I'm not familiar with 17025 but if it's anything like 9001 or 9100, you will have to show that your audit(s) address every "shall" statement in the standard. Also, without familiarity of 17025, do you receive annual surveillance audits from your certifying body? If so, when was the last surveillance audit completed and when is the next one scheduled? This question doesn't help your immediate issue but you may be able to fix your concern before the next surveillance audit with a well documented NCR and Corrective Action. I am far from an expert and sort of in the same boat as you...ISO certs are "cool" badges to have...But, you have to maintain them and leadership often doesn't see this...