How to implement Security Management System (SeMS)?

No matter the size, type or complexity, the top executives and senior management play a major role in determining a company’s commitment to security. When an organization decides that it will implement a SeMS in its operations, it is essential that a plan be drawn up. An implementation is complex and involves several entities within and outside the organization. In general, there are three stages (levels) of SeMS development:

  1. The first level aims to assess an organization’s readiness to implement SeMS by identifying its current capabilities. This assessment will result in substantial training and communication improvement, review and reissuance of organizational policies and allocation of necessary resources.
  2. The second level is the actual implementation of the SeMS. This will cover elements such as the commitment from senior leadership, increased communication of the new approach, development and adjustment of standard operating procedures, modification of cooperation standards and development of performance indicators amongst other elements.
  3. The third level can be achieved once the organization’s SeMS becomes mature. At this stage, organizations focus on development of data analysis and quality assurance.

A model SeMS implementation plan is included in Section 6.2 of IATA’s Security Management System Manual.