The ISO 9000 family of quality management systems (QMS) is a set of standards that helps organizations ensure they meet customer and other stakeholder needs within statutory and regulatory requirements related to a product or service. ISO 9000 deals with the fundamentals of QMS, including the seven quality management principles that underlie the family of standards. ISO 9001 deals with the requirements that organizations wishing to meet the standard must fulfill.
Third-party certification bodies provide independent confirmation that organizations meet the requirements of ISO 9001. Over one million organizations worldwide are independently certified, making ISO 9001 one of the most widely used management tools in the world today. However, the ISO certification process has been criticized as being wasteful and not being useful for all organizations.
ISO 9000 was first published in 1987 by ISO (International Organization for Standardization). It was based on the BS 5750 series of standards from BSI that were proposed to ISO in 1979. However, its history can be traced back some twenty years before that, to the publication of government procurement standards, such as the United States Department of Defense MIL-Q-9858 standard in 1959, and the UK's Def Stan 05-21 and 05–24. Large organizations that supplied government procurement agencies often had to comply with a variety of quality assurance requirements for each contract awarded, which led the defense industry to adopt mutual recognition of NATO AQAP, MIL-Q, and Def Stan standards. Eventually, industries adopted ISO 9000 instead of forcing contractors to adopt multiple—and often similar—requirements.
Reasons for use
The global adoption of ISO 9001 may be attributable to a number of factors. In the early days, the ISO 9001 (9002 and 9003) requirements were intended to be used by procuring organizations, such as contractors and design activities, as the basis of contractual arrangements with their suppliers. This helped reduce the need for subcontract supplier quality development by establishing basic requirements for a supplier to assure product quality. The ISO 9001 requirements could be tailored to meet specific contractual situations, depending on the complexity of product, business type (design responsibility, manufacture only, distribution, servicing etc.) and risk to the procurer. If a chosen supplier was weak on the controls of their measurement equipment (calibration), and hence QC/inspection results, that specific requirement would be invoked in the contract. The adoption of a single quality assurance requirement also leads to cost savings throughout the supply chain by reducing the administrative burden of maintaining multiple sets of quality manuals and procedures.
A few years later, the UK Government took steps to improve national competitiveness following publication of cmd 8621, and Third Party Certification of Quality Management Systems was born, under the auspices of the National Accreditation Council of Certification Bodies (NACCB), which has become the United Kingdom Accreditation Service (UKAS).
In addition to many stakeholders' benefits, a number of studies have identified significant financial benefits for organizations certified to ISO 9001, with an ISO analysis of 42 studies showing that implementing the standard does enhance financial performance. Corbett et al. showed that certified organizations achieved superior return on assets compared to otherwise similar organizations without certification.
Heras et al. found similarly superior performance and demonstrated that this was statistically significant and not a function of organization size. Naveha and Marcus claimed that implementing ISO 9001 led to superior operational performance in the U.S. automotive industry. Sharma identified similar improvements in operating performance and linked this to superior financial performance. Chow-Chua et al. showed better overall financial performance was achieved for companies in Denmark. Rajan and Tamimi (2003) showed that ISO 9001 certification resulted in superior stock market performance and suggested that shareholders were richly rewarded for the investment in an ISO 9001 system.
While the connection between superior financial performance and ISO 9001 may be seen from the examples cited, there remains no proof of direct causation, though longitudinal studies, such as those of Corbett et al. (2005), may suggest it. Other writers, such as Heras et al. (2002), have suggested that while there is some evidence of this, the improvement is partly driven by the fact that there is a tendency for better-performing companies to seek ISO 9001 certification.
The mechanism for improving results has also been the subject of much research. Lo et al. (2007) identified operational improvements (e.g., cycle time reduction, inventory reductions) as following from certification. Internal process improvements in organizations lead to externally observable improvements. The benefit of increased international trade and domestic market share, in addition to the internal benefits such as customer satisfaction, interdepartmental communications, work processes, and customer/supplier partnerships derived, far exceeds any and all initial investment.
The increase in ISO 9001 certification is shown in the tables below.
|Rank||Country||No. of certificates|
ISO 9000 series Quality Management Principles
The seven quality management principles are:
- QMP 1 – Customer focus
- QMP 2 – Leadership
- QMP 3 – Engagement of people
- QMP 4 – Process approach
- QMP 5 – Improvement
- QMP 6 – Evidence-based decision making
- QMP 7 – Relationship management
Principle 1 – Customer focus
- Organizations depend on their customers and therefore should understand current and future customer needs, should meet customer requirements and strive to exceed customer expectations.
Principle 2 – Leadership
- Leaders establish unity of purpose and direction of the organization. They should create and maintain the internal environment in which people can become fully involved in achieving the organization's objectives.
Principle 3 – Engagement of people
- People at all levels are the essence of an organization and their full involvement enables their abilities to be used for the organization's benefit.
Principle 4 – Process approach
- A desired result is achieved more efficiently when activities and related resources are managed as a process.
Principle 5 – Improvement
- Improvement of the organization's overall performance should be a permanent objective of the organization.
Principle 6 – Evidence-based decision making
- Effective decisions are based on the analysis of data and information.
Principle 7 – Relationship management
- An organization and its external providers (suppliers, contractors, service providers) are interdependent and a mutually beneficial relationship enhances the ability of both to create value.
Contents of ISO 9001:2015
ISO 9001:2015 Quality management systems — Requirements is a document of approximately 30 pages available from the national standards organization in each country. Only ISO 9001 is directly audited against for third-party assessment purposes.
Contents of ISO 9001:2015 are as follows:
- Section 1: Scope
- Section 2: Normative references
- Section 3: Terms and definitions
- Section 4: Context of the organization
- Section 5: Leadership
- Section 6: Planning
- Section 7: Support
- Section 8: Operation
- Section 9: Performance evaluation
- Section 10: Continual Improvement
Essentially, the layout of the standard is similar to the previous ISO 9001:2008 standard in that it follows the Plan, Do, Check, Act cycle in a process-based approach but is now further encouraging this to have risk-based thinking (section 0.3.3 of the introduction). The purpose of the quality objectives is to determine the conformity of the requirements (customers and organizations), facilitate effective deployment and improve the quality management system.
Before the certification body can issue or renew a certificate, the auditor must be satisfied that the company being assessed has implemented the requirements of sections 4 to 10. Sections 1 to 3 are not directly audited against, but because they provide context and definitions for the rest of the standard, not that of the organization, their contents must be taken into account.
The standard no longer specifies that the organization shall issue and maintain documented procedures, but ISO 9001:2015 requires the organization to document any other procedures required for its effective operation. The standard also requires the organization to issue and communicate a documented quality policy, a quality management system scope, and quality objectives. The standard no longer requires compliant organizations to issue a formal Quality Manual. The standard does require retention of numerous records, as specified throughout the standard. New for the 2015 release is a requirement for an organization to assess risks and opportunities (section 6.1) and to determine internal and external issues relevant to its purpose and strategic direction (section 4.1). The organization must demonstrate how the standard's requirements are being met, while the external auditor's role is to determine the quality management system's effectiveness. More detailed interpretation and implementation examples are often sought by organizations seeking more information in what can be a very technical area.
The International Organization for Standardization (ISO) does not certify organisations itself. Numerous certification bodies exist, which audit organisations and upon success, issue ISO 9001 compliance certificates. Although commonly referred to as "ISO 9000" certification, the actual standard to which an organization's quality management system can be certified is ISO 9001:2015 (ISO 9001:2008 expired around September 2018). Many countries have formed accreditation bodies to authorize ("accredit") the certification bodies. Both the accreditation bodies and the certification bodies charge fees for their services. The various accreditation bodies have mutual agreements with each other to ensure that certificates issued by one of the accredited certification bodies (CB) are accepted worldwide. Certification bodies themselves operate under another quality standard, ISO/IEC 17021, while accreditation bodies operate under ISO/IEC 17011.
An organization applying for ISO 9001 certification is audited based on an extensive sample of its sites, functions, products, services, and processes. The auditor presents a list of problems (defined as "nonconformities", "observations", or "opportunities for improvement") to management. If there are no major nonconformities, the certification body issues a certificate. Where major nonconformities are identified, the organization presents an improvement plan to the certification body (e.g., corrective action reports showing how the problems will be resolved); once the certification body is satisfied that the organization has carried out sufficient corrective action, it issues a certificate. The certificate is limited by a certain scope (e.g., production of golf balls) and displays the addresses to which the certificate refers.
An ISO 9001 certificate is not a once-and-for-all award but must be renewed, in accordance with ISO 17021, at regular intervals recommended by the certification body, usually once every three years. There are no grades of competence within ISO 9001: either a company is certified (meaning that it is committed to the method and model of quality management described in the standard) or it is not. In this respect, ISO 9001 certification contrasts with measurement-based quality systems.
Evolution of ISO 9000 standards
The ISO 9000 standard is continually being revised by standing technical committees and advisory groups, who receive feedback from those professionals who are implementing the standard.
|Year||Edition of ISO 9001|
ISO 9000:1987 had the same structure as the UK Standard BS 5750, with three "models" for quality management systems, the selection of which was based on the scope of activities of the organization:
- ISO 9001:1987 Model for quality assurance in design, development, production, installation, and servicing was for companies and organizations whose activities included the creation of new products.
- ISO 9002:1987 Model for quality assurance in production, installation, and servicing had basically the same material as ISO 9001 but without covering the creation of new products.
- ISO 9003:1987 Model for quality assurance in final inspection and test covered only the final inspection of finished product, with no concern for how the product was produced.
ISO 9000:1987 was also influenced by existing U.S. and other Defense Standards ("MIL SPECS"), and so was well-suited to manufacturing. The emphasis tended to be placed on conformance with procedures rather than the overall process of management, which was likely the actual intent.
ISO 9000:1994 emphasized quality assurance via preventive actions, instead of just checking final product, and continued to require evidence of compliance with documented procedures. As with the first edition, the down-side was that companies tended to implement its requirements by creating shelf-loads of procedure manuals, and becoming burdened with an ISO bureaucracy. In some companies, adapting and improving processes could actually be impeded by the quality management system.
ISO 9001:2000 replaced all three former standards of 1994 issue, ISO 9001, ISO 9002 and ISO 9003. Design and development procedures were required only if a company does, in fact, engage in the creation of new products. The 2000 version sought to make a radical change in thinking by actually placing front and centre the concept of process management (the monitoring and optimisation of a company's tasks and activities, instead of just inspection of the final product). The 2000 version also demanded involvement by upper executives in order to integrate quality into the business system and avoid delegation of quality functions to junior administrators. Another goal was to improve effectiveness via process performance metrics: numerical measurement of the effectiveness of tasks and activities. Expectations of continual process improvement and tracking customer satisfaction were made explicit.
ISO 9000 Requirements include:
- Approve documents before distribution;
- Provide correct version of documents at points of use;
- Use your records to prove that requirements have been met; and
- Develop a procedure to control your records.
ISO 9001:2008 in essence re-narrates ISO 9001:2000. The 2008 version only introduced clarifications to the existing requirements of ISO 9001:2000 and some changes intended to improve consistency with ISO 14001:2004. There were no new requirements. For example, in ISO 9001:2008, a quality management system being upgraded just needs to be checked to see if it is following the clarifications introduced in the amended version.
ISO 9001 is supplemented directly by two other standards of the family:
- ISO 9000:2005 "Quality management systems. Fundamentals and vocabulary"
- ISO 9004:2009 "Managing for the sustained success of an organization. A quality management approach"
Other standards, like ISO 19011 and the ISO 10000 series, may also be used for specific parts of the quality system.
In 2012, ISO TC 176 - responsible for ISO 9001 development - celebrated 25 years of implementing ISO 9001 and concluded that it was necessary to create a new QMS model for the next 25 years. They subsequently commenced the official work on creating a revision of ISO 9001, starting with the new QM principles. This moment was considered by important specialists in the field as the "beginning of a new era in the development of quality management systems." As a result of the intensive work from this technical committee, the revised standard ISO 9001:2015 was published by ISO on 23 September 2015. The scope of the standard has not changed; however, the structure and core terms were modified to allow the standard to integrate more easily with other international management systems standards.
The 2015 version is also less prescriptive than its predecessors and focuses on performance. This was achieved by combining the process approach with risk-based thinking, and employing the Plan-Do-Check-Act cycle at all levels in the organization.
Some of the key changes include:
- High-Level Structure of 10 clauses is implemented. Now all new standards released by ISO will have this high-level structure
- Greater emphasis on building a management system suited to each organization's particular needs
- A requirement that those at the top of an organization be involved and accountable, aligning quality with wider business strategy
- Risk-based thinking throughout the standard makes the whole management system a preventive tool and encourages continuous improvement
- Less prescriptive requirements for documentation: the organization can now decide what documented information it needs and what format it should be in
- Alignment with other key management system standards through the use of a common structure and core text
- Inclusion of Knowledge Management principles
- Quality Manual & Management representative (MR) are no longer mandatory
Two types of auditing are required to become registered to the standard: auditing by an external certification body (external audit) and audits by internal staff trained for this process (internal audits). The aim is a continual process of review and assessment to verify that the system is working as it is supposed to, to find out where it can improve, and to correct or prevent identified problems. It is considered healthier for internal auditors to audit outside their usual management line, so as to bring a degree of independence to their judgements. Supporting papers are provided by The ISO 9001 Auditing Practices Group. This is constituted as an informal group of quality management system (QMS) experts, auditors and practitioners, drawn from the ISO Technical Committee 176 Quality Management and Quality Assurance (ISO/TC 176) and the International Accreditation Forum (IAF).
The ISO 9001 standard is generic; its parts must be carefully interpreted to make sense within a particular organization. Developing software is not like making cheese or offering counseling services, yet the ISO 9001 guidelines, because they are business management guidelines, can be applied to each of these. Diverse organizations—police departments (United States), professional soccer teams (Mexico), and city councils (UK)—have successfully implemented ISO 9001:2000 systems.
Over time, various industry sectors have wanted to standardise their interpretations of the guidelines within their own marketplace. This is partly to ensure that their versions of ISO 9000 have their specific requirements, but also to try and ensure that more appropriately trained and experienced auditors are sent to assess them.
- The TickIT guidelines are an interpretation of ISO 9000 produced by the UK Board of Trade to suit the processes of the information technology industry, especially software development.
- AS9000 is the Aerospace Basic Quality System Standard, an interpretation developed by major aerospace manufacturers. Those major manufacturers include AlliedSignal, Allison Engine, Boeing, General Electric Aircraft Engines, Lockheed-Martin, McDonnell Douglas, Northrop Grumman, Pratt & Whitney, Rockwell-Collins, Sikorsky Aircraft, and Sundstrand. The current version is AS9100D.
- PS 9000 * QS 9000 is an interpretation agreed upon by major automotive manufacturers (GM, Ford, Chrysler). It includes techniques such as FMEA and APQP. QS 9000 is now replaced by ISO/TS 16949.
- ISO/TS 16949:2009 is an interpretation agreed upon by major automotive manufacturers (American and European manufacturers); the latest version is based on ISO 9001:2008. The emphasis on a process approach is stronger than in ISO 9001:2008. ISO/TS 16949:2009 contains the full text of ISO 9001:2008 and automotive industry-specific requirements. After the new edition of ISO 9001:2015 the ISO/TS 16949:2009 was also completely revised and reissued by IATF (International Automotive Task Force). IATF 16949:2016 is now a stand-alone standard that doesn't include the ISO 9001:2015 requirements but still refers to them and works as an additional automotive-specific requirement to ISO 9001.
- TL 9000 is the Telecom Quality Management and Measurement System Standard, an interpretation developed by the telecom consortium, QuEST Forum. In 1998 QuEST Forum developed the TL 9000 Quality Management System to meet the supply chain quality requirements of the worldwide telecommunications industry. The TL 9000 standard is made up of two handbooks: the QMS Requirements Handbook, and the QMS Measurement Handbook. The current versions of the Requirements and Measurements Handbooks are 6.0. Unlike ISO 9001 or other sector-specific standards, TL 9000 includes standardized product and process measurements that must be reported into a central repository, which allows organizations to benchmark their performance in key process areas against peer organizations. It is important to note that TL 9000 R6.0 contains the full text of ISO 9001:2015.
- ISO 13485:2016 is the medical industry's equivalent of ISO 9001. ISO 13485:2016 is a stand-alone standard. Because ISO 13485 is relevant to medical device manufacturers (unlike ISO 9001, which is applicable to any industry), and because of the differences between the two standards relating to continual improvement, compliance with ISO 13485 does not necessarily mean compliance with ISO 9001 (and vice versa).
- ISO/IEC 90003:2014 provides guidelines for the application of ISO 9001 to computer software.
- ISO/TS 29001 is quality management system requirements for the design, development, production, installation, and service of products for the petroleum, petrochemical, and natural gas industries. It is equivalent to API Spec Q1 without the Monogram annex.
- ISO 22000 Food Safety Management Systems.
- ISO 17025:2017 is the Quality Management System applicable only to Testing and Calibration Laboratories.
The debate on the effectiveness of ISO 9000 commonly centres on the following questions:
- Are the quality principles in ISO 9001 of value?
- Does it help to implement an ISO 9001-compliant quality management system?
- Does it help to obtain ISO 9001 certification?
The effectiveness of the ISO system being implemented depends on a number of factors, the most significant of which are:
- Commitment of senior management to monitor, control, and improve quality. Organizations that implement an ISO system without this desire and commitment often take the cheapest road to get a certificate on the wall and ignore problem areas uncovered in the audits.
- How well the ISO system integrates into current business practices. Many organizations that implement ISO try to make their system fit into a cookie-cutter quality manual instead of creating a manual that documents existing practices and only adds new processes to meet the ISO standard when necessary.
- How well the ISO system focuses on improving the customer experience. The broadest definition of quality is "Whatever the customer perceives good quality to be." This means that a company doesn't necessarily have to make a product that never fails; some customers have a higher tolerance for product failures if they always receive shipments on-time or have a positive experience in some other dimension of customer service. An ISO system should take into account all areas of the customer experience and the industry expectations, and seek to improve them on a continual basis. This means taking into account all processes that deal with the three stakeholders (customers, suppliers, and organization). Only then can a company sustain improvements in the customer's experience.
- How well the auditor finds and communicates areas of improvement. While ISO auditors may not provide consulting to the clients they audit, there is the potential for auditors to point out areas of improvement. Many auditors simply rely on submitting reports that indicate compliance or non-compliance with the appropriate section of the standard; however, to most executives, this is like speaking a foreign language. Auditors that can clearly identify and communicate areas for improvement in language and terms executive management understands facilitate action on improvement initiatives by the companies they audit. When management doesn't understand why they were non-compliant and the business implications associated with non-compliance, they simply ignore the reports and focus on what they do understand.
Proper quality management can improve business, often having a positive effect on investment, market share, sales growth, sales margins, competitive advantage, and avoidance of litigation. The quality principles in ISO 9000:2000 are also sound, according to Wade and Barnes, who says that "ISO 9000 guidelines provide a comprehensive model for quality management systems that can make any company competitive". Sroufe and Curkovic, (2008) found benefits ranging from registration required to remain part of a supply base, better documentation, to cost benefits, and improved involvement and communication with management. According to ISO the 2015 version of the standard brings the following benefits:
- By assessing their context, organizations can define who is affected by their work and what they expect. This enables clearly stated business objectives and the identification of new business opportunities.
- Organizations can identify and address the risks associated with their organization.
- By putting customers first, organizations can make sure they consistently meet customer needs and enhance customer satisfaction. This can lead to more repeat customers, new clients and increased business for the organization.
- Organizations work in a more efficient way as all their processes are aligned and understood by everyone. This increases productivity and efficiency, bringing internal costs down.
- Organizations will meet necessary statutory and regulatory requirements.
- Organizations can expand into new markets, as some sectors and clients require ISO 9001 before doing business.
Criticisms of ISO 9001 certification
A common criticism of ISO 9000 and 9001 is the amount of money, time, and paperwork required for a complete implementation, and later when needed, ISO 9001 certification. Dalgleish cites the "inordinate and often unnecessary paperwork burden" of ISO, and says that "quality managers feel that ISO's overhead and paperwork are excessive and extremely inefficient". The level of minimum documentation for a minimum scope organization has been greatly reduced, going from ISO 9001:2000 to ISO 9001:2008 to ISO 9001:2015.
According to Barnes, "Opponents claim that it is only for documentation. Proponents believe that if a company has documented its quality systems, then most of the paperwork has already been completed". Wilson suggests that ISO standards "elevate inspection of the correct procedures over broader aspects of quality", and therefore, "the workplace becomes oppressive and quality is not improved".
One study showing reasons for not adopting this standard include the risks and uncertainty of not knowing if there are direct relationships to improved quality, and what kind and how many resources will be needed. Additional risks include how much certification will cost, increased bureaucratic processes and risk of poor company image if the certification process fails. According to John Seddon, ISO 9001 promotes specification, control, and procedures rather than understanding and improvement. Wade argues that ISO 9000 is effective as a guideline, but that promoting it as a standard "helps to mislead companies into thinking that certification means better quality, ... [undermining] the need for an organization to set its own quality standards". In short, Wade argues that reliance on the specifications of ISO 9001 does not guarantee a successful quality system.
The standard is seen as especially prone to failure when a company is interested in certification before quality. Certifications are in fact often based on customer contractual requirements rather than a desire to actually improve quality. "If you just want the certificate on the wall, chances are you will create a paper system that doesn't have much to do with the way you actually run your business", said ISO's Roger Frost. Certification by an independent auditor is often seen as the problem area, and according to Barnes, "has become a vehicle to increase consulting services".
Dalgleish argues that while "quality has a positive effect on return on investment, market share, sales growth, better sales margins and competitive advantage," "taking a quality approach is unrelated to ISO 9000 registration." In fact, ISO itself advises that ISO 9001 can be implemented without certification, simply for the quality benefits that can be achieved.
Abrahamson argues that fashionable management discourse such as Quality Circles tends to follow a lifecycle in the form of a bell curve, possibly indicating a management fad.
Dytz argues that ISO 9001 certification is based on 7 management principles and that companies are free to develop their internal tools and working methods, however, the model adopted to audit and certify companies does not evaluate the effectiveness of these methods. Even when there is still a superficial analysis of this effectiveness, mainly due to the time available to audit these companies, the certifications do not distinguish two companies with the same business model, with regard to their internal capacity and quality of management.
Pickrell argues that ISO systems merely gauge whether the processes are being followed. It does not gauge how good the processes are or whether the correct parameters are being measured and controlled to ensure quality. Furthermore, when unique technical solutions are involved in the creation of a new part, ISO does not validate the robustness of the technical solution—a key part of advanced quality planning. It is not unheard of for an ISO-certified plant to display poor quality performance due to poor process selection and/or poor technical solutions.
ISO 9000 Withdrawal
ISO 9001 certification has a three-year validity period. At the end of this period, every certified organization must renew their certificate. Unfortunately, not all organizations are successful in their renewal. Some organizations are not able to renew the certificate, because they do not conform to all requirements, and others simply decide not to renew the certificate. There are several reasons why an organisation may lose or decide not to renew their ISO 9000 certification:
- Some companies may think that the total cost outweighs the certification benefits. This is the most cited reason for voluntary decertification, but some research suggests that economic underperformance is not the reason why firms lose the certification.
- In some industries there may be too many competitors already certified which may create the sensation that the potential for competitive advantage gained from (re)certification is lower.
- Some companies may believe that they have internalized the certification benefits into their processes and do not feel the need for formal certification as they can continue to conform to the ISO 9001 standard without formal registration within a certification body.
- Some of the customers may no longer demand certification.
- Some companies may have considered their ISO 9001 certification as a first step into quality management and now want to evolve their quality management systems by advancing to other alternative certifications (e.g., IATF 16949:2016, in the automobile industry) or towards other more demanding quality management systems (e.g., TQM, six sigma, lean).
- Financial distress.
- Improper ISO 9001 implementation.
- and other reasons.
Propensity for ISO 9000 withdrawal
According to the latest data made available by ISO, approximately 60,000 organizations lose the certification every year. Given that there are approximately 1,000,000 certified organizations worldwide, and that 1/3 of these (approx. 333,333) must renew the certificate every year, the yearly average propensity for ISO 9001 withdrawal can be estimated roughly at 18% (60,000/333,333). The propensity of a given organisation to lose its certification can be estimated, depending on several factors specific to the organization:
- ISO 10006—Quality management—Guidelines to quality management in projects
- ISO 10012—Measurement management systems — Requirements for measurement processes and measuring equipment
- ISO 10014—Quality management—Managing an organization for quality results — Guidance for realizing financial and economic benefits
- ISO 13485—Medical devices—Quality management systems—Requirements for regulatory purposes
- ISO 14001—Environmental management standards
- ISO 19011—Guidelines for quality management systems auditing and environmental management systems auditing
- IATF 16949—Quality management system requirements for automotive-related products suppliers
- ISO/IEC 27001—Information security management
- ISO 37001-Anti-bribery management systems
- ISO 39001—Road traffic safety management
- ISO 50001—Energy Audit
- AS 9100—aerospace industry implementation of ISO 9000/1
- Annex SL
- Conformity assessment—Containing ISO published standards
- International Accreditation Forum
- International Organization for Standardization
- ISO/TC 176
- List of ISO standards
- Management system
- Quality management
- Quality management system
- Test management
- Verification and Validation
- Poksinska, Bozena; Dahlgaard, Jens Jörn; Antoni, Marc (2002). "The state of ISO 9000 certification: A study of Swedish organizations". The TQM Magazine. 14 (5): 297. doi:10.1108/09544780210439734.
- Tsim, Y.C.; Yeung, V.W.S.; Leung, Edgar T.C. (2002). "An adaptation to ISO 9001:2000 for certified organizations". Managerial Auditing Journal. 17 (5): 245. doi:10.1108/02686900210429669. hdl:10397/60545.
- Quality Management Principles (PDF). International Organization for Standardization. 2015. ISBN 978-92-67-10650-2.
- Beattie, Ken R. (1999). "Implementing ISO 9000: A study of its benefits among Australian organizations". Total Quality Management. 10: 95–106. doi:10.1080/0954412998090.
- "ISO 9000 - Quality management". International Organization for Standardization.
- "ISO 9000 Quality Management". ISO. International Organization for Standardization. Retrieved 22 May 2017.
- Clifford, Stephanie (1 May 2005). "So many standards to follow, so little payoff". Inc.
- Wilson, Ian (4 June 2010). "Is ISO the way to go? Some say, Not So". The Westgard Rules.
- Seddon, John (19 November 2000). "The 'quality' you can't feel". The Observer.
- "A Brief History of ISO 9000: Where did we go wrong?". The Case Against ISO 9000 (2nd ed.). Oak Tree Press. 2000. ISBN 978-1-86076-173-7.
- "BSOL Academic - BSI Group". Bsieducation.org.
- "Standards, Training, Testing, Assessment and Certification - BSI Group". Bsigroup.com.
- Stamatis, D H (8 August 1995). Understanding ISO 9000 and Implementing the Basics to Quality. CRC Press. ISBN 9780824796563. Retrieved 14 February 2018.
- Manders, Basak. "DOES ISO 9001 PAY? - ANALYSIS OF 42 STUDIES". iso.org. ISO. Retrieved 27 September 2019.
- "BSI Case Study on the Benefits of ISO 9000 Registration - Interstate Worldwide Relocation" (PDF). BSi Management System. Archived from the original (PDF) on 19 May 2006.
- Corbett, Montes-Sancho, Kirsch. "The Financial Impact of ISO 9000 Certification in the US: An Empirical Analysis". iioc.org. Independent International Organisation for Certification. Retrieved 27 September 2019.CS1 maint: multiple names: authors list (link)
- Corbett, Charles J.; Montes-Sancho, María J.; Kirsch, David A. (2005). "The Financial Impact of ISO 9000 Certification in the United States: An Empirical Analysis" (PDF). Management Science. 51 (7): 1607–16. doi:10.1287/mnsc.1040.0358. hdl:10016/7750. JSTOR 20110397. Archived from the original (PDF) on 9 January 2007.
- Heras, Iñaki; Dick, Gavin P.M.; Casadesús, Martí (2002). "ISO 9000 registration's impact on sales and profitability: A longitudinal analysis of performance before and after accreditation" (PDF). International Journal of Quality & Reliability Management. 19 (6): 774. doi:10.1108/02656710210429618.
- Naveh, Eitan; Marcus, Alfred (2007). "Financial performance, ISO 9000 standard and safe driving practices effects on accident rate in the U.S. Motor carrier industry". Accident Analysis & Prevention. 39 (4): 731–42. doi:10.1016/j.aap.2006.11.004. PMID 17166474.
- Sharma, Divesh S. (2005). "The association between ISO 9000 certification and financial performance". The International Journal of Accounting. 40 (2): 151–172. doi:10.1016/j.intacc.2005.01.011.
- Chow-Chua, Clare; Goh, Mark; Wan, Tan Boon (2003). "Does ISO 9000 certification improve business performance?". International Journal of Quality & Reliability Management. 20 (8): 936. doi:10.1108/02656710310493643.
- Rajan, Murli; Tamimi, Nabil (2003). "Payoff to ISO 9000 Registration". The Journal of Investing. 12: 71–77. doi:10.3905/joi.2003.319536. S2CID 154978556.
- Liang, Lo. "The difference in the perceived benefits between firms that maintain ISO certification and those that do not". Researchgate.net. International Journal of Production Research. Retrieved 13 December 2019.
- Buttle, Francis (1997). "ISO 9000: Marketing motivations and benefits". International Journal of Quality & Reliability Management. 14 (9): 936–47. doi:10.1108/02656719710186867.
- Santos, Leticia; Escanciano, Carmen (2002). "Benefits of the ISO 9000:1994 system: Some considerations to reinforce competitive advantage". International Journal of Quality & Reliability Management. 19 (3): 321–44. doi:10.1108/02656710210415703.
- Alcorn, Janice E. (26 March 2008). "The Benefits of ISO 9000 Certification". A Collection of Papers Presented at the 55th Conference on Glass Problems: Ceramic Engineering and Science Proceedings. Ceramic Engineering and Science Proceedings. 16. Hoboken, NJ, USA: John Wiley & Sons, Inc. pp. 15–18. doi:10.1002/9780470314661.ch3. ISBN 978-0-470-31466-1. ISSN 1940-6339.
- The ISO Survey of ISO 9001:2000 and ISO 14001 Certificates – 2003 (PDF), International Organization for Standardization, p. 17, archived from the original (PDF) on 17 January 2012, retrieved 20 November 2015
- The ISO Survey – 2008 (PDF), International Organization for Standardization, p. 11, archived from the original (PDF) on 5 August 2011, retrieved 20 November 2015
- The ISO Survey of ISO 9001:2000 and ISO 14001 Certificates – 2003 (PDF), International Organization for Standardization, pp. 1–2, archived from the original (PDF) on 31 October 2015, retrieved 20 November 2015
- The ISO Survey of Management System Standard Certifications – 2011 (PDF), International Organization for Standardization, p. 1, archived from the original (PDF) on 27 January 2013, retrieved 20 November 2015
- The ISO Survey of Management System Standard Certifications – 2014 (data table), International Organization for Standardization, retrieved 16 September 2016
- The ISO Survey of Management System Standard Certifications – 2014 (PDF), International Organization for Standardization, p. 1, retrieved 20 November 2015
- Source: ISO Survey 2010
- "ISO quality management principles" (PDF). Iso.org. Retrieved 16 December 2016.
- "Using Quality Objectives to Drive Strategic Performance Improvement". Qualitydigest.com. Retrieved 18 August 2017.
- "OBJECTIVE OF THE SAMPLE MANUAL" (DOC). Isopocketguides.com. Retrieved 18 August 2017.
- ISO/IEC 17021: "Conformity assessment. Requirements for bodies providing audit and certification of management systems" (2011)
- ISO/IEC 17011: "Conformity assessment. General requirements for accreditation bodies accrediting conformity assessment bodies" (2004).
- "ISO/IEC 17021-1:2015 Conformity assessment — Requirements for bodies providing audit and certification of management systems — Part 1: Requirements". www.iso.org. ISO. Retrieved 9 April 2020.
- "25 Years of ISO 9000 | A View from the Q". ASQ. Retrieved 20 April 2016.
- Bacivarov, Ioan (1 October 2015). "The Standard ISO 9001:2015 - A Milestone in the Evolution of Quality Management" (PDF). Asigurarea Calitatii - Quality Assurance. Retrieved 14 October 2015.
- "Infographic: ISO 9001:2015 vs. 2008 revision – What has changed?". Maritime Cyprus. Retrieved 9 October 2018.
- "ISO 9001 Quality management". ISO. Retrieved 18 December 2018.
- "ISO 9001:2015 - Just published!". ISO. Retrieved 2 October 2015.
- "BSI obtains first global accreditation from ANAB to certify organizations to the new Quality Management standard ISO 9001:2015". BSI. Retrieved 4 September 2015.
- Sroufe, Robert and Sime Curkovic, "An examination of ISO 9000:2000 and supply chain quality assurance." Journal of Operations Management, Volume 26, Issue 4, July 2008, Pages 503-520
- Wade, Jim (May–June 2002). "Is ISO 9000 really a standard?" (PDF). ISO Management Systems. Archived from the original (PDF) on 7 July 2006. Retrieved 10 May 2006.
- Barnes, Frank (Spring 2000). "Good Business Sense Is the Key to Confronting ISO 9000". Review of Business. Archived from the original on 27 February 2009.
- "Debunking the myths" (PDF). Iso.org. International Organization for Standardization. Retrieved 7 July 2017.
- Dalgleish, Scott (5 May 2003). "Probing the Limits - ISO 9000: More Hindrance Than Help". Quality Magazine. Retrieved 10 June 2015.
- Henricks, Mark (December 2001). "ISO a GO-Go". Entrepreneur Magazine.
- Dalgleish, Scott (1 April 2005). "Probing the Limits: ISO 9001 Proves Ineffective". Quality Magazine. Retrieved 6 June 2015.
- "The ISO Survey – 2005" (PDF). Abridged version. ISO. 2005.
- Abrahamson, E. (1996). "Management Fashion". The Academy of Management Review. 21 (1): 254–285. doi:10.5465/amr.1996.9602161572. JSTOR 258636.
- Dytz, Andre (2019). WHY DO ISO 9001 COMPANIES FAIL?A reflection for board members, consultants and certification bodies
- Cândido, Carlos J.F.; Coelho, Luís M.S.; Peixinho, Rúben M.T. (4 January 2016). "The financial impact of a withdrawn ISO 9001 certificate". International Journal of Operations & Production Management. 36 (1): 23–41. doi:10.1108/IJOPM-11-2014-0540. hdl:10400.1/7379. ISSN 0144-3577.
- Lo, Liang Kang; Chang, Dong Shang (15 April 2007). "The difference in the perceived benefits between firms that maintain ISO certification and those that do not". International Journal of Production Research. 45 (8): 1881–1897. doi:10.1080/00207540600733709. ISSN 0020-7543.
- Sansalvador, Manuel E.; Brotons, José M. (2 December 2015). "Valuation of the option of abandoning ISO 9001 certification: an empirical study in Spain". Total Quality Management & Business Excellence. 26 (11–12): 1255–1268. doi:10.1080/14783363.2014.929231. ISSN 1478-3363.
- Cândido, Carlos J.F.; Coelho, Luís M.S.; Peixinho, Rúben M.T. (5 June 2019). "Why firms lose their ISO 9001 certification: Evidence from Portugal". Total Quality Management & Business Excellence. 32 (5–6): 632–651. doi:10.1080/14783363.2019.1625266. hdl:10400.1/14067. ISSN 1478-3363.
- Simon, Alexandra; Kafel, Piotr (1 October 2018). "Reasons for decertification of ISO 9001. An empirical study". Innovar. 28 (70): 69–80. doi:10.15446/innovar.v28n70.74449. ISSN 2248-6968.
- Chiarini, Andrea; Brunetti, Federico (3 October 2019). "What really matters for a successful implementation of Lean production? A multiple linear regression model based on European manufacturing companies". Production Planning & Control. 30 (13): 1091–1101. doi:10.1080/09537287.2019.1589010. ISSN 0953-7287.
- Ferreira, Luís M. F. R.; Cândido, Carlos J. F. (1 March 2021). "Factors influencing firm propensity for ISO 9001 withdrawal: Evidence on decertification tendency and antecedents". International Journal of Production Economics. 233: 108024. doi:10.1016/j.ijpe.2020.108024. ISSN 0925-5273.
- Alič, Milena (5 June 2014). "Impact of ISO 9001 certification cancellation on business performance: a case study in Slovenian organisations". Total Quality Management & Business Excellence. 25 (7–8): 790–811. doi:10.1080/14783363.2014.906107. ISSN 1478-3363.
- Bamford, Robert; Deibler, William (2003). ISO 9001: 2000 for Software and Systems Providers: An Engineering Approach (1st ed.). CRC-Press. ISBN 0-8493-2063-1, ISBN 978-0-8493-2063-7
- Naveh, E.; Marcus, A. (2004). "When Does the ISO 9000 Quality Assurance Standard Lead to Performance Improvement? Assimilation and Going Beyond". IEEE Transactions on Engineering Management. 51 (3): 352. doi:10.1109/TEM.2004.830864. S2CID 19656993.
- Naveh, E. (1999). ISO 9000 survey'99: An analytical tool to assess the costs, benefits and savings of ISO 9000 registration. QSU Publishing Company.
- An abstract of the 2007's ISO survey of certificates
- An abstract of the 2008's ISO survey of certificates
- Bacivarov, Ioan (Coordinating Editor) (2015). Special issue "ISO9001:2015". Asigurarea Calitatii - Quality Assurance 21 (83), ISSN 1224-5410