A layered process audit (LPA) is a short, frequent check of the same high-risk process controls, performed by people at multiple management layers, from operators up to executives. Instead of one deep annual audit, LPAs run many quick verifications so process drift gets caught in hours, not months. They target how work is actually done, not the finished product.
The idea is deceptively simple. Take the handful of controls that, when they slip, cause your worst defects. Then have several different people, at different levels, verify those exact controls on a regular rhythm. An operator checks them every shift. A supervisor checks them weekly. A plant manager monthly. An executive quarterly. When the same critical control is watched by many eyes at many frequencies, deviations surface fast and stay fixed.
What is a layered process audit?
A layered process audit is a verification of process compliance at the point of work, repeated across organizational layers. The reference framework is the automotive industry's CQI-8 guideline from AIAG (AIAG CQI-8), and the practice is widely required through IATF 16949 for automotive suppliers, though the method works in any plant that runs repeatable processes.
Three features define an LPA and separate it from a normal audit. First, it is layered: multiple levels of the organization audit the same controls, so verification does not depend on one quality department. Second, it is frequent and short: a checklist of a few high-impact questions, done in minutes, many times over. Third, it focuses on process inputs, how the job is set up and run, rather than inspecting the finished part. As AIAG puts it, most quality problems come from process noncompliance, so auditing the sources of variation is the only way to prevent defects proactively rather than catch them after the fact.
An LPA is intentionally not a document review. The auditor stands at the station, watches the work, and confirms the control with their own eyes: is the right work instruction actually open, is the fixture actually clamped, was the first piece actually checked. That physical, in-the-moment quality is what makes an LPA hard to fake and quick to act on. A checklist answered from a desk is not an LPA; a checklist answered at the machine, while the job runs, is.
How do LPAs differ from other audits?
A system audit (like an ISO 9001 internal audit) checks whether your QMS conforms to a standard. A product audit checks whether a finished part meets spec. An LPA checks whether the process is being run correctly, right now, at the station. They are complementary, not competing. A plant running all three has the full picture: the system is sound, the parts conform, and the process is being run as designed right now.
The practical differences are frequency and reach. A system audit might hit a given process once or twice a year, deeply, by a specialist. An LPA hits the same critical controls dozens of times a year, shallowly, by everyone. That trade, breadth of coverage for depth per visit, is exactly what catches the slow drift that annual audits miss: the fixture that loosened last Tuesday, the work instruction everyone quietly stopped following, the torque setting that crept.
How often should each layer audit?
A typical cadence runs operators daily or per shift, supervisors weekly, managers monthly, and executives quarterly. That is a starting template, not a rule. The real principle is that frequency follows risk: processes that are recently launched, recently nonconforming, or safety-critical warrant tighter frequency at every layer.
The layering does double duty. It spreads coverage, and it puts leadership on the floor. When a plant manager personally runs an LPA at a station, two things happen: the manager sees the real conditions of work, and the operator sees that these controls matter enough for a manager to check them. That visible attention is a big part of why LPAs change behavior, not just paperwork.
There is a discipline cost, and it is worth naming. Layered audits only work if the layers actually show up. The most common failure is that operators keep doing their daily checks while supervisors and managers quietly skip theirs when the plant gets busy. The moment leadership treats its LPA rounds as optional, the whole system collapses back into a self-check that no one verifies. Protecting the higher-layer audits, especially during crunch weeks, is what keeps the program honest, because those are precisely the weeks when process controls slip.
How do you build an LPA program?
Building an LPA program is mostly discipline, not tooling. Here is the sequence:
- Pick the critical controls. Start with the processes that cause your worst defects, most complaints, or biggest safety risk. Identify the specific controls, torque, setup, first-piece check, PPE, correct work instruction, that keep them in line.
- Write short, specific checklists. A handful of yes/no questions that a non-specialist can verify in a few minutes at the station. Ask about the process setup, not the finished part.
- Assign the layers and cadence. Decide who audits at each level and how often, weighting higher-risk processes toward more frequent checks.
- Make findings fixable on the spot. When an answer is no, the auditor either corrects it immediately or triggers containment. Fast correction at the point of work is the whole value.
- Escalate and track what cannot be fixed now. Log open items on a nonconformance report and route recurring ones to root-cause analysis so they do not keep reappearing on checklists.
- Review the data for patterns. Roll up the yes/no results to see which controls fail most, on which shifts, at which stations. Those patterns point to the process fixes that actually cut defects.
- Refresh the questions. Retire controls that have been solid for a long time and add new ones after launches or new failures, so the checklist keeps hunting live risk instead of going stale.
How do LPAs cut recurring defects?
LPAs cut defects by catching process noncompliance before it becomes a bad part. A finished-goods inspection tells you a defect already happened; an LPA tells you the setup is wrong while you can still fix it for free. Multiply that by many checks across many layers and you drain a whole category of recurring problems, the ones caused by drift from the standard rather than by a one-time mistake. Those drift defects are the hardest to kill with inspection alone, because inspection only sees the result, never the cause, so the same defect keeps returning batch after batch until someone finally watches the process itself.
They also attack the cost of poor quality directly. Every deviation caught at the station is scrap, rework, and a possible escape that never happens, which is why LPAs are framed as a tool to reduce the cost of quality. And because the same controls are watched constantly, an improvement, once verified holding across layers, tends to stay held instead of quietly eroding.
Consider a simple case. A cell has a recurring defect traced to operators occasionally starting a run before the fixture is fully seated. A finished-part inspection would keep catching the bad parts, one costly batch at a time. An LPA question, "is the fixture seated indicator green before start?", asked every shift by the operator and weekly by the supervisor, catches the miss at the setup stage, corrects it in seconds, and, once the pattern shows up in the rolled-up data, points straight at the fix: a poka-yoke that will not let the machine start unseated. That is the loop LPAs are built to run, from behavior check to permanent fix.
LPA facts worth anchoring on
Reference points from the standards bodies:
- The LPA framework is defined by the AIAG CQI-8 Layered Process Audit Guideline, meant to be adopted by any automotive OEM or supplier at any tier (AIAG CQI-8).
- LPA evidence supports the internal process audit expectations of ISO 9001:2015 Clause 9.2 and the automotive requirements in ISO 9001:2015 as extended by IATF 16949.
- ASQ documents auditing as a core quality discipline, including process auditing focused on how work is performed (ASQ, Auditing).
The one thing that reliably kills an LPA program is friction: paper checklists that pile up unread, results nobody rolls into a pattern, and open findings that get lost between shifts. Harmony's part is narrow: capture the LPA checks digitally at the station, keep them searchable, and surface which controls fail where, so leadership spends its time fixing patterns instead of chasing clipboards, working alongside your existing systems rather than replacing them. No rip-and-replace. Pairing LPA data with statistical process control on the same critical characteristics gives you both the behavior check and the numbers, and you can see the digitization approach at work in our customer story. The method's promise is steady: watch the right controls often enough, at enough levels, and the defects they cause stop coming back.