What is the difference between AS9100 and ISO 9001?

Most modern businesses and organisations have adopted standardised management systems as a way of applying structured governance to their processes. These systems support a wide range of disciplines, including quality, health and safety, information security, environmental management, innovation and artificial intelligence. While generic ISO management system standards are designed to be applicable across all sectors, there are also industry‑specific standards developed to reflect the unique requirements of particular fields.

ISO 9001 and AS9100 are two examples of quality management system (QMS) standards. Both are intended to help organisations ensure product quality and maintain consistency throughout their supply chains, which is why certification to one or the other is often considered a “licence to trade”. The key distinction between ISO 9001 and AS9100 is that ISO 9001 is a generic standard applicable to all industries, whereas AS9100 is tailored specifically to the aerospace industry and its supply chain.

What are ISO 9001 and AS9100?

Although both standards address quality management systems (QMS), they serve slightly different purposes:

• The International Standards Organization’s ISO 9001 is internationally recognised and the most widely used QMS standard in the world. It is applicable to organisations of any size, sector or type of business. The primary focus of ISO 9001 is on managing quality processes and meeting customer requirements. Organisations certified to ISO 9001 demonstrate their ability to consistently deliver products and services that meet both customer expectations and applicable regulatory requirements.
• AS9100 incorporates all the requirements of ISO 9001, together with additional criteria specific to the aerospace industry. It was developed by the International Aerospace Quality Group (IAQG) in collaboration with leading aerospace manufacturers and organisations worldwide. AS9100 places greater emphasis on areas such as risk management, supply chain control, and the reliability, safety and traceability of products and services. Certification to AS9100 is often a prerequisite for doing business within the aerospace sector, as it demonstrates compliance with the industry’s more stringent quality expectations.

Both standards are based on ISO’s harmonised structure and highlight the importance of strong leadership commitment, a customer‑focused approach, effective process management and continual improvement.

Key differences between ISO 9001 and AS 9100

Both ISO 9001 and AS9100 are based on the Plan-Do-Check-Act (PDCA) cycle, a four‑step framework used to develop, implement, monitor and continually improve a management system.

As an industry‑specific standard, AS9100 is more detailed and has a broader scope than ISO 9001 when it comes to quality and safety requirements within the aerospace sector. In addition to the ISO 9001 requirements, AS9100 introduces several enhanced and specialised requirements, including the following: 

Risk management:

AS9100 places a strong emphasis on risk management across design, development and manufacturing activities. Organisations are required to establish robust processes to identify, assess and mitigate risks, which is critical to ensuring product safety, reliability and regulatory compliance.

Product safety:

The standard includes explicit requirements for managing product safety throughout the entire product lifecycle. This involves identifying safety risks, implementing appropriate controls and ensuring accountability for safety related decisions.

Counterfeit parts prevention:

AS9100 contains stringent requirements to prevent the use of counterfeit or suspect parts. This is essential in the aerospace industry, where component failure can have serious safety and operational consequences.

Configuration management:

A more rigorous approach to configuration management is required under AS9100. Organisations must ensure that all product and service configurations are clearly identified, documented and controlled throughout their lifecycle, supporting traceability and change management.

Project management:

Specific requirements for project management are included to ensure that aerospace projects are planned, executed and controlled effectively. This is particularly important given the complexity, scale and regulatory oversight associated with aerospace programmes.

Special requirements:

AS9100 addresses special requirements, critical items and key characteristics. These controls reflect the high level of regulation in the aerospace industry and the need for enhanced traceability, verification and accountability.

Supplier management:

Supplier management requirements are more stringent in AS9100. Organisations must assess, select and continually monitor suppliers to ensure they meet the same high quality and safety standards expected of aerospace manufacturers.

Organisations seeking AS9100 certification must ensure their quality management system is sufficiently robust to meet these additional requirements, going beyond those of ISO 9001. For those looking to build competence in this area, certification bodies offer a range of automotive and aerospace certification training courses focused on quality management systems and certification processes.

ISO 9001:2015 transition to AS9100

Most organisations operating within the aerospace supply chain will already be certified to AS9100. However, for companies that are new to the aerospace sector and transitioning from ISO 9001, a structured approach is recommended to ensure a smooth and successful transition: 

1. Identify the additional elements needed to enhance the existing ISO 9001 management system. This typically involves carrying out a gap analysis between ISO 9001 and AS9100, preferably in collaboration with the certification body, to highlight areas requiring improvement
2. Provide training on AS9100 requirements. Relevant personnel should be trained on the additional and more stringent requirements introduced by AS9100. This helps ensure awareness, competence and consistent application across the organisation.
3. Update documentation and records. Existing procedures, records and documented information should be reviewed and updated to reflect the expanded AS9100 requirements, including those relating to risk management, product safety, supplier control and configuration management.
4. Internal audits should be carried out to verify that the quality management system has been effectively expanded and fully complies with AS9100. Any nonconformities identified should be addressed prior to the certification audit.
5. The final step is to undergo the AS9100 certification audit with an accredited certification body, such as DNV, to formally complete the transition.

In many cases, the transition process will also need to involve subcontractors and suppliers, particularly if they are required to meet AS9100 requirements and are not already certified. Organisations moving from ISO 9001 to AS9100 should plan the transition carefully, allowing sufficient time to implement all necessary changes before the certification audit takes place.