Informational Internal Audits - Wear multiple hats what can and can't I audit (so I'm not auditing my own work)

Elsmar Forum Sponsor

Eredhel

Quality Manager
#12
I think this is what Sidney is referencing:

"The following documents, in whole or in part, are normatively referenced in this document and are indispensable for its application...

ISO 9000:2015 Quality management systems – Fundamentals and vocabulary"

As well as:

"3. TERMS AND DEFINITIONS
For the purposes of this document, the terms and definitions given in ISO 9000:2015 and the following apply."
 

Sidney Vianna

Post Responsibly
Leader
Admin
#13
Yes. If we don’t ascribe to the definitions in ISO 9000, implementation of 9001 becomes (even more) nonsensical.

If people could have their own definitions of audit, corrective action, top management, etc. what would be the point of a standard?
 
#14
"Independent", as US citizens know, means "free of pressure", not from another country/land/department. (from a British historical perspective)
 

insect warfare

QA=Question Authority
Trusted Information Resource
#15
I am in charge of the EHS department where I work, plus I sideline as the owner of our internal audit program who also conducts internal audits from time to time. As an internal auditor I am typically confronted with these 3 scenarios:

1) I am evaluating whether to audit a process where I am not its owner (i.e. Purchasing). Because I have no responsibilities related to the Purchasing process, and as long as I don't review any purchase orders that I was involved in, I am free of any conflict and can audit independently and impartially. This is a no-brainer situation.

2) I am evaluating whether to audit a process where I am not its owner (i.e. Production), but in the past I did provide some input when the process and its documents were created. Even though today I might have some production-related responsibilities (like ensuring workplace safety), I can still audit the Production process with some independence. However, if I anticipate coming across safety-related production records, I will simply make sure that I don't review my own records. If the case is that all of the safety-related records are generated by me, I will plan a joint audit with another auditor and have that auditor review those records. Independence maintained.

3) I am evaluating whether to audit a process where I am the owner (i.e. Internal Audit). I have the sole responsibility for ensuring that the audit program requirements are fulfilled. To avoid any conflicts of interest, I will have someone from my audit team do the audit, and inform them not to audit their own records. Impartiality achieved.

Having absolute freedom from responsibility from the process being audited is the gold standard for maintaining independence. When freedom from responsibility is not possible, then efforts should be made to avoid reviewing your own records during an audit. If even this is not possible, then this is a good indicator that you should probably invest in qualifying another person as an auditor or else consider outsourcing your internal audits.

If you had a hand in writing another department's procedures this should be normally irrelevant, but nevertheless the two questions to ask before any audit are "Do I have any responsibilities to this process that are going to be audited?" and "Am I expecting to encounter my own records during this audit?". If the answer to either question is YES, then you need to plan around it before the audit happens (hence the term "internal audit plan").

Brian :rolleyes:
 

John Broomfield

Leader
Super Moderator
#16
When it comes to the definitions of the terms used in ISO 9001, ISO 9000 is a normative reference.

Audit has to be independent if it is to count as audit, otherwise it is monitoring,
 
#17
When it comes to the definitions of the terms used in ISO 9001, ISO 9000 is a normative reference.

Audit has to be independent if it is to count as audit, otherwise it is monitoring,
Don't agree. The 2015 version was specifically written to address the needs of small businesses. It's a virtual impossibility not to audit work you've been involved with. But the people CAN be objective and impartial. They can still audit. Being independent doesn't mean not being involved in the process. That's a myth.
 

Eredhel

Quality Manager
#18
Don't agree. The 2015 version was specifically written to address the needs of small businesses. It's a virtual impossibility not to audit work you've been involved with. But the people CAN be objective and impartial. They can still audit. Being independent doesn't mean not being involved in the process. That's a myth.
I do wish that were true, I've been in the small business trenches for many years. Not just the technical definition of a small business but shops with under 100, under 50, under 10, and under 3 people. But I find it difficult to ignore the standard calling out 9000, and 9000 is pretty clear. I wish it weren't, I really do.

What are your thoughts on that? Do you think ISO 9001 actually calls out 9000 as indispensable, and does 9000 state that it has to be done by someone not responsible for the object being audited?

Edit: For the record over the years I've only ever had one auditor bring this up.
 
#19
it has to be done by someone not responsible for the object being audited?
The thing is that, even if you do look at your own work, experience shows that when time elapses, you can look at work you did and be very objective and impartial about whether it was done in compliance etc. I see no barriers put in place by ISO 9000. Only that people put one interpretation on (my native language) to suit their point of view.
 

Eredhel

Quality Manager
#20
I like the idea. But if ISO wants to do that I feel like they need to change how it's called out. It's unfortunately pretty cut and dry.
 
Thread starter Similar threads Forum Replies Date
L Internal audits for IATF IATF 16949 - Automotive Quality Systems Standard 7
E FDA & Internal Audits US Medical Device Regulations 3
G NC criteria during internal audits ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 6
B Consistently Late Internal Audits- Any Suggestions? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 114
cgaro62 Using internal audits as part of document reviews Document Control Systems, Procedures, Forms and Templates 21
S Is it required to complete Internal Audits within one year? ISO 13485:2016 - Medical Device Quality Management Systems 29
C First Round of QMS Internal Audits - Ethical Dilemma Internal Auditing 10
T How to conduct combined internal audits (9001 and 13485) Internal Auditing 1
A ISO 9001 Internal Audits - No production right now due to furloughs Internal Auditing 5
lanley liao How to understand this words that the planning of internal audit shall take into consideration the results of previous audits? Oil and Gas Industry Standards and Regulations 10
M ISO13485:2016, MDSAP and Internal Audits ISO 13485:2016 - Medical Device Quality Management Systems 9
S Would this be a second site for the purposes of internal and third party audits? General Auditing Discussions 4
J ISMS - Internal Audits Internal Auditing 5
L Documented Information in Internal Audits Process (9.2) ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 4
D CB and customer audits considered as internal audits? General Auditing Discussions 9
R IATF 16949 - Outsourcing of internal audits Internal Auditing 11
M Major vs. Minor for Internal Audits? Internal Auditing 10
C Internal Audits in a tiny Dx Company Internal Auditing 33
N Sampling Plan for Internal Audits - ISO 2859 or 3951 - Or Neither? Internal Auditing 6
O ISO13485 implementation - Are internal audits expected before stage 1 audit? Design and Development of Products and Processes 3
O Informational Scaling back internal audits due to corona virus while avoiding a NC Internal Auditing 7
G Internal Audits and Employee engagement Internal Auditing 16
S Internal audit discrepancy - We missed a few audits that were scheduled Internal Auditing 12
F ISO 17025 8.8 Internal Audits in a segmented company ISO 17025 related Discussions 5
qualprod Internal Audits - Categories of non conformances Internal Auditing 12
G Non Conformance During ISO 9001 Audit - Not All Internal Audits Completed General Auditing Discussions 19
K A way to monitor our Internal Audits as a KPI AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 7
blackholequasar Internal Auditing Inspiration - Getting volunteers to perform internal audits. Internal Auditing 22
A External Auditor issue with Internal Audits Internal Auditing 7
W Internal Auditing carried out by a 3rd party - Review of previous audits AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 3
Gman2 Quality Record Retention (Internal Audits, CA's) ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 9
T Informational What is the purpose of Internal Audits? Internal Auditing 27
F API Spec Q1 9th Edition Surveillance Audit - Questions about internal audits. Oil and Gas Industry Standards and Regulations 22
Pmarszal ISO 19011:2018 - Risk Based Approach for planning, conducting and reporting of internal audits Internal Auditing 8
R ISO 13485:2016 Registration - NC on full cycle of internal audits ISO 13485:2016 - Medical Device Quality Management Systems 7
J Internal Audit clarification - How to perform the audits IATF 16949 - Automotive Quality Systems Standard 6
S Corrective Action from Internal Audits not performed ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 24
W FAA Advisory Circular (AC) Requirements (FAA AC 00-56) - Internal Audits AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 4
B Going into IATF 16949 transition without Internal Audits IATF 16949 - Automotive Quality Systems Standard 4
S Internal Audits performed by another local business ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 26
K No Internal Audits For Upcoming IATF Trans Audit IATF 16949 - Automotive Quality Systems Standard 5
J Supporting Processes - Internal Audits - Need help settling a debate IATF 16949 - Automotive Quality Systems Standard 4
K AS9100 Rev. D Transition - Internal Audits & Gap Analysis Requirements AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 14
J Internal Audits - Closing Audit Deficiency Reports (ISO 13485) Internal Auditing 4
S Is Audit Plan / Agenda required for Internal Audits? Internal Auditing 2
J ISO 9001:2008 - Can I still conduct Internal Audits in my company? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 7
F What is your favorite software for ISO 9001:2015 Internal Audits? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 3
C ISO 9001:2008 Surveillance Audit - No Internal Audits Internal Auditing 9
J Dinged on Internal Audits for supervising an auditor I was training Internal Auditing 10
Marc ISO 9001:2015 vs. 2008 - Internal Audits - What changes are you making? Internal Auditing 44

Similar threads

Top Bottom