Who should be present during certification audits (ISO 9001/14001)?

I

Iceman

#1
Do you have any opinion of who should be present during certification audits (ISO 9001/14001)? i.e. ceo, managers, specialists, internal auditors/trainee, others...

Problems is that to many people present during the audit can be disadvantage when auditee is a tense person, but for another auditee it can be a support or even enjoyment.

Any comments? Do you use any special method? Does your registrars control this?
 
Elsmar Forum Sponsor
D

D.Scott

#2
I try to get as many of our executive staff as possible to the opening and closing meeting. I think this is one way to show the auditor your management is serious about it.

The actual audit should be attended by only those who can contribute to the area being audited. Sometimes, a guide (often the MR) is enough. The auditor meets all the appropriate people at the opening then they are dismissed until they might be needed.

Works well for us.

Dave
 
R

Randy Stewart

#3
Iceman,
It is good to show management backing, but as D. S. stated, to many can confuse the process. We have been doing this certification stuff for a few years now and our auditors know our system. The management staff is present for the opening meeting but as for the audit, they make themselves available if needed (Management Review, etc.). We go through the schedule before the auditors show up and set up interviewees ect. If any changes need to be made it is done up front before the opening meeting. For the most part, being the MR, I take care of the audits and get assistance from the facility reps.
 
T

tomvehoski

#4
I agree with everyone above about the opening and closing meeting. I do like to have internal auditors tag along on parts of the audit. I have found it is good training for them to observe the registration audit process. I do keep it to only one per auditor to prevent having a huge group of people wandering the building. Normally it is the auditor, escort, consultant (myself), an internal auditor observer and the person being audited for the particular element.

Tom
 
A

Aaron Lupo

#5
Not trying to be mean but as an auditor for a couple registrars I prefer not to have the consultant there. Why you ask? Most of the time, they are answering questions and they shouldn’t be, it is not there system it belongs to the company being audited. I don’t care if the consultant knows the answer I need the people that are using the system to be able to explain/answer. Now don’t get me wrong if the consultant wants to tag along that is fine as long as they keep quiet.

Other than that IMHO I would say at the opening it is usually the Managers and above and the closing it is not unusual to have as many people attend as can fit in the room. The inbetween part, a guide and the area being audited and the area being audited is usually all you need. Not a bad idea to have new internal auditors tag along for the experience. Just try to keep things to a minimum, I am sure you don't want a parade marching thru the plant.
 
Last edited by a moderator:
T

tomvehoski

#6
I don't think it should matter how the "consultant" gets paid to determine if they should be present at the audit. Just because someone gets paid as a contractor or as a supplier, it should not matter. If a VP tags along for the whole audit and tries to answer questions for every machine operator, it is the same problem.

I am very well behaved consultant during audits. I usually get the standard warning from every auditor at the beginning of each audit, at least until they get to know me. I typically don't answer anything unless I am directly asked. For some of my clients I am part of their system, such as their internal auditor, so I am the auditee on occasion. I had a QS audit yesterday and the only two times I spoke up were:

1. Auditor was claiming that segregation of lots between samples until checked was a requirement. I agreed it is good practice, but not required as you could sort 10 lots instead of 1 if they got mixed up, as long as all are segregated and identified. Client decided to add it to his work instruction anyway, so no big issue.

2. Direct questions about the internal audit I did for them.

I will speak up if I see that my client is "lost" by the question and more or less restate what the auditor asked in terms they will understand. Sometimes I get direct questions like "why did you do it that way". If my client is struggling because they don't know the answer, I let them struggle. I agree they have to be familiar with the system and won't have me around all the time to answer questions. I will also stop my client from arguing if there is a true nonconformance and tell the auditor to go ahead and write it.

I actually asked an auditor to write a minor nonconformance on one of my clients on a QS/TE audit. After six months of myself and the quality manager fighting with the owner to clean up his shop he did not make much progress. He had so much junk stacked up that it was a safety hazard. The auditor was also concerned it was so bad. I felt the only person the owner would listen to at that point was the auditor, so I took him aside and told him I thought it was a good idea to write it to wake him up. Ended up with a closed door meeting with the owner and auditor alone to discuss it instead of a nonconformance.

Overall I tend to find audit days very boring. If everything is going well I usually try to find an empty office to do some other work and check in every so often. After observing so many there is not much excitement, unless I get a "bad" auditor and do have to challenge interpretations.

Tom
 
A

Aaron Lupo

#7
Tom I agree that if you do things for them besides consulting, such as the internal audits then you are free to respond. However, it is more often that you need to ask the consultant to please not respond to the questions. Although IMHO I think it is crazy to pay someone to do you internal audits, but hey to each their own. If they need to have the question asked a different way that is ok or if the auditor is way off in left field with his/her interpretation sure speak up. Just do anwser the question for them.
 
Thread starter Similar threads Forum Replies Date
C How should I present Internal Audit results to Management in Management Review Internal Auditing 18
G Internal Audit Report Meeting - Who should be present? Internal Auditing 19
John Broomfield Vote - Should ISO9004 Become a Requirements Standard? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 10
A Capability Study - in the beginning of your career what should you have known about the tool Quality Tools, Improvement and Analysis 11
J Should Loading and Unloading be Included in Cycle Times? Lean in Manufacturing and Service Industries 13
E Manufacturers should develop a testing device for covid19 Service Industry Specific Topics 0
T 510(k) submission - Which name should I use in the submission? Other US Medical Device Regulations 3
N ISO 19011:2018 - 5.4.2 "...audit program should engage in appropriate continual development..." Training - Internal, External, Online and Distance Learning 4
G Should I perform Gage R&R only at the beginning of a new project? Gage R&R (GR&R) and MSA (Measurement Systems Analysis) 6
DuncanGibbons Should the requirements FAA/EASA Part 21 be addressed within the QMS and AS9100D quality manual? AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
M Should 510(k) Predicates be Actively Listed Devices? Other US Medical Device Regulations 12
B Why the Greek god Hephaestus should have done a design FMEA (DFMEA) on his giant robot APQP and PPAP 1
J On PFMEA for danger labels - Label always should be assigned severity 10 ? FMEA and Control Plans 3
H Who should be listed as the manufacturer/distributor on the box? 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 15
M MDR, RED and LVD - Should our device comply with them? EU Medical Device Regulations 2
BeaBea How Many Processes should be created for each Department? Process Maps, Process Mapping and Turtle Diagrams 5
M Should volume of sales be factored into risk probability assessments? ISO 14971 - Medical Device Risk Management 33
MrTetris Should potential bugs be considered in software risk analysis? ISO 14971 - Medical Device Risk Management 5
S Should safety checks be included in the Control Plan? IATF 16949 - Automotive Quality Systems Standard 5
M Which incubation condition should be selected to recover both bacteria and fungus effectively Miscellaneous Environmental Standards and EMS Related Discussions 3
D Is there a specific location for PPE such as safety glass holders and glove dispensers should be mounted Occupational Health & Safety Management Standards 10
Robert Stanley Which Registrar Should I Choose for ISO 9001:2015 registration? Registrars and Notified Bodies 10
M Who should receive the bills from suppliers and vendors, account payable or procurement? Consultants and Consulting 4
V IATF 16949 8.4.1 Control of externally provided processes, products and services - Should the CB be on our Approved Supplier List? IATF 16949 - Automotive Quality Systems Standard 10
A We are ISO 13485:2016 should we be audited to ISO 14971 ISO 13485:2016 - Medical Device Quality Management Systems 16
E Received a Major finding during IATF Surveillance audit for loss of BIQS Level 3 (more than 6 SPPS in 6 months)...how should we address SYSTEMIC CA? IATF 16949 - Automotive Quality Systems Standard 11
J Organization merger. Should we keep two separate ISO 13485 certificates? ISO 13485:2016 - Medical Device Quality Management Systems 6
S Companies that maintain your machine should be in ASL? AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 2
S Use of "Shall" versus "Should" in Procedures ISO 13485:2016 - Medical Device Quality Management Systems 21
D Class II medical device - When should a complaint be closed? Customer Complaints 6
Sidney Vianna IATF 16949 News Presentations from the latest IATF Stakeholder Event - Expectation that IATF 16949 certification should equate with product quality. Misguided? IATF 16949 - Automotive Quality Systems Standard 7
L Clause 0.4 of ISO 9001 and EHS - Where should I stop the inclusion of EHS in my QMS ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 8
Ed Panek Part 11 Self Certify Memo - What else should it cover? Qualification and Validation (including 21 CFR Part 11) 5
H Should I mention machine/Equipment password In SOP? Qualification and Validation (including 21 CFR Part 11) 4
D How long should we keep the spare parts available for our medical device, after we have stopped the production? ISO 13485:2016 - Medical Device Quality Management Systems 0
H Statistical Techniques Procedure - What should be included Document Control Systems, Procedures, Forms and Templates 4
Q How should I analyze measurement correlation between me and customer? Gage R&R (GR&R) and MSA (Measurement Systems Analysis) 12
Sidney Vianna Interesting Discussion ISO 9001:2024 - What should be changed in the next Edition of ISO 9001? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 98
N Should it even be on the hazard analysis (software)? FMEA and Control Plans 2
V Which batches should or could be considered for design validation and design verification? 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 0
L A Taiwan company want to sell Class I medical device (510(k) exempt) on Amazon, should we register with FDA? US Food and Drug Administration (FDA) 4
M Routine testing of medical electrical systems - What specific electrical safety tests should be performed? IEC 60601 - Medical Electrical Equipment Safety Standards Series 5
G ISO 17025:2017 7.1.2 - Should I produce a document for the customer? ISO 17025 related Discussions 8
F Quality Objectives - Where in the QMS Quality Objectives should be located ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 8
P ISO 80369-7 standard - Interpreting which Parts should be in scope Other Medical Device Related Standards 7
V Who should define and own the Design and Development Plan and how to maintain the updates and revisions. ISO 13485:2016 - Medical Device Quality Management Systems 2
A How should the Medical Device OEMs be declared to ANVISA? Other Medical Device Regulations World-Wide 0
D Should "Waste" be included as Output in SIPOC Chart? Process Maps, Process Mapping and Turtle Diagrams 8
N Control plan evaluation methods - Which methods should be carried over from the PFMEA? FMEA and Control Plans 3
A PFMEA - How long should the recommended actions remain in the recommended actions column? APQP and PPAP 3

Similar threads

Top Bottom