Hello, everyone, and thanks for listening to the Quality Hub chatting with ISO experts. I’m your host, Xavier Francis, and I’m here again with Suzanne Strasser, VP of Consulting and Development here at Core Business Solutions. So glad you could be with us again.
Thanks, Xavier. Glad to be back.
For today’s show, we’ll be talking about the internal audit process where we look at the processes of the internal audit and the steps to take afterwards. And before your stage one audit. But first off, let’s learn a little bit more about our guest, a fan favorite, Suzanne Strasser.
Well, here’s something you’re never going to hear other people say. I love auditing.
Wow. That’s awesome.
I actually remember when I worked for a previous company. We had some training in Georgia and we were going through the audit process in a mock audit. And the company president walked in and there were like 4000 people in the company. And he stood and watched me for a while and gave me, you know, gave me a thumbs up.
And our consultant pulled me aside and said, Have you ever heard the phrase competence happens in a moment? He said I think this is kind of your thing.
And yeah, I just love it.
That’s awesome. Well, I know many years ago we did a mock audit in here and we did a I think we were doing Core Community at that point, which was yes, for some of our customers, which are probably some listening and some of them may have actually seen some of those. And we did a mock audit and we did a how, how you should do it, and how you shouldn’t do it.
That was a lot of fun. I could sense that we were mocking the audit that you shouldn’t do.
You were still a little annoyed, like, I’ve been here, I’ve been here, I’ve done this. This is exactly what it’s like. So. But anyway, this is the internal audit, which we’re talking about that was actually a mock audit and also a mock management review.
Yes. Well, it’s great to have you here again. And like I said, we are at the internal audit stage of our quality management system implementation. At this point, businesses will either do their own internal audits or have someone outside the organization like us do it for them. Let’s not get this confused with the actual certification audit. Internal audits or something that you have to do, but you can’t audit your own process.
So a lot of companies will ask outside people who are not a registrar to do that initial internal audit. Can you go through some of those?
Sure. Yeah. It’s a requirement in the standard that you do your own internal audit prior to the external audit, you know, as part of your management system, just part of your daily yearly management system activities.
You’re auditing the things you need to audit.
Yes. But you may not be you may not have implemented those things that you said.
All right. So you said we’re going to do it. We haven’t done them yet. Okay.
You never know.
You never know. Yeah, well, this is continuous improvement. So.
So, for example, if you’re auditing and you find the company is at 50% on-time delivery and they have 30% returns and two out of five on customer satisfaction, for example, that’s not really effectively implemented. And then I think the fourth thing an audit does, and this is not really in the standard, but it’s to provide assurance to the management team.
Oh, yeah, because yes, they’re supposed to be so involved.
They’re the sponsor of this too. Yep. Yep. They want to make sure that your processes are implemented as you intended.
So it’s so those four things are looking at what you’ve done. Make sure you’re following how you said you’re going to do it. Make sure it meets the standard. Are you effectively implemented and you’re meeting your goals and you’re assuring management that you’re doing all those three?
Exactly right. Very good. Yep. So all that to say is I think auditing is not for the weak. That may be a little bit of a bold statement, but you really have to stand your ground. You can’t be wishy-washy. You have to be factual. The standard, like you said before, does say you need to select auditors that conduct audits to ensure objectivity and impartiality.
That’s why you can’t audit your own.
Yes. And in a small organization, that’s really hard to do, I bet. So a lot of companies choose to outsource the audit process not only for the objectivity but also for the sheer resources it takes.
I think Brian mentioned that before where, yeah, you say you can be objective, but when it’s your buddy that you have lunch with.
Or your boss.
Or your boss, that’s a really good point, you know, or somebody that has authority over you, how critical do you really want to be?
Plus, you have to keep people trained and it takes time away from their job. It’s really hard to do internally.
Well, at least do it well. Yes. Where you’re going to have some sort of sense that it’s really achieving what it should. Yes. Okay. So it’s very possible and probably likely, I would think, that you’re going to have some findings during this internal process. How should you review and proceed once you see what those findings are?