Using the process approach and RBT are hot topics for organizations implementing ISO 9001 for the first time and others transitioning to its revised requirements. There’s nothing new about RBT. In fact, ISO 19011:2011—Guidelines for auditing management systems highlighted the need for organizations to identify risk as associated with QMSs, environmental management systems, and occupational health and safety management. ISO 19011:2011 also included a reference to using risk-based auditing (RBA). RBT is ingrained in product