ISO consultation, Training and certification services ISO 9001, ISO 14001, ISO 45001, ISO 27001, ISO 17025, ISO 13485, SA 8000, HACCP ISO 22000

ISO/IEC 17025:2017 – What you need to know

Laboratories wishing to demonstrate their technical competence can do so via conformity with the international standard ISO/IEC 17025 ‘General requirements for the competence of testing and calibration laboratories’.  If you are a lab currently accredited under ISO/IEC 17025:2005 the big questions are, “what has changed and what do I need to do to maintain my accreditation?”

What has changed?

While there are plenty of minor changes (structural and definitions) there are a few major changes.  First, the management system requirements have been expanded (clause 4.2 in 17025:2005 vs clause 8 in 17025:2017), but there is good news – you have options!

Option A states that at a minimum your management system must address the following which are further defined in the standard:

Option B states that your laboratory is in compliance if

The bottom line is, if you are ISO 9001:2015 registered you may choose Option B which allows for much more flexibility as you implement 17025:2017.

Other key changes have been adopted with consideration to the latest version of other standards.  There is an overall theme and new section specifically on risk-based thinking which replaces prescriptive requirements with performance-based requirements.  This systematic approach to risk again aligns 17025:2017 with the 2015 revision of ISO 9001.

Additionally, 17025:2017 puts the emphasis on the results of a process instead of the detailed description of its tasks and steps.  This process approach now matches that of other newer standards such as ISO 9001 (quality management), ISO 15189 (quality of medical laboratories) and ISO/IEC 17021-1 (requirements for audit and certification bodies).

Finally, there is a stronger focus on information technologies with a new section devoted to the use of computer systems, electronic records and the production of electronic results and reports.  This section contains the note: commercial off-the-shelf software in general use within its designed application range can be considered to be sufficiently validated, so while the language was added to the standard, most modern day laboratories should be in compliance.

So, what is the big take away from the revision?  Much like pop-culture from 2005 versus today’s pop-culture, there has been an evolution, but things are not drastically different.  The standard was updated to reflect progress that has been made, and for the most part, as your operations have changed you have already implemented many of the changes – especially if you are using ISO 9001:2015.

What are the accreditation steps?

If you are currently a 17025:2005 accredited laboratory here is a generalized outline for getting your accreditation updated to the new standard.

  1. Conduct an awareness program for the revision.
  2. Review all of your documentation and identify changes that will need to be made to meet the new requirements.
  3. Determine and document your risks and opportunities and begin promoting the use of risk-based thinking.
  4. Review your quality policy and establish quality objectives.
  5. Revise your documentation and Quality Manual to meet the new requirements.
  6. Train internal auditors on the new requirements.
  7. Perform an internal audit to assess your system for compliance.
  8. Take corrective actions on identified non-conformities.
  9. Apply for a revision to your certificate to your existing accreditation body.
  10. Final audit.

How long do I have to make this happen?

On November 30, ISO published the revision with the provision that laboratories have three years to demonstrate conformity through third party accreditation.  During this transition period, it is important to note that both ISO/IEC 17025:2005 and ISO/IEC 17025:2017 are equally valid and applicable, so you have plenty of time to prepare and update your documentation.  BUT, don’t wait too long November 29, 2020 will be here before we know it!


ISO Consultant in Saudi Arabia by Kayzed Consultants

ISO Training Certification Dammam by Kayzed Consultants

Clients Testimonials

We are extremely happy and satisfied with Kayzed Consultants. for their professional service for our ISO 9001 Certification. We finished our project in time and cleared audit in the 1st audit without any major non conformity. We recommend Kayzed to any company that want to take ISO certification.


Our experience of working with Kayzed Consultants. has been fantastic and their training and implementation assistance was really superb. In my career spanning over 25 years, I have worked with 7 various consulting companies but my best experience was with Kayzed because of their skill of converting complicating ISO requirements into easy to implement modules that were absolutely easy to understand for my entire team


Kayzed Consultants came into our business with a fresh Ideas and listened intently to our views.Kayzed Consultants helped us to see opportunities from a fresh perspective.

Sharaf DG

An excellent well-balanced team with realism about the critical factors determining an invention's viability. Skillful and well-received engagement with the ISO team.


Kayzed is an outstanding business management consultant. I was very pleased with their knowledge and in-depth understanding of what it takes for a ISO Certification. The management's knowledge, natural instincts for business, and ability to put complex transnational business concepts into succinct and easy to understand terms were a great service to me and my team.