Sue is an experienced quality management practitioner, with more than 25 years of extensive involvement in the establishment, management, and auditing of quality management systems, as well as quality and auditor training. She has been involved with the development or integration of management systems against various standards, such as ISO 9001, ISO 27001, ISO 20000, FSC, TL9000 and ISO 17021 (for certification bodies).
While a lead auditor for several certification bodies, she gained extensive experience across multiple industries.
Sue previously qualified as a 6-Sigma Green Belt, TL9000 and ISO 14001 auditor, and has also been involved in integrated management systems auditing, FSC, EFQM and ITIL. Her training background includes being an accredited trainer for the 5-day ISO 9001 lead auditor training course. She spent more than 15 years working for an international telecommunications company, and as part of a small global team developed and improved the global quality management system and internal training.
InfoSec Insider
Season
1
, Episode
7
ISO 9001 Implementation
In this episode of InfoSec Insider, Sue West, one of URM’s Senior Consultants, breaks down 2 of her ‘golden rules’ for successful implementation of ISO 9001, the International Standard for Quality Management Systems (QMS’). Sue leverages more than 25 years of experience establishing, managing and auditing QMS’ to provide key insights on:
- The meaning of top management ‘leadership and commitment’ in the context of ISO 9001 and why it is important to the success of an ISO 9001 implementation project
- How management can effectively demonstrate leadership and commitment to the QMS when implementing ISO 9001
- The importance of ensuring that the QMS is tailored to the organisation and its operations
- What the ‘Process Approach’ means and how it can be used to build an effective, ISO 9001-conformant QMS.
InfoSec Insider
Season
1
, Episode
1
Comparison of ISO 9001 and ISO 27001
Sue West offers helpful advice and guidance on how to integrate multiple management systems which are conformant to/certified against ISO standards, with a particular focus on integrating an ISO 9001 quality management system (QMS) and an ISO 27001 information security management system (ISMS).