Guest user Created: Mar 06, 2019 Last commented: Mar 06, 2019

Quality and the GRC

"I’ve previously asked a similar question along the lines of ‘is it normal practice for an Information Security Officer to perform a Quality Management role?’ If I may extend that question to ask if Quality should sit under the GRC, specifically the ‘Compliance’ area; or should it be a completely separate corporate function?”

0 0

Assign topic to the user

Select user

Expert

Carlos Pereira da Cruz Mar 06, 2019

Answer:
Quality is also about Compliance, but it is more than that. Normally, at SME Quality must ensure that regulation and industry requirements are ensured. So, Quality could sit under the GRC.

The following material will provide you more information:
- ISO 9001 – What does “external documents control” mean in ISO 9001? - https://advisera.com/9001academy/blog/2019/02/04/what-does-external-documents-control-mean-in-iso-9001/
- Free online training ISO 9001:2015 Internal Auditor Course – https://advisera.com/training/iso-9001-internal-auditor-course/
- Book - Discover ISO 9001:2015 Through Practical Examples - https://advisera.com/books/discover-iso-9001-2015-through-practical-examples/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Mar 06, 2019

Expert Advice Community