19011 Section 5: Managing an Audit Programme Flashcards

1
Q

5.1

A

General

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

5.2

A

Establishing audit programme objectives

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

5.3

A

Determining and evaluating audit programme risks and opportunities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

5.4

A

establishing the audit programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

5.5

A

Implementing the Audit Programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

5.6

A

Monitoring Audit Programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

5.7

A

Reviewing and Improving Audit Programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

5.1. In order to understand the context of the auditee, the audit programme should take into account the auditee’s:

A
  1. organizational objectives;
  2. relevant external and internal issues;
  3. the needs and expectations of relevant interested parties;
  4. information security and confidentiality requirements.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

5.1 The audit programme should include information and identify resources to enable the audits to be conducted effectively and efficiently within the specified time frames. The information should include:

A

a) objectives for the audit programme;
b) risks and opportunities associated with the audit programme (see 5.3) and the actions to address them;
c) scope (extent, boundaries, locations) of each audit within the audit programme;
d) schedule (number/duration/frequency) of the audits;
e) audit types, such as internal or external;
f) audit criteria;
g) audit methods to be employed;
h) criteria for selecting audit team members;
i) relevant documented information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

5.2 objectives can be based on consideration of the following:

A

a) needs and expectations of relevant interested parties, both external and internal;
b) characteristics of and requirements for processes, products, services and projects, and any changes to them;
c) management system requirements;
d) need for evaluation of external providers;
e) auditee’s level of performance and level of maturity of the management system(s), as reflected in relevant performance indicators (e.g. KPIs), the occurrence of nonconformities or incidents or complaints from interested parties;
f) identified risks and opportunities to the auditee;
g) results of previous audits.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

5.2 Examples of audit programme objectives can include the following:

A

1) identify opportunities for the improvement of a management system and its performance;
2) evaluate the capability of the auditee to determine its context;
3) evaluate the capability of the auditee to determine risks and opportunities and to
identify and implement effective actions to address them;
4) conform to all relevant requirements, e.g. statutory and regulatory requirements,
compliance commitments, requirements for certification to a management system
standard;
5) obtain and maintain confidence in the capability of an external provider;
6) determine the continuing suitability, adequacy and effectiveness of the management system;
7) evaluate the compatibility and alignment of the management system objectives with the strategic direction of the organization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

5.4.1

A

5.4.1 Roles and responsibilities of the individual(s) managing the audit programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

5.4.2

A

5.4.2 Competence of individual(s) managing audit programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

5.4.3

A

5.4.3 Establishing extent of audit programme

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

5.4.4

A

5.4.4 Determining audit programme resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

5.5.1

A

5.5.1 General

17
Q

5.5.2

A

5.5.2 Defining the objectives, scope and criteria for an individual audit

18
Q

5.5.3

A

5.5.3 Selecting and determining audit methods

19
Q

5.5.4

A

5.5.4 Selecting audit team members

20
Q

5.5.5

A

5.5.5 Assigning responsibility for an individual audit to the audit team leader

21
Q

5.5.6

A

5.5.6 Managing audit programme results

22
Q

5.5.7

A

5.5.7 Managing and maintaining audit programme records