Integrated Management System · Annex SL

Run every ISO standard as one integrated system

Stop running ISO 9001, 14001, 45001, 27001 and 42001 as separate systems that happen to share a building. PICMS merges the Annex SL clauses 4–10 they all share — one set of shared evidence, a weakest-link readiness score, and a downloadable Integrated Management System Manual. Built by an IRCA Registered Principal Auditor.

Start Free Trial Book a Demo

One system, not several stapled together

Most businesses running three ISO standards are really running three systems. An integrated management system fixes that — by design, not by staple.

An integrated management system (IMS) runs two or more management-system standards as a single system rather than as separate, parallel ones. Instead of a quality manual over here, an environmental aspects register over there and a health-and-safety risk assessment somewhere else entirely — three sets of documents, three review cycles, three chances for something to quietly go out of date between audits — you have one of each, covering everything in scope.

The most common combinations for UK SMEs are the ISO 9001 / 14001 / 45001 quality-environment-safety trio, and ISO 27001 added alongside ISO 9001 when information security becomes a customer requirement. Increasingly, ISO 42001 joins the system as businesses adopt AI. Whatever the mix, the benefit is the same: less duplication, fewer seams, and a single audit trail an auditor can follow.

Write clauses 4–10 once — they satisfy every standard

Here is the structural fact that makes integration possible. Every modern ISO management-system standard is written to the same template, called Annex SL. The numbered clauses 4 to 10 are shared word-for-structure across them:

Write context, leadership commitment, document control, internal audit and management review once, and they satisfy every standard in scope simultaneously. Only the discipline specific to each standard — environmental aspects for ISO 14001, hazards for ISO 45001, Annex A controls for ISO 27001 and 42001 — is unique. Everything else is shared. An IMS that ignores this ends up with three copies of the same document and three audits that ask the same questions; one that embraces it writes the shared half once.

An Integrated (IMS) view that merges the shared clauses

PICMS is built around the Annex SL insight rather than bolting standards together after the fact.

Merged clauses 4–10

The Integrated (IMS) view shows the shared Annex SL clauses once across whichever standards you hold, with the standard-specific clauses branching off — so you maintain the common half a single time.

Shared evidence

Upload a training matrix or document-control procedure once and it appears against every standard it satisfies — not filed three times in three folders. That is how auditors assess an integrated system.

Weakest-link readiness score

Your integrated system is only as ready as its least-prepared clause. PICMS scores the whole IMS on that basis — no hiding a weak environmental aspects register behind a strong quality manual.

Downloadable IMS Manual

Generate an Integrated Management System Manual PDF that documents the combined system — scope, policy, the shared clauses and the standard-specific additions — ready to hand to your auditor.

One audit, one review

A single internal audit programme and one management review cover every standard in scope, with shared CAPA — the integrated equivalent of the combined surveillance visit your certification body will run.

Cross-standard AI mapping

AI evidence mapping and gap analysis run across the whole system at once, so a single uploaded record is linked to every clause of every standard it supports.

SMEs and consultants holding two or more standards

IMS software earns its place the moment you hold a second standard. With one standard, a focused single-standard setup is enough. With two or more, you start duplicating documents, audits and reviews to serve both — and that duplication is exactly what an integrated system removes.

You are Typical scope Why an IMS helps
A UK SME with the QHSE trio ISO 9001 + 14001 + 45001 One manual, one audit, one review instead of three — the single biggest duplication saving.
An SME adding information security ISO 9001 + 27001 (sometimes 27701) Shared context, leadership and document control; Annex A bolts on without rebuilding the spine.
A business adopting AI ISO 27001 + 42001 AI governance integrates with information security rather than starting a separate system.
An ISO consultant Several clients, each with 2+ standards Manage every client's integrated system from one workspace, with the IMS Manual generated per client.

Consultants in particular benefit: the Consultant tier provides isolated per-client workspaces, so you can run each client's integrated system under your own brand without rebuilding the shared clauses from scratch on every engagement.

Integrated management system software FAQs

What is an integrated management system (IMS)?

An integrated management system runs two or more management-system standards — for example ISO 9001 (quality), ISO 14001 (environmental) and ISO 45001 (health and safety) — as a single system rather than as separate, parallel ones. Instead of three quality manuals, three review cycles and three internal audit programmes, you have one of each, covering everything in scope. The standards share most of their structure, so an integrated system removes duplicated documents, duplicated audits and the seams where things go out of date between certifications.

How does Annex SL make integration possible?

Modern ISO management-system standards — ISO 9001, 14001, 45001, 27001 and 42001 — are all written to the same high-level structure called Annex SL. Clauses 4 to 10 (context, leadership, planning, support, operation, performance evaluation and improvement) are shared across them. That means you write context, leadership commitment, document control, internal audit and management review once, and they satisfy every standard in scope at once. The discipline that is specific to each standard (environmental aspects, hazards, Annex A controls) bolts onto that shared spine.

How does PICMS run standards as one integrated system?

PICMS provides an Integrated (IMS) view that merges the Annex SL clauses 4 to 10 across whichever standards you hold, so shared evidence appears once against every standard it satisfies rather than being filed multiple times. It calculates a weakest-link readiness score — your integrated system is only as ready as its least-prepared clause — and generates a downloadable Integrated Management System Manual PDF that documents the combined system for your auditor.

Who is integrated management system software for?

It is for UK SMEs holding two or more ISO standards — commonly the ISO 9001 / 14001 / 45001 trio, or ISO 27001 added alongside 9001 — and for ISO consultants who manage integrated systems on behalf of several clients. If you only hold a single standard, a focused single-standard setup is enough; the value of IMS software appears the moment you have a second standard and start duplicating documents, audits and reviews to serve both.

Does an IMS mean one certificate for all standards?

No — you still hold a separate certificate for each standard, issued by an accredited certification body. What an integrated management system changes is the system behind those certificates: one manual, one set of shared procedures, one audit programme and one management review feeding all of them. Certification bodies routinely audit integrated systems and will often combine surveillance visits, which can reduce audit days. PICMS supports readiness for that combined audit; it does not issue the certificates.

What PICMS does not do

  • PICMS does not issue ISO certificates. Each standard is certified separately by an accredited certification body. PICMS gets the integrated system ready and keeps it ready.
  • PICMS does not merge standards that shouldn't be merged. Integration is a discipline, not a shortcut — the standard-specific clauses stay distinct, and a competent person still owns the system.
  • An empty register scores zero, not 100%. The weakest-link score is deliberately unforgiving: absence of evidence is a finding, not a pass.

What PICMS does is let you maintain the shared half of your management system once, and present the whole integrated system to an auditor as a single, traceable source of truth.

Related reading

Maintain the shared half of your system once.

14 days free, full feature access, no credit card surprise. Merge clauses 4–10 across every ISO standard you hold and generate your Integrated Management System Manual.

Start Free Trial Book a Demo View Pricing