ISO 45001 Internal Audit: How to Perform It Correctly
ISO 45001 internal audit
An ISO 45001 internal audit is a key tool to ensure the Occupational Health and Safety Management System (OHSMS) is effective. More than just a requirement, it is a mechanism for continuous improvement that helps organizations identify gaps, risks, and opportunities for action.
Objectives of an ISO 45001 Internal Audit
- Verify compliance with both the standard and organizational requirements.
- Identify deviations or nonconformities in processes.
- Evaluate the effectiveness of implemented control measures.
- Generate action plans for continuous improvement.
Main Stages of the ISO 45001 Internal Audit
1. Planning
Define the scope, schedule, and processes to be audited. Preparing checklists aligned with ISO 45001 is essential at this stage.
2. Execution
The auditor interviews personnel, reviews records, observes activities, and contrasts evidence against both the standard’s requirements and internal procedures.
3. Reporting Findings
Nonconformities, observations, and best practices are documented. The report must be clear, objective, and evidence-based.
4. Follow-up
The audit does not end with the report: corrective actions must be tracked and their effectiveness verified in subsequent audits.
Best Practices for Auditing ISO 45001
- Train internal auditors specifically on ISO 45001 requirements.
- Include interviews across different organizational levels.
- Combine document review with direct on-site observation.
- Maintain a preventive, non-punitive approach.
Common Mistakes in Internal Audits
Typical mistakes include:
- Conducting audits only “to comply” rather than as a tool for improvement.
- Failing to involve shop floor employees in the process.
- Overlooking incident records and preventive actions.
- Producing vague reports lacking concrete evidence.
You may also want to read our article on the most common mistakes when applying ISO 45001.
Conclusion
A well-executed ISO 45001 internal audit strengthens safety culture, ensures compliance, and drives continuous improvement. Beyond a requirement, it should be seen as a strategic opportunity for safer workplaces.
Check out our complete guide on ISO 45001:2018 for a deeper understanding of the standard’s requirements.
Related Posts
FAQs on ISO 45001 Internal Audits
How often should an internal ISO 45001 audit be conducted?
The standard does not mandate a fixed frequency. Most organizations schedule audits at least once a year or prior to certification audits.
Who can perform the internal audit?
It should be carried out by competent personnel, ideally trained internal auditors, who do not audit their own processes to maintain objectivity.
What is the difference between an internal and external audit?
Internal audits are performed by the organization itself, while external audits are conducted by independent certification bodies.
Which documents are reviewed during an ISO 45001 audit?
Incident records, risk assessments, action plans, training records, monitoring results, and safety meeting minutes, among others.
If you want to know more about ISO 14001, we recommend that you review our Complete papper about ISO 45001 Complete Guide for Industrial Environments
Did you like this content? Follow us on our social media for more articles, tools, and resources on industrial engineering:
