Skip to main content

Importance of Internal Audit.

 Before we start with internal audit we should understand, what is audit?

Audit is a process of examination or revalidation of the work done other than the core owner of the that area or work done by the person.

Audit is basically done by external agencies or internal agency. External agencies are customers, government agencies or third party agencies.

Customers do Audit to check how well their product is manufactured, and all compliance are followed during production of their product that are mutually agreed in the contract. Customers also do initial audit to check whether company is able to give them as per desired requirement in terms of quality and quality and some other special requirements.

Government agencies do Audit to check is company is following legal compliance that are required to run the company. Tax, safety of employees, safety of women, control of environment are some examples of leagal requirements.

Third party agencies are hired by the customers, government or even by company itself to check all work in the company is running as per process, they are hired specially to find out that if there are any fraud is going on in the company specially in terms of finance, legal and quality. 

Apart from above external audit we have internal audit also they are just like practice test before any external exam. Internal audit helps company to prepare for external audit. It is said that if internal audit is strictly done then there will be less observation during external audit. 


What is Internal Audit?

Internal audits are audit done by members of the company to ensure that process is running as per the define system. Internal audit is self examination of the company performance on different fields, like legal, finance, system, process, etc.

Internal audit is done by the internal auditors who are trained as the per the requirement of the audit. There is clause in ISO certified that it is compulsory to due internal audit if company is having any ISO certification. ISO19001 tell about internal audit and how to perform Internal audit.
According to IATF16949 the organization shall have a documented process to verify that internal auditors are competent, taking into account any customer specific requirement it.
For a good internal audit it is important that the internal auditor is competent enough to demonstrate the audit and understand the core tools related to the audit and technical knowledge about the the process for which audit is conducted.
Organisation can decide the number of audit to be conducted in year. Minimum one audit in a year should be conducted by the organisation. If organisation is weak in any of the audits then number of internet can be increase. Organisation can plan even one internal audit in a quarter.

Although Internal Audit is time consuming and extra investment but Internal Audit is essential to find week points in the organisation. Most of the organization have separate department which is responsible to conduct internal audit which is directly report to the CEO or the head of the organization. 


Things to be remember by Internal Auditor:

Internal auditor is a employee of the organisation which conduct audit internally and report about audit to the the seniors of the audit department or directly to head of the function. Internal auditor should be well aware about rules and regulations of the audit and fulfill all the compliances of the internal audit.

It is important for internal auditor to be unbiased while conducting audit and very fair enough in observations, which help organisation to improve the weaknesses and prepare for the external audit. Internal auditor should give the clear picture of the organisation to the seniors of the audit departments. Internal Audit should be conducted similar to the external audit.

Internal Auditor should plan the audit and give the schedule of the audit to the concerned departments and head of the function. In the  schedule of the audit Internal auditor should give proper detail of time, duration and venue. Internal auditor should cover all the departments of the organisation and very fair in doing the audit.

Process of Internal Audit:

For the success of internal audit it is important that internal audit should conduct in a systematic way.

Following are the steps to conduct an internal audit:

  1. Planning
  2. Auditing
  3. Reporting
  4. Follow up or Review.

1. Planning:

Success of any process is well planning of doing the work. It is important that Internal auditor should well plan the internal audit schedule and circulate well in advance so that HOD can prepare for their audits and well plan their work. In internal audit schedule the internal auditor should also define the scope and objective of the audit. He / She must follow the time lines for each audit. If multiple department is doing audit he must define time schedule for each department and also define venue of the audit.  Before conducting audit he must well aware about the last NC (non conformity) of the particular demand. Do some home work related to audit before doing audit. He must also read the clauses related to the audit and must aware about new addition or changes in rule and regulation of related audit.

2. Auditing:

Main work of any auditing is auditing it is also called as fieldwork. In auditing Internal auditor or team should follow audit plan done in planning phase, work accordingly to the define schedule. It include from opening meeting to closing meeting. In auditing the auditor questions or ask auditee about the process. It is important for an auditor that auditee must understand clearly what auditor want to say. Auditor start with control plan or process of the auditee and check samples for related documents and verify the process that auditee is doing what is written in process of the company. He can also check product quality also if required. Auditor must check KPI (Key Performance Indicator) or object and target of the auditee and if there is any gap, then can ask for the action plan or root causes for the gap generated in the system. He also check good work done by the auditor.

3. Reporting:

Reporting is an important part of any audit, so it should be written very clear and understandable language. Some auditor start writing report during audit only and some prefer to write after physical audit is complete. It is recommended that during audit, auditor should roughly written during audit and write complete report after completing auditing. In report good points should also mention and observation should be written with proper clause number. In report it is important that proper finding should be written with proper document number and shift, time during auditing of the process, so that reporting should be clear to both auditor and auditee.

4. Follow up or Review:

Last part of any audit is to review the progress of improvement or closure of non conformity. It is important part as in this phase only improvement in process or system is done and crush of the audit is come in this session only but most of the internal auditor neglect this phase. It is important for internal auditor to check whether auditee is working on finding, if there is any issue to fill the finding internal auditor should suggest what to do and how to do to get the work done correctly. Once the work is done, it is also important to follow up work after some time, so that the consistency of work is maintain and result çan be visible for longer periods of time.

Labels:

Comments

Post a Comment

Popular Articles

What is FMEA

 FMEA is stand for Failure Mode and Effects Analysis. FMEA is a process analysis tool. FMEA is used to identify all the failures or potential failures that may occur in a process, before any physical error occur in the process and analysis consequences due to failures. It is one of the core tool of IATF16949 . Other core tool of IATF16949 are: APQP: Advance Product Quality Planning PPAP: Production Part Approval Planning MSA: Measurement System Analysis SPC : Statistical Process Control Type of FMEA: There are two type of FMEA: DFMEA (Design Failure Mode and Effects Analysis) PFMEA (Process Failure Mode and Effects Analysis) 1. DFMEA (Design Failure Mode and Effects Analysis): DFMEA is a methodology which is used to analyse the risk or failure during new product or process development, it also used during any change or modification in product or process. 2. PFMEA (Process Failure Mode and Effects Analysis) PFMEA is a methodology which is used to analyse risk or failure during manufact
1 comment
Read more

What is PPAP?

  PPAP is stand for Production Part Approval Proces . PPAP is standard process in automotive and aerospace industries. It is basically written contact between supplier and customer about a product or process through which product will manufacture. It is output of APQP. Intresting thing about pronunciation of PPAP is that is not pronounced as P P A P, where as it is pronounce as P-PAP .   It is one of the core tool of IATF16949 . Other core tool of IATF16949 are: APQP: Advance Product Quality Planning FMEA: Failure Mode and Effects Analysis SPC : Statistical Process Control MSA : Measurement Systems Analysis You can read about above topic by clicking on them. PPAP is very important for supplier and manufacturer, to understand the requirement of customer and also helpful to the customer to know, that, how well product will produce through it's lifetime by manufacturer. PPAP is a risk identification and mitigation process used to provide evident to the customer that there is a relia
2 comments
Read more

What is APQP ?

 APQP is stand for Advance product Quality planning. APQP is a process that is used satisfy product quantity as per customer requirements. APQP is not just a process but it is set of process or framework of process that are used while developing new product or new process. By APQP we ensure that new product or process should well established before product reach to the customer. APQP (Advance Product Quality Planning) is one of the five basic core tool of IATF 16959 . Other four core tools of IATF16949 are: PPAP : Production Part Approval Proces FMEA: Failure Mode and Effects Analysis SPC : Statistical Process Control MSA: Measurement Systems Analysis  Soon we will be writing about these four core tools. In this article we will concentrate on APQP only. There two aims of APQP   Firstly , To increase communication between different departments of the company specially R&D, production, logistics, sales, etc. Most of the work what R&D is doing, is not aware to other departments,
2 comments
Read more

What is SPC?

SPC is stand for S tatistical Process Control.   SPC is a tool used for continuous improvement. SPC used to maintain quality by monitoring the process and well detect the possible occurrence of the error before it actually happened and we'll detective. It is one of the core tool of IATF16949 . Other core tool of IATF16949 are: APQP: Advance Product Quality Planning PPAP: Production Part Approval Planning MSA: Measurement System Analysis FMEA : Failure Mode and Effective Analysis   The SPC process is better than other quality tools because it is based on detection and prevention rather than the correction of problems after they have occurred, it means it help us to detect the fault or give indication before error actually occur, which means we can correct the process or the job size before any error occur in our job. It is real time process, so machine operator can easily identify the trend of the job and take corrective action before generation of any NG product. SPC is not only u
1 comment
Read more

What is LPA?

  LPA is a stand for Layer Process Audit . LPA is Quality technique that focus on how well the process is working or following by the manufacturing Industry at the shop floor. LPA is not just an fault finding audit but it is a process improvement audit as it is audit where changes (Observation Closure) can be done during audit only. By LPA, rejection and other waste is reduced and  work towards continual improvement.  It is one of the important part of IATF16949 (Clause no. 9.2.2.3) and OEM customers (CSR) requirement.  LPA is not only confined with Quality department, rather it include all departments and all level of management and supervisor. Supervisor do LPA at their own function and frequency of doing may be weekly. Middle management do LPA at their function and other functions also but for them frequency of doing audit may be monthly. Senior management do LPA to any one function and frequency is quarterly.  LPA in one of the Audit where supervisor and operator learn about proce
Post a Comment
Read more