PECB ISO-9001-Lead-Auditor Dumps

Sequence:

• Stage 1 Audit
• Stage 2 Opening Meeting
• Interviews
• Stage 2 Closing Meeting
• Close-out of Stage 2 Audit Findings
• Issue Certificate
• Surveillance Audit
• Follow-up Audit

To complete the sequence, you can drag and drop the options to the appropriate blank section.

Here is a brief explanation of each step:

• Stage 1 Audit: This is the initial audit that aims to assess the readiness of the organization for the stage 2 audit. It involves reviewing the documentation of the quality management system, evaluating the scope and objectives of the audit, and identifying any major gaps or nonconformities34.
• Stage 2 Opening Meeting: This is the meeting that marks the start of the stage 2 audit. It involves confirming the audit plan, the audit criteria, the audit scope, and the audit team. It also provides an opportunity for the auditee to ask any questions or raise any concerns34.
• Interviews: This is the main activity of the stage 2 audit, where the audit team collects evidence by interviewing the personnel involved in the quality management system, observing the processes and activities, and examining the records and documents. The audit team uses various techniques, such as sampling, measurement, analysis, and evaluation, to verify the conformity and effectiveness of the quality management system345.
• Stage 2 Closing Meeting: This is the meeting that marks the end of the stage 2 audit. It involves presenting the audit findings, the audit conclusions, and the audit report to the auditee. It also provides an opportunity for the auditee to provide feedback, ask questions, or dispute any findings34.
• Close-out of Stage 2 Audit Findings: This is the process of verifying that the auditee has taken appropriate corrective actions to address any nonconformities or opportunities for improvement identified during the stage 2 audit. The audit team may request evidence or conduct a follow-up visit to confirm the effectiveness of the corrective actions34.
• Issue Certificate: This is the process of issuing a certificate of conformity to the auditee, if the audit team is satisfied that the quality management system meets the requirements of the standard and that there are no major nonconformities or unresolved issues. The certificate is valid for a specified period, usually three years, and is subject to periodic surveillance audits34.
• Surveillance Audit: This is the process of conducting periodic audits, usually once a year, to monitor the continued conformity and effectiveness of the quality management system. It involves reviewing the changes, improvements, and performance of the quality management system, and identifying any new nonconformities or opportunities for improvement34.
• Follow-up Audit: This is the process of conducting an additional audit, usually in response to a significant change, a complaint, or a major nonconformity, to verify the impact and the corrective actions taken by the auditee. It may result in the suspension, withdrawal, or renewal of the certificate, depending on the outcome of the audit34.

According to ISO 19011:2018, clause 3.2, audit criteria are a set of policies, procedures or requirements used as a reference against which objective evidence is compared. Audit criteria are usually selected by the audit client or by agreement between the audit client and the auditee, and they should be appropriate for the audit scope and objectives1. Audit criteria may include, but are not limited to, the following sources2:

•ISO management system standards, such as ISO 9001, ISO 14001, ISO 45001, etc.

•Verbal statements by the general manager or other top management, as long as they are consistent with the documented policies and objectives of the organisation

•Verbal agreements with interested parties, such as customers, suppliers, regulators, etc., as long as they are documented and approved by the relevant authorities

•Health and safety notices, such as posters, signs, labels, etc., that communicate the organisation’s legal obligations, policies, or procedures

•Written agreements with interested parties, such as contracts, orders, specifications, etc., that define the requirements and expectations of the parties involved

•Organisation’s documented information, such as policies, procedures, manuals, records, etc., that describe the organisation’s management system and its processes

•Commitment to follow principles issued by an NGO, such as the United Nations Global Compact, the International Labour Organization, etc., as long as they are relevant to the organisation’s context and objectives

•Environmental aspects register, such as a list of the environmental impacts and risks associated with the organisation’s activities, products, and services

Therefore, the two options that are not potential audit criteria are F and H, as they are not reliable or verifiable sources of information, and they may not reflect the actual performance or conformity of the organisation’s management system. Commercial advertisements and claims made on the organisation’s website are forms of marketing communication that may be exaggerated, misleading, or inaccurate, and they are not subject to the same level of scrutiny or approval as the other sources of audit criteria.

References: ISO 19011:2018(en), Guidelines for auditing management systems, What are audit criteria? - ISO Update

•To evaluate the preparedness of the organisation for a Stage 2 audit: This objective involves assessing the readiness of the organisation to undergo the Stage 2 audit, where the conformity and effectiveness of the quality management system will be verified123. The audit team will check the level of implementation and understanding of the quality management system, identify any major gaps or nonconformities, and confirm the audit scope, criteria, and plan123.

•To review the quality manual: This objective involves reviewing the documented information of the quality management system, such as the quality policy, the quality objectives, the scope, the processes, and the procedures, to ensure that they meet the requirements of ISO 9001:2015123. The audit team will also evaluate the organisation’s understanding and application of the standard, and identify any areas of improvement or concern123.

The other options are not included in the objectives of the Stage 1 initial certification audit, according to the web search results from my internal tool. They may be related to other stages or types of audits, but they are not the focus of the Stage 1 audit.

Therefore, the correct answer is B and D.

References: 1: ISO 9001 Certification Audits | Stage 1 and Stage 2 - 9001. Simplified 2: Stage 1 of your Audit | NQA Blog 3: Getting Certified to ISO 9001 - the Stage 1 Audit

The actions that should be taken in the context of the audit are:

•Option B: Call the individual(s) managing the audit programme to explain the situation and recommend immediate suspension of certification to protect the integrity of the Certification Body. This option is correct because the auditor has found serious and significant gaps in the QMS processes that affect the health and safety of the patients, which is a major nonconformity that may warrant suspension of certification. The auditor should inform the individual(s) managing the audit programme of the situation and the audit findings, and recommend immediate suspension of certification to protect the integrity of the Certification Body and the credibility of the certification scheme. The auditor should also follow the Certification Body’s procedures and rules for suspension of certification and communicate the decision and the consequences to the auditee.

•Option C: Continue with the meeting, present the audit conclusions and inform the DCM that the organisation will receive the audit report in due course. This option is correct because the auditor should not terminate or postpone the closing meeting due to the absence of the Catering Manager, as the DCM is the auditee’s nominated representative for the audit. The auditor should continue with the meeting, present the audit conclusions and the audit findings, and inform the DCM that the organisation will receive the audit report in due course. The auditor should also explain the audit outcome recommendation and the suspension of certification, and request the DCM to acknowledge the receipt and understanding of the audit results.

The following options are not correct:

•Option A: Close the meeting immediately after the DCM’s response and advise that the issues will be addressed at the next surveillance visit. This option is not correct because the auditor should not close the meeting without presenting the audit conclusions and the audit findings, as this would violate the audit principles of fairness and transparency. The auditor should also not advise that the issues will be addressed at the next surveillance visit, as this would imply that the auditor is accepting the auditee’s delay and inaction, and that the auditor is not taking the major nonconformity seriously.

•Option D: Conclude the meeting early and advise that it will be rescheduled once the Catering Manager has returned to work. This option is not correct because the auditor should not conclude the meeting early or reschedule it due to the absence of the Catering Manager, as this would disrupt the audit process and the audit schedule. The auditor should also not wait for the Catering Manager to return to work, as this would delay the communication and resolution of the major nonconformity, and potentially compromise the health and safety of the patients.

•Option E: Recommend that all personnel should be given urgent in-depth training in the QMS. This option is not correct because the auditor should not recommend or prescribe specific corrective actions to the auditee, as this would violate the audit principles of independence and objectivity. The auditor should only report the audit findings and the audit outcome recommendation, and leave the responsibility and authority for determining and implementing the corrective actions to the auditee.

•Option F: Thank the DCM for his time and express an expectation that improvements will be made in the QMS. This option is not correct because the auditor should not thank the DCM for his time and express an expectation that improvements will be made in the QMS, as this would imply that the auditor is satisfied and optimistic with the auditee’s performance and response, and that the auditor is not taking the major nonconformity seriously. The auditor should instead express the concern and dissatisfaction with the auditee’s QMS processes and the impact on the health and safety of the patients, and communicate the suspension of certification and the need for urgent and effective corrective actions.

References:

•ISO 19011:2018 Guidelines for auditing management systems, Clause 6.4.2: Conducting audit activities, Subclause k) and l)

•ISO 9001 Lead Auditor Course Material, Module 5: Conducting an Audit, Slide 20: Closing Meeting

•ISO 9001 Lead Auditor Training Course - IRCA Certified, Section 5.5: Closing Meeting

•Lead Auditor Exam Preparation Guide (EPG) Template - PECB, Section 3.2: Exam Content Outline, Subsection 3.2.1: Section 1 - Audit Fundamentals, Subsection 3.2.2: Section 2 - Audit Principles, Subsection 3.2.3: Section 3 - Audit Process, Subsection 3.2.4: Section 4 - Audit Competencies

According to ISO 9001:2015, clause 4.3, the organization is required to determine the scope of its quality management system (QMS) by considering the external and internal issues referred to in clause 4.1. Clause 4.1 requires the organization to determine the external and internal issues that are relevant to its purpose and strategic direction, and that affect its ability to achieve the intended results of its QMS. These issues can include positive and negative factors or conditions for consideration, such as legal, technological, competitive, market, cultural, social, and economic environments, whether international, national, regional, or local. The organization is also required to monitor and review these issues.

Therefore, the correct answer is C, as external issues of the organization’s context are one of the factors that must be considered when determining the scope of the QMS. The other options are either not directly related to the scope of the QMS, or are not explicitly mentioned in clause 4.3.

References:

• ISO 9001:2015(en), Quality management systems — Requirements, clause 4.1 and 4.3
• ISO 9001:2015 – How to determine the scope of your QMS - Advisera, section “Considerations for determining the scope of the QMS in ISO 9001”
• ISO 9001 Lead Auditor Training Course | IRCA Certified | BSI, section “Learning objectives”
• ISO 9001 Lead Auditor Course Material | 3FOLD Education Centre, module 4

Table

Statement

First-party audits

Second-party audits

Third-party audits

The audit scope is typically determined by the organisation being audited.

Yes

No

No

The outcome of the audit is typically certification to a recognised standard.

No

No

Yes

The audit scope is typically confined to service/product provision capability.

No

Yes

No

Here is a brief explanation of each statement:

• The audit scope is typically determined by the organisation being audited: This statement applies to first-party audits, also known as internal audits, where the organisation audits its own processes and activities to ensure conformity and improvement1. The organisation can decide the scope of the audit based on its own needs and objectives2. This statement does not apply to second-party audits, where the customer audits the supplier, or third-party audits, where an independent body audits the organisation. In these cases, the audit scope is determined by the customer or the certification body, respectively34.
• The outcome of the audit is typically certification to a recognised standard: This statement applies to third-party audits, where an independent body audits the organisation to verify that it meets the requirements of a specific standard, such as ISO 9001, and issues a certificate of conformity if the audit is successful34. This statement does not apply to first-party audits or second-party audits, where the outcome of the audit is not certification, but rather self-improvement or supplier qualification13.
• The audit scope is typically confined to service/product provision capability: This statement applies to second-party audits, where the customer audits the supplier to ensure that they are meeting the requirements specified in the contract, such as service or product quality, delivery, or performance34. The audit scope is usually focused on the specific aspects of the service or product that are of interest to the customer3. This statement does not apply to first-party audits or third-party audits, where the audit scope is broader and covers the entire quality management system or the relevant clauses of the standard14.

According to ISO 9001:2015, clause 9.2.2.e, the organization is required to retain documented information as evidence of the implementation of the audit programme and the audit results. This includes the records of the nonconformities identified during the internal audits and the corrective actions taken to address them. The organization is also required to verify the effectiveness of the corrective actions, as per clause 10.2.2.

Therefore, in the scenario given, the Quality Manager’s decision to automatically close any nonconformance over 3 years old without obtaining any confirmation from the relevant departments or verifying the effectiveness of the corrective actions is a clear violation of the requirements of clause 9.2.2.e. This indicates a lack of control and follow-up of the internal audit process, as well as a potential risk of recurrence or occurrence of the nonconformities in other areas. This also undermines the credibility and value of the internal audit programme, as well as the risk-based approach claimed by the Quality Manager.

Hence, the best course of action to take is D, to raise a nonconformance report against clause 9.2.2.e of ISO 9001, and to communicate the audit findings to the relevant management. The other options are either insufficient or irrelevant to address the issue, as they do not directly relate to the noncompliance with clause 9.2.2.e.

References:

• ISO 9001:2015(en), Quality management systems — Requirements, clause 9.2.2 and 10.2.2
• ISO 19011:2018(en), Guidelines for auditing management systems, clause 6.4.4 and 6.7.2
• ISO 9001 Lead Auditor Training Course | IRCA Certified | BSI, section “Learning objectives”
• ISO 9001 Lead Auditor Course Material | 3FOLD Education Centre, module 5 and 6

According to the ISO 9000:2015 - Quality management systems — Fundamentals and vocabulary, correction is defined as “action to eliminate a detected nonconformity”. A nonconformity is defined as “non-fulfilment of a requirement”. Therefore, the process of modifying a non-conforming product to bring it within acceptance criteria is a correction, as it eliminates the non-fulfilment of the product specification. The other options are not correct, as they have different definitions and purposes:

•Concession: permission to release or use a nonconforming product, service or process

•Corrective action: action to eliminate the cause of a nonconformity and to prevent recurrence

•Preventive action: action to eliminate the cause of a potential nonconformity or other undesirable potential situation

References: ISO 9000:2015 - Quality management systems — Fundamentals and vocabulary, ISO 9001 nonconforming product: How to understand dispositions - Advisera

Nonconformity report

ISO 9001 Clause Number: 9.3.1 Nature of problem: Management review has not been conducted at the defined frequency. ISO 9001 requirement that has not been fulfilled: ISO 9001 - “Top management shall review the organization’s quality management system at planned intervals.” Evidence: The last management review took place nine months ago, and the previous one took place one year before the latest review. The planned interval is six months.

The activities that are specifically required by ISO 17021-1 as part of third-party (Certification Body) surveillance audit processes are:

•Option A: Audit use of certification marks on marketing materials. This option is correct because ISO 17021-1:2015 clause 9.6.2.2 requires the certification body to audit the client’s use of marks and/or any other reference to certification, as applicable, to ensure conformity with the certification requirements.

•Option B: Review changes to the QMS since last visit. This option is correct because ISO 17021-1:2015 clause 9.6.2.2 requires the certification body to review any changes affecting the client’s quality management system and its ability to continue to fulfil the requirements of the standard used for certification.

•Option C: Confirm effectiveness of internal audit and management review. This option is correct because ISO 17021-1:2015 clause 9.6.2.2 requires the certification body to confirm the continuing effectiveness of the client’s quality management system, including the effectiveness of the internal audit and management review processes.

•Option F: Review the status of previously raised findings and audit effectiveness of any outstanding findings. This option is correct because ISO 17021-1:2015 clause 9.6.2.2 requires the certification body to review the status of findings and any corrective actions taken by the client in response to previous audits, and to verify the effectiveness of the implemented corrective actions.

•Option H: Verify legal compliance. This option is correct because ISO 17021-1:2015 clause 9.6.2.2 requires the certification body to verify the client’s compliance with applicable statutory and regulatory requirements related to the scope of certification.

•Option I: Handling of customer complaints since last visit. This option is correct because ISO 17021-1:2015 clause 9.6.2.2 requires the certification body to review the client’s handling of customer complaints related to the certified activities since the last audit.

The following options are not correct:

•Option D: Complete a full document review of the quality management system. This option is not correct because ISO 17021-1:2015 clause 9.6.2.2 does not require the certification body to complete a full document review of the quality management system during surveillance audits. A full document review is only required during the initial certification audit or when there are significant changes to the quality management system or the certification requirements.

•Option E: Failing to meet financial responsibilities. This option is not correct because ISO 17021-1:2015 clause 9.6.2.2 does not require the certification body to audit the client’s financial responsibilities during surveillance audits. The certification body may have contractual arrangements with the client regarding the payment of fees, but this is not part of the surveillance audit process.

•Option G: Review the calibration status of the instrumentation. This option is not correct because ISO 17021-1:2015 clause 9.6.2.2 does not require the certification body to review the calibration status of the instrumentation during surveillance audits. The certification body may audit the client’s monitoring and measuring resources as part of the quality management system requirements, but this is not a specific activity required by ISO 17021-1.

•Option J: Conduct a minimum number of annual surveillance audits during the certification period. This option is not correct because ISO 17021-1:2015 clause 9.6.2.2 does not require the certification body to conduct a minimum number of annual surveillance audits during the certification period. The certification body may determine the frequency and duration of surveillance audits based on the risk and performance of the client, but this is not a specific activity required by ISO 17021-1.

References:

•ISO 17021-1:2015 Conformity assessment - Requirements for bodies providing audit and certification of management systems - Part 1: Requirements

•ISO 9001 Lead Auditor Course Material, Module 7: Audit Follow-up and Surveillance, Slide 8: Surveillance Audit

•ISO 9001 Lead Auditor Training Course - IRCA Certified, Section 7.2: Audit Follow-up and Surveillance

•Lead Auditor Exam Preparation Guide (EPG) Template - PECB, Section 3.2: Exam Content Outline, Subsection 3.2.1: Section 1 - Audit Fundamentals, Subsection 3.2.2: Section 2 - Audit Principles, Subsection 3.2.3: Section 3 - Audit Process, Subsection 3.2.4: Section 4 - Audit Competencies

According to the guidance on conducting the audit closing meeting1, the audit team leader should provide a summary of the audit findings and conclusions, invite discussions, and agree on timelines for any corrective actions. The audit team leader should also be respectful, constructive, and objective when presenting the nonconformities, and avoid any personal or emotional comments. The audit team leader should also consider the impact of the disruptive event (such as the Covid-19 pandemic) on the auditee’s context, interested parties, and risks2, and acknowledge any good practices or improvements observed during the audit. Therefore, option D is the best option, as it follows the best practices for the closing meeting and allows the auditee to understand the nonconformities and their implications, and to participate in the analysis and resolution of the issues. Option A is not correct, as it is not respectful, constructive, or objective, and it does not invite any discussion or feedback from the auditee. It also assumes that the audit team leader has the authority to recommend the removal of the supplier from the approved list, which may not be the case. Option B is not correct, as it does not provide enough information or explanation to the auditee, and it does not allow any discussion or feedback from the auditee. It also does not follow the best practices for the closing meeting, such as providing a summary of the audit, acknowledging any good practices, and agreeing on timelines for corrective actions. Option C is not correct, as it does not involve the other managers who are responsible for the functions or processes that were audited, and who may have valuable input or information to share. It also does not follow the best practices for the closing meeting, such as providing a summary of the audit, inviting discussions, and agreeing on timelines for corrective actions. References: 1: Conducting the Audit Closing Meeting: Sharing the Results2: Auditing ISO 9001:2015 in the Context of a Disruptive Event.

• Identifying the source of information
• Sampling available data
• Gathering audit evidence
• Verifying objective evidence
• Evaluating evidence against the audit criteria
• Making audit conclusions
• Evaluating against the audit criteria

According to ISO 19011:2018, clause 6.4, the process of collecting and verifying information during an audit involves the following steps1:

• Identifying the source of information: The audit team should identify the sources of information that are relevant to the audit objectives, scope and criteria. These sources may include documents, records, personnel, processes, activities, facilities, equipment, etc. The audit team should also determine the methods and tools for accessing and collecting the information, such as interviews, observations, document review, sampling, etc.
• Sampling available data: The audit team should select a representative sample of the available data to verify the conformity and effectiveness of the management system. The sample size and selection method should be based on the audit objectives, scope and criteria, as well as the level of confidence and risk. The audit team should also consider the validity, reliability, relevance and sufficiency of the data.
• Gathering audit evidence: The audit team should use the methods and tools identified in the previous step to collect audit evidence, which is the records, statements of fact or other information that are relevant to the audit criteria and verifiable. The audit team should record the audit evidence in a clear, concise and objective manner, using notes, checklists, photographs, audio or video recordings, etc.
• Verifying objective evidence: The audit team should verify the accuracy, completeness and authenticity of the audit evidence collected. This may involve cross-checking different sources of information, confirming the identity and authority of the persons providing the information, examining the original documents or records, etc. The audit team should also identify any discrepancies, inconsistencies or gaps in the audit evidence.
• Evaluating evidence against the audit criteria: The audit team should compare the audit evidence with the audit criteria to determine the extent of conformity and nonconformity. The audit team should also identify any opportunities for improvement, best practices, positive aspects or potential risks. The audit team should use professional judgement and apply the principles of auditing when evaluating the audit evidence.
• Making audit conclusions: The audit team should consolidate the audit findings and evaluate the overall performance and effectiveness of the management system. The audit team should also consider the audit objectives, scope and criteria, as well as the context and expectations of the auditee and other interested parties. The audit team should provide a clear, concise and objective statement of the audit conclusions, which may include the degree of conformity, the achievement of the intended outcomes, the need for corrective actions, the suitability for certification, etc.
• Evaluating against the audit criteria: The audit team should review the audit conclusions and ensure that they are consistent with the audit criteria and supported by sufficient and appropriate audit evidence. The audit team should also ensure that the audit conclusions are communicated to the auditee and other relevant parties in a timely and effective manner, using the agreed audit report format and distribution method.

References: ISO 19011:2018(en), Guidelines for auditing management systems

The purpose of a Stage 1 third-party audit is to determine an organization’s readiness for their Stage 2 Certification Audit. During the Stage 1, the auditor will review the organization’s management system documented information, evaluate the site-specific conditions, and have discussions with personnel. The objective is to assess the alignment of the organization’s design with ISO 9001 requirements and to identify any areas of concern that could be classified as a nonconformance during the Stage 2 Audit. The auditor will also use the Stage 1 Audit to complete Stage 2 Audit planning, including a review of the allocation of resources and details for the next phase of the audit. Therefore, the option that best describes the purpose of a Stage 1 third-party audit is A, to determine the auditees understanding of ISO 9001. The other options are not correct, as they are not the main focus of a Stage 1 audit:

•B. To get to know the organization’s customers: This is not the purpose of a Stage 1 audit, as the auditor is not interested in the specific details of the organization’s customers, but rather in the organization’s ability to meet customer and applicable statutory and regulatory requirements.

•C. To learn about the organization’s procurement processes: This is not the purpose of a Stage 1 audit, as the auditor is not interested in the specific details of the organization’s procurement processes, but rather in the organization’s ability to control externally provided processes, products and services.

•D. To introduce the audit team to the client: This is not the purpose of a Stage 1 audit, as the auditor is not there to make introductions, but rather to conduct a preliminary examination of the organization’s compliance with ISO 9001 standards.

References: What is the difference between Stage 1 and Stage 2 Audits? - ISO Update, The ISO 9001 Audit Process Explained | ISO Explained, What is an ISO Stage 2 Audit? — RiskOptics - Reciprocity

A screenshot of a chat Description automatically generated

According to the ISO 9000:2015 document, the seven quality management principles are:

• Customer focus
• Leadership
• Engagement of people
• Process approach
• Improvement
• Evidence-based decision making
• Relationship management

For each principle, the document provides a statement, a rationale, key benefits, and actions you can take to apply the principle in your organization.

Based on the document, here is a possible way to match a potential benefit to each of the four quality management principles you mentioned:

Table

Quality management principle

Potential benefit

Customer focus

Increased revenue and market share

Engagement of people

Enhanced trust and collaboration throughout the organization

Improvement

Enhanced drive for innovation

Evidence-based decision making

Increased ability to demonstrate effectiveness of past actions

According to ISO 9001:2015, clause 6.2.1, the organization is required to establish quality objectives at relevant functions, levels, and processes for the quality management system (QMS). The quality objectives must be consistent with the quality policy, measurable, monitored, communicated, and updated as appropriate. The organization is also required to maintain documented information on the quality objectives, as per clause 7.5.1.

Therefore, in the scenario given, the quality objectives defined by the external consultant are not in alignment with the organization’s quality policy, as they are based on those of a competitor, rather than the organization’s own purpose, strategic direction, and customer requirements. This creates a mismatch between the organization’s vision and goals, and the quality objectives that are supposed to guide and measure the QMS performance. Moreover, the quality objectives are not maintained as documented information, which makes it difficult to communicate, monitor, and update them, as well as to demonstrate evidence of their implementation and achievement.

Hence, the circumstances in which a nonconformity against clause 6.2 of ISO 9001 could be raised are B and C, as they indicate a failure to comply with the requirements of clause 6.2.1. The other options are either irrelevant or not directly related to clause 6.2, as they do not pertain to the establishment and documentation of quality objectives.

References:

• ISO 9001:2015(en), Quality management systems — Requirements, clause 6.2.1 and 7.5.1
• ISO 19011:2018(en), Guidelines for auditing management systems, clause 6.4.4 and 6.7.2
• ISO 9001 Lead Auditor Training Course | IRCA Certified | BSI, section “Learning objectives”
• ISO 9001 Lead Auditor Course Material | 3FOLD Education Centre, module 5 and 6

The table below shows the possible matching of the ISO 9001 Clause 8 extract to the audit evidence.

Table

Audit evidence

ISO 9001 Clause 8 extract

Four of the 10 pallets of stock sampled in the warehouse were not labelled.

“8.5.2 … shall use suitable means to identify outputs …”

A damaged pallet of stock seen in the quarantine area was leaking liquid onto the floor.

“8.7.1 … shall ensure that outputs that do not conform to their requirements are identified and controlled …”

One of the fork-lift truck drivers had no fork-lift truck driving licence.

“8.5.1 e … shall include, as applicable … the appointment of competent persons …”

There was no pest control provision in the warehouse.

“8.5.4 … shall preserve the outputs during production and service provision …”

Two pallets of temperature-sensitive stock items were being stored at ambient as the chilled storage facility was full.

“8.1 … shall plan, implement and control the processes …”