How ISO 45001:2018 has Defined Internal Audits?

Are you looking for ISO 45001 certification? Then you should understand the importance of an internal auditing program for gaining the certification. This article will help you explore how ISO 45001 standard has defined internal audits.

ISO 45001:2018, the Occupational Health and Safety Management System were published in 2018. This standard has devoted a particular section to internal auditing. Section 9.2 of this standard has defined the importance of internal audits. In this article, we are going to provide you with a brief overview of section 9.2 so that you can develop a clear understanding of ISO 45001 internal audit program.

This section states that an organization should perform internal audits at regular intervals to determine whether the Occupational Health and Safety Management System (OH&S). The main purpose of this auditing program is to confirm an organization’s compliance with ISO 45001 Standard. As the basic requirement of ISO 45001 is the establishment of an Occupational Health and Safety Management System, this system should meet the OH&S policy and objectives. An internal auditing program enables an organization to ensure that its OH&S policy is properly implemented and maintained.

According to this section, an organization needs to plan, implement, and maintain an audit program and this program should find out:

• The frequency of performing the internal auditing program

• Who is responsible for managing the audits? 

• A brief account of the meetings between a) the management and the audit team; and b) the management and the general workforce

• Planning of the audit program and implementation process

• Reporting format

The internal auditing program should be planned considering the importance of process and outcomes of the auditing results. You need to make planning based on the risk management approach of the organization. Well, this point is relevant to ISO 17025 internal audits and similar other audits as well.

First, the internal audits should cover areas and activities within the scopes of an Occupational Health and Safety Management System. It should examine whether the system is meeting every requirement of the standard or not.

 

An internal auditing program should review the scope of an organization’s occupational health and safety management system. It is also important to ensure that the organization’s scope is aligned with the scope and requirements of ISO 45001 Standard. Finding a gap would act as a burning warning. It should be resolved as soon as possible.

The internal auditing team should have sound knowledge of ISO 45001 standard. They should also study the business nature and policies. This way, they will be able to measure the performance of the OH&S system against the objectives and requirements of the standard.

Some organizations overlook the previous audit reports; once the auditing program is over, they do not care about the audit reports. This attitude may drag them in trouble because previous audit reports might be needed for the next ISO 45001 internal audits. How? When an internal auditing program is done but the findings remain the same, it may take worse form in the near future. Therefore, while performing an internal auditing program, it is important to recheck the previous audit reports.

Now you can assume how losing the previous audit reports can be threatening to you. Some professional auditing service providers keep a copy of their client’s internal audit report. If you hire them for performing your internal auditing, you may get a copy from them in the event of losing your copy.

Some organizations prefer their internal resources for performing the internal audit while some other organizations depend on professional auditing services. In both cases, it is important to make sure that the audit team has proper knowledge of the standard and business objectives.

This is perhaps the most important factors that an organization needs to consider. If internal resources are going to perform the auditing, then they should belong to other departments so that they can play their roles without any biased perspectives. Additionally, they should be provided with proper training. Hiring professionals for performing the auditing programs save time and make the auditing perfect.

Damon Anderson is currently working with a reputed ISO consulting agency and he has been serving as an ISO intern auditor over the years. His blogs are a powerhouse of knowledge. Most of these blogs are based on ISO 45001 internal audits, ISO 9001 internal audits, ISO 27001 internal audits, ISO 17025 internal audits, etc.

Report this Page