There still seem to be considerable discrepancies when it comes to auditing a management system using the process approach. And now, with the new requirement of risk-based thinking it has become even more confusing. How do you assess if an organization or a manager consider risk without a specific requirement for risk analysis? Risk-based thinking seems new, but it’s not. But how do you audit it?
This presentation will discuss ways to assess if an organization has integrated risk-based thinking into its processes. There will also be suggested audit tools to assess management systems systematically using the process approach to reach conclusions that will add value to auditees.