Get in touch

Get in touch

  • This field is for validation purposes and should be left unchanged.

Privacy Notice


When you submit an enquiry via our website, we use the personal data you supply to respond to your query, including providing you with any requested information about our products and services. We may also email you several times after your enquiry in order to follow up on your interest and ensure that we have answered your it to your satisfaction. We will do this based on our legitimate interest in providing accurate information prior to a sale. Your enquiry is stored and processed as an email which is hosted by Microsoft within the European Economic Area (EEA). We keep enquiry emails for two years, after which they are securely archived and kept for seven years, when we delete them.

Reveal Menu

ISO Internal Audit Service

In order to meet the requirements of clause 9.2 of certain ISO standard certification audits (for those in the Annex SL structure), you need to have evidence of a completed internal audit of your management system by a qualified auditor. If you haven’t got an internal auditor within your organization or resource to train one, then outsourcing your internal audit is the best option.

If this is your first certification audit or you’re recertifying, you’ll need to complete an internal audit of your full management. If it’s your annual surveillance audit you may only require an audit of certification requirements in accordance with your define audit schedule.

Whatever your internal audit requirements, CertiKit can help! Our qualified lead auditors can provide internal audits for:

  • ISO/IEC 27001 – Information Security Management System
  • ISO 22301 – Business Continuity Management System
  • ISO 9001 – Quality Management System
  • ISO 14001 – Environmental Management System
  • ISO 45001 – Occupational Health and Safety Management System

CertiKit’s internal audits are conducted remotely via MS Teams to clients in the UK, the EU and those +/- 5 hours of the UK time zone.

What does the internal audit consist of?

The audits will consist of a combination of document review and remote discussions with appropriate management and staff. Relevant documented information will be reviewed as evidence that the defined processes and procedures are being followed.

After the audit we provide a professionally compiled report that details:

  • The agenda and all areas audited within the management system and Statement of Applicability in line with your requested scope
  • Evidence examined and audit trail for all areas of the standard included
  • Positive findings – the things your organization is doing well
  • Nonconformities – areas found to be non-compliant against the requirements of the ISO standard which you can then use to drive continual improvement
  • The report can be used by your organization to demonstrate to your external certification body that you are meeting the internal audit requirements of the standard


Receive your internal audit quote today!

Let us help you meet your internal auditing requirements in three simple steps:

  1. Submit an enquiry using the contact form.
  2. You’ll be sent a booking form to detail your requirements and send back to us.
  3. Our ISO lead auditors will assess your requirements and outline the most suitable audit solution for your organization.

Please note, CertiKit’s audits are performed remotely via MS Teams by our consultants in the UK and are most suitable for organizations +/- 2 hours of UK time zone. CertiKit are not a Registered Certification Body and cannot provide you with a formal management system certification.

Submit your internal auditing enquiry today!

  • Privacy Policy


    When you submit an auditing enquiry, we use your name, company name (which is optional), email address, phone number and country to contact you about this service. We take your country data to assess your suitability for our services. We may also email or call you after your enquiry in order to follow up on your interest in our services. We will do this based on our legitimate interest in marketing to prospects for our products and services. Your details are stored on our website which is hosted with Digital Ocean. Your personal data is stored for one year after your enquiry submission, after which it is deleted.


Internal Auditing - FAQs

Who is required at the internal audit?   

Representatives within the scope of activities being audited, plus any other representatives as needed.

How frequently does an organization need an internal audit?

It is a requirement of the standard that an organization defines an audit plan covering a period of time, typically organizations prepare an annual audit schedule showing which functions or areas of the standard are to be audited at a particular time.  Internal audits should be carried out in accordance with the audit schedule.

How much do internal audits cost?  

This is dependent on multiple factors from audit scope to size of the organization and number of sites. Submitting an enquiry and completing our audit booking form is the best way to get a quote specific to your organization.

How long will an internal audit take?

This depends on the scope of the audit and if there are multiple sites, or business functions that fall under that audit scope.  Time also needs to be factored in for evidence gathering, writing the audit report along with any audit findings and nonconformities that may be identified.

How can an internal audit help prepare for the certification audit?

Internal audits are a requirement of the certification audit.  A certification auditor will verify that you are carrying out internal audits to your audit schedule, and are providing the relevant audit evidence (reports and any nonconformities) and that the audit programme is being managed.  Certification bodies will also check that the outputs of audits are being reviewed in your management review meetings to identify areas of weakness or areas for improvement.

What are the additional benefits of an internal audit?

  • Confirms the health of your management system, the way it is operating and the efficiency of the business processes i.e. Is it wasting time, effort, and cash on inefficient processes?
  • Ensures that your company operations, processes and procedures comply with statutory, regulatory and management system requirements.
  • Gives senior management visibility into the effectiveness or weaknesses of the management system as part of the management review requirements.


We’ve helped more than 4000 businesses with their compliance


Keep pitching what you do... It works and wins when comparing to perceived competition. Almost a personal touch springs to mind. Personally I like the product, and the way it's delivered.

Reality Consulting

View all Testimonials