I recently discovered there’s a way to do internal audits that takes (almost) no time at all.  I got an invitation to a webinar Freshening Up Your Internal Audit Program featuring a dude who has been around the ISO 9001 certification scene for many decades.  (Aha! I thought.  I’m finally going to learn the secret from a real veteran of internal auditing).

When we got to the secret, I was amazed by the completely different approach to auditing.  This was more than a freshen up, it was radical surgery.  There are no horizontal, vertical, process, observational, or outcome audits: they have all been excised.

This quality manager produces a detailed Compliance Matrix (it’s like a gap analysis with much more detail) and updates it every year (you can get a copy if you make it to the end of the webinar).  And the Compliance Matrix is it.  There is usually quite a vigorous discussion with the ISO auditor when they come, but he manages to get it across the line.

Now I wasn’t quite ready to adopt this approach whole-heartedly, but there were some great lessons in the webinar that I’d like to share with you:
There is no right way to do internal audits
The ”tell me, show me” or process method used by certification and accreditation bodies is not mandatory.  Many of us are married to the belief that observational process audits are the only “proper” kind of audit (you know, the ones we learn about in the NATA/SAI/Lloyds internal audits courses). I know I was for many years and I love auditing that way because it suits my curious nature and visual learning style.

However, if you follow the requirements trail for internal audits, it leads you back to […]