Implementation, maintenance, training, and knowledge products for Information Security Management Systems (ISMS) according to the ISO 27001 standard.
Automate your ISMS implementation and maintenance with the Risk Register, Statement of Applicability, and wizards for all required documents.
All required policies, procedures, and forms to implement an ISMS according to ISO 27001.
Train your key people about ISO 27001 requirements and provide cybersecurity awareness training to all of your employees.
Accredited courses for individuals and security professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 and the ISMS using Advisera’s proprietary AI-powered knowledge base.
Compliance and training products for critical infrastructure organizations for the European Union’s Network and Information Systems cybersecurity directive.
All required policies, procedures, and forms to comply with the NIS 2 cybersecurity directive.
Company-wide training program for employees and senior management to comply with Article 20 of the NIS 2 cybersecurity directive.
Compliance and training products for personal data protection according to the European Union’s General Data Protection Regulation.
All required policies, procedures, and forms to comply with the EU GDPR privacy regulation.
Accredited courses for individuals and privacy professionals who want the highest-quality training and certification.
Implementation, training, and knowledge products for Quality Management Systems (QMS) according to the ISO 9001 standard.
All required policies, procedures, and forms to implement a QMS according to ISO 9001.
Accredited courses for individuals and quality professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 9001 and the QMS using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for Environmental Management Systems (EMS) according to the ISO 14001 standard.
All required policies, procedures, and forms to implement an EMS according to ISO 14001.
Accredited courses for individuals and environmental professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 14001 and the EMS using Advisera’s proprietary AI-powered knowledge base.
Implementation and training products for Occupational Health & Safety Management Systems (OHSMS) according to the ISO 45001 standard.
All required policies, procedures, and forms to implement an OHSMS according to ISO 45001.
Accredited courses for individuals and health & safety professionals who want the highest-quality training and certification.
Implementation and training products for medical device Quality Management Systems (QMS) according to the ISO 13485 standard.
All required policies, procedures, and forms to implement a medical device QMS according to ISO 13485.
Accredited courses for individuals and medical device professionals who want the highest-quality training and certification.
Compliance products for the European Union’s Medical Device Regulation.
All required policies, procedures, and forms to comply with the EU MDR.
Implementation products for Information Technology Service Management Systems (ITSMS) according to the ISO 20000 standard.
All required policies, procedures, and forms to implement an ITSMS according to ISO 20000.
Implementation products for Business Continuity Management Systems (BCMS) according to the ISO 22301 standard.
All required policies, procedures, and forms to implement a BCMS according to ISO 22301.
Implementation products for testing and calibration laboratories according to the ISO 17025 standard.
All required policies, procedures, and forms to implement ISO 17025 in a laboratory.
Implementation products for automotive Quality Management Systems (QMS) according to the IATF 16949 standard.
All required policies, procedures, and forms to implement an automotive QMS according to IATF 16949.
Implementation products for aerospace Quality Management Systems (QMS) according to the AS9100 standard.
All required policies, procedures, and forms to implement an aerospace QMS according to AS9100.
Implementation, maintenance, training, and knowledge products for consultancies.
Handle multiple ISO 27001 projects by automating repetitive tasks during ISMS implementation.
All required policies, procedures, and forms to implement various standards and regulations for your clients.
Organize company-wide cybersecurity awareness program for your client’s employees and support a successful cybersecurity program.
Accredited ISO 27001, 9001, 14001, 45001, and 13485 courses for professionals who want the highest-quality training and recognized certification.
Get instant answers to any questions related to ISO 27001 (ISMS), ISO 9001 (QMS), and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Find new clients, potential partners, and collaborators and meet a community of like-minded professionals locally and globally.
Implementation, maintenance, training, and knowledge products for the IT industry.
Automate your ISMS implementation and maintenance with the Risk Register, Statement of Applicability, and wizards for all required documents.
Documentation to comply with ISO 27001 (cybersecurity), ISO 22301 (business continuity), ISO 20000 (IT service management), GDPR (privacy), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and security professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 and the ISMS using Advisera’s proprietary AI-powered knowledge base.
Compliance, training, and knowledge products for essential and important organizations.
Documentation to comply with NIS 2 (cybersecurity), GDPR (privacy), ISO 27001 (cybersecurity), and ISO 22301 (business continuity).
Company-wide training program for employees and senior management to comply with Article 20 of the NIS 2 cybersecurity directive.
Accredited courses for individuals and security professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 and the ISMS using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for manufacturing companies.
Documentation to comply with ISO 9001 (quality), ISO 14001 (environmental), and ISO 45001 (health & safety), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 9001 (QMS) and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for transportation & distribution companies.
Documentation to comply with ISO 9001 (quality), ISO 14001 (environmental), and ISO 45001 (health & safety), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 9001 (QMS) and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for schools, universities, and other educational organizations.
Documentation to comply with ISO 27001 (cybersecurity), ISO 9001 (quality), and GDPR (privacy).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 (ISMS) and ISO 9001 (QMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, maintenance, training, and knowledge products for telecoms.
Automate your ISMS implementation and maintenance with the Risk Register, Statement of Applicability, and wizards for all required documents.
Documentation to comply with ISO 27001 (cybersecurity), ISO 22301 (business continuity), ISO 20000 (IT service management), GDPR (privacy), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and security professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 and the ISMS using Advisera’s proprietary AI-powered knowledge base.
Implementation, maintenance, training, and knowledge products for banks, insurance companies, and other financial organizations.
Automate your ISMS implementation and maintenance with the Risk Register, Statement of Applicability, and wizards for all required documents.
Documentation to comply with ISO 27001 (cybersecurity), ISO 22301 (business continuity), GDPR (privacy), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and security professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 and the ISMS using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for local, regional, and national government entities.
Documentation to comply with ISO 27001 (cybersecurity), ISO 9001 (quality), GDPR (privacy), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 (ISMS) and ISO 9001 (QMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for hospitals and other health organizations.
Documentation to comply with ISO 27001 (cybersecurity), ISO 9001 (quality), ISO 14001 (environmental), ISO 45001 (health & safety), NIS 2 (critical infrastructure cybersecurity) and GDPR (privacy).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 (ISMS), ISO 9001 (QMS), and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for the medical device industry.
Documentation to comply with MDR and ISO 13485 (medical device), ISO 27001 (cybersecurity), ISO 9001 (quality), ISO 14001 (environmental), ISO 45001 (health & safety), NIS 2 (critical infrastructure cybersecurity) and GDPR (privacy).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 27001 (ISMS), ISO 9001 (QMS), and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for the aerospace industry.
Documentation to comply with AS9100 (aerospace), ISO 9001 (quality), ISO 14001 (environmental), and ISO 45001 (health & safety), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 9001 (QMS) and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for the automotive industry.
Documentation to comply with IATF 16949 (automotive), ISO 9001 (quality), ISO 14001 (environmental), and ISO 45001 (health & safety), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 9001 (QMS) and ISO 14001 (EMS) using Advisera’s proprietary AI-powered knowledge base.
Implementation, training, and knowledge products for laboratories.
Documentation to comply with ISO 17025 (testing and calibration laboratories), ISO 9001 (quality), and NIS 2 (critical infrastructure cybersecurity).
Company-wide cybersecurity awareness program for all employees, to decrease incidents and support a successful cybersecurity program.
Accredited courses for individuals and quality professionals who want the highest-quality training and certification.
Get instant answers to any questions related to ISO 9001 and the QMS using Advisera’s proprietary AI-powered knowledge base.
AS9100 is a standard that sets guidelines for implementing a Quality Management System (QMS) for the aviation, space, and defense organizations. The standard is produced by the International Aerospace Quality Group, and it builds on the requirements for a QMS as defined in the ISO 9001 Quality Management System requirements.
What is AS9100? AS9100 Rev D is an aerospace standard (AS) that was released by the International Aerospace Quality Group (IAQG). It is based on ISO 9001, the internationally recognized standard for Quality Management Systems that is published by the International Organization for Standardization (ISO). Both AS9100 and ISO 9001 are standards that include requirements for implementing a Quality Management System (QMS) in your organization; however, the AS9100 standard is modified for aviation, space, and defense organizations.
The AS9100 standard is a set of guidelines for implementing a Quality Management System for use by aviation, space, and defense organizations (often referred to as the aerospace industry). The standard is produced by the International Aerospace Quality Group, which includes representatives from aerospace companies worldwide. The document is sometimes mistakenly referred to as “ISO 9100” or “ISO AS9100”; however, AS9100 is not maintained by the International Organization for Standardization. Instead, it builds on the requirements for a Quality Management System as defined in the ISO 9001 Quality Management System requirements.
While the ISO 9001 standard is generally accepted by any industry around the world, AS9100 is specifically modified for aerospace companies, including some regulatory requirements. What the IAQG has done is to take the ISO 9001:2015 requirements in their entirety, and then add in specific aerospace Quality Management System requirements without removing any existing requirements, thereby creating the AS9100 Revision D standard; these additions appear in bold and italics in the document.
For a better understanding of the requirements of AS9100 Rev D, see this AS9100 Rev D PDF free white paper: Clause-by-clause explanation of AS9100 Rev D.
The AS9100 standard was first released in 1999, when it was based on the ISO 9001:1994 standard. Updates to the standard were:
The current version of the document, released in 2016, is AS9100 Rev D, which is updated to incorporate the requirements of the ISO 9001 version issued in 2015.
In short, yes. AS9100 is based on the ISO 9001 standard, which, as mentioned above, is an internationally recognized standard released by the International Organization for Standardization. In addition, the International Aerospace Quality Group that releases AS9100 is an internationally recognized group with representatives from companies worldwide.
The aerospace community has specific requirements that need to be taken into account, and the QMS needs to incorporate these critical requirements. AS9100 is for aerospace suppliers, and your customers want to know that you are taking the steps necessary not only to meet these aerospace-specific requirements, but to improve the quality of your products and services and to enhance customer satisfaction. Implementing a QMS according to the requirements of AS9100 can do just that. By managing, controlling, and auditing your own processes, as well as having an outside certification body verifying that your QMS meets the requirements, your customers can know that everything is well in hand.
As the internationally recognized standard for aerospace Quality Management Systems, AS9100 is based on seven quality management principles that are recognized as being necessary to make a Quality Management System work. Your customers will be content to know that your QMS is also based on these principles. To find out more about these principles, which are also applicable to ISO 9001, see this article on The seven quality management principles behind ISO 9001 requirements.
One of the biggest benefits of AS9100 certification is that every certified company must be included on the Online Aerospace Supplier Information System (OASIS) maintained by the IAQG. This is a searchable database that is available to any company in the aerospace industry that is looking at supplier selection and surveillance, and it includes not only information about each company, but also contact information for purchasing. Since OASIS is used by the industry to find suppliers, it is like a free marketing tool for your company, used throughout the aerospace industry.
When considering AS9100 vs. ISO 9001, it is the additional aerospace requirements that you want to focus on. The AS9100 standard follows the clauses in the ISO 9001 standard exactly. The content of the standard is identical to that of ISO 9001 with no deletions; however, additional requirements have been added that relate to the needs of stakeholders in the aerospace industry. In order to make the additions easy to recognize, they are in bold and italics in the document.
The main additions in AS9100 occur in the primary sections on “Product Realization” and “Measurement, Analysis and Improvement.” The main sections added are for Project Management, Risk Management, Configuration Management, and Control of Work Transfers. Additional focus is placed on product safety, management of counterfeit parts, ethical behavior, and human factors. Additionally, there are many updates to the requirements for the Design and Development, Purchasing, Production, and Non-conforming Product processes.
The main point to remember on this standard is that it is designed by the aerospace industry specifically for aerospace companies and has little application outside this industry.
For more on some of the aerospace specifics added to the standard, see the article: Five special aerospace terms in AS9100 Rev D.
In explaining AS9100, the term “Quality Management System” has been used. A Quality Management System is a collection of the company’s policies, processes, documented procedures, and records that define how the company will operate in order to provide products and services to customers. The QMS is much more than just quality assurance. You need to tailor the QMS to the needs of your company, and the AS9100 standard gives you a set of guidelines to help make sure that you don’t miss any important elements so that your aerospace QMS can be successful.
The AS9100 audit is a critical part of the Quality Management System processes. In general, an audit involves collecting evidence of what is happening in a process, and then comparing this to the planned arrangements for that process. The intent of the audit is to verify conformance when the actual activities match the planned activities; however, if processes are not happening as planned, this is identified. The audit process uses interviews, observation, and review of documentation to collect this audit evidence.
Part of the QMS is to include internal audits, where the organization hires people to conduct this audit of the processes and report back to the company how well the processes are performing against the plans. Many companies will also hire independent third-party certification auditors to compare their processes against the AS9100 standard and issue a certification that all the standard requirements are met. This is called AS9100 certification.
Both internal auditors and certification auditors require AS9100 training to learn and demonstrate the skills and knowledge required to audit the management system.
AS9100 certification is the independent verification of the QMS against the AS9100 standard’s requirements by the third-party certification body mentioned above. Certification allows your customers to know that they do not need to audit your QMS on their own, because you have an independent party that has already audited your system against the AS9100 requirements and has certified that it is compliant.
Successful completion of the AS9100 certification audit will result in the certification body issuing a certificate that you can distribute as objective proof that you comply with the standard.
After implementing the requirements of AS9100, you will need to operate your Quality Management System before the certification audit can take place. The reason you need to operate your QMS is to allow you to do the following important activities before certification:
Internal audits – Your internal audit process allows you to check that all of your processes are meeting the planned arrangements and, if not, to find the root cause of any problems and correct them. This can help to find and correct any hidden weaknesses in your QMS.
Management reviews – As part of their commitment to the QMS, management needs to review the system to ensure it is effectively and efficiently implemented. This allows them to assign resources appropriately.
Corrective action – When a problem is found in your QMS during use, you need to find the root cause and correct it so that the problem will not recur.
The certification body process is divided into two stages:
Documentation Audit (Stage one) – Here, the auditors will review your QMS and ensure that your documentation meets the requirements of AS9100.
Certification Audit (Stage two) – In this step, the auditors will conduct interviews with employees and review records in order to determine that the evidence provided shows that your QMS processes are giving results that match the planned arrangements for each process.
For some help choosing the right certification body, see this checklist on: List of questions to ask an AS9100 Rev D certification body.
When calculating the AS9100 certification cost, you will need to understand how long you will need to implement the system before you can have the certification audit. The certification time for AS9100 will differ from company to company, because every company is different. For instance, if design and development is included in your QMS, this often takes longer to implement than a company without this process. Other factors that increase the time of implementation in an aerospace company is the complexity of the configuration management system, the counterfeit part management system, and the implementation of product safety requirements.
For some help identifying how long it might take to implement AS9100 in your organization, you can use a gap analysis tool that compares what you already have in place against the requirements. A simple tool can be found here: AS9100 Gap Analysis Tool.
One of the support standards that is available to help with implementing the aerospace processes of AS9100 is AS9102. In clause 8.5.1.3 of AS9100 Rev D, there is a requirement for production process validation, often called first article inspection (FAI), where you take a part from the first production run to ensure that your production processes provide a product that meets all the design needs.
AS9102, Aerospace First Article Inspection Requirements, is a standard that can be used to satisfy the above requirement, as it provides a best practice process for performing this first article inspection. AS9102 also includes checklists and forms that can be used as part of this process. It is important to note that the use of AS9102 is not mandated by AS9100.
You can learn more about the link between AS9102 and AS9100 in the article: How Do AS9101, AS9102, & AS9103 Relate to AS9100 Rev D?
You can learn more about first article inspection in the article: How does First Article Inspection fit into AS9100 Rev D?
AS9120 is titled Quality Management Systems – Requirements for Aviation, Space and Defense Distributors. A company that is a distributor, that does not produce products but rather buys products from others and distributes them, has different needs than other organizations. The AS9120 standard is specifically written for these companies who may procure products and split batches into smaller quantities, or procure parts and then perform customer or regulatory controlled processes (such as inspection or testing) before delivery.
You can find out more about the link between AS9100 and AS9120 in the article: How do AS9110 & AS9120 relate to AS9100 Rev D?
The AS9102 standard follows the same format as AS9100, mirroring the ISO 9001:2015 standard clauses, but there are some additions that are in AS9100 that are not included in AS9120, such as operational risk, product safety, and first article inspection. These processes are seen as not necessary for the distributor organization.
Likewise, there are some additional definitions and processes added for the distributor specifically. These include definitions for certificate of conformity and splitting of batches, and additional requirements for a process to prevent the release of suspected unapproved parts.
You can find out more information on the differences between AS9100 and AS9120 in the article: How does AS9120 differ from AS9100?
The current version of the AS9100 standard is AS9100D, or AS9100 Rev D, which is updated to incorporate the requirements of the ISO 9001 version issued in 2015. The previous version of the document was AS9100C, or AS9100 Rev C, which incorporated the requirements of the ISO 9001 version issued in 2008. All of the changes from ISO 9001:2008 to ISO 9001:2015 were incorporated into the change to AS9100 Rev D.
Some of the main changes are the inclusion of context or the organization, interested parties, and risks and opportunities from the ISO 9001:2015 standard, along with the removal of preventive action. Also added are requirements for prevention of counterfeit parts, more focus on human factors, and assessment of product safety, which were added from the Rev C version of AS9100.
To learn about documents and their structure, download this free AS9100 PDF white paper: AS9100D List of mandatory documents.