Understanding the Process Approach – 2023 Update

By Scott Dawson
November 6, 2019

What Exactly Is the ISO Process Approach?

Since the year 2000 release of ISO 9001, all ISO-certified companies have wrestled with the practical application of the “Process Approach” that was introduced in the current version of the standard. In fact, other than the reduction of the number of “required” (i.e. prescribed) documents, the shift to the Process Approach was the most significant change from older editions of ISO 9001.

People working on the process approach.

Let’s see if we can take some of the mystery out of this for those of us trying to make ISO add value to our businesses on a day-to-day basis.

From the language of the ISO 9001 standard itself, the “process approach” is described as:

“The systematic definition and management of processes, and their interactions, so as to achieve the intended results in accordance with the quality policy and strategic direction of the organization.” (ref. section 0.3.1).

Let’s put that into simpler terms. The process approach means that you improve your business by managing and improving certain key business processes that directly impact your ability to serve your customer. Since your business processes are basically “how you get things done,” by improving these processes you improve your company’s ability to meet customer requirements. Gains made by improving your key processes pay dividends today and in the future as your QMS drives meaningful improvement in your business.

What Benefits Does a Process Approach Provide?

There are a wide variety of benefits to a process approach for organizations:

  • Functional integration: The process approach integrates organizational functions across the organization to accomplish shared objectives and milestones.
  • Efficiency enhancement: Organizations can better hone their focus on the final products and end customers with a process approach.
  • Smooth workflows: The process approach makes it easier to create a manageable, high-performance workflow and ultimately improve relationships with customers through consistency.
  • Continual improvement: Each process becomes an asset with this approach, so it’s easier to build a culture of continuous self-improvement over time.
  • Economic savings: A process approach often leads to shorter cycle times, which slashes costs and leads to more resources available for boosting efficiency.
  • Organizational structure: Processes help the most valuable asset, human resources, to become involved and empowered with every branch of the organization toward shared goals.


What Is a Process? 

For those who may not have a strong background in studying processes and quality improvement, it is common to ask, “What exactly is a process?” Using the text from the ISO 9001 standard:

“A set of interrelated or interacting activities that use inputs to deliver an intended result” (ref. 3.4.1; ISO 9001:2015).

Process approach defined

In other words, a process is basically how you are operating a certain activity within your business to convert something such as an unfinished product, some data or information, an untrained employee, or other “input” into an “output” such as a finished product, decisions based on data or information or a fully skilled employee. The steps you’ve followed to accomplish the intended results is the process.

A process can be as “small” as a task someone has to do, such as entering data into a computer. A somewhat larger process would involve several people within a certain department to complete something, such as putting together and implementing a new marketing campaign. A process can also span several departments who all have to work together for a common goal, such as developing, producing and releasing a new product or service.

Various Process “Scopes”

These different process scopes illustrate how smaller processes “fit” into larger processes and support them. Generally, you should consider bigger processes to be more important to your business performance overall than the smaller ones. However, it is often the case that the broader cross-functional processes are not well managed, despite their greater importance.

Consultant explaining the process approach

This is because cross-functional processes cut across organizational boundaries, involving several department heads.

The organizational structure, in this case, tends to work against efficiency because of the “hand-offs” between departments and conflicting goals between organizational groups. Yet, because of their importance to meeting customer requirements and management objectives, they should be considered among your most critical “key processes” to be managed within your ISO system.

What’s Involved in Managing Processes?

The management of key business processes basically involves the following:

  1. Identifying the processes that most directly impact your customer and overall business performance.
  2. Establishing reliable measures of performance for those processes.
  3. Assigning responsibility for monitoring and improving each process.
  4. Proper procedural documentation to control each process.
  5. Effective action to root out obstacles in the process and to resolve root causes to performance gaps.
  6. Integrating the process with the requirements of other business processes.

The management of your key processes should serve as the “top level” of your QMS – that is, it should provide the overall purpose and structure to your procedures, work instructions, training, etc. In addition, the selection of processes and establishment of process measures should be derived from your overall business and quality objectives.

What Does ISO Require?

When reading the ISO 9001:2015 standard, it’s easy to miss this central emphasis on managing key processes. This is in part because the requirements for managing processes are sprinkled throughout the standard under various headings. Piecing together a complete understanding involves pulling several requirements together. 

Consultant explaining ISO to client

It is helpful to start with the Introduction to the standard that introduces the concepts of managing your business through the identification and management of a “system of processes.”

Four parts of managing key processes are listed:

  1. Understand and meet requirements. This indicates that the purpose of each key process is to meet specified requirements. If those requirements are not clearly defined and communicated, those involved in the process won’t know if they are achieving what is needed.
  2. Consider the added value of the process. Processes to be managed should be selected based on the “value” they add to the ability to meet customer requirements or to meet business objectives. That means that you should start with the most “key” (critical) processes to your business.
  3. Monitor process performance and effectiveness through actual results. Once you’ve identified and defined your key processes, each should be monitored using a few performance measures. The measures should be selected based on the most important objectives for each process and its overall purpose.
  4. Make data-driven continual improvements. Monitoring these results and analyzing the data will clarify specific improvements needed in the process to drive performance up. Using root-cause analysis to determine needed corrective action (and preventive action) will ensure that improvement efforts pay off with better overall results.

The model shown in Figure 1 within the ISO 9001:2015 standard helps to give a “big picture” of how the overall QMS works to ensure that customer satisfaction is achieved. Essentially, the model depicts how your organization translates customer requirements into customer satisfaction through your internal QMS processes. The model aligns with the 5 major sections of the standard (4.0 – 8.0) to help you understand how the requirements fit together. From a conceptual perspective, the diagram is helpful.

Do We Have to Audit Using a Process Approach?

One final question is commonly asked relating to whether or not your internal audit program must be reorganized to audit “processes” rather than “ISO requirements.” Many ISO internal audits are structured around a requirement-by-requirement review of the quality management system following the sections of ISO 9001:2015.

consulting on 9001

It is common for an audit checklist to itemize questions to confirm whether the QMS:

a) conforms to:
1) the organization’s own requirements for its quality management system;
2) the requirements of this International Standard [i.e. ISO 9001:2015] (ref 9.2.1).

The scheduling in such an audit program is often by departments within the company. If this is your current procedure for auditing, the question that comes to mind is “do I have to change to auditing processes? If so, how do I do that?”

Well, the ISO standard does not really say how you need to organize your audits; just that you need to consider in your audit plan:

The importance of the processes concerned, changes affecting the organization, and the results of previous audits (ref: 9.2.2)

So, bottom line is that you are not required to rearrange your audit program to “audit processes” per se. But you do need to be sure your auditors are aware of your processes and how they are organized, managed and currently performing.

The Need for a Process to Manage Processes

So, an effective implementation of the “Process Approach” would start by laying out how you will select, manage and improve the most critical business processes that impact your customers and internal management objectives. This would include assigning responsibility to certain individuals or teams to take charge of your key processes. Teams work well when processes cut across your organizational structure. Then, these process owners will monitor and improve these processes on an ongoing basis taking full responsibility for their performance.

Perhaps, then, one of your first processes to establish is the process for how you will manage your key business processes within your organization.

Choose Core Business Solutions for Expert Help With Your ISO 9001 Certification Today 

At Core Business Solutions, we bring customization and simple, streamlined processes for ISO consulting services. Our team of experts specializes in helping small businesses receive their ISO 9001 certification.

Core Business Solutions Owner

We understand the ingenuity and strength behind these businesses because we’re an American-owned and -operated family company founded by two brothers with a passion for entrepreneurship.

Ready to explore our consulting options? Learn more about how our team will walk with you through four steps in four months for your ISO 9001. You can also contact our team with questions to receive a free quote today and begin your journey toward ISO 9001 certification for your business.

Related Articles:

5s Management Tools Explained

5s Management Tools Explained

  What is the 5S Process?Have you ever lost something, looked for it, not found it, replaced it, and then found the lost item the next day? This is a very simple example of how being...

CMMI Maturity Levels 2 and 3

CMMI Maturity Levels 2 and 3

What are CMMI Levels 2 and 3? For service providers, few standards carry more weight than a CMMI appraisal. However, the appraisal process can seem daunting. What exactly is CMMI? What are “maturity...