Some important things to consider (IMO):
Read all the stuff before clause 4.
Re-read it. Re-re-read it.
Ok, now read the rest.
Now read the following clauses in order:
[FONT="]Process Approach[/FONT][FONT="]:
0.1 General,
0.2 Quality Management Principles,
0.3.1 Process Approach: General,
4.4.1 QMS and its Processes,
5.1.1 Leadership and Commitment: General,
5.3 Organizational Roles, Responsibilities and Authorities,
6.1.2 Planning: Actions to Address Risks and Opportunities,
7.1.4 Environment for the Operation of Processes,
8.1 Operational Planning and Control,
9.2.2 Internal Audit,
9.3.2 Management Review: Inputs
[/FONT]
[FONT="]Risks and Opportunities[/FONT][FONT="]:
0.3.3 Risk-based Thinking,
0.1 General,
4.4.1 (f) QMS and its Processes,
5.1.2 (b) Customer Focus,
6.1.1, 6.1.2 Planning: Actions to Address Risks and Opportunities,
8.3.3 (e) Design and Development Inputs,
8.3.6 (d) Design and Development Changes,
8.4.2 Type and Extent of Control,
9.3.1 (e) Management Review: General, 10.2.1 Nonconformity and Corrective Action, A.4 Risk-based Thinking
[/FONT]
[FONT="]
[FONT="]Change Management[/FONT][FONT="]:
4.4.1 (g) QMS and its Processes,
5.3 (e) Organizational Roles, Responsibilities and Authorities,
6.3 Planning of Changes,
7.5.3.2 (c) Control of Documented Information,
8.1 Operational Planning and Control,
8.2.4 Changes to the Requirements of Products and Services,
8.3.6 Design and Development Changes,
8.5.6 Control of Changes[/FONT][/FONT]
Figure out your scope.
Figure out your context.
Define your processes (keep it simple, receiving inspection may just be a sub process of purchasing).
For each process:
-Owner
-Procedures\work instructions\forms
-Inputs and outputs
-Key performance indicators
-risks and opportunities
Now, in sections 4-10, figure out if the clause applies to each process. Review what is done in light of the requirement and find out how it's met (or that it isn't).