ISO-45001-Lead-Auditor PECB Certified ISO 45001 Lead Auditor Exam Question and Answers

The closing meeting of a second-party audit focuses on the findings, conformance to agreed requirements, and areas for improvement. ISO 19011:2018 provides guidance on closing meetings, stating that the results of the audit, including conformity with criteria, must be reviewed and agreed upon.

Analysis of Options:

A. The names and email addresses of attendees at the closing meeting:Irrelevant. Attendance details are not part of the audit discussion.

B. The extent of the auditee’s documented information system:While relevant during the audit, it is not typically a focus in the closing meeting.

C. The extent to which the auditee is conforming to OH&S requirements in supply contracts:Correct. Second-party audits often assess compliance with contractual requirements.

D. The extent to which the auditee conforms to ISO 45001 requirements:Correct. The core purpose of the audit is to evaluate conformity to ISO 45001.

E. The nature of the trading relationship between the organizations:Correct. The trading relationship often shapes the scope and context of second-party audits.

F. Whether the audit has correctly performed in current contracts with other customers:Irrelevant. The focus is on the specific audit, not contracts with other customers.

G. Whether the work instructions for a specific OH&S process are focused on efficiency:Irrelevant. Efficiency is not the primary focus of an OH&S audit.

ISO References:

ISO 19011:2018, Clause 6.6.1: Conducting the closing meeting.

ISO 45001:2018, Clause 9.2: Internal audit requirements.

Comprehensive Detailed Explanation along with All ISO 45001 Audit References

Clause 9.1.2 of ISO 45001:2018 outlines the need for organizations to evaluate compliance with applicable legal and other requirements as part of their OH&S management system.

Analysis of Options:

A. The organization must evaluate its compliance status at least once a year:The standard does not prescribe a specific frequency but states that evaluations must be conducted at planned intervals.

B. 'Other requirements' include requirements that the organization has chosen to comply with:Correct. Other requirements may include voluntary standards, industry codes, or contractual obligations.

C. A management review is required in all instances where one or more legal requirements are not being met:This is not true. Management reviews address compliance but are not mandated for every noncompliance.

D. Every member of an audit team must have a detailed understanding of the legal requirements for the sector and type of organization they are auditing:Not true. Auditors must have general competency but can rely on subject-matter experts for legal specifics.

E. If the organization is failing to address a legal requirement relating to another discipline (e.g., Environmental management), this cannot be raised in the audit:Not true. If the legal noncompliance impacts OH&S, it can be raised.

F. The organization cannot outsource its process for evaluating compliance:The organization can outsource evaluation but retains accountability.

G. The organization is required to establish a process for evaluating compliance:Correct. Clause 9.1.2 requires a process for compliance evaluation.

H. The organization is required to evaluate its compliance status with OH&S legal and other requirements:Correct. Clause 9.1.2 explicitly states this requirement.

ISO References:

Clause 9.1.2: Evaluation of compliance.

Clause 7.5: Documented information requirements

Comprehensive Detailed Explanation along with All ISO 45001 Audit References

Analysis of Each Option:

ISO 45001:2018 requires a holistic approach to occupational health and safety. This means considering all aspects that could impact worker well-being, not just obvious physical hazards. The correct answer encompasses work activities (the tasks themselves), workplace design (the physical environment), and human factors (psychological and social aspects like working hours and harassment). It's the most comprehensive and aligned with the standard's philosophy

ISO 45001:2018, Clause 6.1.2, outlines requirements for hazard identification. Hazards to consider include work activities, workplace design, human factors, and social factors that may impact OH&S. These go beyond traditional physical risks and include psychosocial and organizational hazards.

Analysis of Options:

A. Work activities, workplace design, and human factors such as hours of work and bullying and harassment:Correct. This comprehensively addresses hazard categories outlined in ISO 45001, Clause 6.1.2.

B. Work activities where there is the possibility of danger:Too general. ISO 45001 includes broader categories of hazards, including those related to organizational and social factors.

C. Hot-work, working at height, enclosed space entry, and work on electrical equipment:Too narrow. These are specific hazards but do not encompass the full range outlined in ISO 45001.

D. Work hazards and environmental factors such as bad weather:Incomplete. While environmental factors are relevant, ISO 45001 also includes workplace design, human factors, and psychosocial hazards.

ISO References:

Clause 6.1.2.1: Hazard identification.

Annex A.6.1.2: Examples of hazard categories, including workplace design and human factors.

ISO 45001 requires organizations to identify and maintain documentation to demonstrate compliance with legal and other requirements (Clause 7.5 and Clause 9.1.2). It also requires the evaluation and control of outsourced processes (Clause 8.1.4.3).

Analysis of Options:

A. The park did not have the required documentation to demonstrate compliance with legal requirements:Correct. The outdated and incomplete inspection report (8 years old, lacking detailed identification) fails to demonstrate compliance with health and safety legislation.

B. The organization did not monitor the safety checks by staff of equipment:Incorrect. While there is a potential gap in monitoring, the evidence provided does not directly indicate a lack of monitoring of staff checks.

C. The inspection organization employed by the insurance organization was not evaluated:Correct. ISO 45001 requires the organization to evaluate outsourced services, including those provided by the inspection body, to ensure their adequacy.

D. The park relied on the insurance organization to evaluate its OHS risks:Incorrect. Reliance on external evaluations may not constitute a nonconformity if risks are properly managed, but there is no evidence provided for noncompliance here.

E. Testing to determine the safe loading of equipment was not carried out:Incorrect. While load testing is crucial, there is no evidence presented to confirm this specific issue as a nonconformity.

ISO References:

Clause 7.5: Control of documented information.

Clause 8.1.4.3: Control of outsourced processes.

Clause 9.1.2: Evaluation of compliance.

Audit reports should focus on objective evidence, observations, and findings relevant to the management system and the audit process. Personal opinions, unrelated remarks, or derogatory comments are inappropriate.

Analysis of Statements:

A. The guide was trying to be helpful and would not stop talking during the audit:Incorrect. This is irrelevant to the audit findings or conclusions.

B. The Sales Manager was kind and seems to be a nice person:Incorrect. Personal opinions about individuals are not appropriate in audit reports.

C. The audit client’s objectives for this audit were never realistic. That’s why we were unable to complete the audit plan:Correct. This is relevant as it relates to the audit process and highlights challenges in meeting objectives.

D. The maintenance team could not replace a lightbulb, let alone an air conditioning unit:Incorrect. This is derogatory and irrelevant to the audit report.

E. The OHS Management team were extremely helpful and went out of their way to facilitate access to required records:Correct. This is a valid observation about cooperation during the audit process.

F. The OHS Manager disagreed with me in respect of all of the nonconformances I raised. He still does not accept any of them:Incorrect. While disagreements may occur, this statement is overly subjective and not constructive.

G. The Production Manager is lucky to have a job as he does not appear to understand how anything works around here:Incorrect. Personal attacks or irrelevant judgments have no place in the report.

H. The Sales Manager said he had forgotten the password to the Sales Ordering system and so too had everyone else in his department:Correct. This relates to system access and could indicate a nonconformance or an opportunity for improvement.

ISO References:

ISO 19011:2018, Clause 6.7: Reporting audit results.

Comprehensive Detailed Explanation along with All ISO 45001 Audit References

Hazard: A potential source of harm or adverse health effects.

Risk: The likelihood of harm occurring as a result of the hazard.

Danger: An immediate threat that requires urgent action.

Analysis of Options:

A. Conference room emergency sign directs people to an exit that is no longer available for use (Hazard):Correctly identified as a hazard since it poses a potential risk during emergencies.

B. The carpet on the main staircase is peeling off (Risk):This is a hazard, not a risk, as it represents a source of potential harm.

C. The emergency light in the gift shop did not work when checked (Risk):This is a hazard because it is a condition that could lead to a risk during emergencies.

D. The fire extinguishers in the Natural World area have not been serviced in the last five years (Risk):Correctly identified as a risk because the likelihood of fire-related harm increases without proper servicing.

E. The head of the dinosaur suspended over the main hall has become detached from the rest of the skeleton (Risk):This is a hazard, not a risk, as it represents a potential source of harm.

F. The non-slip mats have been removed from the restaurant (Risk):This is a hazard, not a risk.

G. There is a high possibility of unfit food being sold due to the failure of the oven temperature indicator in the visitors' restaurant (Hazard):This is a risk because it specifies the likelihood of harm occurring (selling unfit food).

H. There is a water leak next to the electric heater in the admissions area (Danger):Correctly identified as a danger because it represents an immediate and critical threat.

ISO References:

Clause 6.1.2: Hazard identification and assessment of risks and opportunities.

Analysis of Options:

A. The organisation must attempt to identify and address every risk it faces:Incorrect. ISO 45001 focuses on OH&S risks and not every risk faced by the organization.

B. The effect of uncertainty (i.e. risk) can result in positive outcomes as well as negative ones:Correct. Clause 3.20 defines risk as the "effect of uncertainty," which may result in positive or negative outcomes.

C. Although organisations are required to carry out risk management, the method by which they do so is up to them:Correct. ISO 45001 does not prescribe specific risk management methods, leaving the organization to choose the approach that best suits its context (Clause 6.1.2).

D. Risk assessment is an activity that must be carried out by top management:Incorrect. Risk assessment can involve workers and other personnel; it is not limited to top management.

E. The organisation is required to assess risks arising from OH&S hazards:Correct. Clause 6.1.2.2 requires organizations to assess OH&S risks associated with hazards.

F. Risk is often expressed as a combination of likelihood and impact:Correct. This is a common way to express risk, aligned with Clause 6.1.2.

ISO References:

Clause 3.20: Definition of risk.

Clause 6.1.2: Hazard identification and risk assessment

Comprehensive Detailed Explanation along with All ISO 45001 Audit References

Clause 9.3 of ISO 45001:2018 defines inputs for management review, which must include information on performance trends, feedback, risks, and opportunities for improvement.

Analysis of Options:

A. Allocation of a bigger budget for the OHS department:This is an output of management review, not an input.

B. Decisions on improvements in the OHSMS:This is an output, not an input.

C. Decisions related to continual improvement opportunities:This is an output, not an input.

D. Procurement of new safety harnesses for workers:This is an operational action, not an input for management review.

E. Proposal to prioritize health and safety issues as a business strategy:Proposals may be discussed during review, but they are outputs.

F. Report showing the trend of an increase in safety incidents:Correct. This is a valid input that informs system performance.

G. Updates to the risk register:Correct. Risk updates are required inputs under Clause 6.1.2.

H. Worker feedback of positive and negative comments:Correct. Feedback is an essential input per Clause 5.4 and Clause 9.3.

ISO References:

Clause 9.3: Management review inputs.

Clause 5.4: Worker consultation and participation.

A screenshot of a computer Description automatically generated

Explanation

Prepares the audit report → Audit Team Leader:The Audit Team Leader is responsible for compiling and preparing the final audit report, summarizing findings and conclusions.

Prepares audit checklists for use during the audit → Auditor:Auditors create checklists to ensure a thorough and systematic evaluation during the audit.

Participates under the direction and guidance of an auditor → Auditor in Training:An auditor in training works under supervision to gain experience and contribute to the audit process.

Follows up on audit findings within an agreed timeframe → Auditee:The auditee is responsible for addressing and resolving audit findings and providing evidence of corrective actions.

A person who accompanies the audit team but does not act as an auditor → Observer:Observers are typically external parties or internal personnel who watch the audit process but do not participate actively.

Escorts the auditors but does not participate in the audit → Guide:A guide facilitates the audit by helping auditors navigate the site and access relevant areas or documents.

References

ISO 19011:2018: Guidelines for auditing management systems.

A screenshot of a computer Description automatically generated

Was he made aware of the hazards related to this work? → Clause 6.1.2.1:Clause 6.1.2.1 focuses on hazard identification. Organizations must identify hazards associated with work activities, such as operating a motorbike, and ensure workers are aware of these hazards.

Was he trained to use the new motorbike? → Clause 7.2:Clause 7.2 requires organizations to ensure that workers are competent to perform their assigned tasks, including providing necessary training for new equipment like a motorbike.

Was he asked to deliver too many orders in a short period of time? → Clause 8.2:Clause 8.2 relates to managing operational controls and ensuring that work processes do not impose undue risks, such as excessive workloads or time pressure.

Was he carrying any contact details in case of an accident? → Clause 7.3:Clause 7.3 requires effective communication of information relevant to OH&S, including emergency contact details or procedures for accidents.

ISO References:

Clause 6.1.2.1: Hazard identification.

Clause 7.2: Competence.

Clause 7.3: Awareness and communication.

Clause 8.2: Operational control.