Start your organization's journey to ISO Certification with Conthess.
Audits
Gap Analysis
A Gap Analysis is an audit requested before our consulting and training services.
Our qualified auditor, with the cooperation of your organization's top management; including the CEO or delegate, will identify conformities and, or non-conformities (gaps) in existing management systems, and recommend improvements. Management systems may be assessed against the requirements of these ISO standards:
-
ISO 9001: 2015 Quality management systems - Requirements;
-
ISO 14001: 2015 Environmental management systems - Requirements with guidance for use;
-
ISO 45001: 2018 Occupational health and safety management systems - Requirements with guidance for use;
-
ISO 22000: 2018 Food safety management systems
With a comprehensive understanding of the requirements of the relevant ISO standards and improvements organizations are prepared for a certification audit.
Internal Audit
An Internal Audit process follows the same sequence of the Gap Analysis Audit and covers the same activities. The audit assesses the organization's conformity to ISO standards and provides corrective actions for non-conformities (NCRs) and highlighting opportunity for importunities for improvement (OFIs).
Follow-up Audit
A Follow-up Audit process follows the same sequence of the Gap Analysis Audit and Internal Audit and covers the same activities. The follow-up audit however shall verify that organization has implemented corrective actions for each non-conformance report (NCR) and opportunity for improvement (OFI) identified in the internal audit.
The follow-up audit shall identify residual systemic gaps and generate additional recommendations for improvement.
How an audit Works
Stage 1
Audit Plan
Stage 2
Opening Meeting
Stage 3
Desktop Review
Stage 4
Field Inspection
Stage 5
Closing Meeting
Stage 6
Audit Report
Audit Plan
Prior to the scheduled audit date, our Lead Auditor shall establish communication with the relevant representatives of the organization, to agree on the purpose and scope of the audit, and in a technical sense, the date, time, location and personnel required for the audit. The provision of resources including equipment, facilities and guides shall also be agreed on.
Once agreed our Lead Auditor will draft an Audit Plan and share with the auditee i.e. the organization. Once the auditee has agreed to the content of the Audit Plan, an official audit date shall be scheduled.
This stage is generally conducted via email exchange.
Opening Meeting
The Opening Meeting is conducted on Day 1 of the audit. The purpose, scope and the Audit Plan shall be discussed to ensure all personnel are onboard. The Audit Plan includes the time, location and personnel of scheduled interviews.
The availability of resources incl. equipment, facilities and guides are also confirmed.
This stage is generally carried out at the auditee's location, particularly in in a meeting room, or virtually for remote audits.
Desktop Review
The Desktop Review is conducted on Day 1 of the audit. The organization's top management, incl. the CEO or delegate, and representatives selected department are interviewed within the scope of the audit, to verify conformity to the requirements of the ISO standards, relevant to the management system being audited.
Field Inspection
The Field Inspection may be conducted on Day 1 of the audit for small-medium size organizations (<500 employees) or on Day 2 for larger organizations (>500 employees). The representatives interviewed, or delegates shall escort the auditor(s) to sites where the organization operates and participate in onsite interviews.
Closing Meeting
The Closing Meeting may be conducted on Day 1 of the of the audit for small-medium size organizations (<500 employees) or on Day 2 for larger organizations (>500 employees). Audit findings shall be discussed at the Closing Meeting, this includes conformances (C), non-conformance reports (NCR) and opportunities for improvement (OFIs) identified. The auditor shall highlight areas where the organization has excelled, as well areas the organization should improve.
Audit Report
The Audit Report is drafted by the Lead Auditor after the audit and shared with the auditee no later than two weeks after the audit. The Audit Report summarizes the details of audit, and the specific audit findings, as previously discussed in Closing Meeting. Recommendations for improvement relearnt to each NCR and OFI identified are also included.
Once the draft Audit Report has been shared with the organization, an authorized person(s) from the organization shall sign the Audit Report, if it agrees with the contents, or challenge the Audit Report if it disagrees. The internal audit shall be closed after the organization has agreed to the contents of the Audit Report and or after the Lead Auditor has reviewed the organization's challenge and provided clarification for each audit finding.