 2025, when everyone’s rushing to get it done last minute. This results in a shortage of resources from the CB’s,  and you may end up struggling to get booked in time.
    [02:35] What happens if you don’t transition in time? – The harsh truth is you will lose your ISO 27001 certification.
    This then means you’ll be required to go through another Stage 1 and 2 Assessment against the latest version of ISO 27001, which can be costly.
    Another key reason is the latest version of ISO 27001 also considers a lot of new technologies that weren’t around back when the last version was published. You can imagine now that there are a lot more cybersecurity risks to consider with all the latest technology that has been released in that time. Put simply, it’s for the benefit of your Information Security to ensure you are adhering to the most recent best practice Standards.
    [03:40] What is the ISO 27001:2022 Transition Gameplan? This Gameplan will walk you through the stages of transition, which align to our proven isology® approach. Isology being our methodology for implementing any ISO Standard, based on our 18+ years of experience.
    In this Gameplan we provide training videos on the changes to ISO 27001, along with specific training videos covering each of the new Annex A controls that you will need to be familiar with, along with templates and workbooks to take you through the process from beginning to end. 
    [04:20] Step 1: Plan – Before you begin on your journey, it’s advised to understand the main changes to the standard. We’ve summarised the high-level changes in a previous podcast, and included a quick summary in the first step of the Gameplan.
    In this first step, you’ll also find guidance on how to prepare for your Certification Body visit. You really do need to do this early on to help establish a realistic timeline to complete your transition work.
    [04:55] Step 2: Discover  – At this stage, you need to get to grips with the changes to the Standard. There have been a number

    • 14 min
    #163 The environmental value of circular design with Design Conformity

    #163 The environmental value of circular design with Design Conformity

    Did you know that in the UK alone, 22 million pieces of furniture are discarded each year, the majority of which goes directly to landfill. That amounts to an estimated 670,000 tonnes of furniture wasted, where a significant portion could be recycled and reused. (Source)
    It’s clear to see the need for a more sustainable approach to furniture design, manufacture and lifecycle, which is where today’s guest, Design Conformity, come in.
    Design Conformity live and breathe circular design, the process for creating products sustainably from the beginning, and offer a Life Cycle Assessment Certification Process which has already led to significant carbon reductions.
    Mel is joined by Adam Hamilton-Fletcher, Founder and Director at Design Conformity, to discuss the application of circular design within the furniture manufacture industry and explain how their Life Cycle Assessment certification process can help businesses reduce their carbon footprint.
    You’ll learn
    ·       Who are Design Conformity?
    ·       What is circular design and how does it help companies reduce their carbon footprint?
    ·       What are the benefits of Design Conformity’s certification?
    ·       Can sustainability be of financial and environmental benefit to businesses?
    ·       Examples of circular design in practice
     
    Resources
    ·       The ISO Show
    ·       Design Conformity
    ·       Carbon Calculator
    ·       Circular Design Guide
     
    In this episode, we talk about:
    [00:25] Introducing today’s guest – We welcome Adam Hamilton-Fletcher, Founder and Director at Design Conformity, onto the show. Design Conformity are currently setting the standard in retail sustainability, particularly in relation to the furniture industry.
    [01:30] Who are Design Conformity? Adam worked in the manufacturing industry for about 15 years, designing lighting systems for major retailers like boots, Next, Marks & Spencers and Morrisons. He worked primarily with the lighting used in displays, and had been tasked with selling lighting products. In order to do so, he needed to develop a specification to help understand customer requirements, which would then be used to develop their ideal solution.
    The problem: There were little to no Standards in UK and Europe for the retail display industry.
    Which directly led to the creation of Design Conformity – who started out as an electrical and lighting Standard certification company, that developed into a full carbon certification company.
    They aim to become the gold Standard for sustainable furniture design.
    [03:10] What is Circular Design? – Circular design is born out of this principle of a circular economy. To compare, a linear economy is when we take a raw material, use it, process it, and then it’s just disposed of, usually straight to landfill.
    Whereas, circular economy is where we take that waste product and we design it so that it can be repurposed and refreshed and reused. Those materials can then eventually be recycled – so the goal is to not use any raw materials at any point.
    Circular design is the intent to minimise environmental impact, to design equipment that could be reused and repurposed, and then at the end of its life be recycled.
    [04:05] How do Design Conformity operate? – Design Conformity look at the way that companies design their furniture and then take them through a learning process (online course).
    They help businesses to understand how to design a product in such a way where it can be repurposed or reused, where raw material usage can be reduced and where the shipping requirements can be reduced.
    They provide guidance and advice on recommended materials, including the provision on an online carbon calculator.
    They also provide reporting in alignment with existing carbon standards, such as ISO 14064, for product evaluation.
    [06:55] How can the Carbon Calculator help? By select

    • 27 min
    #162 What’s the difference between Certification and Verification?

    #162 What’s the difference between Certification and Verification?

    For those in the ISO Space, you may be very familiar with the term ‘Certification’ in relation to ISO Standards. However, for certain ISO Standards there is a different type of terminology you need to be aware of.
    The demand for a more unified and structured approach to reduce carbon emissions has resulted in a few carbon related ISO Standards to be published over the last few years. Standards such as ISO 14064 (Carbon Verification) and ISO 14068 (Climate Change Management) use the term ‘Verification’ rather than ‘Certification’.
    So, what’s the difference between the two?
    Join Mel in this weeks’ episode as she explains the key differences between the terms ‘Certification’ and ‘Verification’ in relation to ISO Standards.
    You’ll learn
    ·       What is Certification?
    ·       What is Verification?
    ·       What is the difference between certification and verification?
    ·       What’s involved with Verification?
    ·       Is there a demand for Verification in the UK and overseas?
     
    Resources
    ·       The ISO Show
    ·       Carbonology
     
    In this episode, we talk about:
    [00:25] Episode summary – Listeners familiar with the world of ISO will know of the term ‘Certification’, however the release of new Carbon related Standards such as ISO 14064 and ISO 14068 has brought in a new term: ‘Verification’
    This episode, we’ll explain the difference between the two. If you’d like to learn more about ISO 14064 and ISO 14068, check out episode 72 and episode 158.
    [02:00] What is Certification? – Quiet simply, Certification is for businesses who wish to certify an ISO Management system – so a company wishing to implement a Quality Management system to ISO 9001, would get the ISO System certified by an accredited Certification Body.
    [02:25] What is Verification? – Verification is the confirmation of a claim, through the provision of objective evidence, that specified requirements have been fulfilled.  Therefore ISO 14064 the carbon footprint verification standard is a standard that is verified not certified.
    The ‘claim’ or ‘statement’ is typically the QES ‘Qualifying Explanatory Statement’.  If you’d like to find out more about this, then checkout Episodes 91 to 97, where David Algar, Principal Carbonologist at Carbonology explains in more detail.
    [03:35] Setting the record straight – Some organisations (and even Certification Bodies!) have been stating they have been certified to PAS 2060 or ISO 14064 – which is technically incorrect.
     As a certificate is not issued and they're not certified.
    [04:30] Think of Verification as an MOT: A simple analogy for Verification is a car MOT. This is an annual check to verify that a claim is correct, much like an MOT, someone must inspect evidence and check that everything is as claimed – not unlike checking under a car bonnet and checking tires to see if everything is in working order.
    [05:20] What is the difference between accreditation for certification and verification bodies? –  For ISO Certification, certification bodies must adhere to ISO 17021:2015. This standard basically provides a requirements for bodies providing audit and certification of management systems, and applies to CB’s like BSI or NQA.
    There are many others here in the UK, simply visit the UKAS website to find a list of accredited CB’s. In other countries, simply go to your national accreditation body website to find a full list.
    [06:40] Accreditation for Verification Bodies – Verification Bodies need to adhere to ISO 17029, which was a Standard first published in 2019. That standards title is: Conformity assessment, general principles and requirements for validation and verification bodies.
    Both Standards provide structure and governance to basically ensure that standards are either certified or verified to a level playing field.
    [07:20] Watch out for the co

    • 21 min

Customer Reviews

4.9 out of 5
7 Ratings

7 Ratings

Princessdandyrichbrandywine ,

Really appreciate these episodes!

Thank you for creating a great show that’s thought provoking and interesting!
Many thanks,
Doone

Alistair MacFadyen ,

Great ISO Podcasts

Thanks for the podcasts they all are informative, keep up the great work.

Thank you

Lorna@LSL ,

Opening Eyes to ISO

I have always seen ISO as a tool for big companies I have helped to achieve certification in this arena what I was not aware of was that Micro businesses can also benefit and for me that is a game changer these shows are informative but easy to listen too a definite call to action for any business and I would recommend it to everyone

Top Podcasts In Business

The Diary Of A CEO with Steven Bartlett
DOAC
The Martin Lewis Podcast
BBC Radio 5 Live
A Book with Legs
Smead Capital Management
Making Money
Kindling Media
Big Fish with Spencer Matthews
Global
On a Mission Podcast
Ellie McKay