Part4 A8

Question 1

2 definitions of risk

ISO 31000:2018
ISO 9000:2015

Answer 1

Effective on uncertainty on objectives

Effective of uncertainty

If something is certain there is not risk

Question 2

Risk can be _____ or ——-

Answer 2

Positive or negative

Positive 9001 is called opportunity

Question 3

Risk is also

Answer 3

Probability and consequences (severity)

Question 4

7 principles of audits which is the last principle

Answer 4

Risk based auditing

5H aid another section going into section body of knowledge

Question 5

When it comes to audit program management where does risk come into play?

Answer 5

How the audit program affects the organization risk level?

How the risk level affects the audit program (number and frequency of audits)?

Risk associated with the audit program

Question 6

How the audit program affects the organizations risk level?

Answer 6

Monitors the KCP to check if they are being performed as planned

IDs gaps from customer/contract requirements statutory regulatory requirements

Create the culture of conformance

Question 7

How the risk level affects the audit program?

Answer 7

The extent of an audit program should be based on the size and nature of the auditee as all as the functionality complexity the type of risks and opportunities and the level of maturity or the management system.

Question 8

Risk to audit program management

Answer 8

During planning - failure to set objective

Resources - time of training

Communication. Ineffective channels

Security and confidentiality rules

Ineffective program monitoring

Lack of cooperation from auditee

Not controlling audits costs