Customer Service:
Mon - Fri: 8:30 am - 6 pm EST

ISO: International Organization for Standardization

ISO, the International Organization for Standardization, is a nonprofit organization that develops and publishes standards of virtually every possible sort, ranging from standards for information technology to fluid dynamics and nuclear energy. Headquartered in Geneva, Switzerland, ISO is composed of 162 members, each one the sole representative for their home country. As the largest developer and publisher of standards in the world, ISO fills the vital role of a medium for agreement between individual standards developers, spreading progress made by one country's local developers across the world to further the goal of standardization. Standards from ISO are available both individually, directly through the ANSI webstore, and as part of a Standards Subscription. If you or your organization are interested in easy, managed, online access to standards that can be shared, a Standards Subscription may be what you need - please contact us at: StandardsSubscriptions@ansi.org or 1-212-642-4980 or Request Proposal Price.

Below are ISO's best-selling standards. To find additional standards, please use the search bar above.

 Back to All Publishers Home

ISO 9001:2015

Quality management systems - Requirements

ISO 9001:2015 specifies requirements for a quality management system when an organization:

a) needs to demonstrate its ability to consistently provide products and services that meet customer and applicable statutory and regulatory requirements, and

b) aims to enhance customer satisfaction through the effective application of the system, including processes for improvement of the system and the assurance of conformity to customer and applicable statutory and regulatory requirements.

All the requirements of ISO 9001:2015 are generic and are intended to be applicable to any organization, regardless of its type or size, or the products and services it provides.

Available in Packages Available for Subscriptions


ISO 14001:2015

Environmental management systems - Requirements with guidance for use

ISO 14001:2015 specifies the requirements for an environmental management system that an organization can use to enhance its environmental performance. ISO 14001:2015 is intended for use by an organization seeking to manage its environmental responsibilities in a systematic manner that contributes to the environmental pillar of sustainability.

ISO 14001:2015 helps an organization achieve the intended outcomes of its environmental management system, which provide value for the environment, the organization itself and interested parties. Consistent with the organization's environmental policy, the intended outcomes of an environmental management system include:

+ enhancement of environmental performance;

+ fulfillment of compliance obligations;

+ achievement of environmental objectives.

ISO 14001:2015 is applicable to any organization, regardless of size, type and nature, and applies to the environmental aspects of its activities, products and services that the organization determines it can either control or influence considering a life cycle perspective. ISO 14001:2015 does not state specific environmental performance criteria.

ISO 14001:2015 can be used in whole or in part to systematically improve environmental management. Claims of conformity to ISO 14001:2015, however, are not acceptable unless all its requirements are incorporated into an organization's environmental management system and fulfilled without exclusion.

Available in Packages Available for Subscriptions


ISO 45001:2018

Occupational health and safety management systems - Requirements with guidance for use

ISO 45001:2018 specifies requirements for an occupational health and safety (OH&S) management system, and gives guidance for its use, to enable organizations to provide safe and healthy workplaces by preventing work-related injury and ill health, as well as by proactively improving its OH&S performance.
ISO 45001:2018 is applicable to any organization that wishes to establish, implement and maintain an OH&S management system to improve occupational health and safety, eliminate hazards and minimize OH&S risks (including system deficiencies), take advantage of OH&S opportunities, and address OH&S management system nonconformities associated with its activities.
ISO 45001:2018 helps an organization to achieve the intended outcomes of its OH&S management system. Consistent with the organization's OH&S policy, the intended outcomes of an OH&S management system include:

a) continual improvement of OH&S performance;
b) fulfilment of legal requirements and other requirements;
c) achievement of OH&S objectives.

ISO 45001:2018 is applicable to any organization regardless of its size, type and activities. It is applicable to the OH&S risks under the organization's control, taking into account factors such as the context in which the organization operates and the needs and expectations of its workers and other interested parties.
ISO 45001:2018 does not state specific criteria for OH&S performance, nor is it prescriptive about the design of an OH&S management system.
ISO 45001:2018 enables an organization, through its OH&S management system, to integrate other aspects of health and safety, such as worker wellness/wellbeing.
ISO 45001:2018 does not address issues such as product safety, property damage or environmental impacts, beyond the risks to workers and other relevant interested parties.
ISO 45001:2018 can be used in whole or in part to systematically improve occupational health and safety management. However, claims of conformity to this document are not acceptable unless all its requirements are incorporated into an organization's OH&S management system and fulfilled without exclusion.
 


ISO 9000:2015

Quality management systems - Fundamentals and vocabulary

ISO 9000:2015 describes the fundamental concepts and principles of quality management which are universally applicable to the following:

+ organizations seeking sustained success through the implementation of a quality management system;

+ customers seeking confidence in an organization's ability to consistently provide products and services conforming to their requirements;

+ organizations seeking confidence in their supply chain that their product and service requirements will be met;

+ organizations and interested parties seeking to improve communication through a common understanding of the vocabulary used in quality management;

+ organizations performing conformity assessments against the requirements of ISO 9001;

+ providers of training, assessment or advice in quality management;

+ developers of related standards.

ISO 9000:2015 specifies the terms and definitions that apply to all quality management and quality management system standards developed by ISO/TC 176.


ISO/IEC 27001:2013

Information technology - Security techniques - Information security management systems - Requirements

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.


ISO 19011:2011

Guidelines for auditing management systems

ISO 19011:2011 provides guidance on auditing management systems, including the principles of auditing, managing an audit programme and conducting management system audits, as well as guidance on the evaluation of competence of individuals involved in the audit process, including the person managing the audit programme, auditors and audit teams.

ISO 19011:2011 is applicable to all organizations that need to conduct internal or external audits of management systems or manage an audit programme.

The application of ISO 19011:2011 to other types of audits is possible, provided that special consideration is given to the specific competence needed.


ISO/IEC 27001 and 27002 IT Security Techniques Package

ISO/IEC 27001:2013 and ISO/IEC 27002:2013 - IT Security Techniques Package.

The ISO/IEC 27001 and 27002 IT Security Techniques Package provides the requirements and code of practice to initiate, implement, maintain and improve an information security management system in any size organization. This package helps to identify an organization's security requirements, risks and selecting controls for the requirements and risks using the "Plan-Do-Check-Act" model. This package includes ISO/IEC 27001:2013 and ISO/IEC 27002:2013.


ISO 31000:2018

Risk management - Guidelines

ISO 31000:2018 provides guidelines on managing risk faced by organizations. The application of these guidelines can be customized to any organization and its context.
ISO 31000:2018 provides a common approach to managing any type of risk and is not industry or sector specific.
ISO 31000:2018 can be used throughout the life of the organization and can be applied to any activity, including decision-making at all levels.
 


ANSI Logo

As the voice of the U.S. standards and conformity assessment system, the American National Standards Institute (ANSI) empowers its members and constituents to strengthen the U.S. marketplace position in the global economy while helping to assure the safety and health of consumers and the protection of the environment.

CUSTOMER SERVICE
NEW YORK OFFICE
ANSI HEADQUARTERS