9.2 Internal Audit [ISO 45001 Procedure & Checklist]

What is an ISO 45001 Internal Audit?

Your organization should establish an internal audit program to cover all requirements of the OH&S standard. In addition, you should ensure that consideration is given to the status and importance of the processes that comprise the audit program and the results of previous audits.

Looking For An Internal Audit Checklist?

Our ISO 45001 Internal Audit Checklist is proven to work.

photo of reading glasses and screens of computer code

Who Should Perform the Internal Audits?

Internal audits are most effective when conducted by persons or departments independent of the functions being audited.

Such audits should provide the accountable executive and senior management with feedback on the status of:

Compliance with regulations
Compliance with policies, processes and procedures
The effectiveness of safety risk controls
The effectiveness of corrective actions
The effectiveness of the OH&S Management System

Some organizations cannot ensure appropriate independence of an internal audit, in such cases, they should consider engaging external auditors (e.g.; independent auditors or auditors from another organization).

Internal Audit Training

It is critical that due care be taken in selecting staff to perform the role of internal auditor. Individuals who show potential as auditors should be given formal training by a registered training organization. The required level of competence of all internal auditors is maintained via refresher training or, more importantly, active participation in the audit program.

Apart from having the appropriate training, selected staff should also possess the necessary personal qualities and attributes that enable them to act in accordance with the principles of auditing. It is strongly recommended that the internal auditors widely publish an audit program, as it will provide a useful planning tool for key stakeholders.

9.2.1 General - The Internal Audit Process

The internal audit process itself should cover all facets of preparing for and conducting audits based on a sound audit program: audit scope, audit criteria, references, definitions, audit schedule, audit performance, follow-up audits, corrective action, audit documentation, audit failure and management review.

The Health and Safety Manager should ensure that internal audits are conducted by staff who do not work in the area being audited. It should be noted that the exchange of internal auditors among different organizations can be a useful process. The exchange of auditors, where possible, can also be used to enhance the value of the audit and the individual auditor’s competencies.

Planning of internal audits should take into account the safety criticality of the processes, the results of previous audits and assessments (from all sources), and the implemented safety risk controls. Internal audits should identify noncompliance with regulations and policies, processes and procedures. They should also identify system deficiencies, lack of effectiveness of safety risk controls and opportunities for improvement.

Looking For An Internal Audit Procedure?

Our Internal Audit Procedure is proven to work.

9.2.2 Internal Audit Programme

Planning of internal audits should take into account the safety criticality of the processes, the results of previous audits and assessments (from all sources), and the implemented safety risk controls. Internal audits should identify noncompliance with regulations and policies, processes and procedures. They should also identify system deficiencies, lack of effectiveness of safety risk controls and opportunities for improvement.

Assessing for compliance and effectiveness are both essential to achieving safety performance. The internal audit process can be used to determine both compliance and effectiveness.

The following questions can be asked to assess compliance and effectiveness of each process or procedure:

Determining Compliance

Does the required process or procedure exist?
Is the process or procedure documented (inputs, activities, interfaces and outputs defined)?
Does the process or procedure meet requirements (criteria)?
Is the process or procedure being used?
Are all affected personnel following the process or procedure consistently?
Are the defined outputs being produced?
Has a process or procedure change been documented and implemented?

Assessing Effectiveness

Do workers understand the process or procedure?
Is the purpose of the process or procedure being achieved consistently?
Are the results of the process or procedure what the “customer” asked for?
Is the process or procedure regularly reviewed?
Is a safety risk assessment conducted when there are changes to the process or procedure?
Have process or procedure improvements resulted in the expected benefits?

In addition, internal audits should monitor progress in closing previously identified non-compliances. These should have been addressed through root-cause analysis and the development and implementation of corrective and preventive action plans.

Use an Internal Audit Programme to ensure that the ‘process names’ identified in the Process Matrix & Application form are copied into the internal audit program.

In conjunction with Top management, the Health and Safety Manager should devise a 10-year Internal Audit Programme. When designing the audit program, you should ensure that customer feedback, organizational changes, and risks and opportunities are brought into consideration.

The frequency of audits depends on the criticality of each process and the perceived need to audit, but all processes and areas are audited at least once every two years. Critical processes generally interact with the customer directly and are therefore audited annually, or more regularly as required. Develop the 2-year internal audit program with specific dates and durations of each planned audit.

Workers must be included in the audit process and the development of the audit program. Retain the audit program and the audit results as documented information.

You should consider process status in terms of maturity and stability; a more established, proven process will be audited less frequently than a newly implemented or recently modified process and should receive a lower status score. Conversely; processes which are not performing to the planned arrangements, should be assigned a higher status score.

You should consider process importance as the degree of direct impact that process performance has on customer satisfaction; i.e., could the process provide the customer with nonconforming product? Support processes should be given a lower ranking than the manufacturing/service provision processes. In addition, the results of previous audits should be considered too. Processes that have been audited recently that have shown effectiveness and improvement should be audited less frequently.

Using an Internal Audit Checklist

The audit checklist is one of the many tools available from the auditor’s toolbox that helps ensure your audits address the necessary requirements.

The checklist stands as a reference point before, during and after the audit, and will provide the following benefits:

Ensures the audit is conducted systematically
Promotes audit planning
Ensures a consistent audit approach
Actively supports your organization’s audit process
Provides a repository for notes collected during the audit process
Ensures uniformity in the performance of different auditors
Provides reference to objective evidence

Use an Internal Audit Checklist that integrates the requirements of ISO 45001:2018 and presents them as questions.

Using this audit checklist to undertake a clause-by-clause audit works very effectively for the initial audits in preparation for implementation, gap analysis or certification. However, once your health and safety management system is implemented, your organization is expected to develop a process approach to its auditing program.

Use a process audit report (from the internal audit procedure). It requires the auditor to review the inputs, risks, controls, activities, equipment, materials, personnel, and methods of measurement for each process. You can cross-refer the clause references in the process audit report to the internal audit checklist questions.

Looking For An Internal Audit Toolkit?

Our Internal Audit Toolkit has everything you need to perform an internal audit for ISO 45001:2018.

2 Procedures
3 Checklists
5 Reports & Forms
5 Process maps, Turtle Diagrams
1 Guidance document

Use a Template - Don't Try to Do it all Alone!

Our templates will help you to assess the status of your existing health and safety management system and identify process weakness to allow a targeted approach to prioritizing corrective action to drive improvement.

Audit checklist metrics dashboard graphically displays status attributes
Quickly identify and target system weakness
Real time charts display audit result data - ideal for reports or presentations

The dashboard provides fast and reliable access to system and process metrics, precluding the need to know where all performance data is stored, or for having to locate the metrics champion for current data. It also reduces the likelihood that data is lost when metrics owners change or leave the company and reduces the learning curve for new metrics owners.

Clearly illuminates under-performing metrics for prompt management attention
Provides a unique management ally during internal and external audits
Improves meeting efficiency by segregating metrics.

Documented Information

Auditors should not necessarily expect to find a documented internal audit procedure in place. However, they must be able to access documented information confirming the implementation of an audit program by the organization.

Documented information must also be available to evidence the results of audits.

Don’t Try to Manage It All Alone!

Our ISO Auditors and Quality Manager Trainers have been in this industry for years, and since 2002 we’ve been providing thousands of small businesses and large corporations with the tools they need to get certified.

Instead of trying to create everything you need to follow this process from scratch, use ours. We have procedures, templates, checklists, process maps, forms and gap analysis tools to help you control your documented information without missing a single input or output.

Before you invest all the hours reinventing the wheel, before you spend countless dollars outsourcing the task — try our templates.

		ISO 45001
ISO 45001 Internal Audit Toolkit Everything you need to perform and manage internal audits for ISO 45001. Contents 4 Checklists - view sample 4 Procedures - view sample 7 Process maps, Turtle Diagrams - view sample 3 Tools 11 Reports & Forms Automated Charts - view sample 1 Presentation 4 Guidance Documents - view sample The documents are used together as a cohesive system or available separately below. All these templates are included in our Occupational Health and Safety Management System Template	Checklists Internal Audit Checklist - view sample Supplier Audit Checklist - view sam ple Supplier Self-Evaluation Audit - view sample Process Audit Template Procedures Internal Auditing Procedure - view sample Management Review Procedure Nonconformity & Corrective Action Procedure Improvement Procedure Process Maps Internal Auditing Process Overview (turtle diagram) Internal Auditing Process Map - view sample Management Review Process Overview Management Review Process Map Nonconformity & Corrective Action Process Overview Nonconformity & Corrective Action Process Map Improvement Process Overview Internal Audit Program Process Matrix 10-Year Program Annual Audit Program Dashboard (automated charts) Guidance Management Review Tool MS Excel Agenda Item (Inputs) Program Action Log (Outputs) Action Tracker, Gantt Chart Corrective Action Tracker MS Excel Predefined data–entry fields to describe the issue Categorize all issues, assign responsibility, initiate tasks Root Cause Analysis (RCA) actions Determine problem-solving methods based on risk Track progress and close-out with the Corrective Action Plan Reports & Forms 5-Whys Worksheet 8D Worksheet A3 Action Plan Action Items Log Corrective Action Report Improvement Activity Form Internal Audit Report Management Review Minutes Process Assessment Internal Audit Process Report Internal Audit Action Report Charts Automated Charts & Graphs - view sample Monitor status in real-time Make issues highly visible Presentation H&S Management Review Meeting Guidance Corrective Action Guidance Internal Audit Guidance Management Review Guidance ISO 45001 Clause-by-clause Guidance - view sample	GBP £147 Add to Cart Get a Quote
ISO 45001 Internal Auditing Procedure This procedure defines your organization’s process for undertaking H&S audits, process audits, and supplier and legislation audits to assess the effectiveness of our environmental management system's application and its compliance with ISO 45001. This procedure also defines the responsibilities for planning and conducting audits, reporting results and retaining associated records. This procedure is included in our Occupational Health and Safety Management System Template	Process Maps Internal Auditing Process Activity Map Internal Audit Process Map - view sample Reports & Forms Internal Audit Report Nonconformity & Corrective Action Log Nonconformity & Corrective Action Report Process Audit Template	GBP £19 Add to Cart Get a Quote
ISO 45001 Internal Audit Checklist Use this audit checklist to determine the extent to which your quality management system conforms to ISO 45001 requirements by determining whether those requirements have been effectively implemented and maintained. This template will help you assess the state of your existing management system and identify process weaknesses, allowing you to prioritize corrective action based on a targeted approach. Contents Master Internal Audit Checklist - view sample Results Charts - view sample Process Report Action Report All ISO 45001 Checklists are included in our Internal Audit Toolkit and Occupational Health and Safety Management System Template	Master Internal Audit Checklist This audit checklist comprises tables of the certifiable (‘shall’) requirements, from Section 4.0 to Section 10.0 of ISO 45001:2018, each required is phrased as a question. 264 Audit Questions, MS Excel - view sample The answers will automatically populate and update the Audit Results Summary and charts. Result Charts Automated Charts - view sample Conformity of the H&S to Requirements Top 10 Root-causes Pareto Chart of the Most Frequent Root-causes Compliance Summary Nonconformances Entry Errors to Correct Issues to Correct Conformity to Requirements Summary of Audit Results by Process Requirements to Audit per Process Improvement Action Summary Process Report Using filters and buttons, the Process Report allows you to summarize the processes and their audit results from the data collected in your audit checklist into a table for reporting or analysis purposes. Action Report Allows you to summarize the root-causes and the corrective actions required for each process.	GBP £59 Add to Cart Get a Quote
Supplier Audit Checklist The Supplier Audit Checklist evaluates the quality of a current or prospective supplier/vendor's processes, ensuring that key risks to your organization’s objectives are being controlled. Use this checklist to streamline your supplier evaluation process, enhance risk management, and ensure high-quality standards across your supply chain. Contents Supplier Audit Checklist - view sample Audit Finds Summary (automated charts) - view sample Process Turtle Diagram Guidance Benefits Enhanced Risk Management: Focuses on key risks, ensuring that major threats to your organization’s objectives are identified and controlled Improved Supplier Quality: Provides a detailed evaluation of supplier processes, helping to ensure high-quality standards Clear Communication: Uses a 'traffic light' system to visually communicate risk levels, making audit findings easy to understand Data-Driven Decisions: Automated charts and summaries provide a clear overview of audit results, supporting informed decision-making Streamlined Reporting: Simplifies the process of generating audit reports and management review documentation Objective Scoring: Provides a consistent and objective method for scoring audit findings, ensuring fairness and transparency This checklist is included in our Occupational Health and Safety Management System Template	Supplier Audit Checklist 89 Questions - view sample Evidence Required What to look for Score Observations Operational Control Process Approach Performance Internal Auditing Receiving Inspection Improvement Quality Planning Design Training and Competence Control of Nonconforming Product Part Approval Management Responsibility The answers will automatically populate and update the Audit Finding Summary and charts. Audit Finding Summary Automated Charts - view sample Compliance Summary OFIs by Section Recommendations	GBP £22 Add to Cart Get a Quote
Supplier Self-Evaluation Audit The Supplier Self-Evaluation Audit is a comprehensive questionnaire designed for current or prospective suppliers to complete. It helps you evaluate their quality assurance capabilities. This self-evaluation tool ensures that suppliers meet your organization’s standards before procurement decisions are made. Contents Self-evaluation Questionnaire - view sample Self-evaluation Summary (automated charts) - view sample Instructions Benefits Enhanced Risk Management: Identifies potential risks in supplier processes, allowing for proactive issue resolution before procurement decisions are made Improved Compliance: Ensures suppliers meet ISO standards, reducing the risk of non-compliance and associated penalties Informed Decision-Making: Supports procurement decisions with detailed data and automated summaries, ensuring you select suppliers that meet your quality standards Stakeholder Assurance: Demonstrates a rigorous and consistent approach to supplier evaluation, building trust and confidence among stakeholders This template is included in our Occupational Health and Safety Management System Template	Self-Evaluation Questionnaire 64 Questions - view sample Manufacturing Receiving Inspection Quality System Measuring and Test Equipment Nonconforming Product Production Process Inspections The answers will automatically populate and update the Self-Evaluation Summary and charts. Self-Evaluation Summary Automated Charts - view sample Compliance Summary Recommendations OFIs by Element	GBP £22 Add to Cart Get a Quote

Written in International English

Fully-editable MS Word or Excel files, compatible with Google Docs and Apple Pages

All the templates use styles – making reformatting and rebranding a breeze

Immediate download

Pay by Credit Card, Debit Card, PayPal or Apple Pay

Credit/Debit Card

PayPal

Apple Pay

100% Money Back Guarantee

Customers: 132 countries (March 2026)

We are 100% confident in the quality and contents of our products. Used by thousands of organizations around the world, our templates have been sold online since 2002.

If our templates don't help you achieve certification, we'll refund your purchase in full.
No questions asked.

Please read our Money Back Guarantee

Are The Templates Suitable For You?

Bought by Small Businesses and Large Corporations our templates have been sold online and CD since 2002.

Used by Small Businesses – dentists, accountants, engineers

Used by Large organizations – hospitals, power plants, aircraft manufacturers

The Templates are used by first-timers following our step-by-step, clause-by-clause guidance documents; and experienced Quality Managers wishing to streamline and improve their existing documentation.

The application of our templates is scalable and generic; regardless of the size and type of organization. The elements that form the quality management system are the same.

Written in International English - our Templates are used Worldwide. The standard of documentation is exactly the same in the U.S. as it is in the U.K., Australia or Dubai.

Five Reasons To Choose Our Templates

1. Our customizable templates save you time and money by offering a streamlined process to create your quality documentation

2. They’ve got everything you need in one simple template

3. Proven to work our templates have helped thousands of businesses big and small achieve certification

4. Documents use styles to make reformatting and rebranding a breeze

5. Our templates are generalizable for any industry or sector. The application of our templates is scalable and generic; regardless of the size and type of organization.