TIA initiative - SCS 9001

by Chad Kymal published on December 14, 2021

The SCS 9001 is a Supply Chain Security Management System. Security here refers to both Information Security and Product Security. In other words, the security of the IT Assets in the organization and the security of the products designed and manufactured. When the SCS 9001 standard references “security” it is referring to “Supply Chain Security.” This means the SCS 9001 standard is a supply chain standard for the Telecommunications Industry as a whole. TIA initiative - SCS 9001

The SCS 9001 security standard is similar to the efforts of the German Automakers who adopted TISAX (Trusted Information Security Assessment Exchange) for the supply chain of the German OEMs such as Volkswagen, Audi, and Daimler. It is also similar to the CMMC standards adopted by the Department of Defense (DoD) which are based on NIST standards for cybersecurity controls. Other industries are sure to follow suit due to large risks to both organizations and products posed by both internal and external actors with malicious intent

Author

Chad Kymal

Chad Kymal is the CTO and Founder of Omnex Inc. He is the author of seven books and more than 100 papers including several on integrated management systems. Chad is currently on the writing committees for several standards including TC 22/ SC 32/WG 8 for ISO 26262 (Functional Safety), ISO/TC 176 for ISO 9001:2015 (Quality Management), ISO/TC 207 for ISO 14001:2015 (Environmental Management), and PC283 for ISO 45001 (Health and Safety Management Systems). He founded and was the CEO of an Automotive registrar for over 10 years and is familiar with conducting audits, being witnessed for audits, and also evaluating auditors and assessors. He authored and teaches a course for 3rd Party Auditors for Automotive Registrars on behalf of International Automotive Certification Bodies Association (IACBA). This course explains how 3rd Party Auditors audit IATF 16949 in an environment that includes ASPICE, Functional Safety and Product Cybersecurity. He is currently rolling out the course to global 3rd Party Auditors for IATF 16949. Chad has spent over 20 years in system, hardware and software development in various capacities. He assesses and works in automotive system, hardware and software for Agile, ASPICE, and Functional Safety ISO 26262. Chad is also currently an intacsTM certified Principal Assessor for Automotive SPICE.