Step 3


The Controls list provides you with a template list of the mandatory controls for ISO standards. You can easily add operational controls such as systems, checklists and documents to provide a complete overview of your management system controls.

ISO 9001 More Info
More information on this implimentation...
Scroll down

Why you need to define Controls for your ISO Management System (MS)

8.1 Operational planning and control. The organization shall plan, implement and control the processes (see 4.4) needed to meet the requirements for the provision of products and services and to implement the actions determined in Clause 6 by:

a) determining the requirements for the products and services;

b) establishing criteria for 1) the processes; 2) the acceptance of products and services;

c) determining the resources needed to achieve conformity to the product and service requirements;

d) implementing control of the processes per the criteria;

e) determining, maintaining and retaining documented information to the extent necessary: 1) to have confidence that the processes have been carried out as planned; 2) to demonstrate the conformity of products and services to their requirements.

The output of this planning shall be suitable for the organization’s operations. The organization shall control planned changes and review the consequences of unintended changes, taking action to mitigate any adverse effects, as necessary.

The organization shall ensure that outsourced processes are controlled (see 8.4).

How ISOvA MS software helps you determine controls 

The ISOvA IMS Toolbox provides you with a template list of control processes to evaluate. Lookup columns to your Roles and Responsibilities, Clauses and requirements to avoid duplication and enables hyperlinks to drill down for further information.

ISOvA IMS Toolbox Online Demo - Controls List
Controls list on the ISOvA IMS Toolbox 

The headings below match the columns provided in your IMS Toolbox:


The title column communicates the different controls you have within your organisation to prevent non-conformance. ISOvA Toolbox gives you examples in categories which include controls in:

  • Competencies
  • Compliance
  • Continual Improvement
  • IMS Documentation
  • Infrastructure
  • Operational Control


Further information on your organisation's controls could include hyperlinks to other documents to give a broader explanation. More information that is added here would help in communicating with interested parties.

Status and Trends

The Status columns enable you to evaluate the performance of each Control.

ISO standards requires you to analyse and evaluate appropriate data and information arising from monitoring and measurement. The results of the analysis should help you evaluate:

  • conformity of products and services
  • the degree of customer satisfaction
  • the performance and effectiveness of the quality management system
  • if planning has been implemented effectively
  • the effectiveness of actions taken to address risks and opportunities.
  • the performance of external providers
  • the need for improvements to the quality management system


This column describes the responsibilities related to the control and, when applicable, the authorities.


This column defines the ISO clause, which is linked with the processes.

For example, an operational procedure (flow chart) communicates the standard's clause 8 (Operations).

Management Reports

The Controls list data can be filtered and sorted to provide management reports by ISO Type, Maturity and clauses so you can quickly identify the information required for audits and reports.

Related Lists

Once completed, you can look up your list of Controls from the SWOT Analysis, Risk and Opportunities register, Processes which reduces effort and avoids duplication errors.

Line Breaker

Next Step…

Having determined roles, responsibilities, and authorities for your ISO MS, you can now move to the next step:

Step Implementation Guides:

1: Roles & Responsibilities
2: Aims and objectives
3: Controls
4: SWOT Analysis
5: Interested Parties
10: Audit Programme
Request a Demo

If you would like a demo of the ISOvA (Risk Compliance Software and) Integrated Management System (IMS) software fill out our form below:

By filling out this form, you agree to the terms laid out in our privacy policy
Thank you!
Your submission has been received, one of our team members will be in touch soon.
Oops! Something went wrong while submitting the form.
Ask a Question
By clicking “Continue To Site”, you agree to the storing of cookies on your device to enhance site navigation, analyse site usage, and assist in our marketing efforts. View our Privacy Policy for more information.