Something came to mind today concerning internal auditing our quality system (certified to iso 9001: 2015). Is the purpose of internal audit to check we are working to our quality system or a combination of that and that it meets the requirements of the standard?
I think it's to check we're doing what we say we do. The external auditor is checking compliance to our system and the standard.
Of course prior to transition we did the check against meeting the requirements of the standard, making improvements to ensure that. However after that the standard doesn't change so you only need to repeat checks against standard for changes to your standard. With no changes does the internal auditor actually need the standard with them?
Am I over thinking this or stating the obvious?
I think it's to check we're doing what we say we do. The external auditor is checking compliance to our system and the standard.
Of course prior to transition we did the check against meeting the requirements of the standard, making improvements to ensure that. However after that the standard doesn't change so you only need to repeat checks against standard for changes to your standard. With no changes does the internal auditor actually need the standard with them?
Am I over thinking this or stating the obvious?

