"Our company has already ISO 9001:2015 certificate. We will be audited in April integrated with EMS which is new. I just want to ask a question about company context. We have prepared a procedure for determining the context of the organization. In this procedure, we mention about internal and external context, but these include only context items and their definitions, not the current situation analysis. We also created a list of interested parties including their needs and expectations and we have defined documents/processes/activities supporting these needs and expectations in this list. We have also companywide SWOT analysis and process-based risk analysis. But I cannot find a way to have a link between them easily. We don't have a SW for our documentation system. What should I do or use more?”
So, you want to link:
* internal context;
* external context;
* interested parties and their needs and expectations;
* SWOT analysis;
* risk analysis.
I would start by your SWOT analysis and made a “retro-engineering” exer cise:
Your Strengths and Weaknesses are internal issues with positive and negative connotations.
Your Opportunities and Threats are external issues with positive and negative connotations.
Not all those issues have the same weight or the same impact for your organization. Use the needs and expectations of interested parties to evaluate which issues are more relevant.
Then, pick those relevant positive issues (internal or external) and see if you can find relevant opportunities to evaluate and act upon.
Then, pick those relevant negative issues (internal or external) and see if you can find relevant risks to evaluate and act upon.