Alexandria, VA, October 15, 2015 --(PR.com
)-- With the recent release of the next iteration of the world’s most widely used quality management system standard, Virginia-based C2C SmartCompliance has successfully validated the firm’s My Risk Assessor™ product to be in full conformance with the new risk requirements contained in ISO 9001:2015.
“It’s very confusing for organizations that have never undertaken the risk process before, or are new to the risk process,” explained Steve Crutchley, founder and CEO of C2C SmartCompliance, which was recently named by CIO Review Magazine as one of the 20 most promising Enterprise Risk Management Solution Providers. “Our product provides the world’s estimated 1.2 million users of ISO 9001 with an automated and affordable solution to meet the new quality management system requirements on risk.”
C2C clients will receive a free risk methodology document that is consistent with the new risk requirements that have been added to ISO 9001:2015, as well as with international guidance standard “ISO 31000:2009 Risk Management — Principles and Guidelines.”
An analysis of ISO 9001:2015 by C2C SmartCompliance reveals that the document references the term “risk” in no fewer than 13 separate areas.
“We’ve had a steady stream of calls from worried clients and prospective clients asking us to explain the multiple references to ‘risk’ in ISO 9001:2015,” according to Crutchley. “But when you read the standard, it doesn’t actually say what you’ve got to do. My Risk Assessor™ uses C2C’s proprietary approach built on more than 25 years of actual field experience in manufacturing, service and highly regulated industries like healthcare to achieve conformance in a smart, elegant manner.”
Though My Risk Assessor™ is certainly not the only way that companies can meet the new risk requirements, Crutchley said that the product provides a document trail for auditors that will save both time and resources in demonstrating conformance.
“We believe that our solution is one of the better ones. If people want to do it on a spreadsheet they can, but it’s not sustainable,” Crutchley explained. “Without giving away the secret sauce, we’ve turned the standard into a risk model. We can also take the quality principles that underpin the standard and include them in My Risk Assessor™ if our clients opt for that approach.”
Unlike finance, risk in the context of ISO 9001:2015 revolves around the organization’s quality management practices. “We’ve created in My Risk Assessor™ the capability to look at risk in multiple levels,” explained Crutchley. “It’s at the working levels, the levels people need to understand — people, process and technology.”
Both the hosted and enterprise editions of My Risk Assessor™ are distinguished by a low entry price point and high return on investment. Users also have the flexibility to map a business impact analysis to a specific asset, owner, requirement or regulation. Moreover, the product has the additional capability of generating an automated statement of applicability (SoA), automated risk treatment plans and gap analyses.
Compliance Assessment Professional™ and Compliance Mapper™ include the basic functionality of My Risk Assessor,™ but represent more encompassing solutions that automate the tedious task of regulatory compliance by mapping detailed relationships among requirements and identifying critical areas.
These products give ISO 9001 users the added capability of automating their corrective action processes. As new requirements are added and removed, users can see any potential changes that may affect policies, procedures and workflow — before changes are implemented. This gives the organization much-needed time to make any necessary adjustments.