AS9100D Audit Readiness Checklist: How to Prepare for Your Next Audit

Posted on by Ronnie Roberts II
AS9100D Audit Readiness Checklist How to Prepare for Your Next Audit

Organizations pursuing AS9100D certification or preparing for a surveillance audit often discover the same challenge: knowing whether the Quality Management System is truly ready before the auditor arrives.

An AS9100D audit readiness checklist provides a structured method for evaluating compliance, verifying objective evidence, identifying gaps, and reducing the risk of nonconformities during an external audit. Rather than waiting for an auditor to uncover weaknesses, organizations can use a readiness checklist to assess the health of the system before certification, recertification, or surveillance activities.

This guide explains what an AS9100D audit readiness checklist should contain, how it supports compliance, and the key questions organizations should answer before an audit.

AS9100D Audit Checklist Overview

What Is an AS9100D Audit Readiness Checklist?

An AS9100D audit readiness checklist is a structured assessment tool used to verify that processes, procedures, records, and evidence align with the requirements of AS9100D.

The checklist is typically used before:

  • Stage 1 certification audits
  • Stage 2 certification audits
  • Surveillance audits
  • Recertification audits
  • Customer audits
  • Internal audit programs

Its purpose is to identify missing evidence, incomplete implementation, and process weaknesses before they become audit findings.

Why Audit Readiness Matters

Many audit findings are not caused by major system failures. They are caused by missing records, outdated documentation, inconsistent implementation, or ineffective monitoring activities.

A readiness review helps organizations:

  • Identify compliance gaps early
  • Improve auditor confidence
  • Reduce corrective actions after audits
  • Verify process effectiveness
  • Confirm objective evidence exists
  • Strengthen overall QMS performance

Organizations with a formal audit readiness process are generally better prepared to demonstrate conformity during external assessments.

AS9100D Audit Requirements Overview

AS9100D incorporates ISO 9001 requirements while adding aerospace-specific expectations related to risk, product safety, counterfeit parts prevention, configuration management, and operational control.

Auditors evaluate whether the Quality Management System:

  • Conforms to AS9100D requirements
  • Conforms to organizational requirements
  • Is effectively implemented
  • Is effectively maintained
  • Produces intended results

Internal audits are a critical component of demonstrating readiness because Clause 9.2 requires organizations to conduct audits at planned intervals and maintain evidence of audit activities and results.

AS9100D Audit Readiness Checklist by Clause

Clause 4 – Context of the Organization

Verify:

  • Internal and external issues are identified
  • Interested parties are defined
  • Relevant requirements are monitored
  • QMS scope is documented
  • Process interactions are defined

Evidence to Review:

  • Process maps
  • Context analysis
  • Scope statement
  • Interested party evaluations

Questions to Ask:

  • Has the organization defined the boundaries of the QMS?
  • Are interested party requirements periodically reviewed?
  • Do process owners understand process interactions?

Clause 5 – Leadership

Verify:

  • Quality policy is established
  • Quality objectives align with organizational direction
  • Responsibilities and authorities are assigned
  • Customer focus is demonstrated

Evidence to Review:

  • Quality policy
  • Organizational charts
  • Management communications
  • Leadership meeting records

Questions to Ask:

  • Can employees explain the quality policy?
  • Are responsibilities clearly defined?
  • Does leadership actively support the QMS?

Clause 6 – Planning

Verify:

  • Risks and opportunities are identified
  • Actions are implemented
  • Quality objectives are measurable
  • Changes are controlled

Evidence to Review:

  • Risk registers
  • Risk assessments
  • Action plans
  • Change management records

Questions to Ask:

  • Are risks periodically reviewed?
  • Are mitigation actions tracked?
  • Are quality objectives monitored and reported?

Clause 7 – Support

Verify:

  • Personnel competence is maintained
  • Training records are current
  • Infrastructure is adequate
  • Equipment is calibrated
  • Documented information is controlled

Evidence to Review:

  • Training records
  • Competency matrices
  • Calibration certificates
  • Maintenance logs
  • Master document lists

Questions to Ask:

  • Are employees qualified for assigned tasks?
  • Are expired certifications identified?
  • Is document control functioning effectively?

Clause 8 – Operation

Clause 8 generates the largest volume of audit evidence and often receives the greatest audit attention.

Verify:

  • Customer requirements are reviewed
  • Operational risks are controlled
  • Suppliers are monitored
  • Product realization is controlled
  • Traceability is maintained
  • Nonconforming outputs are managed

Evidence to Review:

  • Contract reviews
  • Purchase orders
  • Approved supplier lists
  • Travelers
  • Inspection records
  • Nonconformance reports

Questions to Ask:

  • Can traceability be demonstrated?
  • Are supplier performance metrics reviewed?
  • Are customer requirements flowed down correctly?

Aerospace-Specific Readiness Requirements

Product Safety

Verify:

  • Product safety responsibilities are defined
  • Risks are assessed
  • Controls are implemented

Questions:

  • How are safety risks identified?
  • What evidence demonstrates product safety awareness?

Counterfeit Parts Prevention

Verify:

  • Supplier verification processes exist
  • Receiving inspections are performed
  • Suspect parts are controlled

Questions:

  • How are suppliers evaluated?
  • What happens when counterfeit parts are suspected?

Configuration Management

Verify:

  • Product configurations are controlled
  • Revision status is maintained
  • Changes are approved before implementation

Questions:

  • Can the current approved configuration be identified?
  • Are engineering changes properly documented?

Human Factors

Verify:

  • Human-factor risks are considered
  • Lessons learned are communicated
  • Workload and communication issues are addressed

Questions:

  • How are human-factor concerns identified?
  • Are recurring issues analyzed for systemic causes?

Clause 9 – Performance Evaluation

Verify:

  • Performance metrics are monitored
  • Internal audits are completed
  • Customer satisfaction is evaluated
  • Management reviews are conducted

Evidence to Review:

  • KPI reports
  • Audit schedules
  • Audit reports
  • Management review records

Questions to Ask:

  • Are audit findings addressed promptly?
  • Are performance trends analyzed?
  • Does management review meaningful data?

Clause 9.2 requires organizations to establish and maintain an audit program that considers process importance, organizational changes, and previous audit results while maintaining documented evidence of audit activities.

Clause 10 – Improvement

Verify:

  • Nonconformities are addressed
  • Root causes are identified
  • Corrective actions are implemented
  • Effectiveness is verified

Evidence to Review:

  • Corrective action reports
  • Root cause analyses
  • Effectiveness reviews
  • Improvement projects

Questions to Ask:

  • Are corrective actions closed with evidence?
  • Has effectiveness been verified?
  • Are recurring issues being eliminated?

Common Audit Readiness Gaps

Organizations frequently encounter issues involving:

Internal Audits

  • Audit schedules not followed
  • Incomplete audit coverage
  • Missing audit records
  • Auditor independence concerns

Training and Competence

  • Expired qualifications
  • Missing competency evaluations
  • Incomplete training documentation

Risk Management

  • Outdated risk registers
  • Unimplemented mitigation actions
  • Inconsistent risk reviews

Document Control

  • Obsolete forms in use
  • Missing approvals
  • Uncontrolled documents

Corrective Actions

  • Weak root cause analysis
  • Overdue corrective actions
  • Lack of effectiveness verification

Final Audit Readiness Review

Before an external audit, organizations should confirm:

☐ Internal audits are completed

☐ Management review is current

☐ Corrective actions are closed

☐ Risk assessments are updated

☐ Training records are current

☐ Calibration records are available

☐ Supplier monitoring is documented

☐ Quality objectives are reviewed

☐ Required procedures are controlled

☐ Objective evidence is accessible

☐ Nonconformities are properly managed

☐ Process owners understand their responsibilities

Conclusion

An AS9100D audit readiness checklist provides a practical framework for evaluating compliance before certification, surveillance, or customer audits. By systematically reviewing Clauses 4 through 10, verifying objective evidence, and identifying weaknesses early, organizations can reduce audit risk while strengthening overall QMS performance.

Audit readiness is not about preparing for a single event. It is about maintaining a system that consistently demonstrates conformity, effectiveness, and continual improvement throughout the year.