A Quality Audit Review (QAR) is a formal assessment of an audit engagement’s quality to ensure compliance with International Auditing Standards (ISA) and International Standard on Quality Management (ISQM) requirements.
As an Internal External Auditor, conducting Certification Audits on various standards for the Certification Bodies (CB), I have seen and experienced a lot. Some standards are fairly easy to audit, but then you encounter the super strong standards, such as ISO 27001: 2022, Information Security Management System (ISMS). And believe me, if this is a standard that is difficult to audit because of its complexity and volume, you must understand the effort taken by the Auditee / Client to implement.
ISO 31073:2022 provides a comprehensive vocabulary and definitions for risk management, ensuring clarity and consistency in communication. ISO 31004:2013 offers guidance on implementing the principles of ISO 31000:2018, emphasizing the importance of understanding and managing stakeholder needs and expectations.