1. Audit Planning and Preparation:
• Develop audit plans based on the scope and objectives of the audit.
• Gather relevant documentation such as policies, procedures, and previous audit reports.
• Ensure that audit criteria align with the relevant ISO standards and client needs.
2. Audit Execution:
• Conduct internal and external audits (first, second, and third-party) to evaluate the conformity of management systems with ISO standards.
• Interview staff, inspect facilities, and review documents to gather audit evidence.
• Identify non-conformities, potential risks, and areas of improvement in processes and systems.
• Collaborate with departments to address audit findings and recommend corrective actions.
3. Audit Reporting:
• Prepare clear and concise audit reports that summarize audit findings, corrective actions, and recommendations.
• Present audit results to management and other stakeholders.
• Follow up on non-conformities and ensure that corrective actions are implemented.
4. Continuous Improvement:
• Monitor the effectiveness of implemented corrective actions and improvements.
• Support the organization in implementing changes to improve overall performance and maintain compliance.
• Stay updated with changes in ISO standards and best practices related to management systems.
• Provide guidance on maintaining certifications and regulatory requirements.
5. Training and Consultation:
• Conduct awareness training for employees on ISO standards and the importance of compliance.
• Assist in the development of management system policies and procedures to meet ISO requirements.
• Advise clients or departments on best practices for compliance and system improvements.
Key ISO Standards:
• ISO 9001: Quality Management System (QMS)
• ISO 14001: Environmental Management System (EMS)
• ISO 20000-1: IT Service Management System (ITSM)
• ISO 22301: Business Continuity Management System (BCMS)
• ISO 27001: Information Security Management System (ISMS)
• ISO 45001: Occupational Health & Safety Management System (OH&S)
1. Education and Certification:
• Bachelor’s degree in Quality Management, Environmental Science, IT, Information Security, or related field.
• Certification as an ISO Lead Auditor or Internal Auditor (ISO 9001, ISO 14001, ISO 27001, ISO 45001, ISO 20000-1 and ISO 22301) is required.
2. Experience:
• 3-5 years of experience conducting internal and external audits for ISO management systems.
• Banking, Business Advisory firm, ICT and other professional service Firms.
• Familiarity with a range of ISO standards across industries (manufacturing, IT, services, etc.).
• Experience in risk assessment, compliance management, and quality assurance.
3. Skills:
• In-depth knowledge of relevant ISO standards and their application in different industries.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills to report audit findings effectively.
• Attention to detail and organizational skills to manage audit processes from planning to reporting.
• Ability to work independently and in a team environment.
• Proficiency in using audit tools and management software.
