Académique Documents
Professionnel Documents
Culture Documents
Auditing
Assessment of auditing methods
Objective
Audit methods
Clause based
Department based
Contract based
Process based
Behaviour based
Determine
Select a what
you
are going
to
method
that
AlwaysAT
know
LOOK
and
fulfils
your
whatyou
youfind
areit
when
objectives
and
attempting
to
what
you
are
matches
the
establish
going to LOOK
information
and
relative
to
your
FOR
resources
objective
available. (NAO)
Approach
Examine the method
Identify assumptions
Evaluate the method
Objective
To determine
the extent to
which the QMS
conforms to
requirements of
ISO 9001
David Hoyle 2012
Audit
Report
Assumptions
Evaluation
1.
2.
3.
4.
5.
6.
7.
8.
9.
Conformity?
Inherent risks?
Performance?
Capability?
Efficiency?
Effectiveness?
Improvements?
Confidence?
Use of resource?
Score on a
scale of 0-5
Objective
To determine
the extent to
which the QMS
conforms to
requirements of
ISO 9001
David Hoyle 2012
Assess conformity
with requirements by
Audit
Report
Objective
To determine
the extent to
which the QMS
conforms to
requirements of
ISO 9001
David Hoyle 2012
Audit
Report
Assumptions
Departments
Conformityare
with
clauses responsible
is evidence
exclusively
forof
meeting
certain clauses
capability
Evidence
of conformity
in one Dept
Correcting
non-conformity
willis
Evaluation
1.
2.
3.
4.
5.
6.
7.
8.
9.
Conformity?
Inherent risks?
Performance?
Capability?
Efficiency?
Effectiveness?
Improvements?
Confidence?
Use of resource?
Score on a
scale of 0-5
Objective
To determine
the extent to
which the QMS
conforms to
requirements of
ISO 9001
David Hoyle 2012
Assess conformity
with requirements by
Audit
Report
Contract/
Order
?
Objective
ISO
9001
To determine
whether the organization
has the ability to
consistently provide
product that meets
customer requirements
Audit
Report
Assumptions
Evaluation
1.
2.
3.
4.
5.
6.
7.
8.
9.
Conformity?
Inherent risks?
Performance?
Capability?
Efficiency?
Effectiveness?
Improvements?
Confidence?
Use of resource?
Score on a
scale of 0-5
Contract/
Order
?
Objective
ISO
9001
To determine
whether the organization
has the ability to
consistently provide
product that meets
customer requirements
Audit
Report
Demands
Business
environment
Produce
Influence
ineffectively
System of effectively
Organization
managedprocesses
processes
managed
Undesirable
Outputs
Desired
Outputs
Delivers
Organization
Organization
open
isisaan
closed
system
system
Reality check
Alternative Approaches
Process management audit
Behaviour assessment
Mission,
Objectives
Measures
Objective
To determine whether
the organizations
processes are being
managed effectively
David Hoyle 2012
ISO
9001
Audit
Report
Demands
Inputs
A Process Audit
Plan
Production
Produce
Product
Deliver
Product
Resources
S
R
Q
Support
Product
T
Satisfied
Outputs
How do you
Demands
How do you
How do you
Process
Process
Improved
Improved
Improved
know
you
are
How do you
know
know
you
areit happen?
make
What are
you trying
objectives & efficiency
monitoring
performance
effectiveness
doing
the
right
you are doing it right?
to do?
Measures
thing?
in the best
way?
&
What will success
Process review
look like?
Process
improvement
Assumptions
The system as revealed through
systematic enquiry is the system that is
producing the results
The information presented by the
organization is legitimate and has not been
fabricated
Evaluation
1.
2.
3.
4.
5.
6.
7.
8.
9.
Conformity?
Inherent risks?
Performance?
Capability?
Efficiency?
Effectiveness?
Improvements?
Confidence?
Use of resource?
Score on a
scale of 0-5
Mission,
Objectives
Measures
Objective
To determine whether
the organizations
processes are being
managed effectively
David Hoyle 2012
ISO
9001
Audit
Report
ISO
9001
Objective
To measure the
inherent level of risk
to optimum business
outcomes and
governance issues
caused by the impact
of everyday patterns
of behaviour
David Hoyle 2012
Mainframe
Audit
Report
Outcome
Av Score
39.5
31.7
28.2
28.5
35.7
30.5
41.6
39.3
43.4
10
26.0
When things
go wrong we
put them
right as best
we can and
get on with
the job
We normally
correct
mistakes as
they occur
following our
procedures
but we
wouldnt
record these
Level
0.00
1.00
Clauses
linked
Records
show our
procedures
have been
applied to
correct
mistakes
and
prevent
them
happening
2.00
again.
We usually
review all
mistakes
formally in
line with our
procedure
and take
effective
action to
prevent
them
3.00
recurring
Records of
all mistakes
show that
it is rare
for the
same
mistake to
happen
twice
5.00
Graphical Representation
By stakeholder
By clause
By business process
5
2
20
1 Process owner
2 Process workers
3 Process supplier
4 Process customer
David Hoyle 2012
20
40
40
8
20
40
1 Mission management
2 Resource management
3 Demand creation
4 Demand fulfilment
Assumptions
Evaluation
1.
2.
3.
4.
5.
6.
7.
8.
9.
Conformity?
Inherent risks?
Performance?
Capability?
Efficiency?
Effectiveness?
Improvements?
Confidence?
Use of resource?
Score on a
scale of 0-5
ISO
9001
Objective
To measure the
inherent level of risk
to optimum business
outcomes and
governance issues
caused by the impact
of everyday patterns
of behaviour
David Hoyle 2012
Mainframe
Audit
Report
Confidence level
Clause based
Conclusion
Hold back
Hold back
Process based
Stimulate
Behaviour based
Stimulate