New Supplier

Empowering Success Together

To accomplish our mission to be the CENTRE OF EXCELLENCE for Composites and Aerospace, we are always seeking for new partners to optimize our supply base.  If you share our values and ambition, and interested to be CTRM’s valuable partner, please contact us via email at norhamdan.mohamad@ctrm.com.my

Supplier Quality Requirements

SQR (Supplier Quality Requirements) define the quality requirements for suppliers doing business with CTRM Sdn Bhd. These documents employ, as a foundation, SAE Aerospace Standard (AS) 9100 requirements and are supplemented by CTRM Sdn Bhd requirements as defined in the documents listed below. CTRM Sdn Bhd reserve the right to flow down additional requirements to satisfy specific customer requirements.

Compliance with SQR is mandatory when it is called out in CTRM Purchase Order.

For latest SQR copies and related forms, click to download:

SQR 001 REVISION F – SUPPLIER QUALITY REQUIREMENT – GENERAL
SQR 002 REVISION A – DELEGATED QUALITY REPRESENTATIVE PROGRAM (DQRP)
SQR 003 REVISION D – SUPPLIER RATING SYSTEM
SQR 004 REVISION A – DPD & MBD QUALITY ASSURANCE REQUIREMENT FOR SUPPLIER
SQR 005 REVISION A – SUPPLIER QUALITY ASSURANCE PLAN (QAP)
SQR 006 REVISION B – APQP & PPAP

Associated forms in the SQR can be retrieved here:

SQR 001 REVISION F – COMPLIANCE FORM
CUSTOMER SPECIFIC REQUIREMENT MATRIX
Form 479 REVISION G – SUPPLIER REQUEST FOR CHANGE
Form 542 REVISION C – SUPPLIER NOTICE OF ESCAPE
Form 906 REVISION D – SUPPLIER INCIDENT NOTIFICATION
Form 1089 REVISION A – RISK REGISTRY

Personal Data Protection Act

To all our valued suppliers, we would like to advise that the Personal Data Protection Act 2010 (PDPA) has come into force on 15th November 2013. Thus we seek your consent to manage the data.

Attached herewith the Privacy Notice for your reading and understanding. (Click to download)

Whistleblower Policy

In order to improve efficiency and strengthen procurement policies as well as integrity, the following procedures will be imposed with immediate impact.

Any irregular business dealings between employees and vendors such as accepting bribes, cronyism, owning a stake (directly or through third parties) in vendor’s company any other types of behaviour that is not normal in the ordinary course of business must be reported directly to the Head of Group Internal Audit Division at the following contact details:

Whistle Blower Toll Free No :        1800-88-2005

Facsimile No                        :         03-2052 8959

APQP Program

To all our valued suppliers,

APQP and PPAP are required when invoked pursuant to a Purchase Order (PO) or any other contractual document issued by CTRM AC. APQP and PPAP may also be required as part of a quality initiative such as the Supplier Improvement Program.

APQP & PPAP basically apply to the below conditions:

  • New or derivative Program - New Product Introduction
  • Major Modifications (Product or Process)
  • Transfer of Work

For further clarification of CTRM AC APQP & PPAP requirements or any assistance required, you may contact CTRM AC’s buyer (Procurement)

Cybersecurity

Nowadays, cybersecurity is a rising concern for all companies, including the aerospace supply chain. All companies regardless of size is recommend to adopt a heightened posture when it comes to cybersecurity. Cyber threats come in many forms, such as intellectual and property theft (data leakage), physical and cyber threats (viruses, ransomware) and industrial sabotage (internal or external). Companies may suffer from production and operational disruption, economic impact, reputational and brand damage, and legal consequences.

It is very critical that you take appropriate steps to protect your company’s networks and critical assets. At a minimum, you should consider the following actions:

  1. Review the Feb. 16 advisory from CISA and subsequent messages, along with additional information provided on the Shields Up website. ( https://www.cisa.gov/ )
  2. Recommend using ISO 27001:2013 Information Security Management System as a guideline
  3. Report cyber incidents immediately to the authorized party
  4. Report incidents to CTRM in accordance with the notification requirements of your purchase order and contract