ISO-9001-Lead-Auditor Exam Dumps : QMS ISO 9001:2015 Lead Auditor Exam

According to ISO 9001:2015, clause 8.4, an organization is required to control the processes, products and services provided by external providers, including those that affect the quality of the organization’s own products and services. This includes determining the controls to be applied to the external provision of processes, products and services, as well as the information to be communicated to the external providers. The organization is also required to monitor, measure, and evaluate the performance of the external providers and retain documented information of these activities.

Therefore, in the scenario given, ABC Ltd is responsible for controlling the processes, products and services provided by Teak Ltd, as they affect the quality of ABC Ltd’s own products and services. This means that ABC Ltd should have established criteria and methods for evaluating the performance of Teak Ltd, as well as documented information of the results of such evaluation. ABC Ltd should also have defined the supply arrangements with Teak Ltd, including the specifications, requirements, and verification activities related to the products and services provided by Teak Ltd.

Hence, the best options to describe how to plan the audit of the interrelationship with Teak Ltd during the Stage 2 audit at ABC Ltd are A and D, as they are aligned with the requirements of ISO 9001:2015, clause 8.4. The other options are either irrelevant or beyond the scope of the audit, as they do not pertain to the control of external provision by ABC Ltd.

Here is the correct matching of the activities with the responsible parties in the context of a second-party audit:

Define the audit scope: Customer

Develop the audit plan: Audit team leader

Respond to the audit findings: External provider

Conduct the audit: Audit team

This reflects the typical division of responsibilities in a second-party audit, where the customer (the party commissioning the audit) sets the scope, the audit team leader manages the planning, the external provider responds to findings, and the audit team carries out the audit.

ISO 9001:2015 requires organisations to understand their context and to use this understanding as an input to planning the quality management system. Tools such as PESTLE are acceptable methods, but auditors must verify how the outputs are used, not simply that the analysis exists.

Relevant ISO 9001 requirements:

Clause 4.1 – Understanding the organisation and its contextThe organisation shall determine external and internal issues that are relevant to its purpose and strategic direction and that affect its ability to achieve the intended results of the QMS.

Clause 6.1 – Actions to address risks and opportunitiesThe organisation shall plan actions to address risks and opportunities identified from context analysis and integrate these actions into the QMS processes.

Explanation of the correct audit trails:

C. What actions have been taken to address the risks and opportunities from the PESTLE analysis?

This audit trail directly links PESTLE outputs to Clause 6.1. It allows the auditor to determine whether the organisation has translated identified political, economic, social, technological, legal, and environmental issues into concrete actions within planning, operational control, or resource allocation. Without actions, the PESTLE analysis has no impact on QMS planning.

E. How has the PESTLE analysis contributed to the improvement of the QMS?

ISO 9001 requires context analysis to support improvement and strategic alignment of the QMS. This audit trail confirms whether PESTLE outputs are used as inputs to improvement activities, management review, or changes to processes, supporting Clauses 4.1, 6.1, and 10.3.

Explanation of why the other options are not selected:

A: Review by a specific manager is not a requirement of ISO 9001 and does not demonstrate impact on QMS planning.

B: PESTLE does not require consultation with external interested parties; that relates to Clause 4.2, not planning impact.

D: Training in SWOT is irrelevant, as ISO 9001 does not mandate any specific analysis tool.

F: Sharing information with external interested parties relates to communication, not to how PESTLE affects QMS planning.

ISO-aligned conclusion:

To determine how PESTLE analysis affects planning of a QMS, the auditor must follow audit trails that demonstrate:

Conversion of identified issues into risk-based actions, and

Use of those outputs to improve and adapt the QMS.

Therefore, the correct answers are C and E.