QUALITY AUDIT MANAGEMENT   Quality Audit is a form of monitoring carried out to verify that the UPM Quality Management System meets the requirements set in the standard. There are two (2) audits that are carried out every year, namely the UPM Internal Audit and the Certification Body Audit. UPM's Internal Audit aims to help UPM prepare for the Certification Body Audit where all the strengths and weaknesses of a process can be identified so that improvements can be implemented. Quality improvement is a continuous process and it is taken into account at every stage to improve existing services. It also aims to meet the requirements of MS ISO 9001:2015 and MS ISO/IEC 27001:2013 clause 9.2, which is that the organization must conduct internal audits periodically to provide information on whether it complies or not with the requirements of the ISO System and the requirements of International Standards. UPM's Internal Audit is carried out by an Internal Auditor (JAD) appointed at the UPM and PTJ level. Until May 2022, UPM has a total of 639 JAD QMS (101 JAD University and 538 JAD PTJ) and 109 JAD ISMS (45 JAD University and 64 JAD PTJ). The appointed JAD has attended courses conducted either inside or outside UPM. UPM's Internal Audit Management as a whole is monitored through an online system which is PortalCQA as shown in Figure 17. This portal was jointly developed by the Quality Assurance Center (CQA) and the Information and InfoComm Development Centre (iDEC). It aims to ensure the smoothness and effectiveness of the management and monitoring of UPM's Internal Audit findings involving QMS and ISMS.     Figure 17 :    PortalCQA Front Page View   UPM OPERATIONAL RISK MANAGEMENT   In order to comply with the requirements of the ISO 9001:2015 Standard, the Center for Quality Assurance (CQA) has developed an Operational Risk Management System (e-OPRISK) starting on  10th April 2019. This idea came about after seeing the difficulty of the Administrator to manage this reporting manually to be presented in the Committee Meeting UPM quality. This report was also reported in the UPM Management Review Meeting (MKSP), the UPM Risk Management Working Committee and the UPM Risk Management Master Committee. Four (4) Objectives of e-OPRISK, namely: 1.      obtain accurate and reliable data; 2.      reduce the time of collecting and analyzing data; 3.      reduce manpower requirements; and 4.      improve work efficiency and quality. With the implementation of e-OPRISK, UPM's operational risk management reporting can be managed more systematically. This e-OPRISK project has also won the Service Innovation Award for the Management Category in conjunction with UPM's 2019 Service Quality and Innovation Day (HKIP). e-OPRISK has been upgraded in 2021 and the latest improvement in 2022 (version 2.0) as shown in Figure 18. These continuous improvements are in line with current needs.   Figure 18 :  Front View of e-OPRISK Version 2.0 (2022)

Date of Input: 31/07/2023 | Updated: 31/07/2023 | aidawati