Professional Documents
Culture Documents
4 Audit Program Management and Business Applications
4 Audit Program Management and Business Applications
Audit Program A
Audit Program Management
Management and
Business B
Business and Financial Impact
Applications
01
Senior management support
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Audit Program
Senior
Management
Support
01
Senior management support
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Audit Budget
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Auditor Competence
❖ Generic Training – Auditing concepts
❖ Management system and sector specific
training
❖ Training on standards, regulations, legal
requirements, cultural diversity, and facilitation
techniques etc.
❖ Experience – decision making, problem solving,
and communicating
❖ Auditing experience under the guidance of an
experienced auditor. Auditor Training
and Development
Auditor Professional
Development - Considerations
Auditor Training
and Development
01
Senior management support
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Audit Program Objective
Audit Program
Evaluation
Audit Program Evaluation
Audit Program
Evaluation
Audit Program Evaluation
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Internal Audit Program
Internal Audit
Program
Management
2. Policies and Procedures
Internal Audit
Program
Management
5. Review Audit Results
Internal Audit
Program
Management
9.2.2 The organization shall:
❖ a) plan, establish, implement and maintain an audit programme(s) including the
frequency, methods, responsibilities, planning requirements and reporting, which
shall take into consideration the importance of the processes concerned, changes
affecting the organization, and the results of previous audits;
❖ b) define the audit criteria and scope for each audit;
❖ c) select auditors and conduct audits to ensure objectivity and the impartiality of
the audit process;
❖ d) ensure that the results of the audits are reported to relevant management;
❖ e) take appropriate correction and corrective actions without undue delay;
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
External Audit Program
External Audit
Program
Management
1. Objective (Supplier
Audits)
❖ Supplier selection
❖ Supplier monitoring (surveillance)
❖ Supplier development/improvement
External Audit
Program
Management
2. Audit Program Schedule
External Audit
Program
Management
2. Audit Program Schedule
External Audit
Program
Management
01
Senior management support
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
ISO 19011:2018
Best Practices
Best Practices
Best Practices
01
Senior management support
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Risk: Definition
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
ISO 9001:2015
Management
Review Input
❖ (Clause 9.3.2) Management Review Inputs
The management review shall be planned and carried out taking into consideration:
a) the status of actions from previous management reviews;
b) changes in external and internal issues that are relevant to the quality management system;
c) information on the performance and effectiveness of the quality management system,
including trends in:
1) customer satisfaction and feedback from relevant interested parties;
2) the extent to which quality objectives have been met;
3) process performance and conformity of products and services;
4) nonconformities and corrective actions;
5) monitoring and measurement results;
6) audit results;
7) the performance of external providers;
d) the adequacy of resources;
e) the effectiveness of actions taken to address risks and opportunities;
f) opportunities for improvement.
02
Staffing and resource management
03
Auditor training and development
4A 04
Audit program evaluation
Audit Program 05
Internal audit program management
06
External audit program management
Management 07
Best practices
08
Organizational risk management
09
Management review input
10
Electronic record and computerized
system considerations
Opportunities
❖ Data integrity
❖ Cybersecurity issues and Frauds
Considerations
Related to
Electronic Data
Data Integrity
Considerations
Related to
Electronic Data
4
Audit Program A
Audit Program Management
Management and
Business B
Business and Financial Impact
Applications
4B 01
Auditing as a management tool
Audit Program 02
Interrelationships of business processes
Management 03
Cost of quality (COQ) principles
Auditing Benefits
Auditing as a
Management Tool
Auditing Benefits
Auditing supports Management by:
❖ Improved internal controls
❖ Reducing possibilities of frauds
❖ Improving processes
❖ Reducing the cost of quality
❖ Meeting customer requirements
❖ Improving customer satisfaction
❖ Managing suppliers
❖ Managing risks Auditing as a
❖ Provides independent view (e.g. of strategic plan
implementation) Management Tool
4B 01
Auditing as a management tool
Audit Program 02
Interrelationships of business processes
Management 03
Cost of quality (COQ) principles
System vs Process Audit
System
Audit
Process
Audit
Product
Audit
Interrelationship
of Business
Processes
System
Audit Program 02
Interrelationships of business processes
Management 03
Cost of quality (COQ) principles
Cost of Poor Quality Slide 56
Cost of Quality
Prevention
Appraisal
Internal
Failure
External
❖ Quality planning
❖ Education and training
❖ Conducting design reviews
❖ Supplier reviews and selection
❖ Quality system audits
❖ Process planning and control
Cost of Quality
Appraisal Cost
Cost of Quality
Internal Failure Cost
Cost of Quality
External Failure Cost