quality and environmental auditing risk based

7/28/2019 Quality and Environmental Auditing Risk Based

1/18

Quality & Environmental AuditingPanel Discussion

2008 Energy & Environmental Conference

Presented by:

Ben Marguglio

BW (Ben) Marguglio, LLC

PO Box 8Cold Spring, NY 10516

845-265-0123

[email protected]

www.HighTechnologySeminars.com


2/18

Objectives

Planning options regarding:

Audit Objective

Audit Scope

Audit Data Collection


3/18

Audit Objective

Compliance-basedEffectiveness-based


4/18

Compliance-based

To determine whether or not the requirementsare being met

Effectiveness-based

To determine whether or not requirementshave value and are being met with safety,

reliability / consistency and efficiency


5/18

Compliance-based

and

Effectiveness-based

are terms applicableonly to the

audit objective


6/18

Audit Scope

Risk-basedNon risk-based


7/18

Risk-based

The scope addresses activities

commensurate with their risk

Non-risk-based

The scope addresses activities

regardless of risk considerations


8/18

Risk

Level of Adverse Effect of OccurrenceX

Probability of Re-occurrence

withConsideration for Possible

Mitigation of the Effect


9/18

High Level Risks

Fatality

Hospitalization

Noncompliance with law

Reportability to outside entityDiscomfort with stakeholder

Loss of a pre-stipulated mission

Loss of $ above a pre-stipulated amount


10/18

Risk Identification Methods

Probabilistic Risk (Safety) AnalysisOperating experience

Expert panels

Identification of the success factors


11/18

Risk-based

and

Non-risk-based

are terms applicableonly to the

audit scope.


12/18

Audit Data CollectionWHAT Data to Collect

Determine the success factors for the process

Determine the standards for the success factors

Determine the process steps that affect thesuccess factors

--------------------------------

Plan to collect data about these process steps


13/18

Audit Data Collection

Program-based / System-basedPerformance-based

Results-based


14/18

Program-based / System-based

Evaluate:

Policies

Administrative Procedures

Technical ProceduresProject Plans

Given a significant inadequacy of a

documented policy, procedure or plan, thevalue of auditing its implementation isquestionable


15/18

Program-based / System-based(Contd)

This data collection method / source mustbe used to meet either the compliance-based oreffectiveness-based objective.

------------------------------------------------------------------------------------------------------------

For either objective, this can NOT be theonly data collection method / source used todemonstrate compliance or effectiveness.


16/18

Performance-based

Real time, direct observation of procedureimplementation

OR

Analysis of absolute values and trends ofperformance indicators

(PIs speak for themselves)


17/18

Performance-based (Contd)

Real-time, direct observation requires moreresources than records assessment.

Real-time, direct observation provides more

insight.


18/18

Results-based

Analysis of absolute values and trends of

performance indicators (PIs)(PIs speak for themselves)

OR

Selection of an unacceptable event(s) andassessment of the action taken to:

Identify causal factors

Correct root and contributing causes

quality and environmental auditing risk based

Documents