This discussion has motivated me to purchase the new 17021. Hardly an opportunity purchase....not like a new tool...
Both documents are focused on development and maintenance of a creditable audit program. The only area that I see may have some additional value to this discussion is Section 4.2 of 17021 that deals with Impartiality. 17021 is written for Certification Bodies and issues of ownership/partnership or other business relationships that may jeopardize impartiality are discussed here. I think this may also be an issue with 2nd party audits of suppliers with whom the organization has some arrangement of mutual benefit. Section 4.2 points out four areas called "threats to impartiality":
1. Self interest threats: Interests the client has in assessing the auditee as compliant [my words here and below, not 17021]. How about "spin off businesses"? My owner's cousin runs the company that supplies us with parts (See 4. Intimidation below)
2. Self review threats: Looking at your own work. Don't send an engineer to audit a vendor that builds parts according to your prints. Can I assign purchasing people, QC inspectors, Shipping and Receving people?
3. Familiarity: The vendor has bailed us out of many jams and we love them.
4. Intimidation: If the vendor audit report shows noncompliant areas, what will my registrar's anal-retentive auditor think about my status. Am I gaining another finding from my registrar everytime I write a nonconformance to my vendor?
Some food for thought in each of these.
It is still snowing.......