DISCLAIMER - NIKZAFRI.BLOGSPOT.COM
In no event shall nikzafri.blogspot.com be liable for any damages whatsoever, including, without limitation, direct, special, indirect, consequential, or incidental damages, or damages for lost profits, loss of revenue, or loss of use, arising out of or related to the nikzafri.blogspot.com or the information contained in it, whether such damages arise in contract, negligence, tort, under statute, in equity, at law or otherwise.
BIODATA - NIK ZAFRI
Kelantanese, Alumni of Sultan Ismail College Kelantan (SICA), IT Competency Cert, Certified Written English Professional US. Has participated in many seminars/conferences (local/ international) in the capacity of trainer/lecturer and participant.
Affiliations :- Network Member of Gerson Lehrman Group, Institute of Quality Malaysia, Auditor ISO 9000 IRCAUK, Auditor OHSMS (SIRIM and STS) /EMS ISO 14000 and Construction Quality Assessment System CONQUAS, CIDB (Now BCA) Singapore),
* Possesses almost 30 years of experience/hands-on in the multi-modern management & technical disciplines (systems & methodologies) such as Knowledge Management (Hi-Impact Management/ICT Solutions), Quality (TQM/ISO), Safety Health Environment, Civil & Building (Construction), Manufacturing, Motivation & Team Building, HR, Marketing/Branding, Business Process Reengineering, Economy/Stock Market, Contracts/Project Management, Finance & Banking, etc. He was employed to international bluechips involving in national/international megaprojects such as Balfour Beatty Construction/Knight Piesold & Partners UK, MMI Insurance Group Australia, Hazama Corporation (Hazamagumi) Japan (with Mitsubishi Corporation, JA Jones US, MMCE and Ho-Hup) and Sunway Construction Berhad (The Sunway Group of Companies). Among major projects undertaken : Pergau Hydro Electric Project, KLCC Petronas Twin Towers, LRT Tunnelling, KLIA, Petronas Refineries Melaka, Putrajaya Government Complex, Sistem Lingkaran Lebuhraya Kajang (SILK), Mex Highway, KLIA1, KLIA2 etc. Once serviced SMPD Management Consultants as Associate Consultant cum Lecturer for Diploma in Management, Institute of Supervisory Management UK/SMPD JV. Currently – Associate/Visiting Consultants/Facilitators, Advisors for leading consulting firms (local and international) including project management. To name a few – Noma SWO Consult, Amiosh Resources, Timur West Consultant Sdn. Bhd., TIJ Consultants Group (Malaysia and Singapore) and many others.
* Ex-Resident Weekly Columnist of Utusan Malaysia (1995-1998) and have produced more than 100 articles related to ISO-9000– Management System and Documentation Models, TQM Strategic Management, Occupational Safety and Health (now OHSAS 18000) and Environmental Management Systems ISO 14000. His write-ups/experience has assisted many students/researchers alike in module developments based on competency or academics and completion of many theses. Once commended by the then Chief Secretary to the Government of Malaysia for his diligence in promoting and training the civil services (government sector) based on “Total Quality Management and Quality Management System ISO-9000 in Malaysian Civil Service – Paradigm Shift Scalar for Assessment System”
Among Nik Zafri’s clients : Adabi Consumer Industries Sdn. Bhd, (MRP II, Accounts/Credit Control) The HQ of Royal Customs and Excise Malaysia (ISO 9000), Veterinary Services Dept. Negeri Sembilan (ISO 9000), The Institution of Engineers Malaysia (Aspects of Project Management – KLCC construction), Corporate HQ of RHB (Peter Drucker's MBO/KRA), NEC Semiconductor - Klang Selangor (Productivity Management), Prime Minister’s Department Malaysia (ISO 9000), State Secretarial Office Negeri Sembilan (ISO 9000), Hidrological Department KL (ISO 9000), Asahi Kluang Johor(System Audit, Management/Supervisory Development), Tunku Mahmood (2) Primary School Kluang Johor (ISO 9000), Consortium PANZANA (HSSE 3rd Party Audit), Lecturer for Information Technology Training Centre (ITTC) – Authorised Training Center (ATC) – University of Technology Malaysia (UTM) Kluang Branch Johor, Kluang General Hospital Johor (Management/Supervision Development, Office Technology/Administration, ISO 9000 & Construction Management), Kahang Timur Secondary School Johor (ISO 9000), Sultan Abdul Jalil Secondary School Kluang Johor (Islamic Motivation and Team Building), Guocera Tiles Industries Kluang Johor (EMS ISO 14000), MNE Construction (M) Sdn. Bhd. Kota Tinggi Johor (ISO 9000 – Construction), UITM Shah Alam Selangor (Knowledge Management/Knowledge Based Economy /TQM), Telesystem Electronics/Digico Cable(ODM/OEM for Astro – ISO 9000), Sungai Long Industries Sdn. Bhd. (Bina Puri Group) - ISO 9000 Construction), Secura Security Printing Sdn. Bhd,(ISO 9000 – Security Printing) ROTOL AMS Bumi Sdn. Bhd & ROTOL Architectural Services Sdn. Bhd. (ROTOL Group) – ISO 9000 –Architecture, Bond M & E (KL) Sdn. Bhd. (ISO 9000 – Construction/M & E), Skyline Telco (M) Sdn. Bhd. (Knowledge Management),Technochase Sdn. Bhd JB (ISO 9000 – Construction), Institut Kefahaman Islam Malaysia (IKIM – ISO 9000 & Internal Audit Refresher), Shinryo/Steamline Consortium (Petronas/OGP Power Co-Generation Plant Melaka – Construction Management and Safety, Health, Environment), Hospital Universiti Kebangsaan Malaysia (Negotiation Skills), Association for Retired Intelligence Operatives of Malaysia (Cyber Security – Arpa/NSFUsenet, Cobit, Till, ISO/IEC ISMS 27000 for Law/Enforcement/Military), T.Yamaichi Corp. (M) Sdn. Bhd. (EMS ISO 14000) LSB Manufacturing Solutions Sdn. Bhd., (Lean Scoreboard (including a full development of System-Software-Application - MSC Malaysia & Six Sigma) PJZ Marine Services Sdn. Bhd., (Safety Management Systems and Internal Audit based on International Marine Organization Standards) UNITAR/UNTEC (Degree in Accountacy – Career Path/Roadmap) Cobrain Holdings Sdn. Bhd.(Managing Construction Safety & Health), Speaker for International Finance & Management Strategy (Closed Conference), Pembinaan Jaya Zira Sdn. Bhd. (ISO 9001:2008-Internal Audit for Construction Industry & Overview of version 2015), Straits Consulting Engineers Sdn. Bhd. (Full Integrated Management System – ISO 9000, OHSAS 18000 (ISO 45000) and EMS ISO 14000 for Civil/Structural/Geotechnical Consulting), Malaysia Management & Science University (MSU – (Managing Business in an Organization), Innoseven Sdn. Bhd. (KVMRT Line 1 MSPR8 – Awareness and Internal Audit (Construction), ISO 9001:2008 and 2015 overview for the Construction Industry), Kemakmuran Sdn. Bhd. (KVMRT Line 1 - Signages/Wayfinding - Project Quality Plan and Construction Method Statement ), Lembaga Tabung Haji - Flood ERP, WNA Consultants - DID/JPS -Flood Risk Assessment and Management Plan - Prelim, Conceptual Design, Interim and Final Report etc., Tunnel Fire Safety - Fire Risk Assessment Report - Design Fire Scenario), Safety, Health and Environmental Management Plans leading construction/property companies/corporations in Malaysia, Timur West Consultant : Business Methodology and System, Information Security Management Systems (ISMS) ISO/IEC 27001:2013 for Majlis Bandaraya Petaling Jaya ISMS/Audit/Risk/ITP Technical Team, MPDT Capital Berhad - ISO 9001: 2015 - Consultancy, Construction, Project Rehabilitation, Desalination (first one in Malaysia to receive certification on trades such as Reverse Osmosis Seawater Desalination and Project Recovery/Rehabilitation)
* Has appeared for 10 consecutive series in “Good Morning Malaysia RTM TV1’ Corporate Talk Segment discussing on ISO 9000/14000 in various industries. For ICT, his inputs garnered from his expertise have successfully led to development of work-process e-enabling systems in the environments of intranet, portal and interactive web design especially for the construction and manufacturing. Some of the end products have won various competitions of innovativeness, quality, continual-improvements and construction industry award at national level. He has also in advisory capacity – involved in development and moderation of websites, portals and e-profiles for mainly corporate and private sectors, public figures etc. He is also one of the recipients for MOSTE Innovation for RFID use in Electronic Toll Collection in Malaysia.
Note :
Friday, April 14, 2023
AWAL 80-AN - KISAH NOSTALGIA - PENGALAMAN DI BUKIT JAWA MENCARI KULAT SISIR
Thursday, April 13, 2023
I NEVER HAD ENOUGH OF MALAYSIA
Many of my foreign friends described a some sort of positive aura that Malaysia has. The peace and the unity - religion, race and culture - and still manage to integrate harmonically with modern technology/sustainable development .
Saturday, April 08, 2023
TOK KAYAN/TOK EGOK - LIM TOH KHIAM - Ditulis kembali oleh Nik Zafri (09 APRIL 2023 - pada pertengahan bulan Ramadhan)
Saturday, April 01, 2023
YOU WILL FOUND WHAT YOU LOST BY REVISITING YOUR PAST
Looking back at 1995-1997, I am proud to still be of assistance to many researchers. This is one of many. There are so many references made to my work that I've overlooked.
Wednesday, March 29, 2023
Tuesday, March 28, 2023
PENCERAMAH TIDAK BERTAULIAH TELAH DERHAKA PADA RAJA-RAJA
Sunday, March 26, 2023
MASALAH IBU TUNGGAL MENERIMA BANTUAN DARI GEREJA DAN DAKWAAN LEMBAGA ZAKAT TIDAK PERNAH MEMBERIKAN BANTUAN
QUOTE FOR THE DAY - BAILOUTS AND SHARES BUYBACK ARE NOT HELPING THE PEOPLE
When bailouts happen or corporate loans being approved with low interest rates and restructured, I think the money is intended to boost the economy by building more infrastructures and/or ease unemployment problems.
Friday, March 24, 2023
FINAL PART - ANTI BRIBERY MANAGEMENT SYSTEM - Nik Zafri
(ABMS = ISO 37001)
7.0 Continual Improvement
Nonconformity and corrective action
When a nonconformity (NC) occurs (usually issued via a Corrective Action Request (CAR), take quick action, control and correct.
Some NC can result in dire consequences such as OSH or Environmental issues that maybe fatal or cause damage to assets. Most safety issues are either related to ignorance or bribery. (Fatal dan Damage may be relevant to RISK MANAGEMENT, thus review the risk register to find out if the risk has been addressed and mitigated or the risk could be a new one)
(NC can sometimes repetitive in different places. It's advised that auditors should issue 1 CAR for same NC but state the occurrence at different locations)
Find out the root cause (s) of the NC. Root Cause is NOT a personal blaming platform. It should be more related to the process itself.
The idea of corrective action is not merely repairing the system or machine or devices, it is important to improve the process where similar NC may happen at other places as well. This is where preventive measures need to be taken which may include review of effectiveness and changes to the ABMS.
Corrective Action - shall be appropriate to the effects of non-conformities. Looking back at root cause and evidences may help in determining the right corrective action. It is imperative that auditors NOT to depend on pictorial evidence but to visit on a "before" and "after" the NC to verify the photos and action taken (including follow-up actions) accordingly by the auditee.
For auditors, the effectiveness of the corrective action can only be seen in the next audit. My advise that auditors should also look into the bribery risk register and relevant random inspection records where necessary. (in the next audit, the auditor should note the effectiveness of the last audited corrective action by looking into further evidence afterwards as well)
Continual improvement is to determine suitability, adequacy and effectiveness of the anti-bribery management system.
This improvement could be the follow up actions from :
a) Changes in statutory and legal requirements,
b) Results of the Management Review,
c) changes in the ABMS itself,
d) internally proposed
Saturday, March 04, 2023
ANTI-BRIBERY MANAGEMENT SYSTEM - PART 8 - Nik Zafri
(ABMS = ISO 37001)
6.0 Performance Evaluation
- Monitoring - what has been established, implemented, impose control (e.g. revision, issue, superseded etc)
- Measurement - assess (audit/inspection) on benchmark, target
- Analysis - statistics on e.g. department vs non-conformance, project vs non-conformance etc.
- Evaluation - against effectiveness of ABMS
a) What to be monitored/measured
b) Person responsible
c) Method with expected/actual results
d) timeframe/cut-off period
e) results of monitoring and measurement - analysed/evaluated (usually in Management Review)
f) reporting flow
Documented information required as evidence (records/forms/checklists duly filled)
Procedure is present for guide.
Internal audit is much the same clause as ISO 9000/14000/45000 etc. (differences are - anti-bribery details are defined in this clause)
- conduct at planned intervals (set a cut-off period/timeframe/frequency) e.g. every 6 months = 1 Internal Audit or every 1 fiscal year = 1 or 2 Internal Audit (1 every 6 months)
- to comply and conform to the law and ABMS - as far as is practicable to the organization (custom) - not all elements/criterions fit the organization (justify why such element are skipped with evidence)
- effectively implemented and maintained.
should there be many locations or projects/sites - then arrangement to be made by at least the HQ to be audited and - should there be many locations or projects/sites - then arrangement to be made by at least the HQ to be audited and 2-3 ongoing projects (sampling) of different nature/trades (sampling per 5 projects) (as the projects may have a different team members)
- define audit criteria and scope and select competent auditors,
- conduct audit with objectivity and impartiality - either independent function/management representative, the function (critical department/unit) involved in anti-bribery, 3rd party etc.
- report the audit - top management/governing body
- compliance and documented evidence
- audit program/results
Audit shall be reasonable, proportionate and risk based (well-balanced between the 3 aspects),
Procedures shall be referred to ascertain any suspected or actual bribery, violation of policy or ABMS, failure of business associates (including consultant, supplier, vendor, contractor, sub-contractor) determine weakness or improvement
No auditor shall audit his/her own work. (this include his own unit or department - it must be cross-department/unit)
Management review
Top management shall review ABMS at planned intervals (every 6 months - 1 Management Review (MRM) or every fiscal year - 1 or 2 MRMs), determine suitability/adequacy/effectiveness.
MRM to consider : previous MRM, changes in external/internal issues, performance - non-conformities/corrective actions, monitoring/measurement results, audit results, bribery reports,investigation, risks and mitigation and continual improvement (if any) as output. (If ABMS requires no improvement, then maintain it and don't repair it unnecessarily)
MRM results to be reported to governing body (if any) and retain documented information/evidence.
Governing body (if any) shall review the ABMS for further action (investigation) if any by anti-bribery compliance function. Anti-bribery compliance function shall assess to ensure that AMBS is adequate, implemented and effective including investigations/audit results to be reported to Governing body.
The organization may also use business associate (3rd party is recommended) to assist in the review. (This will usually happen when results are inadequate or found dissatisfactory due to lack of substantial evidence)