SlideShare a Scribd company logo

The Criticality of Auditing in Maintaining Certified Quality Management

PECB
PECB

We will cover: • The role of auditing in the implementation, development, and continuous improvement of a QMS based on ISO 9001 • Best audit practices • The shift towards risk based auditing with the advent of the 2015 version of the ISO 9001 Standard Presenter: This webinar will be presented by Jacob Alexander McLean, the Principal Consultant and Managing Director of Kaizen Training & Management Consultants Limited.

Education
1 of 30
The Criticality of Auditing in Maintaining a Certified Quality Management System Jacob A. McLean PECB Certified Trainer & ISO 9001/14001 Lead Auditor, M.Sc., MBA, CSP, QEP, CET 1
Session Contents • Overview of Management Systems Auditing • Audit Criteria • Maximizing Audit Value Through Risk-based Thinking • Risk in the ISO FDIS 9001:2015 Standard • Risk-based Quality Auditing • Principles of Auditing • Competence in Auditing • Purpose of Quality Management System Auditing • Benefits of Auditing • Summary of Key Points • References 2
Management System Auditing • ISO 19011:2011 defines an audit as a systematic, independent and documented process for obtaining audit evidence and evaluating it objectively to determine the extent to which the audit criteria are fulfilled • Audits are independent, unbiased, fact-finding exercises that provide information for decision making 3
Management System Auditing • External Audits – include second and third party audits  Second party audits are conducted by parties having an interest in the organization, such as customers, or by other persons on their behalf  Third party audits are conducted by independent auditing organizations, such as regulators or those providing certification 4
Management System Auditing • Combined Audit: – two or more management systems of different disciplines audited together (e.g. quality, environmental, occupational health and safety) 5
Management System Auditing • Process Audit: – Verification that process procedures exist, are correct and being followed – Checks whether process is in conformance with requirements – May be used to investigate an entire process or an action – Boundaries for process audits are strictly defined 6
Management System Auditing • Internal Audits –Sometimes called first party audits, are conducted by the organization itself, or on its behalf for management review and other internal purposes –For example to confirm the effectiveness of the management system or obtain information for its improvement 7
Audit Criteria • Can be: – Conformance to requirements – Project milestones – Results of improvement initiatives – Adherence to procedures, timelines, etc. 8
Audit Criteria • Sources: – Legal and regulatory requirements – Customer contracts – ISO standards – Organizational policies – Organizational procedures 9
Audit Criteria Categories: – Reference standards: external to the organization such as regulations, contracts, ISO standards that establish minimum requirements – Performance standards: internal documents such as standard operating procedures, work instructions, drawings or other documents which describe how requirements will be met 10
Maximizing Audit Value Through Risk-based Thinking • ISO 31000 defines risk as the effect of uncertainty on objectives • Risk management is coordinated activities to manage risks within an organization 11
Maximizing Audit Value Through Risk-based Thinking • A risk management process is the systematic application of management policies, procedures and practices to the activities of communicating, consulting, establishing the context, and identifying, analyzing, evaluating, treating, monitoring and reviewing risk. 12
Risk in the ISO/FDIS 9001:2015 Clauses 13 Process Approach, Leadership, Planning: • In Clause 4 the organization is required to determine the risks which can affect its ability to meet these objectives • In Clause 5 top management are required to commit to ensuring Clause 4 is followed • In Clause 6 the organization is required to take action to address risks and opportunities
Risk in the ISO/FDIS 9001:2015 Clauses 14 Operation, Evaluation, Improvement: • Clause 8 - the organization is required to have processes which identify and address risk in its operations • Clause 9 the organization is required to monitor, measure, analyse and evaluate the risks and opportunities • In Clause 10 the organization is required to improve by responding to changes in risk
Risk-based Quality Auditing • Risk based quality Auditing occurs in three levels, based on maturity of organization : • Level 1 – Planning and reporting based on risk – occurs naturally within most audit programs 15
• Level 2 – Evaluating how well risk management is incorporated into individual quality management system processes • Level 3 – Determining enterprise-level risks relating to quality management system processes 16 Risk-based Quality Auditing
• Maturity of QMS determines level of risk management organization implements • Integrating risk management formally into internal audit process: – Changes to annual audit plan based on areas of concern/opportunity identified in management review and use of risk-based methodologies 17 Risk-based Quality Auditing
– Utilizing definitions and methodology for classifying audit findings based on previously determined risk assessment matrix – Reporting audit results and recommendations based on audit findings that reflect risk assessments determined during the audit process 18 Risk-based Quality Auditing
Principles of Auditing • Integrity: the foundation of professionalism • Fair presentation: the obligation to report truthfully and accurately • Due professional care: the application of diligence and judgement in auditing • Confidentiality: security of information 19
Principles of Auditing • Independence: the basis for the impartiality of the audit and objectivity of the audit conclusions • Evidence-based approach: the rational method for reaching reliable and reproducible audit conclusions in a systematic audit process 20
Competence in Auditing • Auditing requires competence (knowledge and skills) • Certification of auditors is based on relevant training and experience • To be effective, auditors must engage in continual improvement through study and practice 21
Purpose of Quality Management System Auditing • Fundamental auditing questions: – Are requirements being met? – Are there opportunities for improvement? • Determination of implementation and effectiveness of management system 22
Purpose of Quality Management System Auditing • Provision of leading indicator of performance • Promotion of early detection of problems and identification of root causes • Provides management with objective feedback leading to informed decisions 23
Specific Auditing Purposes • Ensures: – Fitness of products for use – Adequate written procedures exist and are utilized – Compliance with legal and regulatory requirements – Identification of deficiencies in products or the management system – Conformance with specifications 24
Specific Auditing Purposes • Ensures: – Corrective action is taken and results verified as effective – Information to identify and reduce risks is obtained – organization’s resources are effectively and efficiently used – Existence of standardized organizational practices and continual improvement 25
Benefits of Auditing • Organizational effectiveness – Information for management decisions – Potential risks identified – Assessment of resource capabilities (e.g. people and equipment) – Identification of cost reduction opportunities – Maintenance of customer goodwill • Business performance – Cost control – Opportunity identification – Risk management – Continual improvement 26
Benefits of Auditing • Improvement in system effectiveness – Discovery of potential efficiencies in interrelated processes • Improvement in process effectiveness – Through examination of interactions with other processes and resources and controls utilized • Improvement in performance measurement – Provision of timely information to top management – Facilitation of changes that lead to greater effectiveness • Establishment of trusting relationships internally and externally 27
• Audits determine if requirements are being met and if there are opportunities for improvement • Audits are a prime risk assessment tool • Audits are indispensable in maintenance and continual improvement of management systems 28 Summary of Key Points
Anderson, P. & Worthman, B (1994). Quality auditor primer. Terre Haute, IN. ASQ. (2014). Certified HACCP, auditor (CHA) Certification preparation Coleman, L.B. (2015). Advanced quality auditing. Milwaukee, WI: ASQ. ISO 9001:2015 FDIS ISO 19011:2011 Guidelines for Auditing Management Systems Parsowith, B.S. (1995). Fundamentals of quality auditing. Milwaukee, WI : ASQ. 29 References
THANK YOU! Kaizen Training and Management Consultants Limited 22B Old Hope Road, Kingston 5 Jamaica, West Indies Phone (land line): (876) 631- 0365 Phone (mobile): (876) 475 – 1963 Fax : (876) 906 – 7423 Email: ktmclimited@gmail.com Website: www.ktmcltd.com 30

Recommended

Chapter 4
Chapter 4Chapter 4
Chapter 4bugbuster123
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsInternal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsNimonik
 
Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Support for Improvement in Governance and Management SIGMA
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal auditSalih Islam
 
Audit and regulatory compliance
Audit and regulatory complianceAudit and regulatory compliance
Audit and regulatory complianceArchana Chavhan
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management FrameworkTreasury Consulting LLP
 
Internal controls myths and best practices
Internal controls myths and best practicesInternal controls myths and best practices
Internal controls myths and best practicesPamela Mantone
 
PECB Webinar: ISO Internal Audits - A signpost to ISO compliance
PECB Webinar: ISO Internal Audits - A signpost to ISO compliancePECB Webinar: ISO Internal Audits - A signpost to ISO compliance
PECB Webinar: ISO Internal Audits - A signpost to ISO compliancePECB
 

Recommended

Chapter 4
Chapter 4Chapter 4
Chapter 4bugbuster123
 
Internal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsInternal Audit Best Practices for Safety, Environment, and Quality Audits
Internal Audit Best Practices for Safety, Environment, and Quality AuditsNimonik
 
Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Presentation 11, Test of controls of the system, Workshop on System-based aud...
Presentation 11, Test of controls of the system, Workshop on System-based aud...Support for Improvement in Governance and Management SIGMA
 
New approaches in internal audit
New approaches in internal auditNew approaches in internal audit
New approaches in internal auditSalih Islam
 
Audit and regulatory compliance
Audit and regulatory complianceAudit and regulatory compliance
Audit and regulatory complianceArchana Chavhan
 
Internal Control & Risk Management Framework
Internal Control & Risk Management FrameworkInternal Control & Risk Management Framework
Internal Control & Risk Management FrameworkTreasury Consulting LLP
 
Internal controls myths and best practices
Internal controls myths and best practicesInternal controls myths and best practices
Internal controls myths and best practicesPamela Mantone
 
PECB Webinar: ISO Internal Audits - A signpost to ISO compliance
PECB Webinar: ISO Internal Audits - A signpost to ISO compliancePECB Webinar: ISO Internal Audits - A signpost to ISO compliance
PECB Webinar: ISO Internal Audits - A signpost to ISO compliancePECB
 
COSO Framework Model
COSO Framework ModelCOSO Framework Model
COSO Framework ModelTownofAddison
 
Internal controls
Internal controlsInternal controls
Internal controlsGeetali Tare
 
COSO 2013 and The Auditor
COSO 2013 and The AuditorCOSO 2013 and The Auditor
COSO 2013 and The AuditorCorporate Compliance Seminars
 
Specialised audit
Specialised auditSpecialised audit
Specialised auditpreeti garg
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IASalih Islam
 
2019_SOU_Internal_Audit.pptx
2019_SOU_Internal_Audit.pptx2019_SOU_Internal_Audit.pptx
2019_SOU_Internal_Audit.pptxBingkyAresiaLandaric2
 
Audit and nursing audit
Audit and nursing auditAudit and nursing audit
Audit and nursing auditEkta Patel
 
A COSO Based Risk & Control Framework
A COSO Based Risk & Control FrameworkA COSO Based Risk & Control Framework
A COSO Based Risk & Control FrameworkJhurt7103
 
Foundation of Control
Foundation of ControlFoundation of Control
Foundation of ControlIslamia Univeristy Bahawalpur Bahawalnagar
 
Control
ControlControl
ControlMonty Abhijit
 
Internal Audit COSO Framework
Internal Audit COSO FrameworkInternal Audit COSO Framework
Internal Audit COSO FrameworkJesús Gándara
 
4 process improment
4 process improment4 process improment
4 process impromentAhmed Shoaib
 
Management Control
Management Control Management Control
Management ControlRavi Savita
 
Mobile EHS and Quality Auditing - Lessons Learned
Mobile EHS and Quality Auditing - Lessons LearnedMobile EHS and Quality Auditing - Lessons Learned
Mobile EHS and Quality Auditing - Lessons LearnedNimonik
 
Everything You Need To Know About Internal Control Reviews
Everything You Need To Know About Internal Control ReviewsEverything You Need To Know About Internal Control Reviews
Everything You Need To Know About Internal Control ReviewsAdriana Sklencar
 
Controlling
ControllingControlling
ControllingSartaj
 
Internal Control COSO
Internal Control COSOInternal Control COSO
Internal Control COSOJesús Gándara
 
Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002SARVJEET KAUSHAL
 
Key considerations for an appropriate scope for all management systems
Key considerations for an appropriate scope for all management systemsKey considerations for an appropriate scope for all management systems
Key considerations for an appropriate scope for all management systemsPECB
 
Controlling
ControllingControlling
ControllingSa Na
 
BYOD: Risks and Opportunities
BYOD: Risks and OpportunitiesBYOD: Risks and Opportunities
BYOD: Risks and Opportunitiesbudzeg
 
Iso 22000 lead auditor course fsms - food safety management system - irca c...
Iso 22000 lead auditor course fsms - food safety management system - irca c...Iso 22000 lead auditor course fsms - food safety management system - irca c...
Iso 22000 lead auditor course fsms - food safety management system - irca c...Intertek Moody
 

More Related Content

What's hot

COSO Framework Model
COSO Framework ModelCOSO Framework Model
COSO Framework ModelTownofAddison
 
Specialised audit
Specialised auditSpecialised audit
Specialised auditpreeti garg
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IASalih Islam
 
Audit and nursing audit
Audit and nursing auditAudit and nursing audit
Audit and nursing auditEkta Patel
 
A COSO Based Risk & Control Framework
A COSO Based Risk & Control FrameworkA COSO Based Risk & Control Framework
A COSO Based Risk & Control FrameworkJhurt7103
 
Internal Audit COSO Framework
Internal Audit COSO FrameworkInternal Audit COSO Framework
Internal Audit COSO FrameworkJesús Gándara
 
4 process improment
4 process improment4 process improment
4 process impromentAhmed Shoaib
 
Management Control
Management Control Management Control
Management ControlRavi Savita
 
Mobile EHS and Quality Auditing - Lessons Learned
Mobile EHS and Quality Auditing - Lessons LearnedMobile EHS and Quality Auditing - Lessons Learned
Mobile EHS and Quality Auditing - Lessons LearnedNimonik
 
Everything You Need To Know About Internal Control Reviews
Everything You Need To Know About Internal Control ReviewsEverything You Need To Know About Internal Control Reviews
Everything You Need To Know About Internal Control ReviewsAdriana Sklencar
 
Controlling
ControllingControlling
ControllingSartaj
 
Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002SARVJEET KAUSHAL
 
Key considerations for an appropriate scope for all management systems
Key considerations for an appropriate scope for all management systemsKey considerations for an appropriate scope for all management systems
Key considerations for an appropriate scope for all management systemsPECB
 
Controlling
ControllingControlling
ControllingSa Na
 

What's hot (20)

COSO Framework Model
COSO Framework ModelCOSO Framework Model
COSO Framework Model
 
Internal controls
Internal controlsInternal controls
Internal controls
 
COSO 2013 and The Auditor
COSO 2013 and The AuditorCOSO 2013 and The Auditor
COSO 2013 and The Auditor
 
Specialised audit
Specialised auditSpecialised audit
Specialised audit
 
The Consulting Approach of IA
The Consulting Approach of IAThe Consulting Approach of IA
The Consulting Approach of IA
 
2019_SOU_Internal_Audit.pptx
2019_SOU_Internal_Audit.pptx2019_SOU_Internal_Audit.pptx
2019_SOU_Internal_Audit.pptx
 
Audit and nursing audit
Audit and nursing auditAudit and nursing audit
Audit and nursing audit
 
A COSO Based Risk & Control Framework
A COSO Based Risk & Control FrameworkA COSO Based Risk & Control Framework
A COSO Based Risk & Control Framework
 
Foundation of Control
Foundation of ControlFoundation of Control
Foundation of Control
 
Control
ControlControl
Control
 
Internal Audit COSO Framework
Internal Audit COSO FrameworkInternal Audit COSO Framework
Internal Audit COSO Framework
 
4 process improment
4 process improment4 process improment
4 process improment
 
Management Control
Management Control Management Control
Management Control
 
Mobile EHS and Quality Auditing - Lessons Learned
Mobile EHS and Quality Auditing - Lessons LearnedMobile EHS and Quality Auditing - Lessons Learned
Mobile EHS and Quality Auditing - Lessons Learned
 
Everything You Need To Know About Internal Control Reviews
Everything You Need To Know About Internal Control ReviewsEverything You Need To Know About Internal Control Reviews
Everything You Need To Know About Internal Control Reviews
 
Controlling
ControllingControlling
Controlling
 
Internal Control COSO
Internal Control COSOInternal Control COSO
Internal Control COSO
 
Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002Coso guidance on_monitoring_intro_online1_002
Coso guidance on_monitoring_intro_online1_002
 
Key considerations for an appropriate scope for all management systems
Key considerations for an appropriate scope for all management systemsKey considerations for an appropriate scope for all management systems
Key considerations for an appropriate scope for all management systems
 
Controlling
ControllingControlling
Controlling
 

Viewers also liked

BYOD: Risks and Opportunities
BYOD: Risks and OpportunitiesBYOD: Risks and Opportunities
BYOD: Risks and Opportunitiesbudzeg
 
Iso 22000 lead auditor course fsms - food safety management system - irca c...
Iso 22000 lead auditor course fsms - food safety management system - irca c...Iso 22000 lead auditor course fsms - food safety management system - irca c...
Iso 22000 lead auditor course fsms - food safety management system - irca c...Intertek Moody
 
Iso9001 2008 Transition Asq Govind
Iso9001 2008 Transition Asq GovindIso9001 2008 Transition Asq Govind
Iso9001 2008 Transition Asq GovindGovind Ramu
 
ISO Annex SL Clause 7: Support
ISO Annex SL Clause 7: SupportISO Annex SL Clause 7: Support
ISO Annex SL Clause 7: SupportRobert Clements
 
Building Practical Risk Application into your QMS
Building Practical Risk Application into your QMSBuilding Practical Risk Application into your QMS
Building Practical Risk Application into your QMSPECB
 
Risk Management for Medical Devices - ISO 14971 Overview
Risk Management for Medical Devices - ISO 14971 Overview Risk Management for Medical Devices - ISO 14971 Overview
Risk Management for Medical Devices - ISO 14971 Overview Greenlight Guru
 
Risk Management Requirements Implementation in ISO 9001:2015 Clauses
Risk Management Requirements Implementation in ISO 9001:2015 ClausesRisk Management Requirements Implementation in ISO 9001:2015 Clauses
Risk Management Requirements Implementation in ISO 9001:2015 ClausesCentauri Business Group Inc.
 
QSP 6.1 Actions to address risks and opportunities (Preview)
QSP 6.1 Actions to address risks and opportunities (Preview)QSP 6.1 Actions to address risks and opportunities (Preview)
QSP 6.1 Actions to address risks and opportunities (Preview)Centauri Business Group Inc.
 
Certified ISO 22000 Lead Auditor - Four Page Brochure
Certified ISO 22000 Lead Auditor - Four Page BrochureCertified ISO 22000 Lead Auditor - Four Page Brochure
Certified ISO 22000 Lead Auditor - Four Page BrochurePECB
 
ISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamMotaharul Islam
 
ISO 9001:2015 Review and Why It Is Good (10/28/16)
ISO 9001:2015 Review and Why It Is Good (10/28/16)ISO 9001:2015 Review and Why It Is Good (10/28/16)
ISO 9001:2015 Review and Why It Is Good (10/28/16)Colin Gray
 
20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin
20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin
20150403 - TUV ME - ISO 9001 2015 and Risk Management - LinkdinShibu Davies
 
Implementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet Surti
Implementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet SurtiImplementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet Surti
Implementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet SurtiPraneet Surti
 
The Future of Management ISO 9001:2015
The Future of Management ISO 9001:2015The Future of Management ISO 9001:2015
The Future of Management ISO 9001:2015Colin Gray
 
ISO 9001 IMPLEMENTATION METHODOLOGY
ISO 9001 IMPLEMENTATION METHODOLOGYISO 9001 IMPLEMENTATION METHODOLOGY
ISO 9001 IMPLEMENTATION METHODOLOGYArul Nambi
 
Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...
Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...
Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...Colin Gray
 
ISO 9001 2015 DIS 6.0 Planning Slides
ISO 9001 2015 DIS 6.0 Planning SlidesISO 9001 2015 DIS 6.0 Planning Slides
ISO 9001 2015 DIS 6.0 Planning SlidesColin Gray
 

Viewers also liked (20)

BYOD: Risks and Opportunities
BYOD: Risks and OpportunitiesBYOD: Risks and Opportunities
BYOD: Risks and Opportunities
 
Iso 22000 lead auditor course fsms - food safety management system - irca c...
Iso 22000 lead auditor course fsms - food safety management system - irca c...Iso 22000 lead auditor course fsms - food safety management system - irca c...
Iso 22000 lead auditor course fsms - food safety management system - irca c...
 
Iso9001 2008 Transition Asq Govind
Iso9001 2008 Transition Asq GovindIso9001 2008 Transition Asq Govind
Iso9001 2008 Transition Asq Govind
 
Risk Management in QMS Processes - examples
Risk Management in QMS Processes - examplesRisk Management in QMS Processes - examples
Risk Management in QMS Processes - examples
 
ISO Annex SL Clause 7: Support
ISO Annex SL Clause 7: SupportISO Annex SL Clause 7: Support
ISO Annex SL Clause 7: Support
 
Building Practical Risk Application into your QMS
Building Practical Risk Application into your QMSBuilding Practical Risk Application into your QMS
Building Practical Risk Application into your QMS
 
Risk Management for Medical Devices - ISO 14971 Overview
Risk Management for Medical Devices - ISO 14971 Overview Risk Management for Medical Devices - ISO 14971 Overview
Risk Management for Medical Devices - ISO 14971 Overview
 
Risk Management Requirements Implementation in ISO 9001:2015 Clauses
Risk Management Requirements Implementation in ISO 9001:2015 ClausesRisk Management Requirements Implementation in ISO 9001:2015 Clauses
Risk Management Requirements Implementation in ISO 9001:2015 Clauses
 
QSP 6.1 Actions to address risks and opportunities (Preview)
QSP 6.1 Actions to address risks and opportunities (Preview)QSP 6.1 Actions to address risks and opportunities (Preview)
QSP 6.1 Actions to address risks and opportunities (Preview)
 
Certified ISO 22000 Lead Auditor - Four Page Brochure
Certified ISO 22000 Lead Auditor - Four Page BrochureCertified ISO 22000 Lead Auditor - Four Page Brochure
Certified ISO 22000 Lead Auditor - Four Page Brochure
 
ISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul Islam
 
ISO 9001:2015 Review and Why It Is Good (10/28/16)
ISO 9001:2015 Review and Why It Is Good (10/28/16)ISO 9001:2015 Review and Why It Is Good (10/28/16)
ISO 9001:2015 Review and Why It Is Good (10/28/16)
 
T410 iso 19011
T410 iso 19011T410 iso 19011
T410 iso 19011
 
20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin
20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin
20150403 - TUV ME - ISO 9001 2015 and Risk Management - Linkdin
 
Risk based thinking
Risk based thinkingRisk based thinking
Risk based thinking
 
Implementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet Surti
Implementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet SurtiImplementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet Surti
Implementing Risk Based Thinking in HLS OF ISO 9001:2015 - Praneet Surti
 
The Future of Management ISO 9001:2015
The Future of Management ISO 9001:2015The Future of Management ISO 9001:2015
The Future of Management ISO 9001:2015
 
ISO 9001 IMPLEMENTATION METHODOLOGY
ISO 9001 IMPLEMENTATION METHODOLOGYISO 9001 IMPLEMENTATION METHODOLOGY
ISO 9001 IMPLEMENTATION METHODOLOGY
 
Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...
Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...
Getting The Contex Right: Using Simple SWOT Analysis to Address ISO 9001: 201...
 
ISO 9001 2015 DIS 6.0 Planning Slides
ISO 9001 2015 DIS 6.0 Planning SlidesISO 9001 2015 DIS 6.0 Planning Slides
ISO 9001 2015 DIS 6.0 Planning Slides
 

Similar to The Criticality of Auditing in Maintaining Certified Quality Management

Internal-Audit-Methodology-VV.pdf
Internal-Audit-Methodology-VV.pdfInternal-Audit-Methodology-VV.pdf
Internal-Audit-Methodology-VV.pdfrobinverma31
 
SAI Global Webinar: Tips for Effective Internal Auditing
SAI Global Webinar: Tips for Effective Internal AuditingSAI Global Webinar: Tips for Effective Internal Auditing
SAI Global Webinar: Tips for Effective Internal AuditingSwitzerland09
 
Fundamentals of Auditing PTC
Fundamentals of Auditing PTCFundamentals of Auditing PTC
Fundamentals of Auditing PTCcarroll sams
 
howtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptx
howtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptxhowtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptx
howtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptxHibatulMuqlis
 
Product and Process Audit.pptx
Product and Process Audit.pptxProduct and Process Audit.pptx
Product and Process Audit.pptxukavathekar
 
30-9(ISO9001-2015).pptx
30-9(ISO9001-2015).pptx30-9(ISO9001-2015).pptx
30-9(ISO9001-2015).pptxibr1722011
 
QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008
QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008
QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008Engr. Syed Noor Mustafa Shah
 
Risk elimination and safety committee
Risk elimination and safety committeeRisk elimination and safety committee
Risk elimination and safety committeeHpm India
 
Internal Audit 03-03-16
Internal Audit 03-03-16Internal Audit 03-03-16
Internal Audit 03-03-16Lisa Barnes
 
Topic 8 - Project Quality Management.pdf
Topic 8 - Project Quality Management.pdfTopic 8 - Project Quality Management.pdf
Topic 8 - Project Quality Management.pdfHuyNguyen657394
 
ISO 9001:2015 - Greendot Management Solutions
ISO 9001:2015 - Greendot Management Solutions ISO 9001:2015 - Greendot Management Solutions
ISO 9001:2015 - Greendot Management Solutions Nirav Trivedi
 
continuous improvement in school management (4) .pdf
continuous improvement in school management (4) .pdfcontinuous improvement in school management (4) .pdf
continuous improvement in school management (4) .pdflynnmdasuki1
 
Understanding and Managing Risks in Management Systems Auditing
Understanding and Managing Risks in Management Systems AuditingUnderstanding and Managing Risks in Management Systems Auditing
Understanding and Managing Risks in Management Systems AuditingPECB
 
19600 Compliance Management System Guidelines
19600 Compliance Management System Guidelines19600 Compliance Management System Guidelines
19600 Compliance Management System GuidelinesNimonik
 
19600 compliance management system guidelines
19600 compliance management system guidelines19600 compliance management system guidelines
19600 compliance management system guidelinesNimonik
 
Auditing in pharmacutical industries
Auditing in pharmacutical industriesAuditing in pharmacutical industries
Auditing in pharmacutical industriesPriyanka Kandhare
 
QLAC_2013.ppt
QLAC_2013.pptQLAC_2013.ppt
QLAC_2013.pptmaher30
 

Similar to The Criticality of Auditing in Maintaining Certified Quality Management (20)

Internal-Audit-Methodology-VV.pdf
Internal-Audit-Methodology-VV.pdfInternal-Audit-Methodology-VV.pdf
Internal-Audit-Methodology-VV.pdf
 
SAI Global Webinar: Tips for Effective Internal Auditing
SAI Global Webinar: Tips for Effective Internal AuditingSAI Global Webinar: Tips for Effective Internal Auditing
SAI Global Webinar: Tips for Effective Internal Auditing
 
Fundamentals of Auditing PTC
Fundamentals of Auditing PTCFundamentals of Auditing PTC
Fundamentals of Auditing PTC
 
howtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptx
howtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptxhowtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptx
howtoconductaneffectiveinternalqualityaudit-150913204436-lva1-app6891.pptx
 
How to conduct an effective internal quality audit?
How to conduct an effective internal quality audit?How to conduct an effective internal quality audit?
How to conduct an effective internal quality audit?
 
The EISA Audit Presentation
The EISA Audit PresentationThe EISA Audit Presentation
The EISA Audit Presentation
 
Product and Process Audit.pptx
Product and Process Audit.pptxProduct and Process Audit.pptx
Product and Process Audit.pptx
 
30-9(ISO9001-2015).pptx
30-9(ISO9001-2015).pptx30-9(ISO9001-2015).pptx
30-9(ISO9001-2015).pptx
 
QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008
QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008
QMS - Quality Management System - Internal Quality Auditor - ISO 9001:2008
 
Risk elimination and safety committee
Risk elimination and safety committeeRisk elimination and safety committee
Risk elimination and safety committee
 
Internal Audit 03-03-16
Internal Audit 03-03-16Internal Audit 03-03-16
Internal Audit 03-03-16
 
Topic 8 - Project Quality Management.pdf
Topic 8 - Project Quality Management.pdfTopic 8 - Project Quality Management.pdf
Topic 8 - Project Quality Management.pdf
 
ISO 9001:2015 - Greendot Management Solutions
ISO 9001:2015 - Greendot Management Solutions ISO 9001:2015 - Greendot Management Solutions
ISO 9001:2015 - Greendot Management Solutions
 
continuous improvement in school management (4) .pdf
continuous improvement in school management (4) .pdfcontinuous improvement in school management (4) .pdf
continuous improvement in school management (4) .pdf
 
Understanding and Managing Risks in Management Systems Auditing
Understanding and Managing Risks in Management Systems AuditingUnderstanding and Managing Risks in Management Systems Auditing
Understanding and Managing Risks in Management Systems Auditing
 
19600 Compliance Management System Guidelines
19600 Compliance Management System Guidelines19600 Compliance Management System Guidelines
19600 Compliance Management System Guidelines
 
19600 compliance management system guidelines
19600 compliance management system guidelines19600 compliance management system guidelines
19600 compliance management system guidelines
 
Iso9001 2015
Iso9001 2015Iso9001 2015
Iso9001 2015
 
Auditing in pharmacutical industries
Auditing in pharmacutical industriesAuditing in pharmacutical industries
Auditing in pharmacutical industries
 
QLAC_2013.ppt
QLAC_2013.pptQLAC_2013.ppt
QLAC_2013.ppt
 

More from PECB

DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityDORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityPECB
 
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernanceSecuring the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernancePECB
 
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...PECB
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...PECB
 
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyPECB
 
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...PECB
 
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationPECB
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsPECB
 
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?PECB
 
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...PECB
 
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...PECB
 
Student Information Session University KTMC
Student Information Session University KTMC Student Information Session University KTMC
Student Information Session University KTMC PECB
 
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...PECB
 
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...PECB
 
Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA PECB
 
IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?PECB
 
Information Session University Egybyte.pptx
Information Session University Egybyte.pptxInformation Session University Egybyte.pptx
Information Session University Egybyte.pptxPECB
 
Student Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptxStudent Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptxPECB
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023PECB
 
ISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management systemISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management systemPECB
 

More from PECB (20)

DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityDORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
 
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernanceSecuring the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
 
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
 
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
 
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
 
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
 
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
 
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
 
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
 
Student Information Session University KTMC
Student Information Session University KTMC Student Information Session University KTMC
Student Information Session University KTMC
 
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
 
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
 
Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA
 
IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?
 
Information Session University Egybyte.pptx
Information Session University Egybyte.pptxInformation Session University Egybyte.pptx
Information Session University Egybyte.pptx
 
Student Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptxStudent Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptx
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
 
ISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management systemISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management system
 

Recently uploaded

Transaction Management in Database Management System
Transaction Management in Database Management SystemTransaction Management in Database Management System
Transaction Management in Database Management SystemChristalin Nelson
 
ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4MiaBumagat1
 
Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)cama23
 
Activity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translationActivity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translationRosabel UA
 
4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptx4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptxmary850239
 
Virtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdf
Virtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdfVirtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdf
Virtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdfErwinPantujan2
 
Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4JOYLYNSAMANIEGO
 
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptxQ4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptxlancelewisportillo
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...JhezDiaz1
 
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...JojoEDelaCruz
 
Integumentary System SMP B. Pharm Sem I.ppt
Integumentary System SMP B. Pharm Sem I.pptIntegumentary System SMP B. Pharm Sem I.ppt
Integumentary System SMP B. Pharm Sem I.pptshraddhaparab530
 
Food processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture honsFood processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture honsManeerUddin
 
4.16.24 21st Century Movements for Black Lives.pptx
4.16.24 21st Century Movements for Black Lives.pptx4.16.24 21st Century Movements for Black Lives.pptx
4.16.24 21st Century Movements for Black Lives.pptxmary850239
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxiammrhaywood
 
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17Celine George
 
Active Learning Strategies (in short ALS).pdf
Active Learning Strategies (in short ALS).pdfActive Learning Strategies (in short ALS).pdf
Active Learning Strategies (in short ALS).pdfPatidar M
 
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSGRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSJoshuaGantuangco2
 
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfInclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfTechSoup
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPCeline George
 

Recently uploaded (20)

Transaction Management in Database Management System
Transaction Management in Database Management SystemTransaction Management in Database Management System
Transaction Management in Database Management System
 
ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4ANG SEKTOR NG agrikultura.pptx QUARTER 4
ANG SEKTOR NG agrikultura.pptx QUARTER 4
 
Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)Global Lehigh Strategic Initiatives (without descriptions)
Global Lehigh Strategic Initiatives (without descriptions)
 
Activity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translationActivity 2-unit 2-update 2024. English translation
Activity 2-unit 2-update 2024. English translation
 
4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptx4.18.24 Movement Legacies, Reflection, and Review.pptx
4.18.24 Movement Legacies, Reflection, and Review.pptx
 
Virtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdf
Virtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdfVirtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdf
Virtual-Orientation-on-the-Administration-of-NATG12-NATG6-and-ELLNA.pdf
 
Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4Daily Lesson Plan in Mathematics Quarter 4
Daily Lesson Plan in Mathematics Quarter 4
 
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptxQ4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
Q4-PPT-Music9_Lesson-1-Romantic-Opera.pptx
 
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
ENGLISH 7_Q4_LESSON 2_ Employing a Variety of Strategies for Effective Interp...
 
FINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptx
FINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptxFINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptx
FINALS_OF_LEFT_ON_C'N_EL_DORADO_2024.pptx
 
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
ENG 5 Q4 WEEk 1 DAY 1 Restate sentences heard in one’s own words. Use appropr...
 
Integumentary System SMP B. Pharm Sem I.ppt
Integumentary System SMP B. Pharm Sem I.pptIntegumentary System SMP B. Pharm Sem I.ppt
Integumentary System SMP B. Pharm Sem I.ppt
 
Food processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture honsFood processing presentation for bsc agriculture hons
Food processing presentation for bsc agriculture hons
 
4.16.24 21st Century Movements for Black Lives.pptx
4.16.24 21st Century Movements for Black Lives.pptx4.16.24 21st Century Movements for Black Lives.pptx
4.16.24 21st Century Movements for Black Lives.pptx
 
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptxECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
ECONOMIC CONTEXT - PAPER 1 Q3: NEWSPAPERS.pptx
 
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
Incoming and Outgoing Shipments in 3 STEPS Using Odoo 17
 
Active Learning Strategies (in short ALS).pdf
Active Learning Strategies (in short ALS).pdfActive Learning Strategies (in short ALS).pdf
Active Learning Strategies (in short ALS).pdf
 
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTSGRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
GRADE 4 - SUMMATIVE TEST QUARTER 4 ALL SUBJECTS
 
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdfInclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
Inclusivity Essentials_ Creating Accessible Websites for Nonprofits .pdf
 
What is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERPWhat is Model Inheritance in Odoo 17 ERP
What is Model Inheritance in Odoo 17 ERP
 

The Criticality of Auditing in Maintaining Certified Quality Management

  • 1. The Criticality of Auditing in Maintaining a Certified Quality Management System Jacob A. McLean PECB Certified Trainer & ISO 9001/14001 Lead Auditor, M.Sc., MBA, CSP, QEP, CET 1
  • 2. Session Contents • Overview of Management Systems Auditing • Audit Criteria • Maximizing Audit Value Through Risk-based Thinking • Risk in the ISO FDIS 9001:2015 Standard • Risk-based Quality Auditing • Principles of Auditing • Competence in Auditing • Purpose of Quality Management System Auditing • Benefits of Auditing • Summary of Key Points • References 2
  • 3. Management System Auditing • ISO 19011:2011 defines an audit as a systematic, independent and documented process for obtaining audit evidence and evaluating it objectively to determine the extent to which the audit criteria are fulfilled • Audits are independent, unbiased, fact-finding exercises that provide information for decision making 3
  • 4. Management System Auditing • External Audits – include second and third party audits  Second party audits are conducted by parties having an interest in the organization, such as customers, or by other persons on their behalf  Third party audits are conducted by independent auditing organizations, such as regulators or those providing certification 4
  • 5. Management System Auditing • Combined Audit: – two or more management systems of different disciplines audited together (e.g. quality, environmental, occupational health and safety) 5
  • 6. Management System Auditing • Process Audit: – Verification that process procedures exist, are correct and being followed – Checks whether process is in conformance with requirements – May be used to investigate an entire process or an action – Boundaries for process audits are strictly defined 6
  • 7. Management System Auditing • Internal Audits –Sometimes called first party audits, are conducted by the organization itself, or on its behalf for management review and other internal purposes –For example to confirm the effectiveness of the management system or obtain information for its improvement 7
  • 8. Audit Criteria • Can be: – Conformance to requirements – Project milestones – Results of improvement initiatives – Adherence to procedures, timelines, etc. 8
  • 9. Audit Criteria • Sources: – Legal and regulatory requirements – Customer contracts – ISO standards – Organizational policies – Organizational procedures 9
  • 10. Audit Criteria Categories: – Reference standards: external to the organization such as regulations, contracts, ISO standards that establish minimum requirements – Performance standards: internal documents such as standard operating procedures, work instructions, drawings or other documents which describe how requirements will be met 10
  • 11. Maximizing Audit Value Through Risk-based Thinking • ISO 31000 defines risk as the effect of uncertainty on objectives • Risk management is coordinated activities to manage risks within an organization 11
  • 12. Maximizing Audit Value Through Risk-based Thinking • A risk management process is the systematic application of management policies, procedures and practices to the activities of communicating, consulting, establishing the context, and identifying, analyzing, evaluating, treating, monitoring and reviewing risk. 12
  • 13. Risk in the ISO/FDIS 9001:2015 Clauses 13 Process Approach, Leadership, Planning: • In Clause 4 the organization is required to determine the risks which can affect its ability to meet these objectives • In Clause 5 top management are required to commit to ensuring Clause 4 is followed • In Clause 6 the organization is required to take action to address risks and opportunities
  • 14. Risk in the ISO/FDIS 9001:2015 Clauses 14 Operation, Evaluation, Improvement: • Clause 8 - the organization is required to have processes which identify and address risk in its operations • Clause 9 the organization is required to monitor, measure, analyse and evaluate the risks and opportunities • In Clause 10 the organization is required to improve by responding to changes in risk
  • 15. Risk-based Quality Auditing • Risk based quality Auditing occurs in three levels, based on maturity of organization : • Level 1 – Planning and reporting based on risk – occurs naturally within most audit programs 15
  • 16. • Level 2 – Evaluating how well risk management is incorporated into individual quality management system processes • Level 3 – Determining enterprise-level risks relating to quality management system processes 16 Risk-based Quality Auditing
  • 17. • Maturity of QMS determines level of risk management organization implements • Integrating risk management formally into internal audit process: – Changes to annual audit plan based on areas of concern/opportunity identified in management review and use of risk-based methodologies 17 Risk-based Quality Auditing
  • 18. – Utilizing definitions and methodology for classifying audit findings based on previously determined risk assessment matrix – Reporting audit results and recommendations based on audit findings that reflect risk assessments determined during the audit process 18 Risk-based Quality Auditing
  • 19. Principles of Auditing • Integrity: the foundation of professionalism • Fair presentation: the obligation to report truthfully and accurately • Due professional care: the application of diligence and judgement in auditing • Confidentiality: security of information 19
  • 20. Principles of Auditing • Independence: the basis for the impartiality of the audit and objectivity of the audit conclusions • Evidence-based approach: the rational method for reaching reliable and reproducible audit conclusions in a systematic audit process 20
  • 21. Competence in Auditing • Auditing requires competence (knowledge and skills) • Certification of auditors is based on relevant training and experience • To be effective, auditors must engage in continual improvement through study and practice 21
  • 22. Purpose of Quality Management System Auditing • Fundamental auditing questions: – Are requirements being met? – Are there opportunities for improvement? • Determination of implementation and effectiveness of management system 22
  • 23. Purpose of Quality Management System Auditing • Provision of leading indicator of performance • Promotion of early detection of problems and identification of root causes • Provides management with objective feedback leading to informed decisions 23
  • 24. Specific Auditing Purposes • Ensures: – Fitness of products for use – Adequate written procedures exist and are utilized – Compliance with legal and regulatory requirements – Identification of deficiencies in products or the management system – Conformance with specifications 24
  • 25. Specific Auditing Purposes • Ensures: – Corrective action is taken and results verified as effective – Information to identify and reduce risks is obtained – organization’s resources are effectively and efficiently used – Existence of standardized organizational practices and continual improvement 25
  • 26. Benefits of Auditing • Organizational effectiveness – Information for management decisions – Potential risks identified – Assessment of resource capabilities (e.g. people and equipment) – Identification of cost reduction opportunities – Maintenance of customer goodwill • Business performance – Cost control – Opportunity identification – Risk management – Continual improvement 26
  • 27. Benefits of Auditing • Improvement in system effectiveness – Discovery of potential efficiencies in interrelated processes • Improvement in process effectiveness – Through examination of interactions with other processes and resources and controls utilized • Improvement in performance measurement – Provision of timely information to top management – Facilitation of changes that lead to greater effectiveness • Establishment of trusting relationships internally and externally 27
  • 28. • Audits determine if requirements are being met and if there are opportunities for improvement • Audits are a prime risk assessment tool • Audits are indispensable in maintenance and continual improvement of management systems 28 Summary of Key Points
  • 29. Anderson, P. & Worthman, B (1994). Quality auditor primer. Terre Haute, IN. ASQ. (2014). Certified HACCP, auditor (CHA) Certification preparation Coleman, L.B. (2015). Advanced quality auditing. Milwaukee, WI: ASQ. ISO 9001:2015 FDIS ISO 19011:2011 Guidelines for Auditing Management Systems Parsowith, B.S. (1995). Fundamentals of quality auditing. Milwaukee, WI : ASQ. 29 References
  • 30. THANK YOU! Kaizen Training and Management Consultants Limited 22B Old Hope Road, Kingston 5 Jamaica, West Indies Phone (land line): (876) 631- 0365 Phone (mobile): (876) 475 – 1963 Fax : (876) 906 – 7423 Email: ktmclimited@gmail.com Website: www.ktmcltd.com 30