The 12-step ISO Certification process is explained. Once your ISO Management System (ISO 9001, ISO 13485, ISO 27001, etc.) has been implemented, what are the next steps to achieving certification? Where does the Certification Body fit in
Even though we're not a certification body, the deGRANDSON Global business primarily provides ISO training for auditors, so we'd like to give you a quick overview of how to get ISO certification for your quality or other management system.
To obtain an ISO Certificate for your organization, you will need to engage the services of a Certification Body and go through an ISO Certification Process.
Our infographic - click image to get a copy - will take you through that process and answer some frequently asked questions, including:
To begin answering these questions, we have prepared a flowchart taking you through the steps involved in the ISO Certification Process.
The process is the same whichever Standard you wish to be certified against - ISO 9001, ISO 13485, ISO 14001, ISO 27001, ISO 45001, etc.. It involves using the services of an independent third party, a Certification Body, to confirm your full compliance with the requirements.
We begin at the point where your management system has been developed and implemented and is now being maintained. The infographic then takes you through the 12 steps, with hints and tips to ease your journey. Enjoy!
Identify suitable Certification Bodies (CBs) with accreditation for your economic sector wherever possible.
Submit information to get quotations. The number of employees is a key factor; however, provide core employment numbers only. All will quote for a three-year contract.
Click on the image to get a copy
Compare the total cost for a three-year cycle and select a Certification Body. If the specific economic sector where your business operates favors a particular certification body, you should seriously consider that CB.
Agree on a schedule for the audit and the audit plan. Typically, certification bodies will require one to three months' notice.
The certification body will conduct a site visit to review your readiness for the audit. They will provide you with a report detailing the level of compliance with the requirements of the Standard. They will also highlight areas where improvements are needed before proceeding to the Stage 2 Audit.
Send a copy or a link to your management system documentation to the Certification Body for review. This will ensure that your documented system covers the requirements of the Standard.
A Registration Audit will be conducted at your business location(s) by the Certification Body team. This comprehensive audit will check that every element of the Standard is complied with. An Audit Report will be produced detailing the state of compliance and any nonconformances found.
Corrective action will be required to address every noncompliance. There may be a delay for major noncompliances while evidence of ongoing compliance is built up.
The Certification Body will review corrective action to ensure that they are satisfied that they will be effective in preventing the recurrence of noncompliance to standards.
Another site visit by the CB Audit Team may be necessary, involving additional costs.
After the internal review of the Audit Report to confirm that the recommendation for certification is consistent with evidence recorded in the Report, the Certification Body will issue your Certificate with 3-year validity.
After certification, the Certification Body Team will conduct annual surveillance audits to help you maintain your system.
At the end of the three years, a Recertification Audit that is as thorough as the Initial Registration Audit is carried out. Upon successful completion, a new three-year certificate is issued.
Want to keep a handy copy of the ISO Certification Process for the office? Download the flowchart for free. Just click on the image above.
.To get started with ISO 9001 implementation, consider...
Click on the image thumbnail to see the image in full size, or click the button on the other side to go to our ISO auditor overview page to learn more about our Lead Implementer courses.
We have chosen ISO 21001 certification because it is based on independent third-party assessment, unlike IRCA and Exemplar badges (which we believe are commercially compromised). It is a 'university grade' standard used globally by schools, colleges, and universities to demonstrate competence.
We provide on-demand, self-paced Courses in ISO 9001, ISO 13481, ISO 14001, ISO 17025, ISO 27001, ISO 45001, Risk Management, Data Protection, and more.