Scribd
Upload
34 views9 pages

ISO 9001-2015 Internal Audit Checklist Example

ios

Uploaded by

taufiq khan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
34 views9 pages

ISO 9001-2015 Internal Audit Checklist Example

ios

Uploaded by

taufiq khan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 9

The internal audit checklist is just one of the many tools

available from the auditor’s toolbox. The checklist ensures each


audit concisely compares the requirements of ISO 9001:2015,
and your EQMS against actual business practice.

ISO 9001:2015
Internal Audit
Checklist
System & Process Compliance Auditing
Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Table of Contents
GUIDANCE .................................................................................................................................................................................................................................................. 3

ABOUT THIS CHECKLIST .............................................................................................................................................................................................................................. 3


AUDIT SCORING CRITERIA .......................................................................................................................................................................................................................... 3
PRINCIPLES OF AUDITING ........................................................................................................................................................................................................................... 4
AUDIT METHODOLOGY ............................................................................................................................................................................................................................... 5
Introduction ............................................................................................................................................................................................................................................................................................. 5
Preparation .............................................................................................................................................................................................................................................................................................. 6
Documented Information Review ................................................................................................................................................................................................................................................... 6
Process Criteria, Metrics and Objectives ...................................................................................................................................................................................................................................... 7
Previous Audit Findings ...................................................................................................................................................................................................................................................................... 7
Customer Complaints and Corrective Actions ........................................................................................................................................................................................................................... 7
Inputs and Outputs .............................................................................................................................................................................................................................................................................. 7
Relevant ISO standards ....................................................................................................................................................................................................................................................................... 7
Review Performance ............................................................................................................................................................................................................................................................................ 7
Review Competencies ......................................................................................................................................................................................................................................................................... 8
Review Linkages & Interactions....................................................................................................................................................................................................................................................... 8
Review the Process ............................................................................................................................................................................................................................................................................... 8
Review the Findings ............................................................................................................................................................................................................................................................................. 9
Prepare the Report ............................................................................................................................................................................................................................................................................... 9

INTERNAL AUDIT CHECKLISTS .............................................................................................................................................................................................................10

PART 1: CONTEXT OF THE ORGANIZATION ................................................................................................................................................................................................10


Audit Findings Summary .................................................................................................................................................................................................................................................................. 14
PART 2: LEADERSHIP ................................................................................................................................................................................................................................15
Audit Findings Summary .................................................................................................................................................................................................................................................................. 20
PART 3: PLANNING ..................................................................................................................................................................................................................................21

Document Ref: Page 1 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Audit Findings Summary .................................................................................................................................................................................................................................................................. 25


PART 4: SUPPORT ....................................................................................................................................................................................................................................26
Audit Findings Summary .................................................................................................................................................................................................................................................................. 33
PART 5: OPERATION.................................................................................................................................................................................................................................34
Audit Findings Summary .................................................................................................................................................................................................................................................................. 54
PART 6: PERFORMANCE EVALUATION .......................................................................................................................................................................................................57
Audit Findings Summary .................................................................................................................................................................................................................................................................. 63
PART 7: IMPROVEMENT ............................................................................................................................................................................................................................64
Audit Findings Summary .................................................................................................................................................................................................................................................................. 67

Document Ref: Page 2 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Guidance
About this Checklist
The audit checklist is just one of the many tools which are available from the auditor’s toolbox that help ensure your audits address the necessary
requirements. It stands as a reference point before, during and after the audit process and if developed for a specific audit and used correctly will provide the
following benefits:

 Ensures the audit is conducted systematically;


 Promotes audit planning;
 Ensures a consistent audit approach;
 Actively supports your organization’s audit process (ISO 9001:2015, Clause 9.2.1);
 Provides a repository for notes collected during the audit;
 Ensures uniformity in the performance of different auditors;
 Provides reference to objective evidence.
This audit checklist comprises tables of the certifiable (‘shall’) requirements, from Section 4.0 to Section 10.0 of ISO 9001:2015, each required is phrased as a
question. This audit checklist may be used for element compliance audits and for process audits. If you wish to create separate process audit checklists, select
the clauses from the tables below that are relevant to the process and copy and paste the audit questions into a new audit checklist. We suggest that you
retain this audit checklist as your ‘master copy’.

Audit Scoring Criteria


A risk-based internal audit approach allows the internal audit to concentrate on reviewing the major risks to your organization. The audit’s role is to provide
assurance that key risks to your organization’s objectives are being well controlled.

The audit findings ‘traffic lights’ are intended to visually communicate the risk posed by the audit finding of any system or processes being audited. The rating
system is stratified from ‘compliant’ to ‘major non-conformance’ to convey a concise and consistent method for scoring each audit finding. At the end of the
audit, you can transfer the findings into an Excel spreadsheet to create charts, summary tables and trend data to paste into your audit report or management
review documentation.

Document Ref: Page 3 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

This methodology should be uniformly applied to all types of internal audit (gap analysis, system audits and process audits) that your organization will likely
undertake.

Finding Definition/Impact Action/Mitigation

Compliant means adherence with the requirements of the standard and the EQMS. The
COMPLIANT Continue to monitor trends/indicators.
process is implemented and documented and records exist to verify this.

A low risk issue that offers an opportunity to improve current practice. Processes may Review and implement actions to improve the process(s).
OFI cumbersome or overly complex but meet their targets and objectives. Unresolved OFIs may Monitor trends/indicators to determine if improvement was
degrade over time to become non-compliant. achieved.

A medium risk, minor non-conformance resulting in deviation from process practice not
Investigate root cause(s) and implement corrective action by
MINOR N/C likely to result in the failure of the management system or process that will not result in the
next reporting period or next scheduled audit.
delivery of non-conforming products nor reduce the effectiveness of the EQMS.

A high risk, major non-conformance which directly impacts upon customer requirements, Implement immediate containment action, investigate root
MAJOR N/C likely to result in the customer receiving non-conforming products or services, or which may cause(s) and apply corrective action. Re-audit in 4 weeks to
reduce the effectiveness of the EQMS. verify correction.

Principles of Auditing
Auditing relies on a number of principles whose intent is to make the audit become an effective and reliable tool that supports your company’s management
policies and procedures whilst providing suitable objective information that your company can act upon to continually improve its performance. Adherence to
the following principles are considered to be a prerequisite for ensuring that the conclusions derived from the audit are accurate, objective and sufficient. It
also allows auditors working independently from one another to reach similar conclusions when auditing in similar circumstances. The following principles
relate to auditors.

1. Ethical conduct: Trust, integrity, confidentiality and discretion are essential to auditing;
2. Fair presentation: Audit findings, conclusions and reports reflect truthfully and accurately the audit activities ;
3. Professional care: Auditors must exercise care in accordance with the importance of the task they perform;
4. Independence: Auditors must be independent of the activity being audited and be objective;
5. Evidence-based approach: Evidence must be verifiable and be based on samples of the information available.

Document Ref: Page 4 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Audit Methodology
Introduction 4. Are links between other processes established?
The adoption of the ‘process approach’ is mandated by ISO 9001:2015 and 5. Are processes and their links monitored?
is one of the most important concepts relating to quality management 6. Are records maintained?
systems. Process auditing is about auditing your organization’s processes
As part of the process approach, the process audits must be scheduled
and their interactions, which together comprise the quality management
according to the processes defined by your management system. The audit
system.
schedule should not be based on the clauses of the standard, but it should
The process approach is one of the core quality management principles, instead be based upon the importance and criticality of the process itself.
which is defined as a ‘consistent and predictable results are achieved more The process approach to auditing should cover three vital stages:
effectively and efficiently when activities are understood and managed as
1. Preparing for the audit; (desk review)
interrelated processes that function as a coherent system’.
2. Auditing the process and its linkages;
The process audit provides assurance that the processes have been
implemented as planned and provides information on the ability of the 3. Preparing the summary and audit report;
process to produce a quality output. Done properly, a process audit is An audit of customer related processes should be conducted at planned
much more than verification that processes are being followed. Although intervals in order to determine whether the processes conform to planned
preparation can take a day or two, actual audit time is about two hours per arrangements in order to determine whether the process is properly
shift. implemented and maintained and to provide process performance
A process is a set of interrelated activities that transform inputs, such as information to top management.
materials, customer requirements and labor, via a series of activities into Effective process auditing requires the auditor to identify and record audit
outputs, such as a finished product or service. Various stages of the trails that will make a difference to your organization. The audit should
process must meet various applicable clauses of the standard. There are six begin with the process owner in order to understand how the process
characteristics to look out for when auditing a process: interacts with the other process inputs, outputs, suppliers and/or
1. Does the process have an owner? customers.

2. Is the process defined? The auditor should be able to determine whether the outputs are complete
3. Is the process documented? and that process measurements demonstrate whether all of the outputs

Document Ref: Page 5 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Internal Audit Checklists


Part 1: Context of the Organization
Audit Findings
Question No.

Opportunities for
Clause No.

(Score ‘1’ per box)


Audit Evidence
Improvement (OFI)
Audit Question

Minor N/C

Major N/C
Compliant

OFI
Provide reference to documented Provide suggestions for
information to justify the finding process improvement
Has your organization determined external and internal
issues relevant to its purpose and its strategic direction
4.1 1
that affect its ability to achieve the intended result(s) of
its EQMS?
Does your organization monitor and review information
4.1 2
about these external and internal issues?

Does your organisation determine the interested parties


4.2 3
that are relevant to the EQMS?

Does your organisation determine the requirements of


4.2 4
these interested parties that are relevant to the EQMS?
Does your organization monitor and review information
4.2 5 about these interested parties and their relevant
requirements?
Does your organization determine the boundaries and
4.3 6
applicability of the EQMS to establish its scope?

When determining this scope, has your organization


4.3 7 considered the external and internal issues referred to in
4.1?

Document Ref: Page 10 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Audit Findings
Question No. Opportunities for
Clause No.

(Score ‘1’ per box)


Audit Evidence
Improvement (OFI)
Audit Question

Minor N/C

Major N/C
Compliant

OFI
Provide reference to documented Provide suggestions for
information to justify the finding process improvement
When determining this scope, has your organization
4.3 8 considered the requirements of relevant interested
parties referred to in 4.2?

When determining this scope, has your organization


4.3 9 considered the products and services of your
organization?

Has your organization applied all the requirements of


4.3 10 this International Standard if they are applicable within
the determined scope of its EQMS?

Is the scope of your organization’s EQMS available and


4.3 11
maintained as documented information? (See 7.5.1a)
Does the scope state the types of products and services
covered, and provide justification for any requirement of
4.3 12
ISO 9001:2015 that your organization determines is not
applicable to the scope of its EQMS?

Has your organization established, implemented,


maintained and continually improved an EQMS,
4.4.1 13
including the processes needed and their interactions, in
accordance with the requirements of ISO 14001:2015?

Document Ref: Page 11 of 67


Double click here to insert ISO 9001:2015 Internal Audit Checklist
your organization’s name
or logo. System & Process Compliance Auditing

Audit Findings Summary


Manually transfer any adverse audit findings from the audit checklist in Part 1 into the audit findings summary table below. At the end of the audit, you can
transfer the findings into an Excel spreadsheet to create charts, summary tables and trend data to paste into your audit report.

Clause ► 4.1 4.2 4.3 4.4 4.4.1 4.4.2

Question No. ►
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24
Criteria ▼
OFI
MINOR N/C
MAJOR N/C

Document Ref: Page 14 of 67

You might also like