Pointers on selecting a registrar?

Firstly, let me say, this is purchasing from entirely the wrong point of view. I can sell you a certificate if cost is the issue!
Your certification audits are going to be costed on two fundamentals: the cost of the audit and the expenses.

Expenses means travel and accommodation and fees related to the service, this can vary hugely between Registrars. The travel has little/nothing to do with the HQ location - for example LRQA is/was in TX, but they may have no auditors who are qualified in the area and hence may have to fly someone in - sometimes from another country! Fees relate to anything from an extra copy of a certificate, to accreditation fees and reviewing corrective actions. Beware the “small print”.

The cost of audits is a simple calculation: number of audit days x audit day rate. For ISO 9001, figure $1300 - 1500 per day and the quantity of days comes from the (freely available, at IAF.nu) IAF document “MD-5” with some negotiation (described in the document) about scopes etc.

My advice, based on being inside 2 world-class Registrars as management? Look into how you select long term suppliers - cost? Location? Recommendation? What?

Who do others in your industry use? Customers? Competition? Check their industry affiliations, if any. Some are more closely linked to ships and equipment (DNV for example), some electronics/electrical (UL/DQS) etc. Check if they have ever been suspended - yes, even Registrars fail their audits. What’s their client retention? Check how they hire/train their auditors. Some Registrars hire people just because their (the auditor’s) name is listed someplace, nothing more…

All these affect the long term relationship and will endure longer than “savings”…

 

As Andy said, most 3rd party auditors are contract and 9001:2015 is the post common standard, so it is very possible you will manage to get a local auditor if you ask for one.

However, the overall costs are enough that I would worry you are willing to settle for an under performing registrar just because they are nearby - this is important, might as well get your money's worth out of it.

I have had involvement with DQS as a 3rd party auditor, DNV as a trainer, BSI as a client, and Bureau Veritas as a student. These are all good registrars, with adequate resources needed to manage their operations sufficiently to stay in the good graces of ANAB (North American Accreditation Body).

Do not use any registrar that is not accredited through an Accreditation body that itself is associated with IAF.

 

Which reminds me: get resumes. Then interview them on the phone. See if they are a good “fit”…

 

I think this is interesting because no one asked for an interview prior to any of the hundreds of CB audits I have done. That said, the reputable CBs, such as mine, use resumes, tests and other means to ensure we are qualified too audit the particular type of businesses we are assigned to.

 

Many organizations seeking to be certified simply don’t know what is available to them in terms of selection criteria. Rarely do such services get contracted - certification audits are in a different sector to other services. In the past, I was frequently asked for resumés.

 

You were individually asked for a resume to perform in the capacity of a third party auditor for a specific client?

 

Yes. In my role as East Coast Sales Manager for a top Certification Body, I was frequently asked for resumes of auditor candidates. Clients want to know that auditors have appropriate background experience. This isn’t new news…

 

To be clear, I was not the auditor. I was only a CB auditor for one year in the USA. in 1992, clients didn't have much choice!

 

In my experience we are assigned by providing evidence of knowledge within SICs. Resume has something to do with it, but since they are so easily - and frequently - falsified, in my experience other measures were taken.

 

Good question.

Some years ago, the Accreditation Bodies changed the process. Now, according to ISO/IEC 17021 (the Certification Body version of ISO 19011), they must perform a "Stage 1" audit. At least 50% must be on site and is a "readiness review" and more than a simple document review. It's more for them to assure that your organization is ready to be certified, meaning, have you got any actual implementation activities, which demonstrate - at least some evidence of process performance to those established objectives - done audits and had a management review. They are supposed to a) plan their audit (stage 2) and b) identify any impediments to a successful outcome, including those which may delay the stage 2. They may also confirm scope, headcount (FTE) and so on. They should deliver and audit readiness report, a recommendation to go ahead with a specific, agreed timeframe (30-45 days for the Stage 2) and any issues which need attention.

 

This can be overcome by being careful who is recruited, of course. Some CBs have poor hiring practices....

 

True, as is the case with all employers. Most find themselves in the same predicament.

 

Yes, I feel your pain. If you are familiar - and can work with - DNV, why not simply get them to quote you and take it from there?

Don't forget that there are some significant differences between 2008 and 2015 requirements. Don't fall into the trap of thinking it's a continuum that you can simply pick up without much work...