The course teaches how to draft audit findings and nonconformity reports, perform quality review, close audits, and evaluate action plans as part of follow-up.
Audit reporting and follow-up are central to audit credibility and improvement. The course addresses these topics primarily on Day 4, focusing on how auditors convert evidence into clear, actionable outputs.Participants learn how to draft audit findings and nonconformity reports that clearly reference ISO 37301 requirements and supporting evidence. Clear reporting ensures that organizations understand the nature of gaps and can plan corrective actions effectively.Audit documentation and quality review are also covered. Quality review checks consistency, accuracy, and alignment with audit scope and criteria before reports are finalized. This step helps ensure audit conclusions are defensible and professionally presented.The course also addresses closing the audit, which includes communicating results, confirming understanding, and setting expectations for follow-up. Evaluation of action plans by the auditor is included, emphasizing the auditor’s role in reviewing whether proposed actions address identified nonconformities.Finally, the agenda extends beyond the initial audit by introducing audit program management. This reinforces that reporting and follow-up should feed into ongoing audit cycles and continual improvement, not end with a single report.
Well-written findings reduce friction. If a nonconformity clearly states the requirement, evidence, and gap, corrective action discussions become practical instead of defensive.Follow-up is where audit programs mature. Auditors should verify not just closure of actions, but whether actions were effective.
“Audit value is realized through clear reporting and effective follow-up.”
ISO 37301 has shifted compliance from a legal function to a governance capability. This training prepares professionals to design, implement, and sustain a compliance management system that withstands regulatory scrutiny and operational reality.
View courseThis three-day course teaches you how to conduct and manage management system internal audits in line with ISO 19011 guidance and related best practices. You learn internal audit concepts, auditor competence and behavior, and common requirements across management system standards.
View courseThis course prepares experienced professionals to lead audits of Anti bribery Management Systems aligned with ISO 37001:2025. Participants develop the capability to evaluate real control environments, test anti bribery measures, and issue defensible audit conclusions.
View courseYou will be able to plan and carry out internal and external ISO 50001:2018 EnMS audits using recognized audit principles and techniques. You will also be prepared to manage an audit program and lead an audit team.
byChristophe MAZZOLA
Day 1 covers ISO 19011 basics, audit principles, and auditor competence. Day 2 covers audit program arrangements, audit preparation, methods, and evidence, and Day 3 covers conducting audits, findings, closure, and follow-up.
byChristophe MAZZOLA
ISO 37301 audits assess whether a compliance management system is designed, implemented, and maintained in line with defined requirements. The focus is on governance, controls, processes, and evidence supporting compliance activities.
Day 2 focuses on audit principles and preparation, including evidence-based and risk-based auditing, audit initiation, and stage 1 audit activities.
The course combines lectures with real-case examples, case-study-based practical exercises, review activities, and a practice test aligned with the certification exam.
The exam is domain-based, delivered online, and lasts three hours. It assesses CMS fundamentals, ISO 37301 requirements, and the full audit lifecycle including planning, execution, closing, and audit program management.
Browse all FAQs →
Full knowledge base
Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.