A certification audit is a formal, systematic process conducted to verify whether an organization complies with specific standards and regulations. This process is usually carried out by an external, independent body known as a certification body. The audit aims to ensure that the organization's management systems, processes, and practices meet predefined criteria, often based on international standards such as ISO, ISO 9001 for quality management, or ISO 27001 for information security management.