Trusted Information Resource
When auditing a certain process, my approach is to ask the process owner first about the expected outputs of the process. Then once they are established, the next set of questions are intended to obtain the controls, criteria, resources, monitoring and measurements, including actions to address risks/opportunities, that will ensure that the expected outputs are delivered. I don't use clause-based checklist. My question is, is my approach different from what IATF 16949 intention on clauses 7.2.3a and 7.2.4a which requires competence on the "automotive process approach for auditing"?