Internal Audit Checklist System & Process Compliance Auditing

The internal audit checklist is just one of the many tools available from the auditor’s toolbox. The checklist ensures each audit concisely compares t...
Author: Ferdinand Sullivan
11 downloads 1 Views 114KB Size
Report
Download PDF
The internal audit checklist is just one of the many tools available from the auditor’s toolbox. The checklist ensures each audit concisely compares the requirements of ISO 9001:2015, and your Quality Management System against actual business practice.

Internal Audit Checklist System & Process Compliance Auditing

Insert your Company name or logo here

ISO 9001:2015 Audit Checklist System & Process Compliance Auditing

Table of Contents GUIDANCE .................................................................................................................................................................................................................................................. 3 ABOUT THIS CHECKLIST .................................................................................................................................................................................................................................................................................. 3 AUDIT SCORING CRITERIA .............................................................................................................................................................................................................................................................................. 3 PRINCIPLES OF AUDITING ............................................................................................................................................................................................................................................................................... 4 AUDIT METHODOLOGY................................................................................................................................................................................................................................................................................... 5 Introduction ............................................................................................................................................................................................................................................................................................. 5 Preparation .............................................................................................................................................................................................................................................................................................. 7 Documented Information Review................................................................................................................................................................................................................................................... 7 Process Criteria, Metrics and Objectives ...................................................................................................................................................................................................................................... 7 Previous Audit Findings ...................................................................................................................................................................................................................................................................... 7 Customer Complaints and Corrective Actions........................................................................................................................................................................................................................... 8 Inputs and Outputs .............................................................................................................................................................................................................................................................................. 8 Relevant ISO standards ....................................................................................................................................................................................................................................................................... 8 Review Performance ............................................................................................................................................................................................................................................................................ 8 Review Competencies ......................................................................................................................................................................................................................................................................... 8 Review Linkages & Interactions....................................................................................................................................................................................................................................................... 9 Review the Process ............................................................................................................................................................................................................................................................................... 9 Review the Findings ........................................................................................................................................................................................................................................................................... 10 Prepare the Report ............................................................................................................................................................................................................................................................................. 10 AUDIT CHECKLIST – PART 1 ..................................................................................................................................................................................................................11 SECTION 4.0 CONTEXT OF THE ORGANIZATION........................................................................................................................................................................................................................................ 11 AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 16 AUDIT CHECKLIST – PART 2 ..................................................................................................................................................................................................................17 SECTION 5.0 LEADERSHIP............................................................................................................................................................................................................................................................................. 17

Document Ref:

Page 1 of 79

Insert your Company name or logo here

ISO 9001:2015 Audit Checklist System & Process Compliance Auditing

AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 22 AUDIT CHECKLIST – PART 3 ..................................................................................................................................................................................................................23 SECTION 6.0 PLANNING ............................................................................................................................................................................................................................................................................... 23 AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 28 AUDIT CHECKLIST – PART 4 ..................................................................................................................................................................................................................29 SECTION 7.0 SUPPORT ................................................................................................................................................................................................................................................................................. 29 AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 37 AUDIT CHECKLIST – PART 5 ..................................................................................................................................................................................................................38 SECTION 8.0 OPERATION ............................................................................................................................................................................................................................................................................. 38 AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 62 AUDIT CHECKLIST – PART 6 ..................................................................................................................................................................................................................65 SECTION 9.0 PERFORMANCE EVALUATION ................................................................................................................................................................................................................................................ 65 AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 73 AUDIT CHECKLIST – PART 7 ..................................................................................................................................................................................................................74 SECTION 10.0 IMPROVEMENT ..................................................................................................................................................................................................................................................................... 74 AUDIT FINDINGS SUMMARY ........................................................................................................................................................................................................................................................................ 78

Document Ref:

Page 2 of 79

Insert your Company name or logo here

ISO 9001:2015 Audit Checklist System & Process Compliance Auditing

Guidance About this Checklist The audit checklist is just one of the many tools which are available from the auditor’s toolbox that help ensure your audits address the necessary requirements. It stands as a reference point before, during and after the audit process and if developed for a specific audit and used correctly will provide the following benefits: •

Ensures the audit is conducted systematically;



Promotes audit planning;



Ensures a consistent audit approach;



Actively supports your organization’s audit process (ISO 9001:2015, Clause 9.2.1);



Provides a repository for notes collected during the audit;



Ensures uniformity in the performance of different auditors;



Provides reference to objective evidence.

This audit checklist comprises tables of the certifiable (‘shall’) requirements, from Section 4.0 to Section 10.0 of ISO 9001:2015, each required is phrased as a question. This audit checklist may be used for element compliance audits and for process audits. If you wish to create separate process audit checklists, select the clauses from the tables below that are relevant to the process and copy and paste the audit questions into a new audit checklist. We suggest that you retain this audit checklist as your ‘master copy’.

Audit Scoring Criteria A risk-based internal audit approach allows the internal audit to concentrate on reviewing the major risks to your organization. The audit’s role is to provide assurance that key risks to your organization’s objectives are being well controlled. The audit findings ‘traffic lights’ are intended to visually communicate the risk posed by the audit finding of any system or processes being audited. The rating system is stratified from ‘compliant’ to ‘major non-conformance’ to convey a concise and consistent method for scoring each audit finding. At the end of the audit, you can transfer the findings into an Excel spreadsheet to create charts, summary tables and trend data to paste into your audit report or management review documentation.

Document Ref:

Page 3 of 79

Insert your Company name or logo here

ISO 9001:2015 Audit Checklist System & Process Compliance Auditing

This methodology should be uniformly applied to all types of internal audit (gap analysis, system audits and process audits) that your organization will likely undertake. Finding

Definition/Impact

Action/Mitigation

COMPLIANT

Compliant means adherence with the requirements of the standard and the QMS. The process is implemented and documented and records exist to verify this.

Continue to monitor trends/indicators.

OFI

A low risk issue that offers an opportunity to improve current practice. Processes may cumbersome or overly complex but meet their targets and objectives. Unresolved OFIs may degrade over time to become non-compliant.

Review and implement actions to improve the process(s). Monitor trends/indicators to determine if improvement was achieved.

MINOR N/C

A medium risk, minor non-conformance resulting in deviation from process practice not likely to result in the failure of the management system or process that will not result in the delivery of non-conforming products nor reduce the effectiveness of the QMS.

Investigate root cause(s) and implement corrective action by next reporting period or next scheduled audit.

MAJOR N/C

A high risk, major non-conformance which directly impacts upon customer requirements, likely to result in the customer receiving non-conforming products or services, or which may reduce the effectiveness of the QMS.

Implement immediate containment action, investigate root cause(s) and apply corrective action. Re-audit in 4 weeks to verify correction.

Principles of Auditing Auditing relies on a number of principles whose intent is to make the audit become an effective and reliable tool that supports your company’s management policies and procedures whilst providing suitable objective information that your company can act upon to continually improve its performance. Adherence to the following principles are considered to be a prerequisite for ensuring that the conclusions derived from the audit are accurate, objective and sufficient. It also allows auditors working independently from one another to reach similar conclusions when auditing in similar circumstances. The following principles relate to auditors. 1.

Ethical conduct: Trust, integrity, confidentiality and discretion are essential to auditing;

2.

Fair presentation: Audit findings, conclusions and reports reflect truthfully and accurately the audit activities ;

3.

Professional care: Auditors must exercise care in accordance with the importance of the task they perform;

Document Ref:

Page 4 of 79

ISO 9001:2015 Audit Checklist

Insert your Company name or logo here

System & Process Compliance Auditing Audit Findings

8.5.5

225

Does your organization meet requirements for postdelivery activities associated with the products and services?

8.5.5

226

In determining the extent of post-delivery activities that are required, does your organization consider statutory and regulatory requirements?

227

In determining the extent of post-delivery activities that are required, does your organization consider the potential undesired consequences associated with its products and services?

8.5.5

228

In determining the extent of post-delivery activities that are required, does your organization consider the nature, use and intended lifetime of its products and services?

8.5.5

229

In determining the extent of post-delivery activities that are required, does your organization consider customer requirements?

8.5.5

230

In determining the extent of post-delivery activities that are required, does your organization consider customer feedback?

8.5.5

Document Ref:

MAJOR N/C

Audit Question

MINOR N/C

Ref

OFI

Clause

COMPLIANT

(Score ‘1’ per box)

Audit Evidence

Opportunities for Improvement (OFI)

Provide reference to documented information to justify the finding

Provide suggestions for process improvement

Page 58 of 79

ISO 9001:2015 Audit Checklist

Insert your Company name or logo here

System & Process Compliance Auditing

Clause ►

8.3.6

8.4.1

8.4.2

Question No. ► 182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

Criteria ▼ OFI MINOR N/C MAJOR N/C

Clause ►

8.4.3

8.5.1

Question No. ► 199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

235

236

Criteria ▼ OFI MINOR N/C MAJOR N/C

Clause ►

8.5.2

8.5.3

8.5.4

8.5.5

8.5.6

8.6

Question No. ► 218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

Criteria ▼ OFI MINOR N/C MAJOR N/C

Document Ref:

Page 63 of 79

ISO 9001:2015 Audit Checklist

Insert your Company name or logo here

System & Process Compliance Auditing Audit Findings

10.2.1

292

When nonconformities occur, including any arising from complaints, does your organization react to the nonconformity take action to control and correct it?

10.2.1

293

When nonconformities occur, including any arising from complaints, does your organization react to the nonconformity deal with the consequences?

294

When nonconformities occur, including any arising from complaints, does your organization evaluate the need for action to eliminate the cause(s) of the nonconformity, in order that it does not recur or occur elsewhere by reviewing and analysing the nonconformity?

295

When nonconformities occur, including any arising from complaints, does your organization evaluate the need for action to eliminate the cause(s) of the nonconformity, in order that it does not recur or occur elsewhere by determining the causes of the nonconformity?

10.2.1

10.2.1

Document Ref:

MAJOR N/C

Audit Question

MINOR N/C

Ref

OFI

Clause

COMPLIANT

(Score ‘1’ per box)

Audit Evidence

Opportunities for Improvement (OFI)

Provide reference to documented information to justify the finding

Provide suggestions for process improvement

Page 75 of 79

ISO 9001:2015 Audit Checklist

Insert your Company name or logo here

System & Process Compliance Auditing

Audit Findings Summary Manually transfer any adverse audit findings from the Section 10.0 audit checklist above to the audit findings summary table below. At the end of the audit, you can transfer the findings into an Excel spreadsheet to create charts, summary tables and trend data to paste into your audit report. Clause ►

10.1

10.2.1

10.2.2

10.3

Question No. ► 288

289

290

291

292

293

294

295

296

297

298

299

300

301

302

303

304

305

Criteria ▼ OFI MINOR N/C MAJOR N/C

Document Ref:

Page 78 of 79

Suggest Documents

ISO 9001:2015 Internal Audit Checklist System & Process Compliance Auditing

ISO 9001:2015 Internal Audit Checklist System & Process Compliance Auditing
Read more
Internal Auditing of Process Safety

Internal Auditing of Process Safety
Read more
Internal Audit Process

Internal Audit Process
Read more
LEGAL, COMPLIANCE AND INTERNAL AUDIT

LEGAL, COMPLIANCE AND INTERNAL AUDIT
Read more
ENVIRONMENTAL INTERNAL COMPLIANCE AUDIT PROTOCOL

ENVIRONMENTAL INTERNAL COMPLIANCE AUDIT PROTOCOL
Read more
Local Government Internal Audit Compliance

Local Government Internal Audit Compliance
Read more
Internal Audit, Risk & Compliance Services

Internal Audit, Risk & Compliance Services
Read more
Checklist Internal Control System

Checklist Internal Control System
Read more
Workshop on Risk-Based Internal Auditing and Internal Audit Workpapers

Workshop on Risk-Based Internal Auditing and Internal Audit Workpapers
Read more
Program Level 3 Compliance Audit Checklist

Program Level 3 Compliance Audit Checklist
Read more
Chain of Custody Internal Audit Checklist

Chain of Custody Internal Audit Checklist
Read more
Self-Audit Checklist (For Internal Use Only)

Self-Audit Checklist (For Internal Use Only)
Read more
EFFECTIVE INTERNAL AUDITING PROCESS WORKSHOP 2016

EFFECTIVE INTERNAL AUDITING PROCESS WORKSHOP 2016
Read more
Audit committee toolkit: Internal control checklist

Audit committee toolkit: Internal control checklist
Read more
Office of Internal Audit and Compliance

Office of Internal Audit and Compliance
Read more
Internal Auditing Regulations Internal Regulations

Internal Auditing Regulations Internal Regulations
Read more
ISO COMPLIANCE AUDIT TOOL 7. PROCESS MANAGEMENT AUDIT QUESTIONNAIRE

ISO COMPLIANCE AUDIT TOOL 7. PROCESS MANAGEMENT AUDIT QUESTIONNAIRE
Read more
Internal Control Internal Audit External Audit. Workshop on Internal Audit

Internal Control Internal Audit External Audit. Workshop on Internal Audit
Read more
QS1 Auditor Checklist. Quality System Audit

QS1 Auditor Checklist. Quality System Audit
Read more
Sample Auditing Compliance Plan

Sample Auditing Compliance Plan
Read more
Foundations of Internal Auditing

Foundations of Internal Auditing
Read more
Risk based internal auditing

Risk based internal auditing
Read more
COUNCIL OF INTERNAL AUDITING

COUNCIL OF INTERNAL AUDITING
Read more
Office of Internal Auditing

Office of Internal Auditing
Read more