The stage 2 ISO audit is your main assessment that will give you certification (assuming you pass).

Stage 2 Audit objectives

  • Determination of the extent of conformity of the Clients management system and evaluation of the capability of the management system to ensure compliance with statutory, regulatory and contractual requirements. Evaluation of the effectiveness of the management system in meeting its specified objectives and the identification of areas of potential improvement of the management system.

Stage 2 Audit Criteria

  • To evaluate the implementation, including effectiveness, of the client’s management system and shall include information and evidence about conformity to all requirements of the applicable standard.  Performance monitoring, measuring, reporting and review against key performance objectives and targets. Details on the client’s management system and performance with regards to legal compliance. Operation control of the clients processes. Internal audits and management review.  Management responsibility for the client’s policies. Links between the normative requirements, policy, performance objectives and targets, any applicable legal requirements, responsibilities, competence of personnel, operations, procedures, performance data and intern audit findings and conclusions.

The purpose of the stage 2 audit is to evaluate the implementation, including effectiveness, of the client’s management system. The stage 2 audit shall take place the site(s) of the client. It shall include at least the following:

  • Information and evidence about conformity to all requirements of the applicable management system standard or normative document;
  • Performance monitoring, measuring, reporting and reviewing against key performance objectives and targets (consistent with the expectations in the applicable management system standard or other normative document);
  • The client’s management system and performance as regards legal compliance;
  • The client’s management system ability and its performance regarding meeting of applicable statutory, regulatory and contractual requirements;
  • Operational control of the client’s processes;
  • Internal auditing and management review;
  • Management responsibility for the client’s policies;
  • Links between the normative requirements, policy, performance objectives and targets (consistent with the expectations in the applicable management system standard or other normative document), any applicable legal requirements, responsibilities, competence of personnel, operations, procedures, performance data and internal audit findings and conclusions.