2.2 Clause 5.1 — Leadership, Commitment & Customer Focus

Key Takeaways

  • ISO 9001:2015 removed the mandatory 'management representative' role required by the 2008 edition, placing direct accountability for QMS effectiveness on top management under Clause 5.1.1(a).
  • Clause 5.1.1 lists ten specific leadership commitments (a through j), including integrating QMS requirements into business processes and promoting the process approach and risk-based thinking.
  • Clause 5.1.2 requires top management to ensure customer and applicable statutory/regulatory requirements are determined, understood, and consistently met, and that customer satisfaction focus is maintained.
  • Because accountability is non-delegable, auditors must gather objective evidence of leadership commitment directly from top management, not solely from quality-department interviews.
Last updated: July 2026

Clause 5 of ISO 9001:2015 is titled Leadership, and the choice of word over the 2008 edition's "Management Responsibility" is deliberate. The 2015 edition removed the mandatory management representative role — the single named individual the 2008 standard required top management to appoint with defined authority for the QMS. In its place, ISO 9001:2015 makes top management personally and directly accountable for the QMS. Responsibilities can still be delegated and distributed across a team, but accountability for QMS effectiveness cannot be handed off to a quality manager the way it often was under the old management-representative model. For a lead auditor, this single change reshapes how Clause 5 has to be audited: evidence of leadership commitment has to come substantially from top management itself, not only from the quality department.

5.1.1 Leadership and Commitment — General

Clause 5.1.1 requires top management to demonstrate leadership and commitment with respect to the QMS by:

a) taking accountability for the effectiveness of the quality management system b) ensuring the quality policy and quality objectives are established for the QMS and are compatible with the context and strategic direction of the organization c) ensuring the integration of QMS requirements into the organization's business processes d) promoting the use of the process approach and risk-based thinking e) ensuring the resources needed for the QMS are available f) communicating the importance of effective quality management and of conforming to QMS requirements g) ensuring the QMS achieves its intended results h) engaging, directing, and supporting persons to contribute to the effectiveness of the QMS i) promoting improvement j) supporting other relevant management roles to demonstrate leadership as it applies to their areas of responsibility

This list replaces what ISO 9001:2008 called "management commitment" and "management review" obligations scattered across several sub-clauses — 2015 consolidates them into one clear leadership statement. Read the ten items carefully, because items (c) and (d) are two of the biggest structural themes of the 2015 revision. Item (c) — integration of QMS requirements into business processes — is the standard's explicit rejection of a QMS that lives as a parallel, paperwork-only system disconnected from how the business actually operates. Item (d) makes risk-based thinking and the process approach a top-management promotion duty, not something the quality department imposes from the side. Item (j) also matters for audit planning: leadership is not confined to the person at the very top of the org chart — middle and functional managers are expected to demonstrate leadership within their own areas, and an auditor can reasonably interview a plant manager or operations director about how they support QMS effectiveness in their function.

Items (f) through (i) reward a closer look too. Item (f), communicating the importance of effective quality management, is not satisfied by a single memo at implementation — auditors look for a recurring cadence: quality performance on a standing agenda item at leadership meetings, quality metrics visible on operational dashboards, or references to quality outcomes in company-wide updates. Item (g), ensuring the QMS achieves its intended results, ties directly back to whatever "intended results" the organization itself defined when it set its quality objectives under 6.2 — an auditor cannot judge (g) in isolation from what the organization set out to achieve. Item (h), engaging, directing, and supporting people, is often evidenced through recognition programs, involvement in improvement initiatives, or visible manager time spent coaching on quality-related tasks, while item (i), promoting improvement, connects forward to Clause 10 and is frequently evidenced through management review outputs that assign improvement actions with named owners and target dates.

As objective evidence for 5.1.1 overall, an auditor should look for: strategic-plan documents that explicitly reference quality objectives; resourcing decisions (headcount, capital budget, training spend) approved by top management with a visible link to QMS needs; top-management attendance and active participation in management review, not merely a signature on the minutes; and communication artifacts — town halls, intranet posts, induction materials — that convey the importance of the QMS in top management's own words, not only the quality manager's. It is worth remembering that 5.1.1 applies identically to a five-person consultancy and a five-thousand-person manufacturer — the scale of evidence will differ enormously, but the underlying accountability, integration, and communication expectations do not shrink just because the organization is small. A lead auditor auditing a small organization should still expect to find a real, if informal, trail connecting top management's decisions to the QMS, rather than accepting "we're too small for this" as a substitute for evidence.

One more distinction worth drilling into for the exam: 5.1.1 is about leadership and commitment, while 5.3 (covered in the next section) is about assigning responsibilities and authorities. Candidates sometimes conflate the two, but the exam tests them separately — 5.1.1 is what top management itself must personally demonstrate, while 5.3 is about how top management distributes specific duties to others. A common exam trap is a scenario describing an organization where duties are clearly assigned under 5.3, and asking whether that alone satisfies 5.1.1 — it does not, because 5.1.1 requires top management's own visible accountability and engagement in addition to, not instead of, delegated responsibility elsewhere in the organization.

5.1.2 Customer Focus

Clause 5.1.2 requires top management to demonstrate leadership and commitment with respect to customer focus specifically, by ensuring that:

a) customer and applicable statutory and regulatory requirements are determined, understood, and consistently met b) the risks and opportunities that can affect conformity of products and services and the ability to enhance customer satisfaction are determined and addressed c) the focus on enhancing customer satisfaction is maintained

Note that 5.1.2 sits directly under Leadership, not under Operation (Clause 8) or Performance Evaluation (Clause 9). That placement is intentional: ISO 9001:2015 treats customer focus as a top-management leadership obligation, not merely a downstream operational or monitoring activity. An auditor should be able to trace evidence of top management's personal engagement with customer requirements — reviewing key account performance, engaging directly with major customer escalations, or setting strategic direction around customer satisfaction targets — separate from the operational-level evidence gathered later under Clause 8 and 9.1.

Item (b) of 5.1.2 also deliberately links customer focus back to risk-based thinking: top management must ensure that risks and opportunities affecting product/service conformity and customer satisfaction are determined and addressed, not just risks to on-time delivery or internal efficiency. A useful audit test is to ask top management directly what the organization's biggest current risk to customer satisfaction is, and then check whether that risk actually appears in the risk register built under Clause 6.1 — a mismatch between what leadership says out loud and what is formally recorded is a strong signal that 5.1.2(b) is not being lived in practice.

Auditing Leadership Without a Management Representative

Because ISO 9001:2015 removed the mandatory management-representative role, a lead auditor cannot satisfy Clause 5 evidence requirements by interviewing only the quality manager and treating their answers as a proxy for top management's commitment. In practice:

  • Interview actual top management directly, wherever possible, even briefly — a chief executive, managing director, or site general manager, not only whoever currently holds quality-department responsibility
  • Follow the accountability, not the title. Some organizations distribute former management-representative duties across several people (an operations director for process integration, an HR director for competence and engagement, a finance director for resourcing) — that distribution is entirely acceptable under 2015, provided accountability for overall QMS effectiveness still traces back to top management
  • Look for management review engagement. Since management review (Clause 9.3) is where a great deal of 5.1.1's accountability becomes visible in records, weak or absent top-management participation in management review is often the clearest signal of a Clause 5 gap
  • Cross-check resourcing decisions. If quality-critical resource requests are being denied or deprioritized without top-management visibility, that undercuts the evidence for 5.1.1(e)
  • Probe consistency across levels. Ask top management, a middle manager, and a frontline employee the same basic question — "what matters most about quality here?" — and compare the answers; wide divergence usually means communication (5.1.1(f)) is not reaching the floor

A frequent finding during third-party audits is a well-run quality department that has effectively become the organization's de facto management representative in all but name — competent, diligent, and completely disconnected from any visible top-management accountability trail. That pattern, on its own, is not automatically a nonconformity, but it is exactly the kind of situation where an auditor should probe harder: ask top management directly what they know about recent QMS performance, recent nonconformities, or the current quality objectives, and see whether the answers demonstrate genuine accountability or a rehearsed summary handed to them beforehand shortly before the audit began. The distinction between the two is often the difference between a clean audit and a major finding against 5.1.1(a) — and it is precisely the kind of judgment call the exam's "Concepts & principles" and "Conducting the audit" sections both expect a lead auditor to be able to make confidently.

It also helps to remember why the standard changed. Under ISO 9001:2008, many organizations treated the management representative as a firewall: top management appointed someone, funded the position modestly, and then largely stayed out of quality matters entirely, confident the appointment alone satisfied the requirement. ISO 9001:2015's technical committee wrote 5.1.1 and 5.1.2 specifically to close that loophole. So when an auditee argues "our quality manager has full authority, so this satisfies leadership," the correct response is not to accept the argument at face value, but to test it: full authority to act is not the same as top management's own accountability to own the outcome, and the standard now requires evidence of both.

For exam purposes, remember the shift in a single sentence: ISO 9001:2008 let top management appoint someone else to be accountable for the QMS; ISO 9001:2015 does not let that accountability leave the room. Every leadership-focused scenario question on Clause 5 is ultimately testing whether the candidate can spot the difference between delegated responsibility (fine, expected, encouraged) and abdicated accountability (not permitted under 5.1.1(a)).

Finally, do not overlook how 5.1.2 and 5.1.1 reinforce each other in a single audit trail. If top management can articulate the organization's biggest customer-satisfaction risk (5.1.2(b)), can point to a resourcing decision that addressed it (5.1.1(e)), and can show that decision was communicated down through the organization (5.1.1(f)), that is a genuinely strong leadership finding — three sub-clauses corroborating one coherent story, rather than three isolated checkbox answers.

Test Your Knowledge

During the opening meeting of a third-party surveillance audit, only the quality manager and internal auditors are present. When the lead auditor asks to interview the CEO later in the audit, the quality manager explains the CEO is 'too busy' and has delegated all quality matters entirely to the quality department. What should the lead auditor conclude?

A
B
C
D