July 14, 2026

ISO 9001:2026 internal audit requirements: what should you prepare for?

If your organisation is certified to ISO 9001:2015, transitioning to ISO 9001:2026 shouldn’t mean rewriting your internal audit policies and procedures from scratch.  

However, the new standard may adjust what a good internal audit programme needs to prove. 

ISO 9001:2026 has reached the Final Draft International Standard stage, with publication currently expected in September 2026. That means your organisation can start preparing now but shouldn’t make any final transition decisions until the official new version is published. 

On this page, our team here at ISO QSL explains how to prepare for the upcoming changes. For now, the best approach is to make sure your internal audits are useful, risk-based, evidence-led, and connected to how your quality management system (QMS) performs. 

Preparing your internal audits for ISO 9001:2026?

Learn how the new standard shifts focus from paperwork to real-world process performance and risk.

About the author

Jodie Turner – Marketing Team Leader

During my time as ISO QSL, I’ve developed extensive knowledge of digital marketing alongside a strong understanding of the ISO standards that help organisations improve.  

Are internal audit requirements changing in ISO 9001:2026? 

You’ll still need to conduct internal audits to check whether your QMS conforms to ISO 9001, meets your organisation’s own requirements, and is effectively implemented and maintained. The upcoming ‘change’ in ISO 9001:2026 is more about emphasis and evidence. 

Instead of treating internal audits as a paperwork exercise, your organisation must be ready to show how the audits help you understand how your QMS works in practice, manage risks, review processes and identify improvement opportunities. 

That doesn’t necessarily mean you need a completely new internal audit procedure. But it does mean your existing approach should be reviewed carefully. 

So, ask whether your audits are still asking the right questions.  

Are they focused on the processes that matter most?  

Are they looking at real evidence?  

Are they helping your leadership team understand where the QMS is working and where it needs attention? 

If not, now is a good opportunity to strengthen your approach. 

 

What should your internal audits focus on? 

As mentioned, not much changes here. Your internal audits should continue to check whether your QMS conforms to ISO 9001 and meets your own organisation’s requirements. Consider the importance of each process, previous audit results, known risks, customer issues, supplier problems, complaints, changes in the business, and areas where performance may be weaker, rather than relying only on calendar-based audit scheduling. 

However, as you prepare for ISO 9001:2026, it makes sense to review whether your internal audits are looking deeply enough at how your QMS works in practice. The following areas aren’t all ‘new’ requirements, but they are sensible focus points for a useful, transition-ready audit programme. 

 

Process effectiveness 

Your internal audits should test whether your processes work in your operations, not just whether the procedures exist. Use outputs, records, responsibilities, handovers, performance data and customer feedback as evidence. 

 

Leadership and accountability 

Auditors need evidence that your senior management is involved in your QMS. This may include quality objectives, resources, customer focus, risks, management review, improvement and process accountability. 

 

Risks and opportunities 

Your risks and opportunities should be identified, reviewed, updated and connected to action. A neglected risk register provides weak evidence that risk-based thinking is embedded in how your organisation operates. 

 

Interested parties and stakeholder expectations 

You should have a clear understanding of any relevant interested parties that affect the quality of your delivery. These may include customers, regulators, suppliers, staff and outsourced providers. Your stakeholders’ expectations should also be reflected in your QMS. 

 

Supplier and external provider control 

Auditors should review how external providers are approved, monitored, evaluated and controlled, especially where supplier performance, outsourced processes, delivery problems or quality issues affect the customer. 

 

Change management 

Your internal audits should test how changes are planned, controlled, communicated and reviewed. This may include changes to staff, suppliers, materials, equipment, software, processes, premises or customer requirements. 

 

Data, digital tools and evidence 

Digital QMS tools should provide reliable, controlled evidence. Review your records, version control, access, responsibilities, data accuracy, dashboards, spreadsheets, portals and other systems used for quality decisions. 

 

Corrective actions and improvement 

Auditors should follow audit findings through to completion. Are your teams fixing the root cause, closing corrective actions properly and learning from repeat issues? If the same problems keep returning, your QMS may not be improving. 

 

How internal audits support ISO 9001:2026 transition planning 

Internal audits are one of the best ways to prepare for ISO 9001:2026 because they show how your QMS works before your certification body reviews it. They’re also a required part of maintaining certification, so they aren’t even optional. 

A good internal audit highlights weaknesses before they become audit problems. It shows whether procedures are being followed, records are complete, staff understand their responsibilities, and your senior leaders have the information they need to make decisions. 

That gives you time to fix issues, improve performance and embed changes before your transition audit. Instead of rushing through a last-minute document update, you can use internal audits to make sure your QMS works in practice. 

 

How ISO QSL can help 

Transitioning to ISO 9001:2026 needs proper preparation. Here at ISO QSL, we can help you review your current internal audit process, identify likely gaps, train your internal auditors and prepare your QMS for the transition once the final version of ISO 9001:2026 has been published. 

Whether you need an early gap analysis, internal audit support or practical guidance on updating your QMS, our consultants are here to support you. Contact our team today on 0330 058 5551 to schedule your consultation and learn more about our services and flexible pricing.