Thoughts on Auditing - Seeking opinions regarding a couple of auditing points

ccochran

Southern Gentleman
#1
Howdy, folks:

I'm curious about everyone's opinions regarding a couple of auditing points. These aren't incredible breakthroughs or anything, but they seem to come up quite often. Here they are:

1) A nonconformity doesn't exist without a requirement. The best way to ensure that this isn't forgotten is to insist that auditors (first party second party, and third party) clearly write out nonconformities in a two-part manner: part 1 is the requirement and part 2 is exactly what the auditor found that contradicts the requirement. A one-two punch, so to speak. Asking registrar auditors to write nonconformities this way removes a lot of "invented" discrepancies.

2) Auditors (even internal auditors) should never propose fixes, remedies, or suggestions for corrective action. This short-circuits the problem solving process and encourages laziness. It also takes away the ownership for the corrective action. Even when pressed for ideas, the auditor should defer to the auditee's creativity and knowledge of their process.

So, anyone want to bite on either of these? The 2nd point is the one I expect people have stronger opinions on. For the curious or bored, these notions and others come from an article of mine in last month's QD: http://www.qualitydigest.com/aug03/articles/02_article.shtml. Any feedback on that is appreciated, too.

Have a nice weekend,
Craig

~~~~~~~~~~~~~~~~~~~~~~~~~~~
Craig Cochran
Center for International Standards & Quality
Georgia Institute of Technology
[email protected]
 
Elsmar Forum Sponsor
A

Aaron Lupo

#2
Re: thoughts on auditing

Ummm Craig yes when an auditor writes a non-conformance they should state what the requirement is that is not being addressed, may be ISO/QSR/Internal etc.. Requirements, as well as what the exact noncomformity the observed was, how else would the auditee know why they received the non-conformance. I would say that most auditors (Registrar auditors) do this already.

Your second point I would disagree with. Why shouldn't an internal or second party auditor give some suggestion on possible solutions, sometimes that gets the auditee thinking in a direction they would not have gone. Auditors have seen a variety of differnt ways to do things and should be looked upon for ideas/suggestions. Why not use the resources (the auditors experience) you have in front of you. JMHO.
 
C

Craig H.

#3
Craig:

I suspect your second point will indeed draw the most response. I like for the auditor to provide some direction other than to just say "gotcha", but don't they have to be careful to avoid consulting? How do those of us here who do third party audits know where the "line" is, and how do you avoid crossing it?

The other Craig.
 
A

Aaron Lupo

#4
Re: thoughts on auditing

Craig H. said:
Craig:
but don't they have to be careful to avoid consulting? How do those of us here who do third party audits know where the "line" is, and how do you avoid crossing it?
The other Craig.
Easy- 'I have seen it done this way before and give some examples, and it really seemed to work for those companies', just as long as you don't say "do it this way".
 

Cari Spears

Super Moderator
Staff member
Super Moderator
#5
Re: Re: thoughts on auditing

ISO GUY said:
Easy- 'I have seen it done this way before and give some examples, and it really seemed to work for those companies', just as long as you don't say "do it this way".
Right - this is how our auditor handles it. I ask him his opinion on everything. The only thing I'd add is that this advice is not written in the NC.
 
C

Craig H.

#6
Iso Guy, Cari:

Thanks for your input. That is almost exactly the way our auditor handles it. Since he has been around the industry so long, and seen so many different approaches, his "examples" are usually excellent - and he knows they can work because he's seen it.

Thanks again

Craig
 
#7
Give me the guidance!

Point #1. Absolutely, I would expect nothing less than a statement of the requirement that I do not meet and why I do not meet it.
Point #2. I also expect some guidance from the auditor on what would meet the requirement, IHO. If the nonconformance is due to a lack of following a procedure that meets the requirement that's easy to fix (mostly). However, I have had several NCs written against processes or procedures. Obviously, I (and the Steering Team) thought the process or procedure met the requirement or we wouldn't have implemented it that way or documented it as is. In this case, a little "some companies do it this way or that way, which is compliant..." goes a long way toward understanding what an assessor believes meets the requirements.
 

Randy

Super Moderator
#8
Pretty much right on in my book guys. I kinda put it this way...."Looky here, I can't tell you how to fix it but,.....".

The "Looky here" gets 'um :)

Craig!! Where do you take the one person organization into account with your statement. You're so focused on the large organization that in almost everything you write, whether it's here, in the magazine articles or, on other web sites, you lose sight of 90+% of the business and service organizations in the USA alone.
 
Last edited:

ccochran

Southern Gentleman
#9
Randy,

I gave your comments a lot of thought. You're right. I think I have a bias towards approaches that require resources, which is odd because most of the people I work with are in small to medium sized organizations. I need to shake myself up a bit.

In all honesty, it's impractical for auditors in small organizations not to provide a little guidance to auditees. I agree. After all, there's often no one else to turn to. The subtle approaches that Craig H., Cari, ISO Guy, and Icy Mountain suggested sound perfectly reasonable. In fact, years ago in industry I would ask the same sort of thing, "How have you seen this done in the past?" It was just one more perspective to throwi into the pot and stir around.

I think I've been converted...

Craig
 
J

JGamboe

#10
Craig, sorry bud. Ya knew point two would do this to people, even lurkers like myself.

With regards to an internal audit, would there ever be a time that an auditor would issue a corrective action based on audit findings?

If no, then how would you handle a potential non-conformance during a safety audit?

I realize that not all companies do safety audits or have need to, however we do. My belief is that an auditor not become involved or be responsible for writing a corrective action, unless a safety issue is uncovered during an audit on a facility/warehouse.

Just wondering your thoughts as well as the other members.


Thanks,
Jim
 
Thread starter Similar threads Forum Replies Date
Gman2 MY thoughts on 'process based' auditing ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 24
N Looking to Impress - New Job - Advice, Thoughts, Comments Welcome Career and Occupation Discussions 15
T Internal Nonconformance procedure thoughts (AS9100) AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 4
S Inventory Control - Any thoughts would be appreciated ISO 13485:2016 - Medical Device Quality Management Systems 2
S Proposed Quality Improvement - Thoughts? Medical Device and FDA Regulations and Standards News 3
E Discussion between co-worker on tolerance and uncertainty and how to apply it. Thoughts? 17025 ISO 17025 related Discussions 1
D ASQ CMQ/OE Certification - Share your thoughts ASQ - American Society for Quality 3
Marc Thoughts about the vBulletin to Xenforo Software Migration - 2 October 2018 Forum News and General Information 4
J MDR reporting and CAPA thoughts? Classifying Complaints on Risk 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 13
Q Thoughts on Communications relevant to the Quality Management System ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 3
K Thoughts on the impact of the General Data Protection Regulation? Medical Information Technology, Medical Software and Health Informatics 5
B Thoughts on performing an ISO 9001:2015 Remote Internal Audit ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 8
Marc Thoughts about Extrapolating Statistical Analysis Tools, Techniques and SPC 5
Marc Your thoughts? A weekend calibration teaser General Measurement Device and Calibration Topics 7
Marc Thoughts about Discussion Forums Coffee Break and Water Cooler Discussions 2
S Destructive Gage RR - Using Crossed - want your thoughts Gage R&R (GR&R) and MSA (Measurement Systems Analysis) 18
Marc Thoughts for Food - What's on the menu? Coffee Break and Water Cooler Discussions 3
D Thoughts on the Implementation and Effectiveness of A3 methodology Lean in Manufacturing and Service Industries 2
Antonio Vieira Thoughts on implementation of Quality Management System in a Police Department ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 32
W Thoughts on having Safety Shower in ISO Class 7 Cleanroom ISO 13485:2016 - Medical Device Quality Management Systems 5
C Thoughts on validation of Legacy Systems for Medical Device Software EU Medical Device Regulations 2
T Need thoughts on calibration of Class A volumetric glassware General Measurement Device and Calibration Topics 3
Marc About 1940 to today - TV - Sunday Morning Thoughts Coffee Break and Water Cooler Discussions 5
G Thoughts on Audit Finding for not doing Gage R and R for Visual Inspection Gage R&R (GR&R) and MSA (Measurement Systems Analysis) 8
Sean Kelley What are your thoughts on Process vs Product Control Plans ? FMEA and Control Plans 3
N Improvement in a Medical Plastics Compounder Job Shop - Any thoughts? Preventive Action and Continuous Improvement 14
B Your thoughts on Communicating to Customers the Actions on Customer Survey Customer Complaints 4
Steve Prevette Tom Peters thoughts on Six Sigma, ISO Misc. Quality Assurance and Business Systems Related Topics 5
N Quantifying our QMS Objectives - Your Thoughts ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 12
Jerry Eldred New ILAC Requirements Regarding Repeatability - Your thoughts on this please Measurement Uncertainty (MU) 11
Marc Thoughts and Opinions about the ASQ (American Society for Quality) ASQ, ANAB, UKAS, IAF, IRCA, Exemplar Global and Related Organizations 34
Richard Regalado ISO 27001 Statement of Applicability and Some of my Thoughts IEC 27001 - Information Security Management Systems (ISMS) 4
bobdoering Dr Wheeler gives his thoughts on "Estimating the Fraction Nonconforming" Capability, Accuracy and Stability - Processes, Machines, etc. 0
bobdoering Dr. Wheeler is back with his thoughts on MSA and Gage R&R Gage R&R (GR&R) and MSA (Measurement Systems Analysis) 2
C ISO 27001 and Bulk Email Policy - Your Thoughts, Please IEC 27001 - Information Security Management Systems (ISMS) 3
jasonb067 Cognos Feedback - Cognos BI software from IBM - What your thoughts? After Work and Weekend Discussion Topics 4
C Organization unsure about the ISO 9001 implementation route? Share your thoughts. ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 20
Hershal Memorial Day thoughts - 2010 Coffee Break and Water Cooler Discussions 1
5 What are your thoughts on my NPD (New Product Development) process map? Process Maps, Process Mapping and Turtle Diagrams 17
A What are you thoughts on the 1.5 sigma shift Six Sigma 3
R Considering adding ISO 13485 certification - Your thoughts? ISO 13485:2016 - Medical Device Quality Management Systems 4
I Seeking thoughts on using BOTH FTA (Fault Tree Analysis) and FMEA ISO 14971 - Medical Device Risk Management 17
D KAIZEN Event "tools to use" Brain Jogger - Your thoughts please Lean in Manufacturing and Service Industries 12
P Are they "Satisfying Customer Requirements?" - Thoughts and Comments Customer Complaints 1
Paul Simpson ISO 19011 revision - Your thoughts General Auditing Discussions 53
P ISO 9001 in construction organization: Your thoughts (quality control plan, etc) ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 7
Marc Your Opinions and thoughts about the Elsmar Cove forum - Why do you visit the forum? Forum News and General Information 50
Marc Thoughts about (the murder of) Manufacturing In the US Imported Legacy Blogs 2
M Non Conformance Reports - What are your thoughts on the title? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 14
michellemmm Thoughts on issuing a CAR for Operator Error General Auditing Discussions 15

Similar threads

Top Bottom