The Value of Using the Process Approach for Internal Auditing Frank Sidorowicz TL 9000 Program Director Orion Registrar, Inc.

Slides:



Advertisements
Similar presentations
Transition from Q1- 8th to Q1- 9th edition
Advertisements

ISO 9001 : 2000.
EPSON STAMPING ISO REV 1 2/10/2000.
How to Document A Business Management System
1 Quality Management Standards. 2 THE ISO 9000 FAMILY ISO 9000: 2005 Identifies the fundamentals and vocabulary for Quality Management Systems (QMS) ISO.
The ISO 9002 Quality Assurance Management System
ISO 9000 and Total Quality: The Relationship Eng. Basel F. Qandeel.
Purpose of the Standards
Prepared by Long Island Quality Associates, Inc. ISO 9001:2000 Documentation Requirements Based on ISO/TC 176/SC 2 March 2001.
ISO 9000 Certification ISO 9001 and ISO
THE PRINCIPLES OF QUALITY MANAGEMENT. DEFINING QUALITY Good Appearance? High Price? The Best? Particular Specification? Not necessarily, but always: Fitness.
BS EN ISO 14001:2004 Madlen King BSc MSc MIEMA EMS Lead Assessor Lloyd’s Register Quality Assurance Ltd BS EN ISO 14001:2004.
ISO Standard is based on the management model of plan – do - check – act. Today we all be discussing the elements of the standard that deal with.
ISO 9000 Implementation Imran Hussain.
Management System Auditing
CPA is a UKAS company The Assessment Process 2014 Seminars.
Welcome ISO9001:2000 Foundation Workshop.
Fundamentals of ISO.
Effectively applying ISO9001:2000 clauses 5 and 8
An Overview of the International Quality Management Standard
QUALITY MANAGEMENT SYSTEM ACCORDING TO ISO
Ships in Service Training Material A-M CHAUVEL QMS Terms & Definitions 2009.
Quality Management System
WHAT IS ISO 9000.
Quality Management Systems P.Suriya Prakash Final Mech Vcet
The Role of the Internal Auditor for Maintaining System Compliance and Promoting Continuous Improvement Wayne M. Uttke
Basics of OHSAS Occupational Health & Safety Management System
ISO 9001:2000 QUALITY MANAGEMENT SYSTEM REQUIREMENTS
Software Quality Assurance Lecture 4. Lecture Outline ISO ISO 9000 Series of Standards ISO 9001: 2000 Overview ISO 9001: 2008 ISO 9003: 2004 Overview.
Introduction to ISO 9001:2000.
Lecture #9 Project Quality Management Quality Processes- Quality Assurance and Quality Control Ghazala Amin.
ISO9001 Pre Assessment Team 10 PT Han Jian Da, Alphy Thomas Kanatt, Xia Xi, Wu Jun, May Lwin, Chit Khun, Mohit Srivastava, Kovalan Venkatesan.
October SYS 1 Quality Audit and ISO9000 Quality Standard Kinnison, Chapter 17.
4.3 Document control 4.4 Review of requests, tenders and contracts
1 Implementing a Business Management System compliant to ISO 9001:2000.
ISO 9001 – an overview Tor Stålhane IDI / NTNU. ISO 9001 and software development ISO 9001 is a general standard – equally applicable to software development.
Paul Hardiman and Rob Brown SMMT IF Planning and organising an audit.
Purpose of audit is to provide assurance that: Procedures for attaining quality are such that, if followed, the intended quality will be obtained.
QUALITY MANAGEMENT STATEMENT
Exercise 1 Tor Stålhane IDI / NTNU. Intro The strength of ISO 9001 and many other standards is that they focus on “What shall be done” and leave “How.
Project quality management. Introduction Project quality management includes the process required to ensure that the project satisfies the needs for which.
 Definition of a quality Audit  Types of audit  Qualifications of quality auditors  The audit process.
A QUALITY IMPROVEMENT TOOL
ISO Registration Common Areas of Nonconformances.
The common structure and ISO 9001:2015 additions
Process Auditing Why do people think that this is something new? Presented by Kevin Gilson, Orion Registrar, Inc. For the ASQ ISO Users Group October 8,
1 QUALITY MANAGEMENT SYSTEM PRESENTATION TO BOTSWANA DRUG ADVISORY BOARD MEMBERS 13 th – 17 th AUGUST 2007.
WORKSHOP ON ACCREDITATION OF BODIES CERTIFYING MEDICAL DEVICES INT MARKET TOPIC 9 CH 8 ISO MEASUREMENT, ANALYSIS AND IMPROVEMENT INTERNAL AUDITS.
1 Quality Management Z SUZSANNA E SZTER T ÓTH R ITA D ÉNES Department of Management and Corporate Economics 1 March 2016.
WORKSHOP ON ACCREDITATION OF BODIES CERTIFYING MEDICAL DEVICES INT MARKET TOPIC 6 CH 5 ISO MANAGEMENT RESPONSIBILITY Philippe Bauwin Medical.
Slide 1 POA Seminar 02 March 2016 Personnel Competence Including Certifying Staff and Release to Service Andy Swift / Michael Greer.
A LOOK AT AMENDMENTS TO ISO/IEC (1999) Presented at NCSLI Conference Washington DC August 11, 2005 by Roxanne Robinson.
Internal Auditor Training
ISO/IEC
So where in ISO is Process?
External Validation of Quality Programs
UNIT V QUALITY SYSTEMS.
Determining Effectiveness of Internal Audits Presented by: Tony Gutierrez R. Darrell Taylor Minneapolis, MN July 19 & 20, 2012.
ISO 9000 Dr. S. Thomas Foster, Jr..
Determining Effectiveness of Internal Audits Presented by: Tony Gutierrez R. Darrell Taylor Minneapolis, MN July 19 & 20, 2012.
ISO 9001:2008 Quality Management Systems
Specialty Heat Treating, Inc. Internal Auditor Training
How to conduct Effective Stage-1 Audit
TS Training Presented by: Internal Auditor Training.
An Audit of the SYSTEM, Not the PEOPLE
Process Auditing Why do people think that this is something new?
External Validation of Quality Programs
DOCUMENTING THE INTERNAL CONTROL SYSTEM
Presentation transcript:

The Value of Using the Process Approach for Internal Auditing Frank Sidorowicz TL 9000 Program Director Orion Registrar, Inc.

2 Why are internal audits conducted? Obtain factual input for management decisions? ---or--- Produce data needed to receive certification? Improve documentation? Enforce conformity?

Orion Registrar, Inc. 3 The Old-Fashioned Way of Auditing Quality audits focused on procedures and not on quality Auditors did not examine costs or OTD “Quality” was how well an outcome met the needs of those for whom it was provided  Good quality = satisfied the needs  Bad quality = failed to meet the needs

Orion Registrar, Inc. 4 The Old-Fashioned Way of Auditing Companies ignored outcomes and customer satisfaction when auditing Auditors were looking to “check the box” leaving performance ignored and unchallenged Conformity auditing looking to establish if specific requirement had been met Requirement may have focused on a task, not performance result or output

Orion Registrar, Inc. 5 Document Review and Approval Auditor looked to see if documents had been reviewed and approved by authorized person Did Auditor look for:  Competency of approver  Why change was made  Did change improve performance

Orion Registrar, Inc. 6 Clause Approach to Internal Auditing

Orion Registrar, Inc. 7 Clause Approach to Audit Plans Planned and conducted against clauses (sections) of Standard Matched with person or department within organization Looking for conformity with clause requirements

Orion Registrar, Inc. 8 Company XYZ TimeElementClause 8:30 amOpening Meeting / Plant Tour 9:00 amDesign Control :00 amInternal Audits :30 amPurchasing 7.4.1, :00 amReceiving Inspection :30 amPreventive Maintenance 6.3 NOONLUNCH BREAK 1:00 pm Training :30 pm Preservation of Product :00 pmCalibration 7.6 2:30 pmStatistical Techniques :00 pmPreparation for Closing Meeting 4:00 pmClosing Meeting

Orion Registrar, Inc. 9 Clause Approach to Checklists Turn “shall” statements into questions  Requirement = “Organization shall establish and maintain a documented procedure for…”  Checklist question = “Is there a documented procedure for…”

Orion Registrar, Inc. 10 Clause Approach to Auditing Does procedure cover requirements of Standard? Are employees following procedure? Are records being kept? Auditor is looking for nonconformities  If found, write a major or minor  If none are found, move on to next clause

Orion Registrar, Inc. 11 Overall Result of Clause Approach Little added value “Paper chase” correcting minor problems has little impact on organizational effectiveness

Orion Registrar, Inc. 12 Department Approach to Internal Auditing

Orion Registrar, Inc. 13 Department Approach to Audit Plans Based on the organizational chart Departments are allotted timeslots in schedule Evidence of conformity may be gathered from more than one department

Orion Registrar, Inc. 14 Company ABC TimeDepartment 8:30 amOpening Meeting and Plant Tour 9:00 amSales & Marketing 10:00 amEngineering 11:00 amScheduling NOONLUNCH BREAK 1:00 pmProduction 3:00 pmMaintenance / Calibration 3:30 pmPreparation for Closing Meeting 4:00 pmClosing Meeting

Orion Registrar, Inc. 15 Department Approach to Checklists Arrange clause checklists to follow trail through department Identify general company procedures and departmental procedures Determine questions from requirements of both Standard and departmental procedures Focus on checking conformity with procedures

Orion Registrar, Inc. 16 Department Approach to Auditing Auditor asks questions of department manager and employees, jumping from requirement to requirement May follow trail through department but will stop at department boundary

Orion Registrar, Inc. 17 Task Approach to Internal Auditing

Orion Registrar, Inc. 18 Task Approach to Audit Plans Auditor will:  Identify work areas to visit  Establish tasks performed there  Gather facts about tasks in terms of personnel performing or supervising tasks, equipment used, and information generated  Take notes of items to be checked elsewhere (e.g. training records, calibration status)

Orion Registrar, Inc. 19 Task Approach to Checklists Focus on particular tasks and identify questions related to person, item, equipment, and information May use flowchart in planning checklist

Orion Registrar, Inc. 20 Task Approach to Auditing Auditor interviews individuals to establish tasks being performed are compliant with requirements Audit may start with contract or project and proceed toward completion, or start with end result and trace backward through relevant work areas

Orion Registrar, Inc. 21 Overall Result of Task Approach Focus remains on whether tasks have been performed according to requirements of procedures and Standard Evidence can be gathered resulting in nonconformities addressing trivia as well as major loopholes in system

Orion Registrar, Inc. 22 More Effective Methodology Needed Focuses on performance, not just conformity Management needs to know:  Does performance meet targets  Are there opportunities for improving performance

Orion Registrar, Inc. 23 Process Approach to Internal Auditing

Orion Registrar, Inc. 24 Process Approach to Audit Plans Based on processes that achieve organization’s objectives Requires auditor to know what the processes are prior to conducting audit  ISO/IEC (Stage 1 and Stage 2)  Code of Practice for Registrars

Orion Registrar, Inc. 25 Process Approach to Audit Plans Common processes, for example:  Business management  Marketing and sales  Resource management  Purchasing Product / service realization processes are different for each organization Plan shows audit trail through business processes and across department boundaries

Orion Registrar, Inc. 26 Process Approach to Checklists Does not require detailed checklist Auditor can be guided by their understanding of the Standard

Orion Registrar, Inc. 27 Process Approach to Audit Start with top management and business management processes Continue with resource management processes, establishing linkages  Effective resource management processes will provide competent employees and capable equipment to other processes Continue with other processes from marketing to delivery

Orion Registrar, Inc. 28 Value of the Process Approach Focuses on results, not procedures Determines effectiveness of the management system Evaluates the results the system delivers Tests linkages between departments and processes Follows flow of work throughout organization Determines if operations are under control and controls are effective Allows judgment on significance of findings Helps determine depth of problems across organization Focuses on benefits of correcting nonconformities related to improving organizational effectiveness

Orion Registrar, Inc. 29 The Process Approach requires a change in attitude across the organization!

Orion Registrar, Inc. 30 What the Approaches Provide Clause Auditing provides:  Evidence that procedures are being followed Clause Auditing does not provide:  Evidence that planned results have been achieved  Following procedures without regard to output is ineffective

Orion Registrar, Inc. 31 What the Approaches Provide Department Auditing provides:  Evidence that organization has interpreted the Standard with respect to departmental responsibilities and procedures Department Auditing does not provide:  Evidence that planned results have been achieved

Orion Registrar, Inc. 32 What the Approaches Provide Task Auditing provides:  Evidence that specific tasks have been accomplished Task Auditing does not provide:  Evidence that planned results have been achieved

Orion Registrar, Inc. 33 What the Approaches Provide Process Auditing provides:  Data for managerial decisions on growth, technology, staff development, products / processes based on current performance, not just current conformity  Information on whether performance meets targets  Information on opportunities for improving performance through better control of processes  Information on making processes more effective and more efficient

Orion Registrar, Inc. 34 Why Switch Approaches on Internal Audits? Eliminates many of the weaknesses of other approaches Enables internal auditors to help establish effective management of processes

Orion Registrar, Inc. 35 Five Basic Questions at Three Levels Basic questions can apply for all three levels even though the “specific questions” will be different  What are you trying to do?  How do you make it happen?  How do you know you are doing it right?  How do you know it’s the best way of doing it?  How do you know it’s the right thing to do?

Orion Registrar, Inc. 36 Five Basic Questions at Three Levels Business Level – Audit results should make the auditor confident that the organization:  Knows what it is trying to do  Knows how to make it happen  Knows that it is doing the right things  Knows that it is doing it in the best possible way  Is managing performance

Orion Registrar, Inc. 37 Five Basic Questions at Three Levels Managerial Level – Audit results should make the auditor confident that management:  Knows what the process aims to achieve  Knows how to design and cause processes to achieve results  Knows that it is doing the right things  Knows that it is doing it in the best possible way  Is regulating performance

Orion Registrar, Inc. 38 Five Basic Questions at Three Levels Operational Level – Audit results should make the auditor confident that individuals:  Know what they are supposed to do  Know they are doing the right things  Know they are doing them in the best possible way  Are regulating their own performance

Orion Registrar, Inc. 39 Summary Internal auditing using process approach  Can take internal audit team from mission statement to employee contributions  Identifies clear linkages between interconnected processes  Ensures requirements of the Standard fit with processes  Eliminates weaknesses of other approaches  Enables internal audit team to establish that the organization is managing processes effectively

Orion Registrar, Inc. 40 Orion Registrar, Inc Vance Dr., Ste. 210 Arvada, CO

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.