Informational Internal Audits - Wear multiple hats what can and can't I audit (so I'm not auditing my own work)

Thread Attachment browser
E

embedded

Involved In Discussions
#1
#1
I work at a small company where I wear many hats. I'm new to quality and putting together an internal audit plan for the first time. I started off with our key processes(sales, D&D, purchasing/inventory, and production), and for each key process listed the process document(each key process has multiple process documents and process owners) and corresponding process owners. My problem is when I look at the four key processes and process owners my name is showing up as a process owner for one of the process documents in 3 of the 4 key processes. Does that mean I can't audit these areas?

To give a specific example I'd really like to audit production myself, I don't work in production but I am a process owner in that I'm responsible to define processes for RMAs and control of production services and provisions. I don't actually do the work myself, the people that do report to me. What are the requirements and recommendations given my current situation?
 
Paper to QMS ad
Elsmar Forum Sponsor
A

AndyN

Moved On
#2
#2
Can you be objective and impartial? If you aren't touching what's being done, you're good. This issue of not auditing your own work, was removed to help small businesses. Choose something which was done a while ago, make a good plan to audit actual requirements and not ISO and keep good notes of what was sampled. Simples!
 
John Broomfield

John Broomfield

Staff member
Super Moderator
#3
#3
You are not auditing your own work unless you are auditing work you have actually done. But who do you have to audit your internal audits?

Recommend that you select another person with the recommended attributes for training to become your second internal auditor.

That may also ease your concern for keeping your audits objective and impartial.
 
Coury Ferguson

Coury Ferguson

Moderator here to help
Staff member
Super Moderator
#6
#6
I agree with both Andy and Randy. If you are a trained and competent you can audit your own work/responsibilities. As they said, there is no requirement that states you can't audit your own work.

The previous QM of the company had that statement in the procedure. Guess what I am going to do...remove that statement from the procedure.
 
M

Mike S.

Happy to be Alive
Trusted Information Resource
#7
#7
There are lots of "should" statements in the ISO 19011 auditing guidelines doc, but should is not shall.

I had a registrar auditor say 9.2.2.c (select auditors and conduct audits to ensure objectivity and the impartiality of the audit process) meant you could not audit your own work and we HAD to have an auditor who only audited the internal audit process. No amount of my arguing would change his mind. Management chose not to fight it. Each company must decide for themselves how to satisfy this requirement.
 
Sidney Vianna

Sidney Vianna

Post Responsibly
Staff member
Admin
#9
#9
embedded said:
My problem is when I look at the four key processes and process owners my name is showing up as a process owner for one of the process documents in 3 of the 4 key processes. Does that mean I can't audit these areas?
...SNIP.... I don't actually do the work myself, the people that do report to me. What are the requirements and recommendations given my current situation?
Click to expand...
The situation as you described is closer to the scenario described in the Can I audit processes I've established but do not implement or maintain? thread. Auditing a process that you are the owner is perfectly acceptable.

As for people auditing their own work, there is a requirement that prohibits it. It is in the definition of the term audit, contained in ISO 9000, a normative reference in ISO 9001. The definition and the first note to the entry are provided below:

audit def.JPG

Note that the word independent is used and note 1 clearly stipulates the aspect of "carried out by personnel not being responsible for the object audited.

So, in my view, if you "audit" your own work, you are not in compliance with the requirements of the standard. Nobody will be independent, objective and impartial auditing their own work.

ISO/TS 9002 gives explanation of what to do in cases where you have to "audit" your own work, due to special circumstances....so you can find some guidance there.
 
Coury Ferguson

Coury Ferguson

Moderator here to help
Staff member
Super Moderator
#10
#10
Sidney Vianna said:
The situation as you described is closer to the scenario described in the Can I audit processes I've established but do not implement or maintain? thread. Auditing a process that you are the owner is perfectly acceptable.

As for people auditing their own work, there is a requirement that prohibits it. It is in the definition of the term audit, contained in ISO 9000, a normative reference in ISO 9001. The definition and the first note to the entry are provided below:

Note that the word independent is used and note 1 clearly stipulates the aspect of "carried out by personnel not being responsible for the object audited.

So, in my view, if you "audit" your own work, you are not in compliance with the requirements of the standard. Nobody will be independent, objective and impartial auditing their own work.

ISO/TS 9002 gives explanation of what to do in cases where you have to "audit" your own work, due to special circumstances....so you can find some guidance there.
Click to expand...
Sidney,

I agree to disagree. ISO 9000 is not a requirement nor is ISO 19011. They are both guidance documents.

ISO 9001:2015 is the requirement. ISO 9001:2015 paragraphs 9.2.1 (a1-a2, and b) and 9.2.2 a-f does not have that requirement that I see. As for the comment "Nobody will be independent, objective and impartial auditing their own work." might just be an overstatement. I perform audits of my own work, and if there is a noncompliance found, it is documented as such. I show no favoritism when performing an internal audit. I look at the requirements regardless if I am responsible or not.

So, that is why I agree to disagree.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
C Internal Audits in a tiny Dx Company Internal Auditing 33
N Sampling Plan for Internal Audits - ISO 2859 or 3951 - Or Neither? Internal Auditing 6
O ISO13485 implementation - Are internal audits expected before stage 1 audit? Design and Development of Products and Processes 3
O Informational Scaling back internal audits due to corona virus while avoiding a NC Internal Auditing 7
G Internal Audits and Employee engagement Internal Auditing 16
S Internal audit discrepancy - We missed a few audits that were scheduled Internal Auditing 12
F ISO 17025 8.8 Internal Audits in a segmented company ISO 17025 related Discussions 5
Q Internal Audits - Categories of non conformances Internal Auditing 12
G Non Conformance During ISO 9001 Audit - Not All Internal Audits Completed General Auditing Discussions 19
K A way to monitor our Internal Audits as a KPI AS9100, IAQG 9100, Nadcap and related Aerospace Standards and Requirements 7
blackholequasar Internal Auditing Inspiration - Getting volunteers to perform internal audits. Internal Auditing 22
A External Auditor issue with Internal Audits Internal Auditing 7
W Internal Auditing carried out by a 3rd party - Review of previous audits AS9100, IAQG 9100, Nadcap and related Aerospace Standards and Requirements 3
Gman2 Quality Record Retention (Internal Audits, CA's) ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 9
T Informational What is the purpose of Internal Audits? Internal Auditing 27
F API Spec Q1 9th Edition Surveillance Audit - Questions about internal audits. Oil and Gas Industry Standards and Regulations 23
Pmarszal ISO 19011:2018 - Risk Based Approach for planning, conducting and reporting of internal audits Internal Auditing 8
R ISO 13485:2016 Registration - NC on full cycle of internal audits ISO 13485:2016 - Medical Device Quality Management Systems 7
J Internal Audit clarification - How to perform the audits IATF 16949 - Automotive Quality Systems Standard 6
S Corrective Action from Internal Audits not performed ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 24
W FAA Advisory Circular (AC) Requirements (FAA AC 00-56) - Internal Audits AS9100, IAQG 9100, Nadcap and related Aerospace Standards and Requirements 4
B Going into IATF 16949 transition without Internal Audits IATF 16949 - Automotive Quality Systems Standard 4
S Internal Audits performed by another local business ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 26
K No Internal Audits For Upcoming IATF Trans Audit IATF 16949 - Automotive Quality Systems Standard 5
J Supporting Processes - Internal Audits - Need help settling a debate IATF 16949 - Automotive Quality Systems Standard 4
K AS9100 Rev. D Transition - Internal Audits & Gap Analysis Requirements AS9100, IAQG 9100, Nadcap and related Aerospace Standards and Requirements 14
J Internal Audits - Closing Audit Deficiency Reports (ISO 13485) Internal Auditing 4
S Is Audit Plan / Agenda required for Internal Audits? Internal Auditing 2
J ISO 9001:2008 - Can I still conduct Internal Audits in my company? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 7
F What is your favorite software for ISO 9001:2015 Internal Audits? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 3
C ISO 9001:2008 Surveillance Audit - No Internal Audits Internal Auditing 9
J Dinged on Internal Audits for supervising an auditor I was training Internal Auditing 10
Marc ISO 9001:2015 vs. 2008 - Internal Audits - What changes are you making? Internal Auditing 44
M Are auditing checklists required for Internal Audits? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 13
dubrizo Internal Audit Value - What is the point of conducting internal audits to a checklist Internal Auditing 40
D Using consultants for Internal Audits Internal Auditing 24
O New Job 1 Month from Recertification Audit - Missing Documents, no Internal Audits ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 25
R How do I conduct my API Q1, ISO compliant internal audits? Internal Auditing 1
F Is it good to outsource the Internal Audits? Quality Manager and Management Related Issues 16
S Advice for ISO17025 First Round of Internal Audits ISO 17025 related Discussions 10
S Engineering Audits - Internal Audits IATF 16949 - Automotive Quality Systems Standard 7
L Time Allocation for Internal Audits Internal Auditing 5
A A Guide to Effective Internal Management System Audits Book, Video, Blog and Web Site Reviews and Recommendations 2
M Utilizing ISO and Customer Audits for Internal Audits Internal Auditing 14
N Internal Process Audits - 7.1 Planning - How do YOU audit it? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 7
G Scope of External & Internal Audits General Auditing Discussions 10
S Internal Audits of QMS Corporate Basics at the Local Plant Level ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 2
S Internal Audits: Rabbit Holes or Marked Roads? Internal Auditing 13
Gman2 Frequency of Internal Audits per TS 16949 Requirements IATF 16949 - Automotive Quality Systems Standard 12
K Can anyone share an Note to File for justifying postponement of Internal Audits ? Quality Manager and Management Related Issues 5
Similar threads
Top Bottom