Increasingly more organisations incorporate various management systems, in the areas of quality (ISO 9001) the environment (ISO 14001), health and safety (ISO 45001), IT services (ISO/IEC 20000) and information security (ISO/IEC 27001). The aim is to combine these systems' audits to the extent possible.
The new edition of the standard
UNE-EN ISO 19011 Guidelines for auditing management systems, has recently been published in order to help organisations to enhance and facilitate the integration of their management systems. Furthermore, by providing a single audit on companies' systems, this standard aims to perfect audit processes, reduce duplicated efforts and curtail disruption to work units being audited.
This standard provides guidance on carrying out internal or external audits on management systems, on how to manage an audit program, and on how to plan and carry out audits on management systems. Similarly, it assesses the competence of the auditing team. Fully applying these guidelines provides organisations with the requirements for making an audit a vital tool for achieving their goals.
The users for whom this standard is intended include auditors, audit team leaders, audit program managers, organisations implementing management systems and organisations that are contractually bound to carry out management system audits.