Supplier/Vendor Audits

Supplier & Vendor Audit Services

A Supplier/Vendor Audit seeks to verify physically or on-site at the supplier’s premises, that they are complying with certain criteria. This criteria can be dictated by your organization and may encompass the following but not limited to:

  • A specific ISO or API standard, such as ISO 9001 or API Q2
  • Your organization’s own requirements for Suppliers/Vendors
  • Product specification
  • Procurement requirements

In general, a Supplier/Vendor audit should provide certainty that the Supplier/Vendor has the capability to provide products and/or services to your organization, that meet your own Quality, Environmental, Safety, Information Security, On-Time Delivery, or other requirements as applicable.

Call us today at (713) 589-4680 and find out how Mireaux can help establish a program to audit your suppliers.

Training Offerings

Mireaux’s 3-day Fundamentals of Document Control course provides instruction in the creation of a document control system, the different kinds of documents an organization may use, the creation of documents, and how to handle audits of documentation required for ISO as well as API Q1 9th Edition and API Q2 compliance. Learn more about this course


Venue Phone: 7135894680

Venue Website:

12802 Willow Centre Dr., Houston, Texas, 77066, United States

  • Jan
    8:30 am - 4:30 pm
  • 28 - 30
    8:30 am - 4:30 pm
  • Jan 28 - Jan 30
    8:30 am - 4:30 pm
  • 2020
    8:30 am - 4:30 pm
  • January 28, 2020 - January 30, 2020
    8:30 am - 4:30 pm

Mireaux’s 4-day Advanced Document Control course builds upon the 3-day Fundamentals, with the addition of 1 day in enhanced document control practices. These focus on the requirements associated with engineering and project management documents, such as Databooks, Transmittals, PI&D, Project Plans, and more. Learn more about this course.


Venue Phone: 7135894680

Venue Website:

12802 Willow Centre Dr., Houston, Texas, 77066, United States

  • Jan
    8:30 am - 4:30 pm
  • 28 - 31
    8:30 am - 4:30 pm
  • Jan 28 - Jan 31
    8:30 am - 4:30 pm
  • 2020
    8:30 am - 4:30 pm
  • January 28, 2020 - January 31, 2020
    8:30 am - 4:30 pm

Consulting Capabilities

Mireaux’s Consulting services involve full turnkey assistance in the development and implementation of management systems that conform to the desired ISO, or API standards.

Standards Include:

Web QMS Software

Cloud-based, secure and powerful, our Web QMS software helps you achieve, maintain, and improve your ISO and API certifications, allowing your employees full access and visibility to your management system – anytime, anywhere.

  • Approved Supplier List -> Supplier Corrective Actions
  • Asset Register
  • Behavioral Base Safety (BBS)
  • Business Continuity Plan (BCP)
  • Calibration -> Out-of-Tolerance Conditions
  • Communication Plan
  • Conformity Matrix
  • Contingency Planning
  • Corrective Action
  • Critical Processes
  • Critical Services and SRP
  • Customer Complaints
  • Customer Property
  • Customer Satisfaction
  • E-Learning
  • Emergency Contacts
  • Emergency Preparedness
  • Employee Certifications
  • Employee Handbook
  • Equipment Maintenance
  • External Audits -> External Audit Findings
  • External Documents
  • Glossary
  • HSE Manual
  • HSE Policy
  • Information Security Incidents
  • Internal Audits -> Internal Audit Findings
  • Inventory Control
  • ISMS Manual
  • ISMS Policy
  • Job Descriptions
  • Job Safety Analysis (JSA)
  • Lessons Learned
  • List of Legal Requirements
  • Main Process Map
  • Management of Change (MOC)
  • Management Reviews -> Management Review Action Items
  • Monitoring and Measuring
  • Nonconformance Report (NCR)
  • Objectives
  • Organizational Charts
  • Preventive Action
  • Procedures, Work Instructions & Forms
  • Product Quality Plans
  • Quality Manual
  • Quality Policy
  • Records Retention
  • Risk Assessment -> Significant Risks
  • Safety Incidents
  • Service Quality Plan
  • Short Service Employee (SSE)
  • Special Interest Groups
  • Statement of Applicability
  • Training Events
  • Training Plan

Frequently Asked Questions

There are many reasons that can spark the need to conduct a Supplier/Vendor Audit. Among them are the following:

  1. Your organization requires it for Supplier/Vendor approval
  2. Your organization requires it for Supplier/Vendor re-approval
  3. The Supplier/Vendor has shown a negative trend in the number of NCRs (product or service nonconformances)
  4. The Supplier/Vendor has been issued a Corrective Action and you would like to verify implementation and effectiveness
  5. A customer complaint was received, where the root cause was attributed to a failure or breakdown in the supplier/vendor processes
  6. Your organization wants to give the Supplier/Vendor additional work and wants to verify capabilities and capacity
  7. An information security incident, environmental impact, or safety incident occurred and it is evident that an error in the supplier/vendor’s processes, contributed to the problem.

In essence, reasons for conducting a Supplier/Vendor Audit abound. If your organization practices the ISO principle of “Relationship Management” formerly known as “Mutually beneficial Supplier Relationships”, then being able audit your Supplier/Vendor should be welcomed as an opportunity for furthering the ties between you and your supplier/vendor.

The ISO management system standards do not require Suppliers/Vendors Audits as part of the evaluation/reevaluation of supplier or vendors. API however, is more prescriptive in its requirements for Suppliers/Vendors’ initial evaluation and selection, as shown on the following API Q2 excerpt:

The requirement above is clear in that an assessment of the supplier needs to be done at their facility (the facility from where the supplier is providing their product or service); however, the assessment can be conducted by your organization, an organization you outsourced to, or a third-party. Whichever method you decide, it should be part of your supply chain program and be documented as part of your management system requirements.

Audits should never be confrontational or offensive.  If you have a management system in place that follows the ISO principle of “Relationship Management” formerly known as “Mutually beneficial Supplier Relationships”, then the relationship between you and your supplier/vendor should be one of mutual cooperation and improvement.

In general, Mireaux discourages use of surprise audits or similar scare tactics. We like to send Audit Agendas in advance and make sure that the organization is fully aware of our visit. However, if you truly believe that there are major discrepancies that need to be verified, it is up to your organization to bypass early notification and just show up.

Having a management system in place means establishing a process to control suppliers, vendors or external providers. While this process may vary based on the organization, the type of suppliers, or the requirements of the standard it subscribes to; in general it consists of having a program in place to approve and periodically reapprove the supplier. And is here where auditing the supplier could become a great tool to ensure that the approval or re-approval of the supplier is done thoroughly and not from a distance. 

Mireaux Auditors have extensive experience conducting audits and have been at both receiving ends of the Audit spectrum, escorting an Auditor during External Audits, or leading audits themselves.  As an ISO 9001 and ISO 27001 certified company, Mireaux has its own set of standards and procedures that its Associates have to follow. From issuing the Agenda 2 weeks in advance, to providing Audit Reports within 3-days of Audit completion;Mireaux can help your organization verify your supplier/vendor’s management system for the benefit of all.

Mireaux will help find your customized solution!