Today, Knowledge Management today are not limited merely to : (A) 'knowing' or 'reading lots of books/scholarly articles' or (B) data mining, analysis, decision making, preventive actions, or (C) some Human Resources Management issue or (D) some ICT issue. Knowledge Management is about putting your knowledge, skills and competency into practice and most important IT WORKS! For you and your company or your business (Nik Zafri)

The information comprised in this section is not, nor is it held out to be, a solicitation of any person to take any form of investment decision. The content of the nikzafri.blogspot.com does not constitute advice or a recommendation by nikzafri.blogspot.com and should not be relied upon in making (or refraining from making) any decision relating to investments or any other matter. You should consult your own independent financial adviser and obtain professional advice before exercising any investment decisions or choices based on information featured in this nikzafri.blogspot.com can not be held liable or responsible in any way for any opinions, suggestions, recommendations or comments made by any of the contributors to the various columns on nikzafri.blogspot.com nor do opinions of contributors necessarily reflect those of http://www. nikzafri.blogspot.com

In no event shall nikzafri.blogspot.com be liable for any damages whatsoever, including, without limitation, direct, special, indirect, consequential, or incidental damages, or damages for lost profits, loss of revenue, or loss of use, arising out of or related to the nikzafri.blogspot.com or the information contained in it, whether such damages arise in contract, negligence, tort, under statute, in equity, at law or otherwise.




Email: nikzafri@yahoo.com

* Kelantanese, Alumni of Sultan Ismail College Kelantan (SICA), Diploma (Management), IT Competency Cert, Certified Written English Professional US. Has participated in many seminars/conferences(local/international) in the capacity of trainer/lecturer and participant. Affiliations :- Council Member of Gerson Lehrman Group NY, Institute of Quality Malaysia, Malaysian Institute of Management, Malaysian Occupational Safety and Health Professionals Association, Auditor ISO 9000 IRCAUK, Auditor OHSAS 18000 (SIRIM and STS) /EMS ISO 14000:2004 and Construction Quality Assessment System (CONQUAS, CIDB (Now BCA) Singapore)

* Possesses 20 years experience/hands-on in the multi-modern management & technical disciplines (systems & methodologies) such as Knowledge Management (Hi-Impact Management/ICT Solutions), Quality (TQM/ISO), Safety Health Environment, Civil & Building (Construction), Manufacturing, Motivation & Team Building, HR, Marketing/Branding, Business Process Reengineering, Economy/Stock Market, Contracts/Project Management, Finance & Banking, etc. He was employed to international bluechips involving in national/international megaprojects such as Balfour Beatty Construction/Knight Piesold & Partners UK, MMI Insurance Group Australia, Hazama Corporation (Hazamagumi) Japan (with Mitsubishi Corporation, JA Jones US and Ho-Hup) and Sunway Construction Berhad (The Sunway Group of Companies). Among major projects undertaken : Pergau Hydro Electric Project, KLCC Petronas Twin Towers, LRT Tunnelling, KLIA, Petronas Refineries Melaka, Putrajaya Government Complex, Sistem Lingkaran Lebuhraya Kajang (SILK) etc. Once serviced SMPD Management Consultants as Associate Consultant cum Lecturer for Diploma in Management, Institute of Supervisory Management UK/SMPD JV. Currently – Associate/Visiting Consultants/Facilitators, Advisors for leading consulting firms (local and international) including project management. To name a few – TIJ Consultants Group (Malaysia and Singapore), LSB Manufacturing Solutions Sdn. Bhd. and many others.

* Ex-Resident Weekly Columnist of Utusan Malaysia (1995-1998) and have produced more than 100 articles related to ISO-9000– Management System and Documentation Models, TQM Strategic Management, Occupational Safety and Health (now OHSAS 18000) and Environmental Management Systems ISO 14000. His write-ups/experience has assisted many students/researchers alike in module developments based on competency or academics and completion of many theses. Once commended by the then Chief Secretary to the Government of Malaysia for his diligence in promoting and training the civil services (government sector) based on “Total Quality Management and Quality Management System ISO-9000 in Malaysian Civil Service – Paradigm Shift Scalar for Assessment System”

Among Nik Zafri’s clients were Adabi Consumer Industries Sdn. Bhd, The HQ of Royal Customs and Excise Malaysia, Veterinary Services Dept. Negeri Sembilan, The Institution of Engineers Malaysia, Corporate HQ of RHB, NEC Semiconductor - Klang Selangor, Prime Minister’s Department Malaysia, State Secretarial Office Negeri Sembilan, Hidrological Department KL, Asahi Kluang Johor, Tunku Mahmood (2) Primary School Kluang Johor, Consortium PANZANA, Information Technology Training Centre (ITTC) – Authorised Training Center (ATC) – University of Technology Malaysia (UTM) Kluang Branch Johor, Kluang General Hospital Johor, Kahang Timur Secondary School Johor, Sultan Abdul Jalil Secondary School Kluang Johor, Guocera Tiles Industries Kluang Johor, MNE Construction (M) Sdn. Bhd. Kota Tinggi Johor, UITM Shah Alam Selangor, Telesystem Electronics/Digico Cable (ODM/OEM for Astro), Sungai Long Industries Sdn. Bhd. (Bina Puri Group), Secura Security Printing Sdn. Bhd, ROTOL AMS Bumi Sdn. Bhd & ROTOL Architectural Services Sdn. Bhd. (ROTOL Group), Bond M & E (KL) Sdn. Bhd., Skyline Telco (M) Sdn. Bhd.,Technochase Sdn. Bhd JB, Institut Kefahaman Islam Malaysia (IKIM), Shinryo/Steamline Consortium (Petronas/OGP Power Co-Generation Plant Melaka), Hospital Universiti Kebangsaan Malaysia, Association for Retired Intelligence Operatives of Malaysia, T.Yamaichi Corp. (M) Sdn. Bhd.LSB Manufacturing Solutions Sdn. Bhd., PJZ Marine Services Sdn. Bhd., UNITAR/UNTEC (Degree in Accountacy) Cobrain Holdings Sdn. Bhd. (Managing Construction Safety & Health), Speaker for International Finance & Management Strategy (Closed Conference), Pembinaan Jaya Zira Sdn. Bhd. (ISO 9001:2008-Internal Audit for Construction Industry), Straits Consulting Engineers Sdn. Bhd. (C & S, Geotech), Malaysia Management & Science University (MSU), Innoseven Sdn. Bhd. (KVMRT MSPR8 - Internal Audit (Construction) & Awareness Workshop ISO 9001:2015 for the Construction Industry, Amiosh Resources - Lembaga Tabung Haji - Flood ERP, Amiosh Resources - Flood Risk Assessment and Management Plan - Prelim, Conceptual Design and Final Report etc.

* Has appeared for 10 consecutive series in “Good Morning Malaysia RTM TV1’ Corporate Talk Segment discussing on ISO 9000/14000 in various industries. For ICT, his inputs garnered from his expertise have successfully led to development of work-process e-enabling systems in the environments of intranet, portal and interactive web design especially for the construction and manufacturing. Some of the end products have won various competitions of innovativeness, quality, continual-improvements and construction industry award at national level. He has also in advisory capacity – involved in development and moderation of websites, portals and e-profiles for mainly corporate and private sectors, public figures etc.

Risk Based Thinking ISO 9001:2015

(The answers provided are not to be deemed as solutions but basic guidelines, please contact me for further details of consultancy and training)

Q : Do I issue NCR for Risk Identification/Assessment? (i.e. HIRARC)

A : Risk Identification/Asessment and even HIRARC itself is an assessment NOT an audit/inspection. Please do not confuse the two. When we talk about risk, the word "proactive" must always come into the picture. Risk Based Thinking in the new ISO 9001:2015 is previously known as "Preventive Action" but spoken in a wider sense.

If you are using HIRARC, then there are "marks" to denote severity and likelihood of the risk being identified. You can note suggestion or instruction for improvement based on your findings and discuss in your Management Review.

Q : I am a newbie in Risk Management, where to start on Risk Based Thinking during upgrading from the old version?

A: ISO 9001:2015 do not make it "a must" to have a full risk management. Unless it's already part of your core business process (especially planning), e.g. using HIRARC, then that's different. Look at your core business process and identify/ brainstorm the possible risk associated with every process where applicable. Using the Risk Register would be a good idea.

The reason why "Risk Based Thinking" is introduced into ISO 9001:2015 is because to reduce non-conformance and customer complaints, to justify clearly (substantiated with evidence) the Department/Unit Objectives, KPI/KRA, Balance Scorecard etc. (not simply pick up a figure from 'the sky')

Note :



Thursday, March 04, 2004

Accreditation - done by an independent institution/governing body to certify another institution for its' services & products (usually by means of a certificate) - Accreditation can also cover premise, modules, lecturers etc. etc.

Certification - done by an Accredited Certification Institution/body to organizations requiring such certification to boost confidence in their products and services. Accreditation is given based on specific trades/industrial expertise displayed by the certification body.

Consulting - a certified third party/person who guide organization to be certified based on law, standards and specifications
Hakcipta Terpelihara 1998 dan 2000 Nik Zafri bin Abdul Majid. Segala bentuk penyalinan kembali harta intelek tanpa kebenaran adalah salah di sisi undang-undang (Nota : kemaskini - 2005/12 & 2006/11 - Rujukan : Sumber dari IAF, SC, TAG, ISO IEC dll)


Oleh : Nik Zafri bin Abdul Majid

(Artikel ini sepatutnya disiarkan oleh sebuah akhbar tempatan tetapi telah dibatalkan tanpa alasan yang munasabah)

Kita sering terbaca mengenai firma-firma dari segenap pelusuk dunia mendapat persijilan ISO 9000 atau ISO 14000 atau lain-lain yang berkaitan dengan bidang/industri pembekalan perkhidmatan/produk masing-masing. Namun apa yang saya perhatikan, masih terdapat kekeliruan dalam penggunaan perkataan 'akreditasi' dan 'persijilan' Ada yang juga yang masih kabur dengan etika, fungsi dan had kuasa asas sebuah firma perunding, badan persijilan dan lembaga/badan akreditasi (ISO) Izinkan saya untuk mengupas sedikit secara ringkas persoalan yang kompleks ini sekaligus menghilangkan segala kekeliruan yang timbul.

Setiap piawaian spesifik ISO dan segala perinciannya berada di bawah penyeliaan langsung Jawatankuasa Teknikal Organisasi Standard Antarabangsa (ISOTC) Contohnya ISOTC 176 untuk ISO 9000 dan 207 untuk ISO 14000. Perincian elemen/komponen pula dilakukan oleh jawatankuasa-jawatankuasa kecil (SC). Kadangkala untuk membantu menguatkan lagi tonggak SC, Kumpulan Penasihat Teknikal - TAG (Technical Advisory Group) ditubuhkan.

Biasanya, piawaian yang dijadikan aras ukuran/model antarabangsa oleh ISOTC adalah berpunca daripada :- a) Piawaian tempatan negara-negara terpilih, umpamanya, Piawaian British BS 7750 telah dijadikan asas utama kepada EMS ISO 14000.

b) Penyelidikan dan Pembangunan serta penemuan baru sesuatu produk atau proses seperti penentukuran, ujian dan sebagainya daripada negara-negara terpilih yang kemudiannya dijadikan asas dan pemangkin kepada kewujudan piawaian-piawaian baru atau penyemakan semula piawaian-piawaian terdahulu.

c) Undang-Undang tertentu, umpamanya, yang berkisarkan Alam Sekeliling atau Keselamatan dan Kesihatan Pekerjaan ataupun Kejuruteraan.

d) Resolusi Persidangan-Persidangan Dunia umpamanya Geneva, Piagam Bangsa-Bangsa Bersatu, dll.

Lembaga/Badan Akreditasi (juga dikenali sebagai correspondent member) biasanya ditubuhkan berlandaskan peruntukan undang-undang tertentu yang juga berkaitan dengan ISOTC. Mereka berkuasa penuh untuk menauliahkan/mengakreditasikan Badan Persijilan berlandaskan Panduan ISO/IEC (Contohnya 67 untuk ISO 14000) mengikut skop-skop kerja yang diluluskan sahaja. Contohnya sesebuah badan persijilan dapat mengeluarkan sijil ISO dalam skop kerja kejuruteraan aerospace untuk sesebuah organisasi/industri tidak semestinya boleh meluluskan persijilan untuk skop kerja farmaseutikal. Jadi organisasi farmaseutikal perlu mencari badan persijilan lain yang mampu meluluskan persijilan berkenaan.

Ringkasnya, Badan Persijilan pula berperanan antara lain :

a) Menilai/mengesahkan sistem ISO sesebuah organisasi bagi tujuan persijilan,

b) Mensijilkan organisasi yang layak,

c) Membuat penilaian susulan untuk memastikan kesinambungan penyelenggaraan dan peningkatan berterusan sesebuah organisasi setelah disijilkan,

d) Kebiasaannya, menjalankan latihan-latihan teknikal dan pengurusan yang menghalatuju kearah pemeriksaan yang bersabit dengan ISO (contohnya Penilaian Bertauliah dan Berdaftar)

Setakat artikel ini ditulis, tidak pula jelas dalam panduan-panduan ISO/IEC bahawa badan persijilan boleh mengendalikan perkhidmatan (d) ini kecuali dalam kes-kes seperti usahasama penajaan dan pengelolaan dengan perunding, pertubuhan-pertubuhan atau agensi yang berkaitan. Namun dari kajian saya mengenai draf/blueprint ISO 9001:2000 (versi terbaru ISO 9000 dijangka akan diterbitkan bulan November 2000) menunjukkan kekeliruan ini sedang diperjelaskan oleh ISOTC dan Forum Akreditasi Antarabangsa (IAF) menerusi Panduan ISO/IEC yang baru..

Selain itu, Badan Persijilan juga berperanan aktif dalam jawatankuasa teknikal tempatan untuk menjalankan ujian rapi secara saintifik serta R & D keatas draf/blueprint piawaian yang bakal diperkenalkan. Ini penting untuk menyesuai dan mengorientasikan elemen-elemen piawaian berkenaan dengan suasana setempat.

Pakar Perunding pula secara asasnya hanya memberikan khidmat nasihat, latihan, perundingan dan pembangunan sistem ISO kepada organisasi yang menuju kearah persijilan. Secara etikanya, mereka perlu bebas daripada sebarang ikatan langsung dengan badan persijilan dan akreditasi. Namun begitu mereka perlu berdaftar dengan mana-mana badan/agensi (afiliasi) mengikut peruntukan undang-undang jika ada.

Di peringkat antarabangsa, jarang saya mendengar samada :

a) Lembaga Akreditasi (ISO) dan Badan Persijilan menjadi selaku Pakar Perunding, atau

b) Firma Perunding diberikan akreditasi untuk mengeluarkan sijil ISO tanpa melalui Badan Persijilan.

Penilai-penilai ISO dari firma perunding biasanya memiliki pengalaman dan pendedahan yang luas kepada berbagai jenis industri. Mereka juga merupakan penilai bertauliah/berdaftar serta ahli pertubuhan-pertubuhan professional (afiliasi) dalam bidang kualiti, keselamatan & kesihatan pekerjaan, alam sekitar, pengurusan dll.

Sememangnya, dalam membicarakan subjek yang sungguh luas ini, masih banyak perincian yang boleh dilakukan. Umpamanya saya meramalkan bahawa bidang akreditasi yang meliputi pendidikan/akademik, kemahiran/ketrampilan (LAN-MOE/MLVK-MHR), perkhidmatan, produk dll akan berpayung di bawah satu Lembaga Akreditasi (bebas) sahaja untuk memudahkan kerja-kerja penauliahan - tanpa sebarang kecenderungan Ini telah pun berlaku di kebanyakan negara-negara Eropah terutamanya UK.

Antara kebaikan-kebaikan hasil penjelasan saya ini ialah :-

a) menghilangkan kekeliruan dalam peristilahan dan mengurangkan tindihan kuasa pihak-pihak yang terbabit.

b) menjadi pemangkin kepada anjakan paradigma professional dalam konteks ISO yang semakin diabaikan.

c) mewujudkan 'quality spirit' yang asli sekaligus menghapuskan unsur bias.

d) mengecap hasil penerimaan sebenar produk/perkhidmatan di pasaran antarabangsa oleh industri-industri dan bukan hanya 'lip service' semata-mata dengan sekeping sijil yang belum tentu dapat dibawa kemana-mana.

e) organisasi perlu lebih professional dan mampu memahami sedalam-dalamnya apa-apa yang telah dijelaskan diatas demi ketepatan terutamanya dalam membuat pilihan yang betul dan tepat serta menguntungkan dari segi jangkapanjang operasi mereka.

Nota Penulis (selaku perunding berpengalaman (domestik/antarabangsa) > 15 tahun) : Dalam keghairahan semua pihak yang mempunyai kepentingan dalam 'jaringan akreditasi/persijilan/perundingan' yang luas ini - harus perlu memahami dan menumpukan perhatian kepada segmen pasaran masing-masing kerana ketiga-tiga tret ini adalah complementary dan adalah tidak wajar dijadikan asas untuk 'bertanding secara tidak sihat' atau mencari kepentingan 'perniagaan berlebih-lebihan' (tetapi tiada hasil akhirnya kerana kurang pengalaman) kerana tidak ada mana-mana pihak pun yang akan menang dan akan kalah lebih-lebih lagi dalam dunia dan era 'Knowledge Management' dan globalisasi ini.

Knowledge Workers - Workers having the necessary experience, competency and qualifications and able to customise to the needs of industry.

Info sent.

Powered by IP Address Locator