C-TPAT反恐驗廠是美國國土安全部海關邊境保護局(即US Customs and Border Protection,簡稱“CBP”)在911事件發生后所倡議成立的與商界一起自發建立的自愿性計畫, 2001年11月推出,并于2002年4月16日正式實行,在2006年末已經有9900多家公司申請參與,其中5500家已經認證。
C-TPAT全名為 “Customs-Trade Partnership Against Terrorism”,即「海關-商貿反恐貿易伙伴」。通過C-TPAT的安全建議,CBP希望能與相關業界合作建立供應鏈安全管理系統,以確保供應鏈從起點到終點的運輸安全、安全訊息及貨況的流通
一般反恐審核清單:
1. Direct external communications system to contact local authorities/management.
同當地政府或管理層的直接外部聯絡機制
2. Policy/procedure for the security personnel to report incidents. 保安人員緊急事件匯報程序
3. CCTV cameras records kept for at least 2 months. 至少兩個月的監控記錄
4. Vehicles In-Out access control records and visitors logging records. 訪客及車輛進出登記記錄
5. Procedures for security personnel to identify, challenge and address unauthorized persons.
保安人員識別,盤問與匯報不明身份人員的程序
6. Incoming mail and parcels logged, screened and checked before dissemination. 郵件包裹的登記與檢查記錄
7. Keys (access control device) usage records. 鑰匙領用登記記錄
8. Personnel responsible for security and implementation of security policies. 負責安全及執行安全政策人員的通知或任命
9. Procedures in place to notify the Importer and/or law enforcement agencies and properly escalate the issue
if significant illegal or suspicious activities are detected.
發現重大違法或可疑事件時能夠適當處置此類事件并通知進口商或/及執法部門的相關程序
10. Procedures to verify shipping marks, numbers, weights and quantities of shipment against presented documents.
核實產品箱嘜,編號,數量,重量等信息的程序文件
11. Procedures and records to verify outgoing goods/cartons against purchase orders, shipping documents.
核對出倉貨物與采購訂單及船務單據的一致性的程序與記錄
12. Procedures for detecting and reporting shortages/overages on incoming & outgoing goods/cartons.
貨物過剩及短缺處理程序
13. IT security policies. 電腦信息安全使用政策
14. Procedures to train staff on proper IT security practices and all system violators are subject to appropriate disciplinary actions.
培訓員工正確使用電腦信息系統的程序與記錄, 所有違規使用電腦系統的人員受到相應懲戒
15. Procedure to identify and report abuse of IT systems. 識別與匯報濫用電腦信息系統的程序
16. Background checks and references verification prior to employment and check driving record (existing company drivers).
員工入職前背景調查文件記錄,包括司機人員的背景調查
17. Periodic checks and reinvestigations based on sensitivity of the existing employee's position.
敏感職位定期背景調查文件記錄
18. Records of collecting IDs and access control items, change passwords upon staff turnover. 離職人員廠證, 鑰匙及工具交接記錄
19. Processes established for reporting and managing problems related to personnel security. 匯報及處置人員安全相關問題的程序
20. Policies/procedures to provide special training to employees in cargo handling departments. 貨倉人員安全意識培訓程序及培訓記錄
21. Policies/procedures to train employees to challenge and report any unauthorized personnel.
培訓員工盤問與匯報非授權人員的程序
22. Facility to provide training to employees in detecting fraudulent documentation and computer security.
工廠應該為員工提供識別虛假文件及電腦安全方面的培訓
23. Employees offered incentives for recognizing and reporting suspicious situations and/or recommending improvements
where security is compromised. 員工舉報內部陰謀與可疑情況,或者對危害安全提出改進建議的獎勵政策
24. Procedures to track outgoing goods vehicles to their final destination. 追蹤離廠貨運車輛的程序及記錄
25. 7 point container inspection carried out prior to loading. 裝柜前的7點檢查記錄
26. Are ISO/PAS 17712 compliant Security Seals used to secure all outbound containers and trailers.
所有離境的貨柜或運輸車輛需使用通過ISO/PAS 17712認證的安全封條
27. Records of the security seals used. 安全封條使用記錄
28. Procedures/records to verify, control and track seals used. 裝柜封箱(封條)追蹤驗證程序
29. Written processes for the selection of business partners and service providers including product suppliers and local
transportation companies. 甄選商業合作伙伴,服務提供商包括產品供應商與當地運輸公司的書面程序
30. Minimum security requirements and guidelines identified for the business partners to comply.
商業合作伙伴所需遵守的基本安全要求與方針
分享到:
