Internal Audit
Internal Audit
Internal Audit
Presentation topics
What is an audit?
Making it work
Who audits?
Selling to management
Communicating results
What is a quality audit?
What is a quality audit?
Objective assessment, performed at defined
intervals and at sufficient frequency, of a
company’s quality system to operate against a
given criteria
Systematic
Independent
Documented
What is a quality audit?
Provide factual, unfiltered information to
manage the quality system
A tool for use by management
Regulatory requirement (ISO, etc.)
Help minimize risk
Detect program defects and through isolation of
unsatisfactory trends and correction of factors
that cause defective products, prevent the
production of unsafe or nonconforming.
Assure the production is consistently in a state-
of-control.
What is a quality audit?
Audits are not a quick look
Audits are preventive, not detective
Audits are planned, organized, and coordinated
Audits are carried out for the benefit of the
company, not the auditor
A single audit will not find all noncompliant
issues or potential problems
Audit Program Phase 0
Definition
Preparation
Phase 1
Comply? 2 3
Making it work
Step 1 – Comply
Conforming to requirements; as to a
regulation and/or to another's rules required.
Regulatory / standard compliance
Do we have the systems and procedures we are
supposed to have and do they meet the
regulatory / standard requirements?
Making it work
1 Effective? 3
Making it work
Step 2 – Effective
Producing or capable of producing an
intended result
Collection of and review of objective evidence
Do we follow our procedures and maintain the
required records?
Making it work
1 2 Efficient?
Making it work
Step 3 – Efficient
Acting or producing effectively with a
minimum of waste, expense, or unnecessary
effort
Exhibiting a high ratio of output to input
Eliminate / reduce redundancy between systems
Are our systems working in the best interest of
our business / customer?
What’s the difference?
Think preventive costs
Internal audits are the “downstream”
assessment
ISO / customers are the “upstream”
assessment
How do you score?
Quantify Efforts vs. Benefits
How much time / resources you are spending
on auditing
How you do it
What the outcomes are
What is being done with the outcomes
Safety
Assess
Risk!
Severity
Quality
Business
Regulatory
Act on results
Requires management support to fix root
cause of identified non-compliances
Not all observations will require a corrective
action
Correction or other remediation may be appropriate
Triage / prioritize based on risk
Safety
Regulatory
Quality
Business
Re-evaluate during management review
Risks may change
Act on results
Monitor efficiency of closure / CAPA
process – adequacy and timeliness of:
Response / Investigation
Implementation
Closure / Follow-up
Re-assess
Summary
Questions
Feel free to call or email with any questions concerning our presentation