Professional Documents
Culture Documents
C. Audit Preparation
G. Workshop / Exercises
I. Post-training examination
ISO 9001:2015 Review
Review of selected QMS Key Terms
Quality: Degree to which a set of inherent characteristics fulfills
requirements
System: Set of interrelated or interacting elements
Management system: System to establish policy and objectives and
achieve
those objectives
Quality management system: Management system to direct and
control an organization with regard to quality
Risk-based thinking:
• Opportunities: can arise as a result of a situation favorable to
achieving an intended result
• Risk: effect of uncertainty can have (+ or -)
ISO 9001:2015 High Level Structure
1. Scope
2. Normative references
3. Terms and definitions
4. Context of the organization
5. Leadership
6. Planning
7. Support
8. Operation
9. Performance evaluation
10. Improvement
ISO 9001:2015 Requirements
• Plan for the determining the need for changes to the QMS and managing
their implementation?
Audit sample questions and evidences
Documented information:
• Quality Objectives
ISO 9001:2015 Review
7 Support
7.1 Resources
7.1.1 General
7.1.2 People
7.1.3 Infrastructure
7.1.4 Environment for the operation of processes
7.1.5 Monitoring and measuring resources
7.1.6 Organizational knowledge
ISO 9001:2015 review
7.2 Competence
7.3 Awareness
7.4 Communication
7.5 Documented information
7.5.1 General
7.5.2 Creating and updating
7.5.3 Control of documented information
Audit sample questions and evidences
• Determined and provided the resources needed for the establishment
implementation maintenance and continual improvement of the QMS?
• Monitoring or measuring used for evidence of conformity of products
and services?
• Infrastructure necessary for the operation of processes available?
Audit sample questions and evidences
• Determined the knowledge necessary for the operation of its processes
and achievement of conformity of products and services?
• Persons who can affect the performance and effectiveness of the QMS
are competent on the basis of appropriate education, training, or
experience or taken action to ensure that those persons can acquire the
necessary competence?
• Persons doing work under their control are aware of the :
– quality policy and objectives?
– their contribution to QMS?
– the implications of not conforming?
Audit sample questions and evidences
• Determined internal and external communications relevant to the QMS?
• Documented information required by the standard and necessary for the
effective implementation and operation of the QMS established?
Documented information:
• Evidence of fitness of purpose of monitoring and measurement resources
• Evidence of competence
• Documented information as evidence of conformity
• Documented information of external origin
ISO 9001:2015 review
8 Operation
8.1 Operational planning and control
8.2 Requirements for products and services
8.2.1 Customer communication
8.2.2 Determining the requirements for products and services
8.2.3 Review the requirements for products and services
8.2.4 Changes to requirements for products and services
Documented information:
• Nature of NC and actions taken
• Results of Corrective action
Auditing Objectives, Principles, and
Concepts
Objectives of an Audit
• Certification or internal audit
• Assess effectiveness, doubtful performance
• Verify compliance
– Regulatory or contractual requirements
– After significant changes
• Needs from supplier evaluation
• Identify opportunities for improvement
Terms Relating to Audit. . .
AUDIT
Systematic, independent and documented process for obtaining
objective evidence and evaluating if objectively to determine the
extent to which audit criteria are fulfilled
AUDIT CRITERIA
Set of requirements used as a reference against which objective
evidence is compared
Terms Relating to Audit. . .
OBJECTIVE EVIDENCE
Data supporting the existence or verity of something
AUDIT FINDINGS
Results of the audit evaluation of the collected audit evidence
against audit criteria
AUDITOR
Person who conducts an audit
Principles of Auditing ISO 19011:2018
Principles Details
CHECK
Stages of a Certification Audit
• Good communicator
• Tactful and diplomatic
• Firm and tenacious • Inquisitive
• Able to judge significance • Patient
• Capable to decide priorities • Analytical, Flexible
• Knowledgeable • Good Planner
• Professional
• Self disciplined
• Good listener
The “Ideal” Auditor?
Objective:
To understand each
phase of the audit cycle
Internal Auditing ( 9.2 ISO9001:2015 )
• Effective implementation/maintained
• Audit program
– Importance of process
– Changes
– Previous audit results
Audit Preparation
• Time and Resources
• Prepare checklist
• Review documentation
Advantages of Audit Plan
• Clarifies Purpose of Audit
• Time required
Logbook
Checklist
Audit plan
Report Forms
ISO Standard
Sources for the Creation of Checklist
• ISO Standard Requirements
• Knowledge of Industry
• Previous Checklist
Verify Process Ability
• Objectives
• Input/output
• Activities control
• Resources
• Monitoring, measurement, analysis
• Continual improvement
• Interrelation and interaction with other processes
Checklist - templates
Unit / Location Top Management
Auditor (A) Rodney
Auditee Tony
Date July 30, 2019
Clause Item / Question C NC Remarks
5.1.1 Has top Mgmt. taken Accountabili
accountability for the ty seen by
effectiveness of QMS? showing QP
Conducting On-Site Audit
Objective:
Purpose
– Confirm agreement to audit plan
– Introduce team
– Ensure that all planned audit activities can be performed
Consider
– Audit methods to manage risks to the organization
– Auditee informed of audit progress
– Confidentiality and information security
Process Approach to Auditing((ISO 19011: 2018 A.2)
OBSERVE CHECK
(see what they (what the process says they
actually do) should do)
Type of Questions
OPEN QUESTION
Closed Questions
Interviewing Process
• Identify individual to be audited
• Introduce yourself
• Explain why you are there
• Ask open question(s)
• Do “show me please”
• Check facts and make notes
• Thank the auditee
• Identify next auditee on trail
Auditors Should:
• Avoid “ nit-picking”
• Take good points into accounts
• Be punctual
• Perform all tasks
• Avoid argument and audit against specification and
system not individual
• Respect confidentiality
• Record objective evidence
Professional Judgment ( ISO19011:2018 A.3 )
Auditors should apply professional judgment during the audit process
While processes and what they achieve are important, the result of
the management system and its performance are what counts
• Customer requirements
• Statutory and regulatory requirements
• System requirements
NONCONFORMITIES (N):
The lead auditor evaluates the submitted corrective actions and confirms
acceptance thereof. The implementation and effectiveness of corrective
actions will be verified in the next audit.
Nonconformity Classification
Detail of NC
Auditor:
Corrective Remarks
Action
By: Verified by:
Discuss and Agree Findings
• Don’t raise nonconformities / findings in front of staff, if possible
• Raise, at first opportunity, with Guide/Dept Heads
• Resolve problems by discussion
• Agree corrective action timetable
Preparing Audit Report (ISO 19011: 2018 6.5)
• Audit objectives
• Audit Scope
• Audit client
• Audit team leader and members
• Audit criteria
• Audit findings
• Audit conclusions
Closing Meeting (ISO 19011: 2018 6.4.10 )
Identify Solution
Implement, Close
Follow –up Action (ISO 19011: 2018 6.7)
• Report circulated
• Audit program updated
• Checklist filed
• Corrective action performed
• Trends/findings fed to management review
• Corrective action verified
Auditor Selection and Evaluation
Indicators of competence:
• Education
• Work Experience
• Training
Selection of Auditors
Education
Auditor’s should have:
✓Completed at least secondary education
✓Demonstrated competence in clearly and fluently expressing
concepts and ideas orally and in writing in their agreed language.
Training
Auditor’s training should cover:
✓Knowledge and understanding of the standard including legal and other
requirements
✓Assessment techniques
✓Skills required for managing an audit
Work Experience
✓Should be in a position where the activities undertaken helped
develop skills and knowledge in MS.
Reference: