Training Module

Auditing Supplier & Outsourcing Management

Assess whether supplier and outsourced process controls manage risk effectively and achieve intended outcomes across organisational boundaries

Auditor reviewing supplier performance with a service provider in a meeting setting, representing auditing of supplier and outsourced process management, contract controls versus operational reality, and assurance across organisational boundaries.

Do supplier controls work in practice or only on paper?

Supplier controls often appear complete in contracts and approval lists while operational reality reveals weak handovers, unclear ownership, and unmanaged dependencies. This module develops the capability to test whether outsourced activities and supplier interfaces are effectively controlled in practice.

Auditor reviewing supplier performance with a service provider in a meeting setting, representing auditing of supplier and outsourced process management, contract controls versus operational reality, and assurance across organisational boundaries.

Do supplier controls work in practice or only on paper?

Supplier controls often appear complete in contracts and approval lists while operational reality reveals weak handovers, unclear ownership, and unmanaged dependencies. This module develops the capability to test whether outsourced activities and supplier interfaces are effectively controlled in practice.

Auditor reviewing supplier performance with a service provider in a meeting setting, representing auditing of supplier and outsourced process management, contract controls versus operational reality, and assurance across organisational boundaries.
Overview
Target audience
Agenda
Learning outcomes
Materials
Delivery
Prerequisites

Overview

Understand

Implement

Manage

Audit

Suppliers and outsourced processes sit at the edge of most management systems. Contracts and supplier approvals may appear complete while operational control depends on real interfaces, responsibilities, communication, and feedback loops across organisational boundaries.

This module develops the capability to audit whether supplier and outsourced process management effectively controls these dependencies. Participants first review how supplier management and outsourcing are expected to function within management systems and then learn how auditors test risk-based supplier coverage, evaluate contract controls against operational reality, and follow evidence trails across organisational interfaces.

Applicable environments

This module is intended for auditors working with organisations operating a management system based on an ISO standard following the high-level structure such as ISO 9001, ISO 14001, ISO 22301, ISO/IEC 27001, ISO/IEC 27701 or ISO/IEC 42001. It focuses on requirements shared by these ISO standards.

Target audience

  • Aspiring auditors who want to audit management systems following best practices

  • Practising management system auditors who want to strengthen their audit knowledge, judgement, and effectiveness

Decision support

Is this module for you?

Agenda

  • Foundations of supplier and outsourced process management

  • What effective auditing of supplier and outsourced process management looks like

  • Testing risk-based supplier coverage

  • Building the audit evidence trail across organisational boundaries

  • Detecting supplier control failure patterns

  • Judging effectiveness of supplier and outsourced process control

  • Case-based audit simulation

Show detailed agenda...

Learning outcomes

Key outcomes

  • Assess whether supplier and outsourced process management credibly covers organisational risks

  • Test contractual controls against operational reality using traceable evidence across boundaries

  • Judge whether supplier and outsourced process controls reliably achieve intended outcomes

Additional capabilities

  • Assess interface control effectiveness at supplier handover points

  • Detect common failure patterns such as paper supplier controls or unmanaged dependencies

  • Select meaningful sampling targets when auditing suppliers and outsourced processes

  • Formulate defensible audit conclusions on supplier and outsourced process control effectiveness

Materials

Learning materials

  • Slide deck

  • Participant workbook

Templates & tools

Practical, reusable artefacts to apply the module directly to your organisation.

  • Audit interview planning tool

  • Documented information checklist

  • Sampling tool

  • Audit analysis worksheets

  • Failure pattern library

  • Supporting AI prompt set

Confirmation

  • Certificate of completion

Module ID

HAM-AG-A-07

Discipline

Cross-discipline

ISO standard

Cross-standard

Domains

Assurance

|

Controls

Target audience

Auditor

Public delivery

Live virtual

Duration

7 h

List price

CHF 550

Excl. VAT. VAT may apply depending on customer location and status.

Bespoke options

Bespoke options

Download fact sheet

Download fact sheet

Delivery

Live virtual delivery

This module is delivered live online and combines conceptual framing, discussion, case work and direct interaction with the instructor.

A public cohort is currently not scheduled. If you register your interest, we will notify you when a new public cohort is scheduled or suitable delivery options become available.

Custom delivery options

For organisations with specific constraints or learning objectives, the module can be adapted in format or scope, including in-house delivery and contextualised case material.

See options

See options

Not sure if this module is right for you?

Send a short message and describe your context.

Clarify fit

Not sure if this module is right for you?

Send a short message and describe your context.

Clarify fit

For an optimal learning experience

Prerequisites & preparation

This module is designed as part of a modular training approach. Topics are deliberately distributed across modules and are not repeated in full, in order to avoid unnecessary redundancy. Each module is self-contained and can be taken on its own. Where prior knowledge or experience is helpful, this is indicated below so you can decide whether any preparation is useful for you.

Assumed background

This module assumes participants can perform basic audit activities and apply evidence-based judgement.

Helpful background includes:

  • General understanding of management systems and organisational structures

  • Ability to follow audit trails across organisational interfaces and external providers

  • Basic familiarity with how organisations manage suppliers and outsourced processes

Preparatory modules

Foundational modules (depending on background)

Useful if you are new to the underlying concepts or want a shared baseline before attending this module.

Audit Principles

Apply evidence-based audit reasoning, materiality-focused prioritisation and structured audit test planning

7 h

Audit Principles

Apply evidence-based audit reasoning, materiality-focused prioritisation and structured audit test planning

7 h

Supporting modules (optional)

Helpful if you want to deepen related skills, but not required to participate effectively.

Audit Communication & Interviewing

Plan and conduct effective audit interviews, use structured questioning, and guide conversations to obtain reliable audit evidence

7 h

Audit Communication & Interviewing

Plan and conduct effective audit interviews, use structured questioning, and guide conversations to obtain reliable audit evidence

7 h

Audit Reporting & Follow-up

Formulate evidence-based audit findings, structure clear audit reports, and verify the effective closure of agreed actions

7 h

Audit Reporting & Follow-up

Formulate evidence-based audit findings, structure clear audit reports, and verify the effective closure of agreed actions

7 h

Continuous learning

Follow-up modules

After completion of this module, the following modules are ideal to further deepen your competence. If you are looking for a structured learning path, modules can also be taken as part of a professional track.

View all modules

View tracks

Continuous learning

Follow-up modules

After completion of this module, the following modules are ideal to further deepen your competence. If you are looking for a structured learning path, modules can also be taken as part of a professional track.

View all modules

View tracks

HAM-AG-AC-05

Supplier Auditing

Plan and conduct supplier audits using contract-based criteria, defined evidence targets and disciplined audit documentation

Live virtual

7 hours

CHF

550

View module

HAM-AG-A-01

Auditing Context & Scope

Assess whether organisational context, interested parties, scope and system boundaries credibly reflect how the organisation operates

Live virtual

7 hours

CHF

550

View module

HAM-AG-A-03

Auditing Risk & Opportunity Management

Assess whether risk and opportunity management credibly informs organisational decisions and priorities

Live virtual

7 hours

CHF

550

View module

HAM-AG-A-06

Auditing Operational Control

Assess whether operational controls and process interactions work reliably in day-to-day practice

Live virtual

7 hours

CHF

550

View module

HAM-AG-AC-05

Supplier Auditing

Plan and conduct supplier audits using contract-based criteria, defined evidence targets and disciplined audit documentation

Live virtual

7 hours

CHF

550

View module

HAM-AG-A-01

Auditing Context & Scope

Assess whether organisational context, interested parties, scope and system boundaries credibly reflect how the organisation operates

Live virtual

7 hours

CHF

550

View module

HAM-AG-A-03

Auditing Risk & Opportunity Management

Assess whether risk and opportunity management credibly informs organisational decisions and priorities

Live virtual

7 hours

CHF

550

View module

HAM-AG-A-06

Auditing Operational Control

Assess whether operational controls and process interactions work reliably in day-to-day practice

Live virtual

7 hours

CHF

550

View module

HAM-AG-AC-05

Supplier Auditing

Plan and conduct supplier audits using contract-based criteria, defined evidence targets and disciplined audit documentation

Live virtual

CHF

550

7 hours

View module

HAM-AG-A-01

Auditing Context & Scope

Assess whether organisational context, interested parties, scope and system boundaries credibly reflect how the organisation operates

Live virtual

CHF

550

7 hours

View module

HAM-AG-A-03

Auditing Risk & Opportunity Management

Assess whether risk and opportunity management credibly informs organisational decisions and priorities

Live virtual

CHF

550

7 hours

View module

HAM-AG-A-06

Auditing Operational Control

Assess whether operational controls and process interactions work reliably in day-to-day practice

Live virtual

CHF

550

7 hours

View module

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Office scene with people standing, walking and sitting

Ready to improve your management systems?

We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.

Contact us

Explore Halderstone

Explore Halderstone

Explore Halderstone