Using ISO 9001 Document Control to Manage a TAPA Security Systems
Most organizations wishing to achieve TAPA certification have well established Quality Management Systems. One of the main requirements of a Quality Management System is document control for the creation, review and approval of the quality relevant documents, work procedures, instructions, and quality support forms to record evidence of compliance was well as operational data.
It is therefore a real surprise that TAPA certified companies are willing to lose demonstrated effectiveness during a TAPA assessment simply because TAPA procedures are not documented. The absence of documented TAPA procedures can result in a less than optimal security plan. If security procedures are not documented, they will eventually become a distant memory if not totally forgotten over time.
The difference between an acceptable TAPA certified security system and a GREAT TAPA certified security system may be as little as 5%. A great TAPA security system has a little more resources invested in terms of time and effort. Comprehensive TAPA security procedures are absolutely necessary to have an effective security plan.
The TAPA security system is greater than one person or group of people. The loss of key personnel or cancellation of an external contract should not result in a reduced state of readiness with regard to physical, personal and data security. All individuals involved in the design, implementation, training, maintenance, and enhancement of a TAPA security system are organizational resources. A fully documented TAPA security system minimizes the impact due to the loss of personnel.
ISO 9001 requires companies to continually seek improvements. The opportunity for improvement of a TAPA security system can only be accomplished once the security system is fully documented. Total control of a complex TAPA security program requires that the system be completely documented to ensure effective administration.