Case Study: Xerox
Xerox is the world’s leading global enterprise for business process and document management. They provide the industry’s broadest portfolio of document technology, services and software, and the most diverse array of business process and IT outsourcing support.
Graham Hill, Operations Manager for an off-site print centre at Xerox Global Document Outsourcing (GDO), was responsible for implementing the ISO 9001 and ISO 27001 standards, which their site has proudly held with the British Assessment Bureau (BAB) since 2008. In 2012 they were also successfully certified to the environmental standard ISO 14001.
Robust information security is of vital importance for the diverse range of clients that entrust their sensitive data and documents in Xerox’s care. Graham tells us why he sought ISO certification for his organisation.
“ISO certification is further endorsement from an external body that Xerox Global Document Outsourcing (GDO) has processes and procedures in place to ensure that clients’ work is dealt with in an organised and quality driven manner.”
BAB was recommended to Xerox by a business associate, and here Graham tells us of his experience of working with BAB.
“The service we have received from BAB has been excellent – they come across as a time served organisation with a wealth of experience in the field.”
“The highlight of the service for me was the efficiency with which the assessments and audits were carried out. We also greatly value the assistance given throughout the process and the professionalism of our Auditor.”
Once an organisation is ready for a formal Audit Assessment, a Lead Assessor will make the required arrangements for the Audit to take place. Graham tells us of his experience.
“The actual audit process was very in depth and thorough and feedback identified a few areas where further improvements could be made. In general, the feedback was very positive and it was nice to receive recognition in the form of successful certification for the work we had put in.”
Xerox understands the importance of certification as a differentiator in a very competitive market. Graham tells us just some of the many benefits ISO certification has brought to his organisation, and why the information security standard, ISO 27001, is particularly relevant for their business.
“Our certifications have meant that we can offer our clients additional assurance of the quality we deliver. Having maintained the ISO 9001 and 14001 certifications for such a long time has ensured that everyone in the organisation is aware of and adheres to the processes and that any initial issues have been ironed out. This has greatly improved our efficiency and reduced waste.”
“For a number of our clients, ISO certification is crucial, and maintaining the high standards that our certifications demand ensures that we continue to hold an advantage over our competition. In particular, ISO 27001 demonstrates to our clients that we take all aspects of IT and data security seriously and have documented procedures and processes in place to ensure it is regularly reviewed.”
Graham also tells us of the impact that ISO 14001 certification has had on his organisation;
“Having the structure of ISO 14001 in place has meant that environmental awareness has been embraced by the whole site. As a result, employees are very keen to recycle, which has led to a substantial reduction in waste sent to landfill. We have also made significant cost savings by reducing energy consumption across all our sites.”
Find out more about us
Next entry: Case Study: ADA Networks
Previous entry: Case Study: Chartered Institute of Environmental Health