Академический Документы
Профессиональный Документы
Культура Документы
1
ISO/IEC 17021:2006
z Developed by ISO/CASCO Working Group 21
z Co-conveners
– Alister Dalrymple, France-AFNOR
z AFAQ, a management system certification body
– Randy Dougherty, US-ANSI
z ANAB, an accreditation body for management system
certification bodies
2
ISO/IEC 17021:2006
Intent of WG21 for 17021
z To replace Guides 62 and 66
z To be applicable to any management systems
z To incorporate IAF guidance
z To incorporate latest technology
z To be consistent with the common elements
(WG23)
z Principles-based performance requirements
(where possible)
3
ISO/IEC 17021:2006
ISO/IEC 17021:2006
Conformity assessment—Requirements for
bodies providing audit and certification of
management systems
4
ISO/IEC 17021:2006
z Contents
– 1 Scope
– 2 Normative references
– 3 Terms and definitions
– 4 Principles
– 5 General requirements
– 6 Structural requirements
– 7 Resource requirements
– 8 Information requirements
– 9 Process requirements
– 10 Management system requirements for CBs 5
ISO/IEC 17021:2006
What is new?
– regarding the standard?
6
ISO/IEC 17021:2006
What is new?
– regarding CB and audit team competence?
7
ISO/IEC 17021:2006
What is new?
– regarding the certification process?
9
ISO/IEC 17021:2006
What is new?
– regarding impartiality?
11
ISO/IEC 17021:2006
12
ISO/IEC 17021:2006 and IAF
– In November 2006, IAF resolved that the that
the transition to ISO/IEC 17021:2006 be
effective 24 months after publication
z based on the publication date of 15 September 2006,
the deadline is 15 September 2008
z the annexes to IAF GD2 and IAF GD6 should
continue to be applied until superseded
z NOT to develop any IAF guidance on the
application of ISO/IEC 17021
13
ISO/IEC 17021:2006 and IAF
z InMarch 2007, established seven IAF TC
TFs to review GD2 and GD6 annexes:
– Scopes of Accreditation for QMS
– Duration of Audits to ISO 9001:2000
– Duration of Audits to ISO 14001:2004
– Certification of Multiple Sites based on Sampling
– Transfer of Certification
– Advanced Surveillance and Recertification Procedures
(ASRP)
– Computer Assisted Audit Techniques (CAAT)
14
ISO/IEC 17021:2006 and IAF
z In May 2007, published IAF GD 8:2007
Informative Guidance on the Transition to
ISO/IEC 17021 Accreditation from ISO/IEC
Guide 62 and ISO/IEC Guide 66
– ABs…date for not accepting applications…to 62 or 66
– Verify implementation during normal AB surveillance
– Nonconformities to be resolved prior to transition
– CBs advised to make a transition plan and seek
agreement of their AB
– CBs advised to gain agreement with their AB for any
phased approach
15
ISO/IEC 17021:2006 and IAF
z IAF MD 1:2007 Certification of Multiple Sites
Based on Sampling
– Published 2007/11/20, Effective 2008/09/15
z IAF MD 2:2007 Transfer of Accredited
Certification of Management Systems
– Published 2007/12/14, Effective 2008/09/15
z IAF MD 3:2008 Advanced Surveillance and
Recertification Procedures (ASRP)
– Published 2008/02/01, Effective 2008/09/15
16
ISO/IEC 17021:2006—
IAF and Competence
z 1 March 2008 Training Workshop Sponsored
by IAF
z Presented by Tim Inman & Randy Dougherty
z Purpose—To promote consistent
understanding and application of ISO/IEC
17021:2006 by accreditation body personnel,
including accreditation assessors, and by
certification body personnel.
17
ISO/IEC 17021:2006—
IAF and Competence
z The publication of ISO 19011:2002 initiated the
change from qualifications to competence
– 3.14 competence — demonstrated personal
attributes and demonstrated ability to apply
knowledge and skills (ISO 19011)
18
ISO/IEC 17021:2006—
IAF and Competence
z ISO 19011:2002, Table 1 and 7.4
reinforce qualifications—education, work
experience, auditor training and audit
experience.
– Or do they?
z “…education sufficient to acquire the knowledge
and skills…(7.4.1a)
z “…work experience that contributes to the
development of the knowledge and
skills…(7.1.4b)
19
ISO/IEC 17021:2006—
IAF and Competence
z IAF guidance introduced some of the current
concepts of competence as currently required in
ISO/IEC 17021:2006—for EMS first, and then for
QMS
– Expectation of a CB to determine types of management
systems (e.g, the standards) and the technical areas a CB is
competent to operate in (eg. GD2 – G.2.2.2 & G.2.2.3)
z Note, as there is no standardization or harmonization of
‘technical areas’ for any standard, this remains a source of
inconsistency.
– Expectation to determine the competence needed by an
audit team based on needs of a specific client
– Assigning a team collectively possessing the necessary
competence
20
ISO/IEC 17021:2006—
IAF and Competence
z ISO/IEC 17021:2006 requirements include
the concepts from IAF guidance, but also
references ISO 19011:2002
– Reinforces the concept of competence rather than
qualifications
z Qualifications can provide information on knowledge and
skills that is useful in the determination of competence
– Each CB is to specify its processes and
requirements for competence
z Promotes ownership and encourages innovation
21
ISO/IEC 17021 Part 2
z In response to demand from
stakeholders, especially industry end-
users of ISO 9001 accredited
certification, ISO/CASCO WG21 is
developing part 2 of 17021 to replace
references to ISO 19011, and to specify
requirements for competence
22
ISO/IEC 17021 Part 2
z To replace references to ISO 19011 guidelines
with requirements applicable to any third
party MS audit
– Audit process
– CB management of competence, including the
competence of audit teams
z Template for specific auditing requirements
that can be applied to other ISO TCs
– TC 176 for ISO 9001, TC 207 for ISO 14001, TC 34
for ISO 22000, etc.
23
ISO/IEC Generic Requirements for 3rd Party
17021 Auditing & Management of Competence
Part 2 (based on 19011)
QMS Competent EMS Competent FSMS Competent ISMS Competent xMS Competent
Body, e.g. Body, e.g. Body, e.g. Body e.g.
Body
ISO/TC176 ISO/TC207 ISO/TC34 ISO/TC178
QMS Specific EMS Specific FSMS Specific ISMS Specific xMS Specific
Competence Competence Competence Competence Competence
Requirements Requirements Requirements Requirements Requirements
25
ISO/IEC 17021 Part 2
z 7 Management of competence
z 7.1 Competence criteria determination process
– “…CB shall have a documented process for
determining competence criteria…for each type of
management system, for each technical area, and for
each function…”
– “…the output of the process shall be the required
personal attributes, knowledge and skills necessary to
effectively perform…”
26
ISO/IEC 17021 Part 2
z 7 Management of competence
z 7.3 Evaluation processes
– “…CB shall have process for initial competence
evaluation, and on-going monitoring of continuing
competence and performance…”
– “…number of evaluation methods that may be used to
evaluate the knowledge, skills and attributes…”
– “…CB shall validate that its processes, including the
evaluation methods that is uses, are effective…”
27