SlideShare une entreprise Scribd logo

PECB Webinar: ISO Internal Audits - A signpost to ISO compliance

PECB
PECB

The webinar covers: • Why you should do ISO Internal Auditing? • Who should do ISO Internal Auditing? • How you should do ISO Internal Auditing? • When you should do ISO Internal Auditing? Presenter: This webinar was presented by Mr. Oladapo Ogundeji, from Digital Jewels and PECB Partner. Link of the recorded session published on YouTube: https://youtu.be/FtM6n95wNmE

Formation
1  sur  43
www.digitaljewels.net ISO Internal Audits- A signpost to ISO compliance. -OladapoOgundeji
www.digitaljewels.net Profile : Oladapo Ogundeji.  Professional career extends over 18 years of experience focused on enhancing the strategic value of ICT in organisations through process re-engineering, strategic planning and project management for corporate objective & strategy that address business opportunities and issues.  A highly trained ICT Management Specialist & Consultant.  Masters In Information Technology ( M.I.T )  B. Sc. Electronics & Electrical Engineering. Past roles/positions  Head of User Support & Service Desk  IT Manager  Project Manager – Technical Services  Deputy Head – Network Systems  Project Leader  Project / System Engineer CTO/CISO - Digital Jewels Limited. A specialised Information Value Chain Consulting Firm offering specialised IT & PM Consulting & Capacity Building Services Contact: +2348099930209 ; dapoo@digitaljewels.net
www.digitaljewels.net Qualifications...  COBIT 4.1/5.0 Foundation & Certified Trainer  Business Continuity Management : ISO22301/ BS25999 Certified MASTER & Accredited Trainer  ISO 27001 Certified Lead Implementer Certified & Trainer  Certified IT Business Manager (ITBMC)  PRINCE2 Foundation Certificate (Project Management Methodology).  ISACA : C I S A // C I S M // C G E I T (Exams Passed )  IT Service Management Foundation (I T I L)  RAD Datacommunication Specialist & Engineer.  HP (COMPAQ) : Accredited Compaq Technician (A C T) // Accredited Platform Specialist (A P S)  Microsoft Certified Professional: ( M C P) // Microsoft Certified Professional + Internet: ( M C P + I) // Microsoft Certified Professional + Internet: ( M C P + I) // Microsoft Certified System Engineer : ( M C S E) // Microsoft Sales Specialist : ( M S S)  Cisco Certified Network Associate ( C C N A ) // Cisco Certified Network Professional ( C C N P ) // Cisco Certified Design Associate ( C C D A ) // Cisco Certified Design Professional ( C C D P ) // Cisco Sales Expert (CSE )  BICC Brand-Rex (Structured Cabling) Certified Installer.  TOGAF 9.1 Certified [+ Foundation]  MoR (Management of Risk) Certified & Accredited Trainer
www.digitaljewels.net WHY you should do ISO Internal Auditing? WHO should do ISO Internal Auditing? HOW you should do ISO Internal Auditing? WHEN you should do ISO Internal Auditing? AGENDA
www.digitaljewels.net ISO International Standards ensure that products and services are safe, reliable and of good quality. For business, they are strategic tools that reduce costs by minimizing waste and errors and increasing productivity. Over 19000 ISO Standards….
www.digitaljewels.net Quality system audit • An overall measurement of an organisation’s capability to meet the requirements of a standard Management audit • Checks to see if a business‘s strategic plan reflects its business objectives and has met the requirements of the intended market Process audit: • Focuses specifically on single processes to verify that they are capable of delivering the necessary outputs Procedural audit • Verification that documented practices are sufficient to ensure the implementation of approved policies and can control operations System audit • Ensures a business management system is sufficiently comprehensive to control all of the activities within that business Types of Audit
www.digitaljewels.net Internal Audit • Performed within an organization to measure its strengths and weaknesses against its own procedures or methods and/or against external standards adopted by (voluntary) or imposed on (mandatory) the organization. • Conducted by auditors who are employed by the organization being audited.
www.digitaljewels.net Why ISO ?
www.digitaljewels.net Cost savings Access to new markets
www.digitaljewels.net Increased market share
www.digitaljewels.net WHY you should do ISO Internal Auditing?
www.digitaljewels.net Benefits of ISO Internal Audit To prepare the organization for ISO Certification Increased Performance- Allows the organization to continually improve their ISO certification Compliance- Conformity to the requirement of ISO Standard
www.digitaljewels.net Preparedness For Certification One of the requirements of ISO "Auditable" standards is that you ‘shall conduct internal audits at planned intervals to determine whether the xxxxx management system conforms to the requirements of ISO xxxxx and to the requirements established by the organisation; and is effectively implemented and maintained.’
www.digitaljewels.net Increased Performance
www.digitaljewels.net ISO Certification Process 1. ISO implementation 2. Internal audit and review of ISO x (by the auditee) 3. Selection of a certification body 5. Stage 1 audit 4. Pre-assessment audit (optional) 7. Follow-up audit (if applicable) 8. Confirmation of registration 6. Stage 2 audit (on-site audit) BeforetheauditInitialaudit Followingthe audit 9. Continual improvement and surveillance audit
www.digitaljewels.net
www.digitaljewels.net Key Auditing Roles • ISO 19011, Clause 3.6 to 3.10 Organization or person requesting the audit Auditee Auditor Expert Audit team Audited organization Competent person conducting the audit Person who provides specific knowledge or expertise to the audit team One or more auditors conducting an audit, supported if needed by technical experts Client (Sponsor)
www.digitaljewels.net • Certified ISO Auditors • Risk Managers • Compliance officers • An auditor should be objective and impartial. You cannot audit processes that you manage / control yourself. This means the organisations will need to have at least two internal auditors trained and available. However, due to lack of resources, or sometimes with the crossover of responsibilities that is common in small businesses, having two impartial auditors may not be possible. In this case, you may need to consider using an external resource. • Large organisations may use a team of auditors.
www.digitaljewels.net Competences of Internal Auditors • ISO 19011, Clause 7 Personal behaviours Initial training Professional experience Auditor training Audit experience Knowledge and aptitudes for all management systems (7.2.2.1) Knowledge and aptitudes of each management system (7.2.2.3) (7.2.1) (7.2.3)
www.digitaljewels.net Personal Behaviours • ISO 19011, Clause 7.2.1 5. Perceptive 9. Self reliant4. Observant 8. Decisive3. Diplomatic 7. Tenacious2. Open minded 10. Acting with fortitude 14. Team player 13. Culturally sensitive 12. Open to improvement 6. Adaptable1. Ethical 11. Well organized Personal behaviours
www.digitaljewels.net Generic Knowledge and Competencies • ISO 19011, Clause 7.2.2.1 Evaluation and management of audit risks and those related to the operation of a management system Main processes present in all organizations (HR, Finance, Production, etc.) Prepare, conduct and close an audit, written and oral communication of audit conclusions Operation of a management system and interaction between systems Main laws and regulations, contract clauses Audit principles Audit risk Management system Organiza- tional process Legal aspects
www.digitaljewels.net Responsibility of Auditors
www.digitaljewels.net How you should do ISO Internal Auditing ?
www.digitaljewels.net What Is an Audit? • Systematic, independent and documented process for obtaining audit evidence and evaluating it objectively to determine the extent to which the audit criteria are fulfilled • ISO 19011, Clause 3.1 Auditing means asking the auditee what he/she does, and checking to see if he/she does it
www.digitaljewels.net Audit Best Practices Generally accepted audit standards International Federation of Accountants Information Systems Audit and Control Association ISO 19011:2010 Institute of internal auditors
www.digitaljewels.net Audit Standard - Management System ISO 10011 Quality ISO 14010 series Environment ISO 19011:2002 ISO 19011:2010 Environment and Quality Management system Any management system
www.digitaljewels.net ISO xxxx Internal Audits • The organization shall conduct ISMS internal audits at regular intervals • An audit program must be planned taking into account the importance of processes and scopes to audit, as well as previous audit results
www.digitaljewels.net ISO 19011 - Audit guide for management systems 1. Scope 2. References to standards 3. Terms and definitions 4. Audit principles 5. Managing an audit program 6. Audit Activities 7. Competence and evaluation of auditors
www.digitaljewels.net
www.digitaljewels.net Audit Criteria Note: Audit criteria are used as a reference against which audit evidence is compared
www.digitaljewels.net Types of Audits Second Party Audit Our organization audits our supplier Second Party Audit Our customer audits our organization Third Party Audit Our organization is audited by an independent organization Customer Supplier External Internal Organization First Party Audit Our organization audits its own systems
www.digitaljewels.net Audit Principles • ISO 19011, Clause 4 Ethical conduct 4A Fair presentation 4B Due Professional care 4C Confidentiality 4D Independence 4E Evidence based approach 4F
www.digitaljewels.net Evidence Based Approach • ISO 19011, Clause 4f Evaluated objectively Obtained objectively Information Evidence
www.digitaljewels.net Type of Evidence 1. Physical 2. Mathematical 3. Confirmative 4. Technical 5. Analytical 6. Documentary 7. Verbal
www.digitaljewels.net Sampling Why What How Because an auditor cannot verify everything Selection of a sample (probabilistic or non-probabilistic) Random sampling or judgement based
www.digitaljewels.net Balance Between Evidence and Criteria Evidence Criteria
www.digitaljewels.net Auditing Perspectives • Every audit situation should be examined from three perspectives: 1. Intent: “Have you said what you do?” Do the defined or documented processes adequately express your approach? 2. Implementation: “Have you done what you said?” Do the observed and recorded practices show conformance with the stated intent? Auditors often struggle with, or overlook, assessing how well the system has performed. 3. Effectiveness: “Have you done it well?” Do the results of the process indicate the desired outcomes have been achieved? ISO 9000 defines “effectiveness” as the extent to which planned activities are realized and planned results are achieved. In other words, to judge effectiveness you look not only at the conformance of a process, but also at its results compared to its objectives.
www.digitaljewels.net When you should do ISO Internal Audit?
www.digitaljewels.net • Internal quality audits are usually planned and initiated by the Audit unit or department. They will relate to the status and importance of the activities involved in a section or deliverable from your business. For large organizations, it would be quite normal for each department and section to be subject to at least three complete quality audits a year. • Internal Audits need to be scheduled at planned intervals to check that the quality system conforms to requirements and that the system is effective. ‘Requirements’ include the standard itself, as well as the company’s own requirements (i.e., its own procedures and policies). Audit Schedule
www.digitaljewels.net • You don’t need to audit every process all at one time. The External Audit may be like this, but internal audits can be spread out with different processes audited at different times – a series of ‘mini-audits’. • The ISO standard does not set out a required audit frequency. Instead, it recommends that you consider how important the processes are, their risks, their prior history of problems, and also your quality objectives. With a series of ‘mini-audits’ you can set different audit frequencies for different processes. • If you are implementing a new management system, it is recommended that you should have audited all the processes identified in your management system at least once prior to the initial Certification Audit. Audit schedule...
www.digitaljewels.net Plan: Define the audit programme Do: Implement the audit programme Check: Review the audit programme Act: Improve the audit programme Audit Program The Plan-Do-Check-Act model can be applied to the management of internal audits:
www.digitaljewels.net Audit Critical Success Factors • Executive or Top Management commitment & buy-in: active & sustained • Early Audit Team, Programme and Charter setup • Appropriate Audit training for the Auditors and Awareness for other staffs • Prompt approval and implementation of recommendations from the Audit closeout plans. • Resource sufficiency & availability – Auditors – Auditees – Audit Tools – Logistics and Welfares. • A readiness to comply with the requirements of the ISO standard and maintain the ISO standards
www.digitaljewels.net for your time & attention… A presentation by Oladapo OGUNDEJI. CTO / CISO, Digital Jewels Ltd dapoo@digitaljewels.net

Recommandé

Internal Audit effectiveness
Internal Audit effectivenessInternal Audit effectiveness
Internal Audit effectivenessKaran Puri
 
Iso Internal Auditor
Iso Internal AuditorIso Internal Auditor
Iso Internal AuditorDanyah Hejaij
 
Overview iso 9001 2015
Overview iso 9001 2015Overview iso 9001 2015
Overview iso 9001 2015Erfi Ilyas
 
New ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsNew ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsIntegration Technologies Group Inc
 
ISO 45001 Essentials for the Safety Professional
ISO 45001 Essentials for the Safety ProfessionalISO 45001 Essentials for the Safety Professional
ISO 45001 Essentials for the Safety ProfessionalAbby Ferri
 
ISO 9001-2015 Revision Training Presentation
ISO 9001-2015 Revision Training PresentationISO 9001-2015 Revision Training Presentation
ISO 9001-2015 Revision Training PresentationDQS Inc.
 
Internal Auditor Course
Internal Auditor CourseInternal Auditor Course
Internal Auditor CourseDan Stehling
 
Awareness QMS ISO 9001 2015 Webinar
Awareness QMS ISO 9001 2015 WebinarAwareness QMS ISO 9001 2015 Webinar
Awareness QMS ISO 9001 2015 WebinarAli Fuad R
 

Recommandé

Internal Audit effectiveness
Internal Audit effectivenessInternal Audit effectiveness
Internal Audit effectivenessKaran Puri
 
Iso Internal Auditor
Iso Internal AuditorIso Internal Auditor
Iso Internal AuditorDanyah Hejaij
 
Overview iso 9001 2015
Overview iso 9001 2015Overview iso 9001 2015
Overview iso 9001 2015Erfi Ilyas
 
New ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsNew ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsIntegration Technologies Group Inc
 
ISO 45001 Essentials for the Safety Professional
ISO 45001 Essentials for the Safety ProfessionalISO 45001 Essentials for the Safety Professional
ISO 45001 Essentials for the Safety ProfessionalAbby Ferri
 
ISO 9001-2015 Revision Training Presentation
ISO 9001-2015 Revision Training PresentationISO 9001-2015 Revision Training Presentation
ISO 9001-2015 Revision Training PresentationDQS Inc.
 
Internal Auditor Course
Internal Auditor CourseInternal Auditor Course
Internal Auditor CourseDan Stehling
 
Awareness QMS ISO 9001 2015 Webinar
Awareness QMS ISO 9001 2015 WebinarAwareness QMS ISO 9001 2015 Webinar
Awareness QMS ISO 9001 2015 WebinarAli Fuad R
 
Qms kick off meeting ppt
Qms kick off meeting pptQms kick off meeting ppt
Qms kick off meeting pptANUPAM RAY
 
ISO 19011:2018 Pedoman Audit Sistem Manajemen
ISO 19011:2018 Pedoman Audit Sistem ManajemenISO 19011:2018 Pedoman Audit Sistem Manajemen
ISO 19011:2018 Pedoman Audit Sistem ManajemenAli Fuad R
 
Internal audit-checklist-example
Internal audit-checklist-exampleInternal audit-checklist-example
Internal audit-checklist-exampleHoang Nguyen
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISOSadafhazel
 
ISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfControlCase
 
Kpi for internal audit
Kpi for internal auditKpi for internal audit
Kpi for internal auditsolutesarrobin
 
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingOperational Excellence Consulting
 
Iso 9001 internal audit tips
Iso 9001 internal audit tipsIso 9001 internal audit tips
Iso 9001 internal audit tipsBaptist Molai
 
ISO lead auditor Training
ISO lead auditor TrainingISO lead auditor Training
ISO lead auditor TrainingQccertification01
 
ISO 9001/14001/45001 requirements comparison
ISO 9001/14001/45001 requirements comparisonISO 9001/14001/45001 requirements comparison
ISO 9001/14001/45001 requirements comparisonCentauri Business Group Inc.
 
Internal audit training
Internal audit trainingInternal audit training
Internal audit trainingMuhammad Zubair
 
Iso 9001:2015 internal auditor Course
Iso 9001:2015 internal auditor Course Iso 9001:2015 internal auditor Course
Iso 9001:2015 internal auditor Course Atif Alhaj
 
ISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamMotaharul Islam
 
Iso9001training slide
Iso9001training slideIso9001training slide
Iso9001training slideAbdullahi Oladimeji Hassan
 
TUV Southwest Training Programs
TUV Southwest Training ProgramsTUV Southwest Training Programs
TUV Southwest Training ProgramsTUV Southwest
 
ISO 9001:2015 QMS Awareness
ISO 9001:2015 QMS AwarenessISO 9001:2015 QMS Awareness
ISO 9001:2015 QMS AwarenessAli Fuad R
 
ISO 19011-2018.pptx
ISO 19011-2018.pptxISO 19011-2018.pptx
ISO 19011-2018.pptxSmppMondha
 
Materi ISO 19011:2018
Materi ISO 19011:2018Materi ISO 19011:2018
Materi ISO 19011:2018ibrahim salim
 
27001 awareness Training
27001 awareness Training27001 awareness Training
27001 awareness TrainingDr Madhu Aman Sharma
 
ISO 19011:2018 Auditing Guidance - Awareness
ISO 19011:2018 Auditing Guidance - AwarenessISO 19011:2018 Auditing Guidance - Awareness
ISO 19011:2018 Auditing Guidance - AwarenessAli Fuad R
 
The Basics of ISO Certification
The Basics of ISO CertificationThe Basics of ISO Certification
The Basics of ISO CertificationDozuki Software
 
ISO awarness
ISO awarnessISO awarness
ISO awarnessvishnu gupta
 

Contenu connexe

Tendances

Qms kick off meeting ppt
Qms kick off meeting pptQms kick off meeting ppt
Qms kick off meeting pptANUPAM RAY
 
ISO 19011:2018 Pedoman Audit Sistem Manajemen
ISO 19011:2018 Pedoman Audit Sistem ManajemenISO 19011:2018 Pedoman Audit Sistem Manajemen
ISO 19011:2018 Pedoman Audit Sistem ManajemenAli Fuad R
 
Internal audit-checklist-example
Internal audit-checklist-exampleInternal audit-checklist-example
Internal audit-checklist-exampleHoang Nguyen
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISOSadafhazel
 
ISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfControlCase
 
Kpi for internal audit
Kpi for internal auditKpi for internal audit
Kpi for internal auditsolutesarrobin
 
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingOperational Excellence Consulting
 
Iso 9001 internal audit tips
Iso 9001 internal audit tipsIso 9001 internal audit tips
Iso 9001 internal audit tipsBaptist Molai
 
Iso 9001:2015 internal auditor Course
Iso 9001:2015 internal auditor Course Iso 9001:2015 internal auditor Course
Iso 9001:2015 internal auditor Course Atif Alhaj
 
ISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamMotaharul Islam
 
TUV Southwest Training Programs
TUV Southwest Training ProgramsTUV Southwest Training Programs
TUV Southwest Training ProgramsTUV Southwest
 
ISO 9001:2015 QMS Awareness
ISO 9001:2015 QMS AwarenessISO 9001:2015 QMS Awareness
ISO 9001:2015 QMS AwarenessAli Fuad R
 
ISO 19011-2018.pptx
ISO 19011-2018.pptxISO 19011-2018.pptx
ISO 19011-2018.pptxSmppMondha
 
Materi ISO 19011:2018
Materi ISO 19011:2018Materi ISO 19011:2018
Materi ISO 19011:2018ibrahim salim
 
ISO 19011:2018 Auditing Guidance - Awareness
ISO 19011:2018 Auditing Guidance - AwarenessISO 19011:2018 Auditing Guidance - Awareness
ISO 19011:2018 Auditing Guidance - AwarenessAli Fuad R
 

Tendances (20)

Qms kick off meeting ppt
Qms kick off meeting pptQms kick off meeting ppt
Qms kick off meeting ppt
 
ISO 19011:2018 Pedoman Audit Sistem Manajemen
ISO 19011:2018 Pedoman Audit Sistem ManajemenISO 19011:2018 Pedoman Audit Sistem Manajemen
ISO 19011:2018 Pedoman Audit Sistem Manajemen
 
Internal audit-checklist-example
Internal audit-checklist-exampleInternal audit-checklist-example
Internal audit-checklist-example
 
Process Audit and ISO
Process Audit and ISOProcess Audit and ISO
Process Audit and ISO
 
ISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdf
 
Kpi for internal audit
Kpi for internal auditKpi for internal audit
Kpi for internal audit
 
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
 
Iso 9001 internal audit tips
Iso 9001 internal audit tipsIso 9001 internal audit tips
Iso 9001 internal audit tips
 
ISO lead auditor Training
ISO lead auditor TrainingISO lead auditor Training
ISO lead auditor Training
 
ISO 9001/14001/45001 requirements comparison
ISO 9001/14001/45001 requirements comparisonISO 9001/14001/45001 requirements comparison
ISO 9001/14001/45001 requirements comparison
 
Internal audit training
Internal audit trainingInternal audit training
Internal audit training
 
Iso 9001:2015 internal auditor Course
Iso 9001:2015 internal auditor Course Iso 9001:2015 internal auditor Course
Iso 9001:2015 internal auditor Course
 
ISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul IslamISO Implementation Roadmap- By Motaharul Islam
ISO Implementation Roadmap- By Motaharul Islam
 
Iso9001training slide
Iso9001training slideIso9001training slide
Iso9001training slide
 
TUV Southwest Training Programs
TUV Southwest Training ProgramsTUV Southwest Training Programs
TUV Southwest Training Programs
 
ISO 9001:2015 QMS Awareness
ISO 9001:2015 QMS AwarenessISO 9001:2015 QMS Awareness
ISO 9001:2015 QMS Awareness
 
ISO 19011-2018.pptx
ISO 19011-2018.pptxISO 19011-2018.pptx
ISO 19011-2018.pptx
 
Materi ISO 19011:2018
Materi ISO 19011:2018Materi ISO 19011:2018
Materi ISO 19011:2018
 
27001 awareness Training
27001 awareness Training27001 awareness Training
27001 awareness Training
 
ISO 19011:2018 Auditing Guidance - Awareness
ISO 19011:2018 Auditing Guidance - AwarenessISO 19011:2018 Auditing Guidance - Awareness
ISO 19011:2018 Auditing Guidance - Awareness
 

Similaire à PECB Webinar: ISO Internal Audits - A signpost to ISO compliance

The Basics of ISO Certification
The Basics of ISO CertificationThe Basics of ISO Certification
The Basics of ISO CertificationDozuki Software
 
ISO Auditing: What Is It and Why Should You Consider It?
ISO Auditing: What Is It and Why Should You Consider It?ISO Auditing: What Is It and Why Should You Consider It?
ISO Auditing: What Is It and Why Should You Consider It?Triumvirate Environmental
 
ISO 22222 - Achieving A Competitive Edge Presentation 2010
ISO 22222 - Achieving A Competitive Edge Presentation 2010ISO 22222 - Achieving A Competitive Edge Presentation 2010
ISO 22222 - Achieving A Competitive Edge Presentation 2010Michelle Hoskin
 
What is ISO20000
What is ISO20000What is ISO20000
What is ISO20000Ben Kalland
 
SWE 333 - ISQM ISO 9000-3.ppt
SWE 333 - ISQM ISO 9000-3.pptSWE 333 - ISQM ISO 9000-3.ppt
SWE 333 - ISQM ISO 9000-3.pptOswaldo Gonzales
 
ISO 9000 & ISO 14000: pptx..............
ISO 9000 & ISO 14000: pptx..............ISO 9000 & ISO 14000: pptx..............
ISO 9000 & ISO 14000: pptx..............GayatriBahatkar1
 
International Organization for Standardization
International Organization for StandardizationInternational Organization for Standardization
International Organization for StandardizationAnwarrChaudary
 
ISO Induction
ISO InductionISO Induction
ISO Inductionlpiper88
 
ISO 13485 training | ISO 13485 Lead Auditor Training
ISO 13485 training | ISO 13485 Lead Auditor Training ISO 13485 training | ISO 13485 Lead Auditor Training
ISO 13485 training | ISO 13485 Lead Auditor Training himalya sharma
 
ISO Certification in Dubai (2).pdf
ISO Certification in Dubai (2).pdfISO Certification in Dubai (2).pdf
ISO Certification in Dubai (2).pdfZoyaAbdul1
 
ISO 9001 Training | QMS Training | ISO 9001 Internal Auditor Training
ISO 9001 Training | QMS Training | ISO 9001 Internal Auditor TrainingISO 9001 Training | QMS Training | ISO 9001 Internal Auditor Training
ISO 9001 Training | QMS Training | ISO 9001 Internal Auditor Traininghimalya sharma
 
What are benefits of ISO Certification in Italy?
What are benefits of ISO Certification in Italy?What are benefits of ISO Certification in Italy?
What are benefits of ISO Certification in Italy?isocert2
 
ISO 22301 | ISO 22301 Lead Auditor Taining
ISO 22301 | ISO 22301 Lead Auditor TainingISO 22301 | ISO 22301 Lead Auditor Taining
ISO 22301 | ISO 22301 Lead Auditor Taininghimalya sharma
 

Similaire à PECB Webinar: ISO Internal Audits - A signpost to ISO compliance (20)

The Basics of ISO Certification
The Basics of ISO CertificationThe Basics of ISO Certification
The Basics of ISO Certification
 
ISO awarness
ISO awarnessISO awarness
ISO awarness
 
ISO Auditing: What Is It and Why Should You Consider It?
ISO Auditing: What Is It and Why Should You Consider It?ISO Auditing: What Is It and Why Should You Consider It?
ISO Auditing: What Is It and Why Should You Consider It?
 
Intro to ISO
Intro to ISOIntro to ISO
Intro to ISO
 
ISO 22222 - Achieving A Competitive Edge Presentation 2010
ISO 22222 - Achieving A Competitive Edge Presentation 2010ISO 22222 - Achieving A Competitive Edge Presentation 2010
ISO 22222 - Achieving A Competitive Edge Presentation 2010
 
ISO 9001 Certification India
ISO 9001 Certification IndiaISO 9001 Certification India
ISO 9001 Certification India
 
Qsys Profile
Qsys ProfileQsys Profile
Qsys Profile
 
Iso 20000 itsms implementation steps-lakshy
Iso 20000 itsms implementation steps-lakshyIso 20000 itsms implementation steps-lakshy
Iso 20000 itsms implementation steps-lakshy
 
Damco iso 27001
Damco iso 27001Damco iso 27001
Damco iso 27001
 
How to prepare for and pass the CIA exam?
How to prepare for and pass the CIA exam? How to prepare for and pass the CIA exam?
How to prepare for and pass the CIA exam?
 
What is ISO20000
What is ISO20000What is ISO20000
What is ISO20000
 
SWE 333 - ISQM ISO 9000-3.ppt
SWE 333 - ISQM ISO 9000-3.pptSWE 333 - ISQM ISO 9000-3.ppt
SWE 333 - ISQM ISO 9000-3.ppt
 
ISO 9000 & ISO 14000: pptx..............
ISO 9000 & ISO 14000: pptx..............ISO 9000 & ISO 14000: pptx..............
ISO 9000 & ISO 14000: pptx..............
 
International Organization for Standardization
International Organization for StandardizationInternational Organization for Standardization
International Organization for Standardization
 
ISO Induction
ISO InductionISO Induction
ISO Induction
 
ISO 13485 training | ISO 13485 Lead Auditor Training
ISO 13485 training | ISO 13485 Lead Auditor Training ISO 13485 training | ISO 13485 Lead Auditor Training
ISO 13485 training | ISO 13485 Lead Auditor Training
 
ISO Certification in Dubai (2).pdf
ISO Certification in Dubai (2).pdfISO Certification in Dubai (2).pdf
ISO Certification in Dubai (2).pdf
 
ISO 9001 Training | QMS Training | ISO 9001 Internal Auditor Training
ISO 9001 Training | QMS Training | ISO 9001 Internal Auditor TrainingISO 9001 Training | QMS Training | ISO 9001 Internal Auditor Training
ISO 9001 Training | QMS Training | ISO 9001 Internal Auditor Training
 
What are benefits of ISO Certification in Italy?
What are benefits of ISO Certification in Italy?What are benefits of ISO Certification in Italy?
What are benefits of ISO Certification in Italy?
 
ISO 22301 | ISO 22301 Lead Auditor Taining
ISO 22301 | ISO 22301 Lead Auditor TainingISO 22301 | ISO 22301 Lead Auditor Taining
ISO 22301 | ISO 22301 Lead Auditor Taining
 

Plus de PECB

DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityDORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityPECB
 
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernanceSecuring the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernancePECB
 
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...PECB
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...PECB
 
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyPECB
 
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...PECB
 
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationPECB
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsPECB
 
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?PECB
 
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...PECB
 
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...PECB
 
Student Information Session University KTMC
Student Information Session University KTMC Student Information Session University KTMC
Student Information Session University KTMC PECB
 
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...PECB
 
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...PECB
 
Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA PECB
 
IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?PECB
 
Information Session University Egybyte.pptx
Information Session University Egybyte.pptxInformation Session University Egybyte.pptx
Information Session University Egybyte.pptxPECB
 
Student Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptxStudent Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptxPECB
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023PECB
 
ISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management systemISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management systemPECB
 

Plus de PECB (20)

DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of CybersecurityDORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
DORA, ISO/IEC 27005, and the Rise of AI: Securing the Future of Cybersecurity
 
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI GovernanceSecuring the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
Securing the Future: ISO/IEC 27001, ISO/IEC 42001, and AI Governance
 
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
ISO/IEC 27032, ISO/IEC 27002, and CMMC Frameworks - Achieving Cybersecurity M...
 
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
ISO/IEC 27001 and ISO/IEC 27035: Building a Resilient Cybersecurity Strategy ...
 
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks EffectivelyISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
ISO/IEC 27001 and ISO/IEC 27005: Managing AI Risks Effectively
 
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
Aligning ISO/IEC 27032:2023 and ISO/IEC 27701: Strengthening Cybersecurity Re...
 
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital TransformationISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
ISO/IEC 27001 and ISO/IEC 27032:2023 - Safeguarding Your Digital Transformation
 
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulationsManaging ISO 31000 Framework in AI Systems - The EU ACT and other regulations
Managing ISO 31000 Framework in AI Systems - The EU ACT and other regulations
 
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
Impact of Generative AI in Cybersecurity - How can ISO/IEC 27032 help?
 
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
GDPR and Data Protection: Ensure compliance and minimize the risk of penaltie...
 
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
How Can ISO/IEC 27001 Help Organizations Align With the EU Cybersecurity Regu...
 
Student Information Session University KTMC
Student Information Session University KTMC Student Information Session University KTMC
Student Information Session University KTMC
 
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
ISO/IEC 27001 and ISO 22301 - How to ensure business survival against cyber a...
 
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
Integrating ISO/IEC 27001 and ISO 31000 for Effective Information Security an...
 
Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA Student Information Session University CREST ADVISORY AFRICA
Student Information Session University CREST ADVISORY AFRICA
 
IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?IT Governance and Information Security – How do they map?
IT Governance and Information Security – How do they map?
 
Information Session University Egybyte.pptx
Information Session University Egybyte.pptxInformation Session University Egybyte.pptx
Information Session University Egybyte.pptx
 
Student Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptxStudent Information Session University Digital Encode.pptx
Student Information Session University Digital Encode.pptx
 
Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023Cybersecurity trends - What to expect in 2023
Cybersecurity trends - What to expect in 2023
 
ISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management systemISO 28000:2022 – Reduce risks and improve the security management system
ISO 28000:2022 – Reduce risks and improve the security management system
 

Dernier

DBMSArchitecture_QueryProcessingandOptimization.pdf
DBMSArchitecture_QueryProcessingandOptimization.pdfDBMSArchitecture_QueryProcessingandOptimization.pdf
DBMSArchitecture_QueryProcessingandOptimization.pdfChristalin Nelson
 
Decoding the Tweet _ Practical Criticism in the Age of Hashtag.pptx
Decoding the Tweet _ Practical Criticism in the Age of Hashtag.pptxDecoding the Tweet _ Practical Criticism in the Age of Hashtag.pptx
Decoding the Tweet _ Practical Criticism in the Age of Hashtag.pptxDhatriParmar
 
Man or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptx
Man or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptxMan or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptx
Man or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptxDhatriParmar
 
4.9.24 Social Capital and Social Exclusion.pptx
4.9.24 Social Capital and Social Exclusion.pptx4.9.24 Social Capital and Social Exclusion.pptx
4.9.24 Social Capital and Social Exclusion.pptxmary850239
 
How to Uninstall a Module in Odoo 17 Using Command Line
How to Uninstall a Module in Odoo 17 Using Command LineHow to Uninstall a Module in Odoo 17 Using Command Line
How to Uninstall a Module in Odoo 17 Using Command LineCeline George
 
ClimART Action | eTwinning Project
ClimART Action | eTwinning ProjectClimART Action | eTwinning Project
ClimART Action | eTwinning Projectjordimapav
 
Sulphonamides, mechanisms and their uses
Sulphonamides, mechanisms and their usesSulphonamides, mechanisms and their uses
Sulphonamides, mechanisms and their usesVijayaLaxmi84
 
ICS 2208 Lecture Slide Notes for Topic 6
ICS 2208 Lecture Slide Notes for Topic 6ICS 2208 Lecture Slide Notes for Topic 6
ICS 2208 Lecture Slide Notes for Topic 6Vanessa Camilleri
 
Q-Factor General Quiz-7th April 2024, Quiz Club NITW
Q-Factor General Quiz-7th April 2024, Quiz Club NITWQ-Factor General Quiz-7th April 2024, Quiz Club NITW
Q-Factor General Quiz-7th April 2024, Quiz Club NITWQuiz Club NITW
 
Employablity presentation and Future Career Plan.pptx
Employablity presentation and Future Career Plan.pptxEmployablity presentation and Future Career Plan.pptx
Employablity presentation and Future Career Plan.pptxryandux83rd
 
Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...
Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...
Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...HetalPathak10
 
Tree View Decoration Attribute in the Odoo 17
Tree View Decoration Attribute in the Odoo 17Tree View Decoration Attribute in the Odoo 17
Tree View Decoration Attribute in the Odoo 17Celine George
 
Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...
Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...
Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...Osopher
 
Congestive Cardiac Failure..presentation
Congestive Cardiac Failure..presentationCongestive Cardiac Failure..presentation
Congestive Cardiac Failure..presentationdeepaannamalai16
 
Scientific Writing :Research Discourse
Scientific Writing :Research DiscourseScientific Writing :Research Discourse
Scientific Writing :Research DiscourseAnita GoswamiGiri
 
Comparative Literature in India by Amiya dev.pptx
Comparative Literature in India by Amiya dev.pptxComparative Literature in India by Amiya dev.pptx
Comparative Literature in India by Amiya dev.pptxAvaniJani1
 
PART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFE
PART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFEPART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFE
PART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFEMISSRITIMABIOLOGYEXP
 
Mythology Quiz-4th April 2024, Quiz Club NITW
Mythology Quiz-4th April 2024, Quiz Club NITWMythology Quiz-4th April 2024, Quiz Club NITW
Mythology Quiz-4th April 2024, Quiz Club NITWQuiz Club NITW
 

Dernier (20)

DBMSArchitecture_QueryProcessingandOptimization.pdf
DBMSArchitecture_QueryProcessingandOptimization.pdfDBMSArchitecture_QueryProcessingandOptimization.pdf
DBMSArchitecture_QueryProcessingandOptimization.pdf
 
Decoding the Tweet _ Practical Criticism in the Age of Hashtag.pptx
Decoding the Tweet _ Practical Criticism in the Age of Hashtag.pptxDecoding the Tweet _ Practical Criticism in the Age of Hashtag.pptx
Decoding the Tweet _ Practical Criticism in the Age of Hashtag.pptx
 
Man or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptx
Man or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptxMan or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptx
Man or Manufactured_ Redefining Humanity Through Biopunk Narratives.pptx
 
4.9.24 Social Capital and Social Exclusion.pptx
4.9.24 Social Capital and Social Exclusion.pptx4.9.24 Social Capital and Social Exclusion.pptx
4.9.24 Social Capital and Social Exclusion.pptx
 
How to Uninstall a Module in Odoo 17 Using Command Line
How to Uninstall a Module in Odoo 17 Using Command LineHow to Uninstall a Module in Odoo 17 Using Command Line
How to Uninstall a Module in Odoo 17 Using Command Line
 
prashanth updated resume 2024 for Teaching Profession
prashanth updated resume 2024 for Teaching Professionprashanth updated resume 2024 for Teaching Profession
prashanth updated resume 2024 for Teaching Profession
 
ClimART Action | eTwinning Project
ClimART Action | eTwinning ProjectClimART Action | eTwinning Project
ClimART Action | eTwinning Project
 
Sulphonamides, mechanisms and their uses
Sulphonamides, mechanisms and their usesSulphonamides, mechanisms and their uses
Sulphonamides, mechanisms and their uses
 
ICS 2208 Lecture Slide Notes for Topic 6
ICS 2208 Lecture Slide Notes for Topic 6ICS 2208 Lecture Slide Notes for Topic 6
ICS 2208 Lecture Slide Notes for Topic 6
 
Q-Factor General Quiz-7th April 2024, Quiz Club NITW
Q-Factor General Quiz-7th April 2024, Quiz Club NITWQ-Factor General Quiz-7th April 2024, Quiz Club NITW
Q-Factor General Quiz-7th April 2024, Quiz Club NITW
 
Employablity presentation and Future Career Plan.pptx
Employablity presentation and Future Career Plan.pptxEmployablity presentation and Future Career Plan.pptx
Employablity presentation and Future Career Plan.pptx
 
Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...
Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...
Satirical Depths - A Study of Gabriel Okara's Poem - 'You Laughed and Laughed...
 
Tree View Decoration Attribute in the Odoo 17
Tree View Decoration Attribute in the Odoo 17Tree View Decoration Attribute in the Odoo 17
Tree View Decoration Attribute in the Odoo 17
 
Faculty Profile prashantha K EEE dept Sri Sairam college of Engineering
Faculty Profile prashantha K EEE dept Sri Sairam college of EngineeringFaculty Profile prashantha K EEE dept Sri Sairam college of Engineering
Faculty Profile prashantha K EEE dept Sri Sairam college of Engineering
 
Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...
Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...
Healthy Minds, Flourishing Lives: A Philosophical Approach to Mental Health a...
 
Congestive Cardiac Failure..presentation
Congestive Cardiac Failure..presentationCongestive Cardiac Failure..presentation
Congestive Cardiac Failure..presentation
 
Scientific Writing :Research Discourse
Scientific Writing :Research DiscourseScientific Writing :Research Discourse
Scientific Writing :Research Discourse
 
Comparative Literature in India by Amiya dev.pptx
Comparative Literature in India by Amiya dev.pptxComparative Literature in India by Amiya dev.pptx
Comparative Literature in India by Amiya dev.pptx
 
PART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFE
PART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFEPART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFE
PART 1 - CHAPTER 1 - CELL THE FUNDAMENTAL UNIT OF LIFE
 
Mythology Quiz-4th April 2024, Quiz Club NITW
Mythology Quiz-4th April 2024, Quiz Club NITWMythology Quiz-4th April 2024, Quiz Club NITW
Mythology Quiz-4th April 2024, Quiz Club NITW
 

PECB Webinar: ISO Internal Audits - A signpost to ISO compliance

  • 1. www.digitaljewels.net ISO Internal Audits- A signpost to ISO compliance. -OladapoOgundeji
  • 2. www.digitaljewels.net Profile : Oladapo Ogundeji.  Professional career extends over 18 years of experience focused on enhancing the strategic value of ICT in organisations through process re-engineering, strategic planning and project management for corporate objective & strategy that address business opportunities and issues.  A highly trained ICT Management Specialist & Consultant.  Masters In Information Technology ( M.I.T )  B. Sc. Electronics & Electrical Engineering. Past roles/positions  Head of User Support & Service Desk  IT Manager  Project Manager – Technical Services  Deputy Head – Network Systems  Project Leader  Project / System Engineer CTO/CISO - Digital Jewels Limited. A specialised Information Value Chain Consulting Firm offering specialised IT & PM Consulting & Capacity Building Services Contact: +2348099930209 ; dapoo@digitaljewels.net
  • 3. www.digitaljewels.net Qualifications...  COBIT 4.1/5.0 Foundation & Certified Trainer  Business Continuity Management : ISO22301/ BS25999 Certified MASTER & Accredited Trainer  ISO 27001 Certified Lead Implementer Certified & Trainer  Certified IT Business Manager (ITBMC)  PRINCE2 Foundation Certificate (Project Management Methodology).  ISACA : C I S A // C I S M // C G E I T (Exams Passed )  IT Service Management Foundation (I T I L)  RAD Datacommunication Specialist & Engineer.  HP (COMPAQ) : Accredited Compaq Technician (A C T) // Accredited Platform Specialist (A P S)  Microsoft Certified Professional: ( M C P) // Microsoft Certified Professional + Internet: ( M C P + I) // Microsoft Certified Professional + Internet: ( M C P + I) // Microsoft Certified System Engineer : ( M C S E) // Microsoft Sales Specialist : ( M S S)  Cisco Certified Network Associate ( C C N A ) // Cisco Certified Network Professional ( C C N P ) // Cisco Certified Design Associate ( C C D A ) // Cisco Certified Design Professional ( C C D P ) // Cisco Sales Expert (CSE )  BICC Brand-Rex (Structured Cabling) Certified Installer.  TOGAF 9.1 Certified [+ Foundation]  MoR (Management of Risk) Certified & Accredited Trainer
  • 4. www.digitaljewels.net WHY you should do ISO Internal Auditing? WHO should do ISO Internal Auditing? HOW you should do ISO Internal Auditing? WHEN you should do ISO Internal Auditing? AGENDA
  • 5. www.digitaljewels.net ISO International Standards ensure that products and services are safe, reliable and of good quality. For business, they are strategic tools that reduce costs by minimizing waste and errors and increasing productivity. Over 19000 ISO Standards….
  • 6. www.digitaljewels.net Quality system audit • An overall measurement of an organisation’s capability to meet the requirements of a standard Management audit • Checks to see if a business‘s strategic plan reflects its business objectives and has met the requirements of the intended market Process audit: • Focuses specifically on single processes to verify that they are capable of delivering the necessary outputs Procedural audit • Verification that documented practices are sufficient to ensure the implementation of approved policies and can control operations System audit • Ensures a business management system is sufficiently comprehensive to control all of the activities within that business Types of Audit
  • 7. www.digitaljewels.net Internal Audit • Performed within an organization to measure its strengths and weaknesses against its own procedures or methods and/or against external standards adopted by (voluntary) or imposed on (mandatory) the organization. • Conducted by auditors who are employed by the organization being audited.
  • 11. www.digitaljewels.net WHY you should do ISO Internal Auditing?
  • 12. www.digitaljewels.net Benefits of ISO Internal Audit To prepare the organization for ISO Certification Increased Performance- Allows the organization to continually improve their ISO certification Compliance- Conformity to the requirement of ISO Standard
  • 13. www.digitaljewels.net Preparedness For Certification One of the requirements of ISO "Auditable" standards is that you ‘shall conduct internal audits at planned intervals to determine whether the xxxxx management system conforms to the requirements of ISO xxxxx and to the requirements established by the organisation; and is effectively implemented and maintained.’
  • 15. www.digitaljewels.net ISO Certification Process 1. ISO implementation 2. Internal audit and review of ISO x (by the auditee) 3. Selection of a certification body 5. Stage 1 audit 4. Pre-assessment audit (optional) 7. Follow-up audit (if applicable) 8. Confirmation of registration 6. Stage 2 audit (on-site audit) BeforetheauditInitialaudit Followingthe audit 9. Continual improvement and surveillance audit
  • 17. www.digitaljewels.net Key Auditing Roles • ISO 19011, Clause 3.6 to 3.10 Organization or person requesting the audit Auditee Auditor Expert Audit team Audited organization Competent person conducting the audit Person who provides specific knowledge or expertise to the audit team One or more auditors conducting an audit, supported if needed by technical experts Client (Sponsor)
  • 18. www.digitaljewels.net • Certified ISO Auditors • Risk Managers • Compliance officers • An auditor should be objective and impartial. You cannot audit processes that you manage / control yourself. This means the organisations will need to have at least two internal auditors trained and available. However, due to lack of resources, or sometimes with the crossover of responsibilities that is common in small businesses, having two impartial auditors may not be possible. In this case, you may need to consider using an external resource. • Large organisations may use a team of auditors.
  • 19. www.digitaljewels.net Competences of Internal Auditors • ISO 19011, Clause 7 Personal behaviours Initial training Professional experience Auditor training Audit experience Knowledge and aptitudes for all management systems (7.2.2.1) Knowledge and aptitudes of each management system (7.2.2.3) (7.2.1) (7.2.3)
  • 20. www.digitaljewels.net Personal Behaviours • ISO 19011, Clause 7.2.1 5. Perceptive 9. Self reliant4. Observant 8. Decisive3. Diplomatic 7. Tenacious2. Open minded 10. Acting with fortitude 14. Team player 13. Culturally sensitive 12. Open to improvement 6. Adaptable1. Ethical 11. Well organized Personal behaviours
  • 21. www.digitaljewels.net Generic Knowledge and Competencies • ISO 19011, Clause 7.2.2.1 Evaluation and management of audit risks and those related to the operation of a management system Main processes present in all organizations (HR, Finance, Production, etc.) Prepare, conduct and close an audit, written and oral communication of audit conclusions Operation of a management system and interaction between systems Main laws and regulations, contract clauses Audit principles Audit risk Management system Organiza- tional process Legal aspects
  • 23. www.digitaljewels.net How you should do ISO Internal Auditing ?
  • 24. www.digitaljewels.net What Is an Audit? • Systematic, independent and documented process for obtaining audit evidence and evaluating it objectively to determine the extent to which the audit criteria are fulfilled • ISO 19011, Clause 3.1 Auditing means asking the auditee what he/she does, and checking to see if he/she does it
  • 25. www.digitaljewels.net Audit Best Practices Generally accepted audit standards International Federation of Accountants Information Systems Audit and Control Association ISO 19011:2010 Institute of internal auditors
  • 26. www.digitaljewels.net Audit Standard - Management System ISO 10011 Quality ISO 14010 series Environment ISO 19011:2002 ISO 19011:2010 Environment and Quality Management system Any management system
  • 27. www.digitaljewels.net ISO xxxx Internal Audits • The organization shall conduct ISMS internal audits at regular intervals • An audit program must be planned taking into account the importance of processes and scopes to audit, as well as previous audit results
  • 28. www.digitaljewels.net ISO 19011 - Audit guide for management systems 1. Scope 2. References to standards 3. Terms and definitions 4. Audit principles 5. Managing an audit program 6. Audit Activities 7. Competence and evaluation of auditors
  • 30. www.digitaljewels.net Audit Criteria Note: Audit criteria are used as a reference against which audit evidence is compared
  • 31. www.digitaljewels.net Types of Audits Second Party Audit Our organization audits our supplier Second Party Audit Our customer audits our organization Third Party Audit Our organization is audited by an independent organization Customer Supplier External Internal Organization First Party Audit Our organization audits its own systems
  • 32. www.digitaljewels.net Audit Principles • ISO 19011, Clause 4 Ethical conduct 4A Fair presentation 4B Due Professional care 4C Confidentiality 4D Independence 4E Evidence based approach 4F
  • 33. www.digitaljewels.net Evidence Based Approach • ISO 19011, Clause 4f Evaluated objectively Obtained objectively Information Evidence
  • 34. www.digitaljewels.net Type of Evidence 1. Physical 2. Mathematical 3. Confirmative 4. Technical 5. Analytical 6. Documentary 7. Verbal
  • 35. www.digitaljewels.net Sampling Why What How Because an auditor cannot verify everything Selection of a sample (probabilistic or non-probabilistic) Random sampling or judgement based
  • 36. www.digitaljewels.net Balance Between Evidence and Criteria Evidence Criteria
  • 37. www.digitaljewels.net Auditing Perspectives • Every audit situation should be examined from three perspectives: 1. Intent: “Have you said what you do?” Do the defined or documented processes adequately express your approach? 2. Implementation: “Have you done what you said?” Do the observed and recorded practices show conformance with the stated intent? Auditors often struggle with, or overlook, assessing how well the system has performed. 3. Effectiveness: “Have you done it well?” Do the results of the process indicate the desired outcomes have been achieved? ISO 9000 defines “effectiveness” as the extent to which planned activities are realized and planned results are achieved. In other words, to judge effectiveness you look not only at the conformance of a process, but also at its results compared to its objectives.
  • 38. www.digitaljewels.net When you should do ISO Internal Audit?
  • 39. www.digitaljewels.net • Internal quality audits are usually planned and initiated by the Audit unit or department. They will relate to the status and importance of the activities involved in a section or deliverable from your business. For large organizations, it would be quite normal for each department and section to be subject to at least three complete quality audits a year. • Internal Audits need to be scheduled at planned intervals to check that the quality system conforms to requirements and that the system is effective. ‘Requirements’ include the standard itself, as well as the company’s own requirements (i.e., its own procedures and policies). Audit Schedule
  • 40. www.digitaljewels.net • You don’t need to audit every process all at one time. The External Audit may be like this, but internal audits can be spread out with different processes audited at different times – a series of ‘mini-audits’. • The ISO standard does not set out a required audit frequency. Instead, it recommends that you consider how important the processes are, their risks, their prior history of problems, and also your quality objectives. With a series of ‘mini-audits’ you can set different audit frequencies for different processes. • If you are implementing a new management system, it is recommended that you should have audited all the processes identified in your management system at least once prior to the initial Certification Audit. Audit schedule...
  • 41. www.digitaljewels.net Plan: Define the audit programme Do: Implement the audit programme Check: Review the audit programme Act: Improve the audit programme Audit Program The Plan-Do-Check-Act model can be applied to the management of internal audits:
  • 42. www.digitaljewels.net Audit Critical Success Factors • Executive or Top Management commitment & buy-in: active & sustained • Early Audit Team, Programme and Charter setup • Appropriate Audit training for the Auditors and Awareness for other staffs • Prompt approval and implementation of recommendations from the Audit closeout plans. • Resource sufficiency & availability – Auditors – Auditees – Audit Tools – Logistics and Welfares. • A readiness to comply with the requirements of the ISO standard and maintain the ISO standards
  • 43. www.digitaljewels.net for your time & attention… A presentation by Oladapo OGUNDEJI. CTO / CISO, Digital Jewels Ltd dapoo@digitaljewels.net