Today, Knowledge Management today are not limited merely to : (A) 'knowing' or 'reading lots of books/scholarly articles' or (B) data mining, analysis, decision making, preventive actions, or (C) some Human Resources Management issue or (D) some ICT issue. Knowledge Management is about putting your knowledge, skills and competency into practice and most important IT WORKS! For you and your company or your business (Nik Zafri)

The information comprised in this section is not, nor is it held out to be, a solicitation of any person to take any form of investment decision. The content of the nikzafri.blogspot.com does not constitute advice or a recommendation by nikzafri.blogspot.com and should not be relied upon in making (or refraining from making) any decision relating to investments or any other matter. You should consult your own independent financial adviser and obtain professional advice before exercising any investment decisions or choices based on information featured in this nikzafri.blogspot.com can not be held liable or responsible in any way for any opinions, suggestions, recommendations or comments made by any of the contributors to the various columns on nikzafri.blogspot.com nor do opinions of contributors necessarily reflect those of http://www. nikzafri.blogspot.com

In no event shall nikzafri.blogspot.com be liable for any damages whatsoever, including, without limitation, direct, special, indirect, consequential, or incidental damages, or damages for lost profits, loss of revenue, or loss of use, arising out of or related to the nikzafri.blogspot.com or the information contained in it, whether such damages arise in contract, negligence, tort, under statute, in equity, at law or otherwise.



Email: nikzafri@yahoo.com, nikzafri@gmail.com

Kelantanese, Alumni of Sultan Ismail College Kelantan (SICA), Diploma (Management), IT Competency Cert, Certified Written English Professional US. Has participated in many seminars/conferences (local/ international) in the capacity of trainer/lecturer and participant.

Affiliations :- Council Member of Gerson Lehrman Group NY, Institute of Quality Malaysia, Malaysian Institute of Management, Malaysian Occupational Safety and Health Professionals Association, Auditor ISO 9000 IRCAUK, Auditor OHSAS 18000 (SIRIM and STS) /EMS ISO 14000:2004 and Construction Quality Assessment System (CONQUAS, CIDB (Now BCA) Singapore),

* Possesses 26 years of experience/hands-on in the multi-modern management & technical disciplines (systems & methodologies) such as Knowledge Management (Hi-Impact Management/ICT Solutions), Quality (TQM/ISO), Safety Health Environment, Civil & Building (Construction), Manufacturing, Motivation & Team Building, HR, Marketing/Branding, Business Process Reengineering, Economy/Stock Market, Contracts/Project Management, Finance & Banking, etc. He was employed to international bluechips involving in national/international megaprojects such as Balfour Beatty Construction/Knight Piesold & Partners UK, MMI Insurance Group Australia, Hazama Corporation (Hazamagumi) Japan (with Mitsubishi Corporation, JA Jones US, MMCE and Ho-Hup) and Sunway Construction Berhad (The Sunway Group of Companies). Among major projects undertaken : Pergau Hydro Electric Project, KLCC Petronas Twin Towers, LRT Tunnelling, KLIA, Petronas Refineries Melaka, Putrajaya Government Complex, Sistem Lingkaran Lebuhraya Kajang (SILK), Mex Highway, KLIA1, KLIA2 etc. Once serviced SMPD Management Consultants as Associate Consultant cum Lecturer for Diploma in Management, Institute of Supervisory Management UK/SMPD JV. Currently – Associate/Visiting Consultants/Facilitators, Advisors for leading consulting firms (local and international) including project management. To name a few – Noma SWO Consult, Amiosh Resources, Timur West Consultant Sdn. Bhd., TIJ Consultants Group (Malaysia and Singapore) and many others.

* Ex-Resident Weekly Columnist of Utusan Malaysia (1995-1998) and have produced more than 100 articles related to ISO-9000– Management System and Documentation Models, TQM Strategic Management, Occupational Safety and Health (now OHSAS 18000) and Environmental Management Systems ISO 14000. His write-ups/experience has assisted many students/researchers alike in module developments based on competency or academics and completion of many theses. Once commended by the then Chief Secretary to the Government of Malaysia for his diligence in promoting and training the civil services (government sector) based on “Total Quality Management and Quality Management System ISO-9000 in Malaysian Civil Service – Paradigm Shift Scalar for Assessment System”

Among Nik Zafri’s clients : Adabi Consumer Industries Sdn. Bhd, (MRP II, Accounts/Credit Control) The HQ of Royal Customs and Excise Malaysia (ISO 9000), Veterinary Services Dept. Negeri Sembilan (ISO 9000), The Institution of Engineers Malaysia (Aspects of Project Management – KLCC construction), Corporate HQ of RHB (Peter Drucker's MBO/KRA), NEC Semiconductor - Klang Selangor (Productivity Management), Prime Minister’s Department Malaysia (ISO 9000), State Secretarial Office Negeri Sembilan (ISO 9000), Hidrological Department KL (ISO 9000), Asahi Kluang Johor(System Audit, Management/Supervisory Development), Tunku Mahmood (2) Primary School Kluang Johor (ISO 9000), Consortium PANZANA (HSSE 3rd Party Audit), Lecturer for Information Technology Training Centre (ITTC) – Authorised Training Center (ATC) – University of Technology Malaysia (UTM) Kluang Branch Johor, Kluang General Hospital Johor (Management/Supervision Development, Office Technology/Administration, ISO 9000 & Construction Management), Kahang Timur Secondary School Johor (ISO 9000), Sultan Abdul Jalil Secondary School Kluang Johor (Islamic Motivation and Team Building), Guocera Tiles Industries Kluang Johor (EMS ISO 14000), MNE Construction (M) Sdn. Bhd. Kota Tinggi Johor (ISO 9000 – Construction), UITM Shah Alam Selangor (Knowledge Management/Knowledge Based Economy /TQM), Telesystem Electronics/Digico Cable(ODM/OEM for Astro – ISO 9000), Sungai Long Industries Sdn. Bhd. (Bina Puri Group) - ISO 9000 Construction), Secura Security Printing Sdn. Bhd,(ISO 9000 – Security Printing) ROTOL AMS Bumi Sdn. Bhd & ROTOL Architectural Services Sdn. Bhd. (ROTOL Group) – ISO 9000 –Architecture, Bond M & E (KL) Sdn. Bhd. (ISO 9000 – Construction/M & E), Skyline Telco (M) Sdn. Bhd. (Knowledge Management),Technochase Sdn. Bhd JB (ISO 9000 – Construction), Institut Kefahaman Islam Malaysia (IKIM – ISO 9000 & Internal Audit Refresher), Shinryo/Steamline Consortium (Petronas/OGP Power Co-Generation Plant Melaka – Construction Management and Safety, Health, Environment), Hospital Universiti Kebangsaan Malaysia (Negotiation Skills), Association for Retired Intelligence Operatives of Malaysia (Cyber Security – Arpa/NSFUsenet, Cobit, Till, ISO/IEC ISMS 27000 for Law/Enforcement/Military), T.Yamaichi Corp. (M) Sdn. Bhd. (EMS ISO 14000) LSB Manufacturing Solutions Sdn. Bhd., (Lean Scoreboard (including a full development of System-Software-Application - MSC Malaysia & Six Sigma) PJZ Marine Services Sdn. Bhd., (Safety Management Systems and Internal Audit based on International Marine Organization Standards) UNITAR/UNTEC (Degree in Accountacy – Career Path/Roadmap) Cobrain Holdings Sdn. Bhd.(Managing Construction Safety & Health), Speaker for International Finance & Management Strategy (Closed Conference), Pembinaan Jaya Zira Sdn. Bhd. (ISO 9001:2008-Internal Audit for Construction Industry & Overview of version 2015), Straits Consulting Engineers Sdn. Bhd. (Full Integrated Management System – ISO 9000, OHSAS 1800 and EMS ISO 14000 for Civl/Structural/Geotechnical Consulting), Malaysia Management & Science University (MSU – (Managing Business in an Organization), Innoseven Sdn. Bhd. (KVMRT Line 1 MSPR8 – Awareness and Internal Audit (Construction), ISO 9001:2008 and 2015 overview for the Construction Industry), Kemakmuran Sdn. Bhd. (KVMRT Line 1 - Signages/Wayfinding - Project Quality Plan and Construction Method Statement ), Amiosh Resources - (1) Lembaga Tabung Haji - Flood ERP (2) WNA Consultants - DID/JPS -Flood Risk Assessment and Management Plan - Prelim, Conceptual Design, Interim and Final Report etc. (3) Tunnel Fire Safety - Fire Risk Assessment Report - Design Fire Scenario), Safety, Health and Environmental Management Plans leading construction/property companies/corporations in Malaysia. Timur West Consulting (1) Business Methodology and System (2) Information Security Management Systems (ISMS) ISO/IEC 27001:2013 for Majlis Bandaraya Petaling Jaya ISMS/Audit/Risk/ITP Technical Team

* Has appeared for 10 consecutive series in “Good Morning Malaysia RTM TV1’ Corporate Talk Segment discussing on ISO 9000/14000 in various industries. For ICT, his inputs garnered from his expertise have successfully led to development of work-process e-enabling systems in the environments of intranet, portal and interactive web design especially for the construction and manufacturing. Some of the end products have won various competitions of innovativeness, quality, continual-improvements and construction industry award at national level. He has also in advisory capacity – involved in development and moderation of websites, portals and e-profiles for mainly corporate and private sectors, public figures etc. He is also one of the recipients for MOSTE Innovation for RFID use in Electronic Toll Collection in Malaysia.

Note :



Saturday, October 24, 2015



Disclaimer : Most of the contents here are not the 'actual/literal' text of the actual new ISO 9001:2015. It's the personal interpretation of the author.

0.1 – QMS as a strategic decision, a robust Quality Management Systems (QMS) – to help organization to improve its overall performance and forms an integral component of sustainable development. Design and implementation of QMS is influenced by the context of organization and   (including) the changes.


a. Strategic– Identification of long term/overall aims and interest and means to achieve them (taking into account coping up with fundamental changes – susceptible to the surroundings (what is happening around you) – law, competition, regulations, standards, trends, new technology, innovation, Research and Development etc.)

b. Robust– a process, system able to withstand or overcome adverse conditions (defects, non-conformance, corrective action request)

c. Improve overall performance – integral component of sustainable development– no system is perfect, it should be improved and become part and parcel of company's culture to achieving excellence.

d. Designed and Implemented by the sort of industry-specific – service/product provided by the company (to achieve such purpose – goals and objectives) – customization/tailor-made (1)

The rest of the content in 0.1 also talks about culture (already covered), external factors – socio-economic conditions under which it operates) – when we talk about socio-economic conditions – it talks about how the process - impacts the general public, public perception, surroundings  – possibly employment opportunity and most important – the organization must realize its financial capacity –not to do something way beyond their ability. Do something that suits the organization ONLY  (2)

Also touched on QMS can differ from one organization to another(See (1) - customization)

0.2 – not much have been changed except more emphasis is given in point no. 2 – ISO 9001 – improved internal communication, better understanding and control of process – reduction in defects and waste 

(the only way to do all these is to adopt principle of “no walls, no politics, no overlapping of duties, no pinpointing, no blaming culture” - so 100 points go to"Improved Internal Communication"  - everything starts here....

and also point no. 4 of 0.2 – ISO 9004 which touches on configuration management; apart from other elements – quality plan, project QM, measurement process/equipment, documentation, (and again - ) financial/economic benefits of the system (See (2), Statistics etc.


Configuration Management - system engineering process for establishing and maintaining consistency of a product's (or services) performance, functional and physical attributes with its requirements, design and operational information throughout its life.

0.3– comprehensive process-approach explained in better details. What's interesting are the words “understood” and “understanding” are being used. It means that the system HAS to be understood – on company-wide basis.

There is no point making a system only to be understood by a certain 'exclusive top management level'.

How to make everyone understand?

Mind you, I'm not talking about the typical 
(word by word) memorizing the policy or objectives – remember UNDERSTAND is totally different than MEMORIZE....

a laymen understanding – is to understand QMS in their OWN work! (refer Job Description and Responsibilities/Authorities) – if these are not clear, DON'T HOPE everyone to understand – you will receive typical provoking comments from them just like when the previous system was implemented - “This is not my job?” “Having ISO is like having NOTHING – no impact – nothing for me” - hence - they don't feel the system!

0.4 including Figure 1 and 2 talk about 'Plan-Do-Check-Act” in much more simple understanding but implementable.

0.5 Something new – Risk-Based Thinking (in fact it's partial risk management) – which I agree 100%.


Simply look back at your Management Review Meeting, Data Analysis and Continual Improvement Plan (if you have any - if you don't, then 'BIG TROUBLE') – now PROACTIVELY start identifying, assess and prioritize the risks (the effect of "uncertainty") – how do you that? 

Yes, look back at frequent problems in your data? 

And prioritize - put them according to order, mark them with RED, YELLOW or GREEN and discuss the solution further. You can also integrate ITP, HIRARC, SHASSIC, CONQUAS or whatever specific assessment/inspection system you have (if you have one - if you don't, then go for the normal inspection that you do - incoming, in-process and outgoing) etc. into it. 

No overlapping please...let all the system be harmonized and co-exist.

Now, should you have a full (projected) Risk Management Plan before starting the operation? (Preliminary, Design, Interim and Final) – if you have the time – the answer is YES!

Project Management - Critical Path Method - justify the RED ones by thinking outside the box (outside the software) - there must be alternative ways of justifying it. Yes, I have the great CPM and the 'technical S Curve'  but why is there still delay?

Just match it with your MRM Data...you'll be on the right track.

0.6– compatibility with other management systems – explained in greater details.


Yes, the new ISO 9001:2015 is attempting to cover and solve ALL kinds of management and technical problems (sound kind of ambitious - don't you think?) – however, lots of cross-referencing need to be made. Act smart for a while...please

(wait for Part 2)