ISO-9001-Lead-Auditor Exam Dumps : QMS ISO 9001:2015 Lead Auditor Exam

• Identifying the source of information
• Sampling available data
• Gathering audit evidence
• Verifying objective evidence
• Evaluating evidence against the audit criteria
• Making audit conclusions
• Evaluating against the audit criteria

According to ISO 19011:2018, clause 6.4, the process of collecting and verifying information during an audit involves the following steps1:

• Identifying the source of information: The audit team should identify the sources of information that are relevant to the audit objectives, scope and criteria. These sources may include documents, records, personnel, processes, activities, facilities, equipment, etc. The audit team should also determine the methods and tools for accessing and collecting the information, such as interviews, observations, document review, sampling, etc.
• Sampling available data: The audit team should select a representative sample of the available data to verify the conformity and effectiveness of the management system. The sample size and selection method should be based on the audit objectives, scope and criteria, as well as the level of confidence and risk. The audit team should also consider the validity, reliability, relevance and sufficiency of the data.
• Gathering audit evidence: The audit team should use the methods and tools identified in the previous step to collect audit evidence, which is the records, statements of fact or other information that are relevant to the audit criteria and verifiable. The audit team should record the audit evidence in a clear, concise and objective manner, using notes, checklists, photographs, audio or video recordings, etc.
• Verifying objective evidence: The audit team should verify the accuracy, completeness and authenticity of the audit evidence collected. This may involve cross-checking different sources of information, confirming the identity and authority of the persons providing the information, examining the original documents or records, etc. The audit team should also identify any discrepancies, inconsistencies or gaps in the audit evidence.
• Evaluating evidence against the audit criteria: The audit team should compare the audit evidence with the audit criteria to determine the extent of conformity and nonconformity. The audit team should also identify any opportunities for improvement, best practices, positive aspects or potential risks. The audit team should use professional judgement and apply the principles of auditing when evaluating the audit evidence.
• Making audit conclusions: The audit team should consolidate the audit findings and evaluate the overall performance and effectiveness of the management system. The audit team should also consider the audit objectives, scope and criteria, as well as the context and expectations of the auditee and other interested parties. The audit team should provide a clear, concise and objective statement of the audit conclusions, which may include the degree of conformity, the achievement of the intended outcomes, the need for corrective actions, the suitability for certification, etc.
• Evaluating against the audit criteria: The audit team should review the audit conclusions and ensure that they are consistent with the audit criteria and supported by sufficient and appropriate audit evidence. The audit team should also ensure that the audit conclusions are communicated to the auditee and other relevant parties in a timely and effective manner, using the agreed audit report format and distribution method.

References: ISO 19011:2018(en), Guidelines for auditing management systems

The purpose of a Stage 1 third-party audit is to determine an organization’s readiness for their Stage 2 Certification Audit. During the Stage 1, the auditor will review the organization’s management system documented information, evaluate the site-specific conditions, and have discussions with personnel. The objective is to assess the alignment of the organization’s design with ISO 9001 requirements and to identify any areas of concern that could be classified as a nonconformance during the Stage 2 Audit. The auditor will also use the Stage 1 Audit to complete Stage 2 Audit planning, including a review of the allocation of resources and details for the next phase of the audit. Therefore, the option that best describes the purpose of a Stage 1 third-party audit is A, to determine the auditees understanding of ISO 9001. The other options are not correct, as they are not the main focus of a Stage 1 audit:

•B. To get to know the organization’s customers: This is not the purpose of a Stage 1 audit, as the auditor is not interested in the specific details of the organization’s customers, but rather in the organization’s ability to meet customer and applicable statutory and regulatory requirements.

•C. To learn about the organization’s procurement processes: This is not the purpose of a Stage 1 audit, as the auditor is not interested in the specific details of the organization’s procurement processes, but rather in the organization’s ability to control externally provided processes, products and services.

•D. To introduce the audit team to the client: This is not the purpose of a Stage 1 audit, as the auditor is not there to make introductions, but rather to conduct a preliminary examination of the organization’s compliance with ISO 9001 standards.

References: What is the difference between Stage 1 and Stage 2 Audits? - ISO Update, The ISO 9001 Audit Process Explained | ISO Explained, What is an ISO Stage 2 Audit? — RiskOptics - Reciprocity

The actions that should be taken in the context of the audit are:

•Option B: Call the individual(s) managing the audit programme to explain the situation and recommend immediate suspension of certification to protect the integrity of the Certification Body. This option is correct because the auditor has found serious and significant gaps in the QMS processes that affect the health and safety of the patients, which is a major nonconformity that may warrant suspension of certification. The auditor should inform the individual(s) managing the audit programme of the situation and the audit findings, and recommend immediate suspension of certification to protect the integrity of the Certification Body and the credibility of the certification scheme. The auditor should also follow the Certification Body’s procedures and rules for suspension of certification and communicate the decision and the consequences to the auditee.

•Option C: Continue with the meeting, present the audit conclusions and inform the DCM that the organisation will receive the audit report in due course. This option is correct because the auditor should not terminate or postpone the closing meeting due to the absence of the Catering Manager, as the DCM is the auditee’s nominated representative for the audit. The auditor should continue with the meeting, present the audit conclusions and the audit findings, and inform the DCM that the organisation will receive the audit report in due course. The auditor should also explain the audit outcome recommendation and the suspension of certification, and request the DCM to acknowledge the receipt and understanding of the audit results.

The following options are not correct:

•Option A: Close the meeting immediately after the DCM’s response and advise that the issues will be addressed at the next surveillance visit. This option is not correct because the auditor should not close the meeting without presenting the audit conclusions and the audit findings, as this would violate the audit principles of fairness and transparency. The auditor should also not advise that the issues will be addressed at the next surveillance visit, as this would imply that the auditor is accepting the auditee’s delay and inaction, and that the auditor is not taking the major nonconformity seriously.

•Option D: Conclude the meeting early and advise that it will be rescheduled once the Catering Manager has returned to work. This option is not correct because the auditor should not conclude the meeting early or reschedule it due to the absence of the Catering Manager, as this would disrupt the audit process and the audit schedule. The auditor should also not wait for the Catering Manager to return to work, as this would delay the communication and resolution of the major nonconformity, and potentially compromise the health and safety of the patients.

•Option E: Recommend that all personnel should be given urgent in-depth training in the QMS. This option is not correct because the auditor should not recommend or prescribe specific corrective actions to the auditee, as this would violate the audit principles of independence and objectivity. The auditor should only report the audit findings and the audit outcome recommendation, and leave the responsibility and authority for determining and implementing the corrective actions to the auditee.

•Option F: Thank the DCM for his time and express an expectation that improvements will be made in the QMS. This option is not correct because the auditor should not thank the DCM for his time and express an expectation that improvements will be made in the QMS, as this would imply that the auditor is satisfied and optimistic with the auditee’s performance and response, and that the auditor is not taking the major nonconformity seriously. The auditor should instead express the concern and dissatisfaction with the auditee’s QMS processes and the impact on the health and safety of the patients, and communicate the suspension of certification and the need for urgent and effective corrective actions.

References:

•ISO 19011:2018 Guidelines for auditing management systems, Clause 6.4.2: Conducting audit activities, Subclause k) and l)

•ISO 9001 Lead Auditor Course Material, Module 5: Conducting an Audit, Slide 20: Closing Meeting

•ISO 9001 Lead Auditor Training Course - IRCA Certified, Section 5.5: Closing Meeting

•Lead Auditor Exam Preparation Guide (EPG) Template - PECB, Section 3.2: Exam Content Outline, Subsection 3.2.1: Section 1 - Audit Fundamentals, Subsection 3.2.2: Section 2 - Audit Principles, Subsection 3.2.3: Section 3 - Audit Process, Subsection 3.2.4: Section 4 - Audit Competencies