quality and environmental auditing risk based
TRANSCRIPT
-
7/28/2019 Quality and Environmental Auditing Risk Based
1/18
Quality & Environmental AuditingPanel Discussion
2008 Energy & Environmental Conference
Presented by:
Ben Marguglio
BW (Ben) Marguglio, LLC
PO Box 8Cold Spring, NY 10516
845-265-0123
www.HighTechnologySeminars.com
-
7/28/2019 Quality and Environmental Auditing Risk Based
2/18
Objectives
Planning options regarding:
Audit Objective
Audit Scope
Audit Data Collection
-
7/28/2019 Quality and Environmental Auditing Risk Based
3/18
Audit Objective
Compliance-basedEffectiveness-based
-
7/28/2019 Quality and Environmental Auditing Risk Based
4/18
Compliance-based
To determine whether or not the requirementsare being met
Effectiveness-based
To determine whether or not requirementshave value and are being met with safety,
reliability / consistency and efficiency
-
7/28/2019 Quality and Environmental Auditing Risk Based
5/18
Compliance-based
and
Effectiveness-based
are terms applicableonly to the
audit objective
-
7/28/2019 Quality and Environmental Auditing Risk Based
6/18
Audit Scope
Risk-basedNon risk-based
-
7/28/2019 Quality and Environmental Auditing Risk Based
7/18
Risk-based
The scope addresses activities
commensurate with their risk
Non-risk-based
The scope addresses activities
regardless of risk considerations
-
7/28/2019 Quality and Environmental Auditing Risk Based
8/18
Risk
Level of Adverse Effect of OccurrenceX
Probability of Re-occurrence
withConsideration for Possible
Mitigation of the Effect
-
7/28/2019 Quality and Environmental Auditing Risk Based
9/18
High Level Risks
Fatality
Hospitalization
Noncompliance with law
Reportability to outside entityDiscomfort with stakeholder
Loss of a pre-stipulated mission
Loss of $ above a pre-stipulated amount
-
7/28/2019 Quality and Environmental Auditing Risk Based
10/18
Risk Identification Methods
Probabilistic Risk (Safety) AnalysisOperating experience
Expert panels
Identification of the success factors
-
7/28/2019 Quality and Environmental Auditing Risk Based
11/18
Risk-based
and
Non-risk-based
are terms applicableonly to the
audit scope.
-
7/28/2019 Quality and Environmental Auditing Risk Based
12/18
Audit Data CollectionWHAT Data to Collect
Determine the success factors for the process
Determine the standards for the success factors
Determine the process steps that affect thesuccess factors
--------------------------------
Plan to collect data about these process steps
-
7/28/2019 Quality and Environmental Auditing Risk Based
13/18
Audit Data Collection
Program-based / System-basedPerformance-based
Results-based
-
7/28/2019 Quality and Environmental Auditing Risk Based
14/18
Program-based / System-based
Evaluate:
Policies
Administrative Procedures
Technical ProceduresProject Plans
Given a significant inadequacy of a
documented policy, procedure or plan, thevalue of auditing its implementation isquestionable
-
7/28/2019 Quality and Environmental Auditing Risk Based
15/18
Program-based / System-based(Contd)
This data collection method / source mustbe used to meet either the compliance-based oreffectiveness-based objective.
------------------------------------------------------------------------------------------------------------
For either objective, this can NOT be theonly data collection method / source used todemonstrate compliance or effectiveness.
-
7/28/2019 Quality and Environmental Auditing Risk Based
16/18
Performance-based
Real time, direct observation of procedureimplementation
OR
Analysis of absolute values and trends ofperformance indicators
(PIs speak for themselves)
-
7/28/2019 Quality and Environmental Auditing Risk Based
17/18
Performance-based (Contd)
Real-time, direct observation requires moreresources than records assessment.
Real-time, direct observation provides more
insight.
-
7/28/2019 Quality and Environmental Auditing Risk Based
18/18
Results-based
Analysis of absolute values and trends of
performance indicators (PIs)(PIs speak for themselves)
OR
Selection of an unacceptable event(s) andassessment of the action taken to:
Identify causal factors
Correct root and contributing causes