How to prepare for ISO Audit Process
Much has been written on the audit Process in the past. This article will break down the items which must be considered by an organization when engaging an auditor.
In a previous article, “Inside the mind of and auditor” we delved into how an auditor thinks.
This article will give the actual “nuts and bolts” of ISO Audit Process and how an ISO Auditor should navigate himself/herself through auditing .
The two major activities of an ISO Audit will consist of:
- Review of an organizations current documents.
This consists of verification of the organization’s documentation. The goal is to gage how the documentation adheres to the relevant tenets of the ISO Audit Standard. - Process Review:
This is the main part of the physical audit. This is the activity whereby the ISO Auditor physically examines the organization’s adherence to the ISO Standard.
An auditor will sample operations in an organization looking for evidence of conformity to relevant tenets of the ISO Standard. This is where preparation is an organization’s
best friend. Having actual documentation showing the relevant connection between processes and how they support the organization’s Quality Management System, is a must.
Keep in mind that an ISO Auditor is on a strict schedule. Because of time constraints, he/she only has enough time to audit one or two examples of each key process.
It’s not practical nor possible to audit and evaluate everything within the organization’ four walls.
Again being prepared is your first line of defense. Excessive fumbling tends to give an auditor the sense that the Company has problems or is simply not engaged enough
nor prepared for the auditor. This can have the effect of causing potential questions which could lead to a major or minor non-conformance. Poor documentation and preparedness
causes the auditor to rely on asking more in depth questions of the employees themselves. Auditors will ask the same questions of the same employee operating the
same equipment on either the same shift or multiple shifts. This line of questioning tends to give less consistent results and can lead to a major or minor non-conformance
Organizations which tend to fare well in ISO Audits are the ones which have definitive and planned internal audits on a weekly/monthly/Quarterly basis.
These audits should be done by competent and trained employees. It’s advisable that you put your designated internal auditors through a training course to give them
the essential tools to perform their own internal audits. ISO Certification Consultants Inc. through its partnership company can provide Internal Auditor training.
By following a standardized approach to internal auditing, a company can avoid many of the pitfalls which lesser prepared companies fall into.
A standardized approach which consists of an Audit Checklist and a standardized approach to questioning stakeholders is the methodology which helps Company’s
avoid embarrassing situations during the ISO Certification audit. A systematic approach provides ongoing feedback on weaknesses in a company’s Quality Management System.
For further information and questions regarding ISO Audit, training your internal auditors please contact ISO Certification Consultants.