Q
QAMTY
Hi, everybody
Confusing in considering Procedures, I hope to receive help from you.
I´m in the planning of developing ISO 9000:2008
I know there are Realization Process those is what we sell.
and also supporting process helping to the Real. Process.
to achieve goals, e.g. HR, IT, and so on.
My plan is to look for a certification in about two years
meanhwile, I´m preparing the procedures that can help us
to have a control on our products, (Design and installation of Mech. Equipment) that is what we are now focusing at.
Then I started with Client an complaints, CA/PA and Nonconformance procedures.
But as Someone here in this forum said, For IT specially, we should go with ISO 20000.
In 9000:2008, IT fits in 6.3 Infraestructure, where we should have at least procedures for: To ensure Backing-up of data, Security, Data Loss prevention, etc.
From this point of view, If I´m focusing on the realization products
and all my procedures are designed for that.
Questions:
-Should I adapt the existing ones to comply with IT?
because sometimes It will be needed a CA/PA in IT.
-Should I go deeply in developing procedures for IT?
- Can I consider only the Real. Process and creating only brief procedures for IT?
- What to include and not to include?
Please shed some light on me
Thanks
Confusing in considering Procedures, I hope to receive help from you.
I´m in the planning of developing ISO 9000:2008
I know there are Realization Process those is what we sell.
and also supporting process helping to the Real. Process.
to achieve goals, e.g. HR, IT, and so on.
My plan is to look for a certification in about two years
meanhwile, I´m preparing the procedures that can help us
to have a control on our products, (Design and installation of Mech. Equipment) that is what we are now focusing at.
Then I started with Client an complaints, CA/PA and Nonconformance procedures.
But as Someone here in this forum said, For IT specially, we should go with ISO 20000.
In 9000:2008, IT fits in 6.3 Infraestructure, where we should have at least procedures for: To ensure Backing-up of data, Security, Data Loss prevention, etc.
From this point of view, If I´m focusing on the realization products
and all my procedures are designed for that.
Questions:
-Should I adapt the existing ones to comply with IT?
because sometimes It will be needed a CA/PA in IT.
-Should I go deeply in developing procedures for IT?
- Can I consider only the Real. Process and creating only brief procedures for IT?
- What to include and not to include?
Please shed some light on me
Thanks