ISO 9001 Auditing
Two types of auditing are required to become registered to the ISO 9001 standard: auditing by an external certification body (external audit) and audits by internal staff trained for this process (internal audits). The aim is a continual process of review and assessment, to verify that the system is working as it's supposed to, to find out where it can improve, and to correct or prevent identified problems. It is considered important for internal auditors to audit outside their usual management line, so as to bring a degree of independence to their judgments.
Under the 1994 standard, the auditing process could be adequately addressed by performing "compliance auditing," with the process generally included queries such as:
- “Tell me what you do.” (Describe the business process);
- “Show me where it says that.” (Reference the procedure manuals); and
- “Prove that that is what happened.” (Exhibit evidence in documented records).
But this auditing process did not focus on preventive action, necessitating the change in the 2000 standard. The 2000 standard uses the process approach. While auditors perform similar functions, they are expected to go beyond merely auditing for rote "compliance" by focusing on risk, status, and importance. This means that they are expected to make more judgments on what is effective, rather than merely adhering to what is formally prescribed. The difference from the previous standard can be explained in the following way:
Under the 1994 version, the question, stated broadly was: "Are you doing what the manual says you should be doing?" Under the 2000 version, the questions are more likely to include:
- "Will this process help you achieve your stated objectives?”
- “Is it a good process?”
- “Is there a way to do it better?"
NOTE: The ISO 19011 standard for auditing applies to ISO 9000.
This is only an overview/extract of the standard. Users should not rely on its accuracy, but should refer to the complete standard of the appropriate revision.
Click here for full list of Standards and Regulations.
or call (North America) +1 (877) 876 3430 or (Europe) +44 (0)1795 479001
Proquis Enterprise
Achieve comprehensive quality management with our web-based modular solution for Document Control, CAPA Management, Audit Management, reporting and analysis.
Proquis On Demand
Proquis On Demand offers much of the same robust functionality of our Proquis Enterprise Suite, but is available as a monthly Software as a Service (SaaS) subscription, providing fast implementation, easy scalability, and continuous IT support.
Allclear Process Mapping
Improve business productivity and efficiency with the new Allclear 2010 – A complete process mapping and analysis tool.
