IATF 16949 Contingency plan requirements / Sanctioned Interpretations?

#1
I'm trying to follow up on a desk audit and my auditor does not seem to be very responsive. Looking for information from you all if you have it?

Attached is my contingency plan. I thought I had everything covered. The auditor responded with this:

"Cyber attacks are not included, required by sanctioned questions now. Please update before the audit."

My question: Where can I find this list of sanctioned questions? I don't trust this auditor, his desk audit brought up several items that I believe we have covered and he is asking me to correct.

My contingency plan is attached.
 

Attachments

Elsmar Forum Sponsor

Laura Halleck

Starting to get Involved
#2
Lisa,

I don't have an answer regarding the list of sanctioned questions (although I'd like to see it too if anybody has it to share), but I wanted to say that I really like the format and structure of your contingency plan. It appears to be far more robust than many I have seen.

Laura
 

Golfman25

Trusted Information Resource
#4
Lisa,

I don't have an answer regarding the list of sanctioned questions (although I'd like to see it too if anybody has it to share), but I wanted to say that I really like the format and structure of your contingency plan. It appears to be far more robust than many I have seen.

Laura
Try here. But is wasn't really and interpretation of the standard as much as it was a rewrite.

http://www.iatfglobaloversight.org/...-Sanctioned-Interpretations-1-9-SIs_Final.pdf
 

Sebastian

Trusted Information Resource
#5
I expect contingency plan to be a standalone document or including references to other documents, but definitely it has to describe:
1. Criteria to trigger contingency plan
2. Chronological sequence of activities
3. Responsibility for performing activities
4. Define post-contingency activities (e.g. see 8.5.1.4)

By the way word "meeting" in contingency plan is signal for me, there is a gap. Contingency plan shall be like "Go around" during landing. No need to think, simply evaluate situation against criteria and deploy already defined activities.
 

brandieb1230

Involved In Discussions
#7
The IATF website has a list of 1-9 SIs.

http://www.iatfglobaloversight.org/...-Sanctioned-Interpretations-1-9-SIs_Final.pdf


Number 3 references contingency plans.

c) prepare contingency plan for continuity of supply in the even of any of the following key equipment failures (also see section 8.5.6.1.1); interruption from externally provided product, processes and services, recurring natural disasters, fire, utility interruptions, CYBER ATTACKS ON INFORMATION TECHNOLOGY SYSTEMS, labour shortages or infrastructure disruption.



Our contingency plan is set up differently than yours, I like yours better!

This is what I have for cyber attacks- not sure if it could work for you:
*6.8.7 IT: The IT/IS department has many systems in place to prevent a cyber-attack or to retrieve lost data if computer systems malfunction including: firewalls, web filters, anti-virus protection, redundant back-up processes stored both on and off site and constant monitoring of threats. Our IT professionals are constantly researching and seeking new ways to keep our company’s digital information safeguarded.
 
#9
I'm trying to follow up on a desk audit and my auditor does not seem to be very responsive. Looking for information from you all if you have it?

Attached is my contingency plan. I thought I had everything covered. The auditor responded with this:

"Cyber attacks are not included, required by sanctioned questions now. Please update before the audit."

My question: Where can I find this list of sanctioned questions? I don't trust this auditor, his desk audit brought up several items that I believe we have covered and he is asking me to correct.

My contingency plan is attached.
Hello Lisa, I just reviewed your contingency/risk plan, it is very detailed and well put together you can see the well thought out methodical process.
I do not see what your registrar auditor issue is. This format is leaps and bounds ahead of the majority of documents I have seen over my 18 year career as a Tier one global supplier to both the automotive and aerospace industries
 
Thread starter Similar threads Forum Replies Date
CbusQAguy IATF 16949 6.1.2.3 - Contingency Plans Testing Checklist IATF 16949 - Automotive Quality Systems Standard 3
J IATF 16949 6.1.2.3(e) Contingency Plan Testing IATF 16949 - Automotive Quality Systems Standard 31
S Thoughts on managing ISO 9001, 13485, IATF 16949 and 17025 ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 26
P IATF 16949 requirement - error-proofing in control plan IATF 16949 - Automotive Quality Systems Standard 2
R IATF 16949 - Outsourcing of internal audits Internal Auditing 10
eule del ayre Documented Information - Periodic Review of Documents? IATF 16949:2016 / ISO 9001:2015 IATF 16949 - Automotive Quality Systems Standard 34
Crimpshrine13 Laboratory Scope - Calibration vs. Test Methods - IATF 16949 IATF 16949 - Automotive Quality Systems Standard 3
earl62 What is the best way to control special characteristics in Control plan? Is it Mandatory to have SPC for IATF 16949? IATF 16949 - Automotive Quality Systems Standard 7
L IATF 16949 certification costs IATF 16949 - Automotive Quality Systems Standard 3
B FCA US Customer Specific IATF 16949- Critical Characteristics 8.6.2 Customer and Company Specific Requirements 0
B IATF 16949 News Six month extension on all valid IATF 16949 certs IATF 16949 - Automotive Quality Systems Standard 10
earl62 IATF 16949 Clause 9.1.1.1 - What is the batch conformance to specification method? IATF 16949 - Automotive Quality Systems Standard 3
B FCA US IATF 16949 Customer Requirements updates Customer and Company Specific Requirements 3
S Can assembly manufacturing sub-supplier be certified IATF 16949? IATF 16949 - Automotive Quality Systems Standard 6
D IATF 16949 Requirement for CMMI in a Global Company Elsmar Cove Forum Suggestions, Complaints, Problems and Bug Reports 0
M Tips on preparing for IATF 16949 Internal Lead Auditor exam Manufacturing and Related Processes 1
A IATF 16949 4.3.1 - Determining the scope of the quality management system - supplemental IATF 16949 - Automotive Quality Systems Standard 9
S Definition of "worldwide" in view of IATF 16949 and Product conformity IATF 16949 - Automotive Quality Systems Standard 3
R Where does IATF 16949 address Process mapping? IATF 16949 - Automotive Quality Systems Standard 3
A Document "Correspondence IATF 16949 vs ISO13485" available? IATF 16949 - Automotive Quality Systems Standard 0
H Remote product audits in Coivd-19 - IATF 16949 9.2.2.4 IATF 16949 - Automotive Quality Systems Standard 3
S IATF 16949 - Partial traceability of Aftermarket products IATF 16949 - Automotive Quality Systems Standard 5
M IATF 16949 8.5.1.3 Verification of job set-ups - Do we need secondary check? IATF 16949 - Automotive Quality Systems Standard 7
C Industrial scales and MSA (IATF 16949 requirement 7.1.5.1.1) IATF 16949 - Automotive Quality Systems Standard 30
V Generic IATF 16949 Audit Checklist wanted IATF 16949 - Automotive Quality Systems Standard 3
M Scope of Combined ISO 9001 and IATF 16949 QMS - Non-automotive customers ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 5
D Postpone IATF 16949 audit due to COVID-19 IATF 16949 - Automotive Quality Systems Standard 41
J Does anyone have an excel IATF 16949 Internal Audit checklist I could use? IATF 16949 - Automotive Quality Systems Standard 7
T Reaction Plan To Drive suppliers to IATF 16949 registration IATF 16949 - Automotive Quality Systems Standard 4
B IATF 16949 - Is a Deviation required for sample components in a prototype build? IATF 16949 - Automotive Quality Systems Standard 13
C IATF 16949 - Scope or not? IATF 16949 - Automotive Quality Systems Standard 2
L "IATF-Compliant" IATF 16949:2016 certification? What does this mean? IATF 16949 - Automotive Quality Systems Standard 13
B Go Beyond ISO 9001 WITH IATF 16949 (January 28) [Paid] Training - Internal, External, Online and Distance Learning 1
V IATF 16949 8.4.1 Control of externally provided processes, products and services - Should the CB be on our Approved Supplier List? IATF 16949 - Automotive Quality Systems Standard 10
S Can we provide training plan as corrective action for IATF 16949 Non conformity? IATF 16949 - Automotive Quality Systems Standard 9
C Design and implementation of process audits as defined within IATF 16949 IATF 16949 - Automotive Quality Systems Standard 2
Q VDA 6.3 questions vs IATF 16949 clauses VDA Standards - Germany's Automotive Standards 0
N IATF 16949:2016 7.1.5.3.2 External Laboratory - How to approve the Testing Laboratory without accreditation scope IATF 16949 - Automotive Quality Systems Standard 2
M IATF 16949 (6.1.1 - Planning and Risk Analysis for a remote site) Process Maps, Process Mapping and Turtle Diagrams 5
D IATF 16949 FAQ 24 (8.4.2.2 Countries of Destination) - How is this actually being interpreted? IATF 16949 - Automotive Quality Systems Standard 3
Jimmy123 What is the difference between Error Proofing and Controls? ISO/IATF 16949 - Control Plans FMEA and Control Plans 16
P IATF 16949 8.4.2.4 Supplier Monitoring IATF 16949 - Automotive Quality Systems Standard 2
V IATF 16949 9.2.2.1 Internal Audit Program - "Process Changes" IATF 16949 - Automotive Quality Systems Standard 11
Sidney Vianna IATF 16949 News Presentations from the latest IATF Stakeholder Event - Expectation that IATF 16949 certification should equate with product quality. Misguided? IATF 16949 - Automotive Quality Systems Standard 7
C IATF 16949 8.3 Exclusion - Manufacturing process design and development IATF 16949 - Automotive Quality Systems Standard 5
J IATF 16949 8.4.1.2 Supplier selection process IATF 16949 - Automotive Quality Systems Standard 4
M IATF 16949 CAPITULO 7.3.2 IATF 16949 - Automotive Quality Systems Standard 3
Casana IATF 16949 7.1.5.3.2 External Laboratory - On Site Calibration IATF 16949 - Automotive Quality Systems Standard 8
M IATF 16949 7.2.3 Internal Auditor Competency - Trainer's competency Internal Auditing 7
P IATF 16949 Clause 8.4.2.3 - Justification for non-certified suppliers IATF 16949 - Automotive Quality Systems Standard 14

Similar threads

Top Bottom