Which of the following two documents does an auditor need to prepare and complete prior to the on-site audit?
According to ISO 19011:2018, clause 6.3, the audit plan is a document that provides the basis for agreement regarding the conduct of the audit. The audit plan should include the information listed in my previous response, such as the audit objectives, scope, criteria, schedule, team, methods, report, etc. The audit plan should be prepared and completed prior to the on-site audit, and should be communicated to the audit team and the auditee1.
According to ISO 19011:2018, clause 6.4.3, the checklist / prompts are documents that list the questions or topics that need to be covered during an audit. The checklist / prompts can help the auditor to collect and verify information relevant to the audit criteria, and to ensure the consistency and completeness of the audit. The checklist / prompts should be prepared and completed prior to the on-site audit, and should be based on the audit plan and the audit scope and objectives1.
Therefore, the two documents that an auditor needs to prepare and complete prior to the on-site audit are B and D, as they are essential for planning and conducting the audit. The other options are not correct, as they are either prepared or completed after the on-site audit, or not required by the standard:
* A. Audit Report: The audit report is a document that provides a complete, accurate, concise, and clear record of the audit. The audit report should include the information listed in my previous response, such as the audit objectives, scope, criteria, findings, conclusions, etc. The audit report should be prepared and completed after the on-site audit, and should be distributed to the audit client and the auditee1.
* C. Procedures: Procedures are documents that specify the way activities are to be performed. Procedures may be part of the audit criteria, if they are part of the organization's management system, or part of the audit programme, if they are part of the certification body's or registrar's requirements. Procedures are not prepared or completed by the auditor prior to the on-site audit, but rather reviewed or followed by the auditor during the audit1.
* E. Risk Matrices: Risk matrices are tools that help to assess and prioritize the risks and opportunities associated with the audit programme or the audit. Risk matrices may be part of the audit programme management, if they are used to determine and evaluate the audit programme risks and opportunities, or part of the audit preparation, if they are used to determine and evaluate the audit risks and opportunities. Risk matrices are not prepared or completed by the auditor prior to the on-site audit, but rather used or updated by the auditor during the audit programme management or the audit preparation1.
* F. Findings: Findings are the results of the evaluation of the collected audit evidence against the audit criteria. Findings can indicate either conformity or nonconformity, as well as positive aspects or opportunities for improvement. Findings are not prepared or completed by the auditor prior to the on-site audit, but rather generated and recorded by the auditor during the audit activities1.
XYZ Corporation is an organisation that employs 100 people. As the audit team leader, you are conducting a certification audit at Stage 1. When reviewing the quality management system (QMS)
documentation, you find that quality objectives have been set for every employee in the organisation except top management. The Quality Manager complains that this has created a lot of resistance
to the QMS, and the Chief Executive is asking questions about how much it will cost. He asks for your opinion on whether this is the correct method of setting objectives.
How would you respond with the following options? Select three.
According to the ISO 9001:2015 standard, clause 6.2.1 requires organizations to establish quality objectives at relevant functions, levels, and processes needed for the quality management system. The quality objectives must be consistent with the quality policy and the strategic direction of the organization. The quality objectives must also be measurable, monitored, communicated, and updated as appropriate.
In this scenario, the Quality Manager of XYZ Corporation has set quality objectives for every employee in the organization except top management. This has created a lot of resistance to the QMS, and the Chief Executive is asking questions about the cost and the method of setting objectives. The Quality Manager asks for your opinion as an auditor on whether this is the correct method of setting objectives.
As an auditor, you cannot provide advice to the organization on how it should operate its QMS. Your role is to assess the conformity and effectiveness of the QMS against the requirements of the standard and the organization's own policies and objectives. Therefore, you should respond with the following options:
B) Advise the Quality Manager to read the ISO 9001 standard and interpret in relation to the organization's requirements:You can suggest that the Quality Manager should familiarize himself with the requirements of clause 6.2.1 and understand how they apply to his organization. He should also consider the context and the needs and expectations of interested parties when setting quality objectives. He should ensure that the quality objectives are aligned with the quality policy and the strategic direction of the organization.
C) Advise the Quality Manager that you will raise an opportunity for improvement if the quality objectives are not addressed properly:You can inform the Quality Manager that you will evaluate the quality objectives during the audit and check whether they meet the requirements of clause 6.2.1. If you find any gaps or weaknesses in the quality objectives, you will raise an opportunity for improvement to help the organization improve its QMS. You will also verify whether the quality objectives are monitored, communicated, and updated as appropriate.
D) Inform the Quality Manager that you will comment on the subject in your audit report:You can inform the Quality Manager that you will document your findings and observations on the quality objectives in your audit report. You will also provide a summary of the audit results and any recommendations for improvement. You will also indicate the level of conformity and effectiveness of the QMS.
These three options would help you to maintain your impartiality and professionalism as an auditor and to provide constructive feedback to the organization
You have been nominated audit team leader of a third-party audit. Which of the following could be the two most relevant objectives of this audit?
Evaluate the effectiveness of the management system: This objective involves verifying that the quality management system meets the requirements of a specific standard, such as ISO 9001:2015, and that it achieves the intended results and outcomes. The audit team will collect and analyse audit evidence to determine the degree of conformity and performance of the quality management system23.
* Evaluate the capability of the management system to establish and achieve objectives: This objective involves verifying that the quality management system supports the strategic direction and policies of the organization, and that it addresses the needs and expectations of the interested parties. The audit team will assess the suitability, adequacy, and alignment of the quality management system objectives, and the effectiveness of the planning and implementation processes to achieve them23.
The other options are not the most relevant objectives of a third-party audit, according to the web search results from my internal tool. They may be related to other aspects or types of audits, but they are not the focus of a third-party audit.
Therefore, the correct answer is B and D.
You, as auditor, are in dialogue with the quality lead and managing director of a small business that supplies
specialist laboratory equipment and furniture.
You: "I'd like to look at how you manage change in the organisation. What changes have you made as a
business, say, over the last 12 months?"
Auditee: "We have made some strategic changes, the main one being that we no longer manufacture our
own products in house."
You: "That sounds like quite a significant change. What has been the impact of that?"
Auditee: "We now mainly sell other manufacturers' products, under their brand names, and have outsourced
manufacture of our own brand products to one of our suppliers. Unfortunately, we had to make six members
of our staff redundant. This represents about 20% of our workforce, so this has been quite a challenging
time."
You: "I'm sure. What were the reasons for making the change?"
Auditee: "Our manufacturing section was a small operation, and we struggled to cope with fluctuations in
demand. During busy periods, we found it hard to meet lead times, and in quiet periods we had staff with
little to do. This was having an impact on customer satisfaction and meant we had to charge premium prices
that made our product uncompetitive."
You: "How did you go about the change?"
The auditor asks to speak to the purchasing manager about the selection of the subcontractor to
manufacture the company's own brand products.
You: "How did you choose a supplier to manufacture your products?"
Auditee: "We have had a long-term relationship with a supplier ABC Ltd - we gave them our design
drawings, got them to complete a supplier questionnaire and run a couple of trial batches for us. We were
happy with the result and we have used them ever since."
ISO 9001:2015, clause 8.4.1 outlines situations when controls need to be applied to externally provided processes, products and services. Which one of the following situations is applicable to this scenario?
According to the ISO 9001:2015 standard, clause 8.4.1 requires organizations to ensure that externally provided processes, products and services conform to requirements. Controls must be applied to externally provided processes, products and services when:
The products and services are intended for incorporation into the organization's own products and services.
They are provided directly to customers by the external provider on behalf of the organization.
A process, or part of a process, is provided by an external provider as a result of a decision by the organization.
In this scenario, the auditee has chosen a supplier to manufacture their own brand products based on their design drawings, supplier questionnaire and trial batches. This means that the supplier is providing a process (manufacturing) as a result of a decision by the organization (the auditee). Therefore, clause 8.4.1 applies to this situation.
An audit team leader arrives at a printing organisation to carry out a Stage 2 audit for a certification body. At a meeting with the Quality Manager, she is told that they have won their biggest contract from a computer manufacturer to print and compile computer documentation packages. They have leased the unit next door for space reasons but have never worked in this sector before. The Quality Manager wants the ISO 9001 certificate to cover the new contract.
During the audit, a team member finds that a number of print jobs have been rejected by several clients over a number of months due to spelling errors in the print run. The Print Manager blames the new employees they had to take on because of a big contract. The auditor raises a nonconformance against clause 10.2.1.b of ISO 9001.
Which one of the evidence statements would support this finding?
According to clause 10.2.1.b of ISO 9001:2015, the organization should evaluate the need for action to eliminate the causes of nonconformities, in order to prevent their recurrence. This means that the organization should identify and address the root causes and contributing factors of the nonconformities, and implement appropriate corrective actions that are effective and proportional to the impact of the nonconformities. In this case, the evidence statement that supports the finding of nonconformance is C, because it shows that the organization did not take effective actions to prevent the recurrence of the spelling errors in the print run, which resulted in repeated customer rejections and dissatisfaction. The other options are not directly related to clause 10.2.1.b, although they may indicate other nonconformities or weaknesses in the organization's QMS. For example, option A may relate to clause 7.2 on competence, option B may relate to clause 8.6 on release of products and services, and option D may relate to clause 7.1 on resources. Reference: ISO 9001:2015, [ISO 9001 Auditing Practices Group Guidance on Nonconformity and Corrective Action], ISO 9001 Clause 10. Improvement - ISO-templates.com
