ISO 9001 Certification: Quality Management System

• Obtain the standard:

Get a licensed copy of the relevant standard and familiarize yourself with the requirements to decide if certification/registration to this standard makes good sense for your organization.

• Review available literature and apply digital tools

Explore available literature, guidelines from the standard owners (e.g. ISO/TS 9002 for ISO 9001, ISO 14004 for ISO 14001)   and digital sources and tools that can assist with implementation. Note that as a DNV customer you get access to tailored tools that can assist you.

• Assemble a team and define strategy:

To implement a management system should be a strategic decision for the entire organization. Senior management must be involved in the decision, committed and involved in shaping the system. They decide the business strategy the management system should support. In addition, you need a dedicated team to develop and implement your management system.

• Determine competence needs:

First, your team implementing and maintaining the management system needs a thorough understanding of the chosen standards. Later on, the wider organization needs awareness training. DNV offers a variety of public and in-house courses worldwide that meets your competence training needs at all levels within your organization.

• Review consultant options:

Independent consultants can advise on a workable, realistic, and cost-effective strategy plan for implementation if you do not have this competence or capacity already.

• Develop management system documentation: 

Decide on an appropriate platform for your documented information (e.g. software, process map- or SharePoint-based). The right platform is important to ensure effective management, communication and implementation.

• Determine, manage and document processes:

First identify key processes – what they are, how they work, and how they interact. Each process should have a clear purpose, defined responsibilities, and expected outputs. The level of documented information needed depends on the organization’s size, complexity, and the importance of each process, but must include relevant processes and other documented information needed to deliver on intended outcomes and comply with the chosen standard’s requirements.

• Implement management system:

Clear communication and necessary competence training are essential elements. During the implementation phase, you will work to ensure that your organization is working according to defined and documented processes. Once successful, you can prove system’s compliance and effectiveness.

• Select a certification body/registrar:

Selecting the right certification body/registrar can make a difference throughout your certification journey. DNV offers a trusted partnership approach, a risk-based approach and range of free digital tools that help you manage your certification journey before, during and after the audit.

• Consider a pre-audit gap analysis:

Consider a preliminary evaluation by your certification body/registrar to identify and correct nonconformities before starting the official certification process. The purpose is to identify areas of non-conformance or weaknesses, allowing you to correct these before you begin the official certification process.

ISO 9001 is an internationally recognised standard for quality management systems (QMS). It defines the requirements an organisation should follow to consistently deliver products and services that meet customer and regulatory requirements, while continually improving its processes. Developed by the International Organization for Standardization (ISO), ISO 9001 is applicable to organisations of any size and sector and provides a structured framework focused on customer satisfaction, process efficiency, and continual improvement.

ISO 9001 certification is a formal, independent confirmation that an organisation’s quality management system (QMS) meets the requirements of the ISO 9001 standard. It is granted by an accredited certification body following an audit and demonstrates that the organisation has effective processes in place to consistently meet customer and regulatory requirements, with a strong focus on continual improvement. Once verified that the company’s management system meets the ISO 9001 requirements, a certificate is issued by the certification body. Certification is voluntary and provides customers and stakeholders with confidence in the organisation’s ability to deliver quality consistently.

To get ISO 9001 certification, an organisation must implement a quality management system that meets the ISO 9001 requirements and then undergo an audit by an independent, accredited certification body like DNV. If the system complies with the standard, certification is granted and maintained through regular follow up audits.

To maintain ISO 9001 certification, an organisation must continue to operate and improve its quality management system, carry out regular internal audits, address any non‑conformities, and undergo periodic surveillance audits by the certification body. Ongoing compliance and continual improvement are essential to keep the certification valid.