The audit client must ensure the audit program objectives are clearly stated and used to direct the planning and implementing the audits. This will help ensure the audit program is implemented effectively. Audit program objectives must be consistent with the audit client’s strategic business direction and support management system policy and objectives. The objectives can be based on the following:
a) needs and expectations of external and internal relevant interested parties
b) product, service and project characteristics
c) requirements for processes, products, services and projects, and any changes to them;
d) management system requirements;
e) any stated need for evaluation of external providers;
f) auditee’s level of performance
g) maturity of the management system(s), as reflected in relevant performance indicators (e.g. KPIs),
h) the occurrence of nonconformities or incidents or complaints from interested parties;
i) identified risks and opportunities
j) results of previous audits
Here are some examples of audit objectives:
- identify opportunities to improve the management system
- help the auditee determine the context of the organization
- evaluate risks and determine methods to address them
- conform to all relevant requirements, e.g. legal, statutory and regulatory requirements, compliance commitments, requirements to become certified by a Certification Body (CB)
- determine maintain confidence level in the capability of an external provider;
- measure the management sytem
- continuing suitability,
- adequacy and
- effectiveness
- keep the management system aligned with the strategic direction of the organization.
Return to the ISO 19011 PDCA Audit Process Diagram
