The second edition of the handbook has been published to help organizations of any sector or industry and size, integrate requirements of multiple MSSs into their management systems.
What’s the difference between A 'Type A' and 'Type B' MSS?
A Type A MSS contains requirements against which an organization can claim conformance, whereas a Type B MSS does not.
As a consequence, one should only find recommendations (guidelines) or supporting information in a Type B MSS. Some MSSs can contain a mix of requirements and guidelines: as they contain requirements, they will be considered Type A MSSs. Usually, a Type B MSS (e.g. ISO 50004) provides guidance on the application of a Type A MSS (e.g. ISO 50001). However, some Type B MSSs are independent (e.g. ISO 37301).
Management Standards (MS) support governance and leadership functions, at all levels. They are designed to be widely applicable across economic sectors (or specific to some), various types and sizes of organizations and diverse geographical, cultural and social conditions. MS can be considered as overarching documents for the sound governance of an organization. Using MSS can be a practical way of supporting decisions resulting from the implementation of a MS.
To claim conformance with a standard, an organization needs evidence that it is meeting the requirements. Such evidence gathering is generally done by undertaking an audit. There are three types of audits: first-party, second-party, and third-party. First-party audits are internal audits. Second and third party audits are external audits. A third party audit can result in certification. Regarding certification: certification can only take place against a document that contains requirements. Therefore, Type B MSS cannot be certified against.
Harmonized Structure - HS
Standards listed here as HS have the same structure [PDF] and contain many of the same terms and definitions. This is particularly useful for those organizations that choose to operate a single (sometimes called “integrated”) management system that can meet the requirements of two or more management system standards simultaneously.
Popular management system standards
We have a number of MSS, each focusing on different issues affecting global business. Find more information about some of the best-known ones.
| Standard and/or project | Type | HS |
|---|---|---|
|
Risk management — Guidelines on using ISO 31000 in management systems |
MS | |
|
Quality management systems — Guidance for the application of ISO 19443:2018 |
B | HS |
|
Healthcare organization management — Management systems for quality in healthcare organizations — Requirements |
A | HS |
|
Application of Knowledge Management to Radioactive Waste Management — Part 1: Overarching |
B | |
|
Application of Knowledge Management to Radioactive Waste Management — Part 2: Vision and strategy |
B | |
|
Application of Knowledge Management to Radioactive Waste Management — Part 3: Process |
B | |
|
Application of Knowledge Management to Radioactive Waste Management — Part 4: People |
B | |
|
Application of Knowledge Management to Radioactive Waste Management — Part 5: Tools and technology |
B | |
|
Application of Knowledge Management to Radioactive Waste Management — Part 6: Implementation |
B | |
|
Quality management systems — Requirements |
A | HS |
|
Quality management systems — Guidelines for the application of ISO 9001:2015 |
B | HS |
|
Quality management — Quality of an organization — Guidance to achieve sustained success |
B | |
|
Quality management — Customer satisfaction — Guidelines for monitoring and measuring |
B | |
|
Quality management — Guidelines for quality management in projects |
B | |
|
Measurement management systems — Requirements for measurement processes and measuring equipment |
A | |
|
Measurement management systems — Requirements for measurement processes and measuring equipment |
A | |
|
Consumer product safety — Guidelines for suppliers |
B | |
|
Consumer product recall — Guidelines for suppliers |
B | |
|
Medical devices — Quality management systems — Requirements for regulatory purposes |
A | |
|
Environmental management systems — Requirements with guidance for use |
A | HS |
|
Environmental management systems — Guidelines for using ISO 14001 to address environmental aspects and conditions within an environmental topic area — Part 1: General |
B | |
|
Environmental management systems — Guidelines for using ISO 14001 to address environmental aspects and conditions within an environmental topic area — Part 2: Water |
B | |
|
Environmental management systems — General guidelines on implementation |
B | HS |
|
Environmental management systems — Guidelines for a flexible approach to phased implementation |
B | |
|
Environmental management systems — Guidelines for incorporating ecodesign |
B | |
|
Environmental management systems — Guidelines for incorporating material circulation in design and development |
B | HS |
|
Graphic technology — Management of security printing processes |
A | HS |
|
Primary packaging materials for medicinal products — Particular requirements for the application of ISO 9001:2015, with reference to good manufacturing practice (GMP) |
A | HS |
|
Indoor air — Part 40: Indoor air quality management system |
A | HS |
|
Transport packages for dangerous goods — Dangerous goods packagings, intermediate bulk containers (IBCs) and large packagings — Guidelines for the application of ISO 9001 |
B | |
|
Quality management systems — Guidelines for the application of ISO 9001 in local government |
B | HS |
|
Management system for private security operations — Requirements with guidance for use |
A | HS |
|
Geographic information — Quality assurance of data supply |
B | |
|
Quality management systems — Specific requirements for the application of ISO 9001:2015 by organizations in the supply chain of the nuclear energy sector supplying products and services important to nuclear safety (ITNS) |
A | HS |
|
Information technology — IT asset management — Part 1: IT asset management systems — Requirements |
A | HS |
|
Information technology — Service management — Part 1: Service management system requirements |
A | HS |
|
Information technology — Service management — Part 2: Guidance on the application of service management systems |
B | HS |
|
Information technology — Service management — Part 5: Implementation guidance for ISO/IEC 20000-1 |
B | |
|
Food loss and waste management system — Requirements for the minimization of food loss and waste across the food value chain |
A | |
|
Event sustainability management systems — Requirements with guidance for use |
A | HS |
|
Event sustainability management systems — Requirements with guidance for use |
A | |
|
Educational organizations — Management systems for educational organizations — Requirements with guidance for use |
A | HS |
|
Educational organizations — Management systems for educational organizations — Requirements with guidance for use |
A | |
|
Adventure tourism — Safety management systems — Requirements |
A | HS |
|
Tourism and related services — Sustainability management system for accommodation establishments — Requirements |
A | HS |
|
Food safety management systems — Requirements for any organization in the food chain |
A | HS |
|
Quality management systems — Guidelines for the application of ISO 9001:2008 to crop production |
B | |
|
Railway applications — Railway quality management system — ISO 9001:2015 and specific requirements for application in the railway sector |
A | HS |
|
Security and resilience — Business continuity management systems — Requirements |
A | HS |
|
Security and resilience — Business continuity management systems — Guidance on the use of ISO 22301 |
B | HS |
|
Medical laboratories — Application of risk management to medical laboratories |
MS | |
|
Medical laboratories — Application of risk management to medical laboratories |
MS | |
|
Information technology — Artificial intelligence — Guidance on risk management |
MS | |
|
Activities relating to drinking water and wastewater services — Crisis management of water utilities |
B | HS |
|
Guidance on social responsibility |
MS | |
|
Information security, cybersecurity and privacy protection — Information security management systems — Requirements |
A | |
|
Information technology — Security techniques — Information security management systems — Guidance |
B | HS |
|
Information security, cybersecurity and privacy protection — Guidance on managing information security risks |
MS | |
|
Information technology — Security techniques — Information security management for inter-sector and inter-organizational communications |
B | HS |
|
Information security, cybersecurity and privacy protection — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1 |
B | |
|
Information security, cybersecurity and privacy protection — Governance of information security |
B | |
|
Information security, cybersecurity and privacy protection — Application of ISO 31000:2018 for organizational privacy risk management |
MS | |
|
Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines |
A | |
|
Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines |
A | |
|
Security and resilience — Security management systems — Requirements |
A | HS |
|
Security management systems for the supply chain — Best practices for implementing supply chain security, assessments and plans — Requirements and guidance |
A | |
|
Security management systems for the supply chain — Development of resilience in the supply chain — Requirements with guidance for use |
A | |
|
Security management systems for the supply chain — Guidelines for the implementation of ISO 28000 — Part 1: General principles |
B | |
|
Security management systems for the supply chain — Guidelines for the implementation of ISO 28000 — Part 2: Guidelines for adopting ISO 28000 for use in medium and small seaport operations |
B | |
|
Security management systems for the supply chain — Guidelines for the implementation of ISO 28000 — Part 3: Additional specific guidance for adopting ISO 28000 for use by medium and small businesses (other than marine ports) |
B | |
|
Security management systems for the supply chain — Guidelines for the implementation of ISO 28000 — Part 4: Additional specific guidance on implementing ISO 28000 if compliance with ISO 28001 is a management objective |
B | |
|
Security management systems for the supply chain — Guidelines for the implementation of ISO 28000 — Part 1: General principles — Technical Corrigendum 1 |
B | |
|
Ships and marine technology — Guidelines for Private Maritime Security Companies (PMSC) providing privately contracted armed security personnel (PCASP) on board ships (and pro forma contract) — Part 1: General |
B | |
|
Ships and marine technology — Safety and sustainability management systems in commercial shipping on inland waterways — Requirements with guidance for use |
A | |
|
Petroleum, petrochemical and natural gas industries — Sector-specific quality management systems — Requirements for product and service supply organizations |
A | HS |
|
Ships and marine technology — Ship recycling management systems — Specifications for management systems for safe and environmentally sound ship recycling facilities |
A | |
|
Ships and marine technology — Ship recycling management systems — Guidelines for the implementation of ISO 30000 |
B | |
|
Human Resource Management System — Requirements |
A | |
|
Information and documentation — Management systems for records — Requirements |
A | HS |
|
Information and documentation — Management systems for records — Guidelines for implementation |
B | HS |
|
Knowledge management systems — Requirements |
A | HS |
|
Risk management — Guidelines |
MS | |
|
Robotics — Application services provided by service robots — Safety management systems requirements |
A | HS |
|
Sustainable and traceable cocoa — Part 1: Requirements for cocoa sustainability management systems |
A | HS |
|
Animal welfare management — General requirements and guidance for organizations in the food supply chain |
A | |
|
Biorisk management for laboratories and other related organisations |
A | HS |
|
Anti-bribery management systems — Requirements with guidance for use |
A | HS |
|
Anti-bribery management systems — Requirements with guidance for use |
A | |
|
Whistleblowing management systems — Guidelines |
B | HS |
|
Fraud Control Management Systems — Guidance for organizations responding to the risk of fraud |
B | |
|
Sustainable development in communities — Management system for sustainable development — Requirements with guidance for use |
A | HS |
|
Compliance management systems — Requirements with guidance for use |
A | HS |
|
Information technology — Governance of IT for the organization |
MS | |
|
Information technology — Governance of IT for the organization |
MS | |
|
Road traffic safety (RTS) management systems — Requirements with guidance for use |
A | HS |
|
Information technology — Quality for learning, education and training — Fundamentals and reference framework |
MS | |
|
Facility management — Management systems — Requirements with guidance for use |
A | HS |
|
Facility management — Management systems — Requirements with guidance for use |
A | |
|
Facility management — Influencing organizational behaviours for improved facility outcomes |
B | |
|
Information technology — Artificial intelligence — Management system |
A | HS |
|
Information technology — Artificial intelligence — AI system impact assessment |
A | |
|
Collaborative business relationship management systems — Requirements and framework |
A | HS |
|
Collaborative business relationship management systems — Requirements and framework |
A | |
|
Collaborative business relationship management systems — Guidelines on the implementation of ISO 44001 |
B | HS |
|
Occupational health and safety management systems — Requirements with guidance for use |
A | HS |
|
Occupational health and safety management systems — General guidelines for the implementation of ISO 45001:2018 |
B | HS |
|
Occupational health and safety management — Guidelines on performance evaluation |
B | |
|
Occupational health and safety management — Guidelines for organizations on preventing and managing infectious diseases |
B | |
|
Water efficiency management systems — Requirements with guidance for use |
A | HS |
|
Energy management systems — Requirements with guidance for use |
A | HS |
|
Energy management systems — Guidance for the implementation, maintenance and improvement of an ISO 50001 energy management system |
B | |
|
Energy management systems — Guidelines for a phased implementation |
B | |
|
Energy management systems — Guidance for implementing a common energy management system in multiple organizations |
B | |
|
Energy management and energy savings — Guidance for net zero energy in operations using an ISO 50001 energy management system |
B | |
|
Energy management systems ― Assessing energy management using ISO 50001:2018 |
B | |
|
Quality management systems — Particular requirements for the application of ISO 9001:2015 for electoral organizations at all levels of government |
A | HS |
|
Asset management — Management systems — Requirements |
A | HS |
|
Asset management — Management systems — Requirements |
A | HS |
|
Asset management — Management systems — Guidelines for the application of ISO 55001 |
B | HS |
|
Innovation management — Innovation management system — Requirements |
A | HS |
|
Innovation management — Innovation management system — Guidance |
B | HS |
|
Explosive atmospheres — Part 34: Application of quality management systems for Ex Product manufacture |
A | HS |
|
Software engineering — Guidelines for the application of ISO 9001:2015 to computer software |
B | HS |
Alternatively, you can download a list of MSS in Excel format. Please note that, while we attempt to regularly update the list, we cannot guarantee that the information contained therein is comprehensive, up to date or 100 % accurate. Therefore use of the list is at the users’ risk.