At the end of a second-party audit, the audit team enters the meeting room to hold the closing meeting; only
two people are present and waiting for them: the Health and Safety supervisor and the Administrative Officer.
Neither has participated in the audit. However, the team had previously agreed with the auditee Quality
Manager on two nonconformities identified during the audit (NC1 and NC2).
They said:
Health and Safety Supervisor: "Good evening. We are sorry to inform you that the general manager was
involved in a serious car accident, and the other two managers have had to leave urgently to attend to the
emergency."
The Administration Officer: "Concerning 'nonconformity 2', the General Manager left a message asking us
to tell you that he does not accept it and requests you not to include it in the audit report. Here is a note in
which he explains why."
Which one of the following would be your preferred answer (as team leader) to the General
Manager's request?
During a third-party surveillance audit, the auditor finds that the management review meeting minutes record that the improvement actions set by the previous review have not been completed for a second year running. It states that a new Quality Manager has been brought in at the middle management level to rectify the situation. You learn that top management is not involved in the QMS other than being copied into the minutes of the management review meeting.
The audit reveals that the new Quality Manager was given responsibility by top management to:
a) take accountability for the effectiveness of the QMS,
b) select, approve, and monitor improvement actions without involving and reporting to top management,
c) promote the improvement of the QMS, and
d) make efficient use of the limited financial and personnel resources allocated for the QMS by top management.
The auditor considers whether there is a nonconformity against clause 5.1.1 of ISO 9001:2015.
Select two options of the evidence required for such a nonconformity:
In the context of a management system audit, identify the sequence of a typical process for collecting and verifying information. The first one has been done for you.
To complete the sequence click on the blank section you want to complete so it is highlighted in red and then click on the applicable text from the options below. Alternatively, drag and drop the options to the appropriate blank section.
Scenario 1: AL-TAX is a company located in California which provides financial and accounting services. The company manages the finances of 17 companies and now is seeking to expand their business even more The CEO of AL-TAX, Liam Durham, claims that the company seeks to provide top-notch services to their clients Recently, there were a number of new companies interested in the services provided by AL-TAX.
In order to fulfill the requirements of new clients and further improve quality, Liam discussed with other top management members the idea of implementing a quality management system (QMS) based on ISO 9001. During the discussion, one of the members of the top management claimed that the size of the company was not large enough to implement a QMS. In addition, another member claimed that a QMS is not applicable for the industry in which AL TAX operates. However, as the majority of the members voted for implementing the QMS. Liam initiated the project.
Initially, Liam hired an experienced consultant to help AL-TAX with the implementation of the QMS. They started by planning and developing processes and methods for the establishment of a QMS based on ISO 9001. Furthermore, they ensured that the quality policy is appropriate to the purpose and context of AL TAX and communicated to all employees. In addition, they also tried to follow a process that enables the company to ensure that its processes are adequately resourced and managed, and that improvement opportunities are determined.
During the implementation process, Liam and the consultant focused on determining the factors that could hinder their processes from achieving the planned results and implemented some preventive actions in order to avoid potential nonconformities Six months after the implementation of the QMS. AL-TAX conducted an internal audit. The results of the internal audit revealed that the QMS was not fulfilling all requirements of ISO 9001. A serious issue was that the QMS was not fulfilling the requirements of clause 5.1.2 Customer focus and had also not ensured clear and open communication channels with suppliers.
Throughout the next three years, the company worked on improving its QMS through the PDCA cycle in the respective areas. To assess the effectiveness of the intended actions while causing minimal disruptions, they tested changes that need to be made on a smaller scale. After taking necessary actions, AL-TAX decided to apply for certification against ISO 9001.
Based on the scenario above, answer the following question:
Which of the following misconceptions about ISO 9001 was present in scenario 1?
What is the responsibility of the audit committee during an internal audit?
'XYZ' has already sent to you a list with all documented procedures and work instructions related to the services provided to 'ABC' (a quality manual is not included in the list).
To complete the audit planning which additional information would you ask to XYZ to submit? Select four.
In the context of a third-party audit, match the activity with the party responsible in relation to the audit process.
You are carrying out an annual audit at an organisation that has been certificated to ISO 9001 for two years. The organisation offers home security
services. The scope of the quality management system covers alarm installation, alarm servicing, alarm monitoring and response. The business
operates from a single office and employs subcontract installers and service technicians across the country.
You have just completed the opening meeting. You are interviewing the Managing Director (MD).
You: "I would like to gain an understanding of how the quality management system has been supporting your business and its strategic direction."
MD: "We are continuing to face difficult times. The market is extremely competitive, and customers typically look for the least expensive option when
choosing home security services. We have not yet seen any business benefit from our quality management system."
You: "Tell me how you determine external and internal issues."
MD: "We use SWOT analysis (Strengths Weaknesses, Opportunities, Threats)."
You: "How have the outputs from your SWOT been used?"
Select two of the following audit trails would you take to explore the extent to which the SWOT analysis and the outputs from this
have been used to enable the business to achieve the intended results(s) of its quality management system according to ISO 9001.
What is reliability in the context of service quality?
Scenario 3:
Fin-Pro is a financial institution in Austria offering commercial banking, wealth management, and investment services. The company faced a significant loss of customers due to failing to improve service quality as they expanded.
To regain customer confidence, top management implemented a QMS based on ISO 9001. After a year, they contacted ACB, a local certification body, to pursue ISO 9001 certification.
The audit team was led by Emilia, an experienced lead auditor, and included three auditors. After an agreement was reached, ACB sent the audit objectives to the audit team.
The audit team began by gathering information about Fin-Pro’s understanding of ISO 9001 requirements. While reviewing documented information, they noticed missing records of training and awareness sessions. They conducted employee interviews to verify attendance.
The team also reviewed the organizational chart and job descriptions to confirm employee competence. They observed the company’s working environment (social, psychological, and physical conditions).
The audit team analyzed the evidence and prepared an audit report with findings and conclusions.
ACB sent the audit objectives to the audit team after an agreement was reached. Is this acceptable?
