Quick answer: ISO management review is where leadership proves the management system is being directed, reviewed, and improved at the top level. If it becomes a paperwork ritual with no real decisions, auditors notice quickly.
Last reviewed: March 2026 by the BlueSafe Technical Team.
At a glance
| Item | Summary |
|---|---|
| Standard | Management review across ISO management systems |
| What it covers | Top-management review of system performance and direction |
| Who needs it | Businesses running or preparing certifiable management systems |
| Audit model | Auditors look for both the meeting record and the resulting decisions |
| Certificate validity | Management review supports ongoing certification readiness |
| Approximate cost | Mostly leadership time and preparation effort |
| Tender relevance | Indirectly high because weak leadership review undermines system credibility |
What management review is
Management review is the point where top management steps back and asks:
- is the system still suitable?
- is it adequate?
- is it effective?
- what needs to change?
That is why it is more than an agenda item. It is a leadership obligation inside the management system.
Why leadership involvement matters
The page brief emphasises that management review cannot simply be delegated away. That matters because ISO standards expect:
- leadership oversight
- resource decisions
- strategic direction
- evidence of real accountability
If leadership is absent, the review can become mechanically complete but commercially and operationally weak.
Typical inputs
The approved page brief allows a common set of review inputs such as:
- status of previous actions
- changes in context
- performance against objectives
- audit findings
- nonconformities and corrective actions
- resource adequacy
- improvement opportunities
The point is not to read a list for compliance. The point is to use those inputs to make decisions.
Typical outputs
Good management review outputs often include:
- priorities
- decisions
- responsibilities
- resource commitments
- improvement actions
Without outputs, the review is usually weak no matter how neat the minutes look.
How to run one well
A practical management review usually works better when the business:
- prepares meaningful performance information in advance
- keeps the discussion decision-focused
- records actions clearly
- follows up what was agreed
Auditors usually care less about the style of the meeting than about whether it produces real leadership evidence.
Common failures
Weak management reviews often look like:
- a compliance-only discussion
- no leadership attendance
- no evidence of prior actions being tracked
- no real decisions
- minutes that are too generic to prove anything
Frequency
The standard phrase "planned intervals" gives businesses some flexibility. The right cadence depends on:
- system maturity
- business risk
- audit pressure
- complexity
Annual review is common, but not always sufficient for faster-moving operations.
State and territory variations
Management review itself is not jurisdiction-specific, though review content in legal-compliance areas should still reflect the right regulatory context.
Related guides
- ISO Internal Audit Guide - How to Conduct an Internal Audit for Your Management System
- ISO Corrective Action and Nonconformity - How to Fix Problems Properly
- The ISO Certification Process in Australia - Step-by-Step Guide
Frequently asked questions
What is an ISO management review?
It is the formal leadership review of the management system's performance and direction.
What must the agenda include?
The page brief points to previous actions, context changes, performance data, audit results, nonconformities, resources, and improvement opportunities.
Who must attend?
Top management.
How often should management reviews occur?
At planned intervals, commonly annually or more frequently depending on system needs.