Management systems

A process-oriented company is expected to establish a system compliant with the process complexity which meets its needs and can enable efficacious development of the process. Such orientation resulted in the Company's strategy for establishing and implementing of globally accepted, recognizable and applicable standards. The Company's Development Plan includes a plan of management systems which is aimed at achieving the integrated management systems and specifying the activities for fulfilment of these targets.

QUALITY MANAGEMENT SYSTEM ISO 9001 (QMS)

Activities of this management system are based on the following:

  • ­Developing the activities on improvement and maintenance of established system EN ISO 9001:2015;
  • ­Activities by which the company identifies its goals and establishes processes and resources required to achieve a desired result;
  • ­Updating and preparation of the documents of integrated management system in compliance with the standard EN ISO 9001:2015;
  • ­Conducting the internal and external audits, inspections and controls;
  • ­Upgrading and improving the processes by monitoring, measuring and analysing the performances of integrated management system, as well as implementation of the measures being necessary to achieve planned results;
  • ­Managing the risks and chances related to quality foe all business processes of the Company. Implementation of methods, techniques and tools aimed at reduction of the impact of risks to business;
  • Promoting the quality system to all interested parties;
  • Training and motivating the employees to gain necessary competence and awareness on importance of developing and maintaining a positive attitude towards systems and work environment.

ENVIRONMENTAL MANAGEMENT SYSTEM ISO 14001 (EMS)

Since 2010 the implemented environmental management system has bee obliging Sarajevo International Airport to continuously plan, check and evaluate the efficiency of the measures being taken on protection of the environment.

Basic activities of this management system are based on the following:

  • Activities on upgrading and maintaining the established system EN ISO 14001:2015;
  • ­Identifying, measuring and evaluating the environmental aspects, as well as planning and realizing of programs and targets for efficacious and effective reduction of environmental impacts;
  • ­Risk assessment regarding environmental management through systemic approach to all business processes of the Company;
  • ­Managing the identified risks and chances in order to assure they are in accordance with legal, regulatory and contract requirements, what will also include adequate responses to new threats;
  • ­Education and raising the employees' awareness on all levels of the Company regarding importance of developing and maintaining the system and achieving necessary competence;
  • ­Implementing the activities being necessary for maintaining the Environmental permit.

INFORMATION SECURITY MANAGEMENT SYSTEM ISO 27001 (ISMS)

Activities of this management system are based on the following:

  • ­Implementation of activities aimed at upgrading and maintaining of the Information Security Management System in accordance with ISO/IEC 27001:2013 and established controls in compliance with the last Statement of Applicability (SoA);
  • ­Risk assessment from aspect of information security through systemic process of risk assessment;
  • ­Management of identification risks in order to keep them in compliance with legal, regulatory and contract requirements, as well as expectations of users of airport services, what will also include adequate response s to new threats;
  • ­ Conducting the annual programs of raising the awareness on information security on all level within the Company related to:
    • Internal information that are the Company's property,
    • Information obtained from users of airport services/partners,
    • Information pertaining to users of airport services and which were created, processed, downloaded or transmitted during realization of the airport services,
    • All other resources necessary for provision of services to buyers and users of airport services.
  • ­Maintenance of the certificate of the Information Security Management System.

CERTIFICATES

Certificates on compliance with the latest international standards are an additional incentive for Sarajevo International Airport to continue its policy of investing into development of the company in order to keep being on an upturn regarding the level of rendered services and positive trend of future business activities.

INTEGRATED MANAGEMENT SYSTEM POLICY