ISO-9001-Lead-Auditor Exam Dumps : QMS ISO 9001:2015 Lead Auditor Exam

 First-party Management System audit → All members of an audited organisation

 Second-party Management System audit → Interested parties of an organisation

According to ISO 19011:2018 (Guidelines for Auditing Management Systems) and as reinforced in ISO 9001 Lead Auditor training materials, audit types are defined as:

First-party audit – conducted by the organization itself, or on its behalf (internal audit).✅ The audit client is all members of the audited organisation, because the audit is internal, involving all functional areas under the organization’s control.

Second-party audit – conducted by a customer or other person on behalf of a customer (external but not by a certification body).✅ The audit client includes interested parties of an organisation, such as customers who want to verify if their suppliers meet contractual or regulatory requirements.

These definitions are directly aligned with ISO 19011:2018, Clause 3.13 – Types of audits.

Why Other Options Are Incorrect:

Certification body / Accreditation body → These relate to third-party audits, not first or second.

Top management / Functions of an audited organisation → Refer to auditees or audit participants, not the audit client itself.

Comprehensive and Detailed In-Depth Explanation:

Before conducting an audit, the certification body must provide an audit offer, which outlines the audit scope, criteria, and duration.

Clause References:

ISO/IEC 17021-1:2015, Clause 9.1.2 – Audit Planning: Requires the certification body to communicate key audit details before finalizing the audit process.

Why is the Correct Answer C?

The audit offer includes scope, criteria, duration, and engagement limits before the certification agreement is signed.

The certification body sends this to the auditee before finalizing the contract.

Why are the Other Options Incorrect?

A (Certification Agreement) → This is the contract signed after the audit offer is accepted.

B (Audit Plan) → The audit plan details the day-to-day audit schedule and is created after the agreement.

D (Audit Mandate) → This is an internal document for the certification body.

Comprehensive and Detailed In-Depth Explanation:

One of the seven quality management principles in ISO 9001:2015 is Improvement, which emphasizes continual enhancement of processes, products, and services.

Clause 10.3 (Continual Improvement) states that organizations must continuously assess risks, consequences, and impacts to improve their QMS.

Risk-based thinking (Clause 0.3.3) supports improvement by identifying and mitigating risks before they affect performance.

Clause 6.1 (Actions to Address Risks and Opportunities) requires organizations to take a proactive approach, ensuring long-term success.

Other options do not fully align with the question:

Process approach (A) focuses on managing interrelated activities.

Leadership (B) ensures commitment but does not directly address risk assessment.

Relationship management (D) deals with interested parties, not risk mitigation.