Enter audit data
Example data table
| Audit Area | Reference | Total Findings | Weighted Severity | Compliance Rate | Closure Rate | Repeat Rate | Risk Score | Priority |
|---|---|---|---|---|---|---|---|---|
| Incoming Inspection | IQC-2026-014 | 13 | 47.00 | 85.83% | 70.00% | 15.38% | 32.77 | Low |
| Final Assembly | FQC-2026-021 | 18 | 74.00 | 78.50% | 52.00% | 22.22% | 57.40 | Moderate |
| Supplier Control | SUP-2026-008 | 22 | 109.00 | 70.00% | 41.00% | 31.82% | 76.10 | Critical |
Formula used
1) Total Findings
Total Findings = Critical + Major + Minor + Observations
2) Weighted Severity
Weighted Severity = (Critical × Critical Weight) + (Major × Major Weight) + (Minor × Minor Weight) + (Observations × Observation Weight)
3) Severity Density
Severity Density = (Weighted Severity ÷ Total Checkpoints) × 100
4) Finding Density
Finding Density = Total Findings ÷ Processes Reviewed
5) Repeat Rate
Repeat Rate = (Repeat Findings ÷ Total Findings) × 100
6) Closure Rate
Closure Rate = (Closed Corrective Actions ÷ Total Corrective Actions) × 100
7) Overdue Rate
Overdue Rate = (Overdue Actions ÷ Total Corrective Actions) × 100
8) Compliance Rate
Compliance Rate = (Conforming Checkpoints ÷ Total Checkpoints) × 100
9) Composite Risk Score
Risk Score = 0.35×Severity Exposure + 0.20×Repeat Exposure + 0.20×Overdue Exposure + 0.10×Closure Lag Exposure + 0.10×Closure Gap Exposure + 0.05×Noncompliance Exposure
How to use this calculator
- Enter audit identity details such as area, reference, date, type, auditor, and process owner.
- Add the scope counts: reviewed processes, total checkpoints, and conforming checkpoints.
- Enter the finding mix for critical, major, minor, and observation categories.
- Record repeat findings, open actions, closed actions, overdue actions, and average closure days.
- Adjust severity weights if your audit program uses different scoring rules.
- Click Analyze Findings to calculate the composite score and view the graph.
- Review the priority level, top exposure drivers, and corrective-action guidance.
- Use the export buttons to save the summary as CSV or PDF for reporting.
FAQs
1. What does the risk score show?
The risk score estimates how urgently audit findings need attention. It blends severity, repeats, overdue actions, closure speed, closure performance, and checkpoint compliance into one number.
2. Why does the calculator use weighted severity?
Not all findings carry the same impact. Weighted severity lets critical issues influence the final result more strongly than minor findings or simple observations.
3. Can I change the scoring weights?
Yes. The four weight fields are editable. You can align them with your internal audit matrix, customer requirement, or certification scoring method.
4. What counts as a repeat finding?
A repeat finding is a nonconformity or weakness that appeared in earlier audits and still exists. Repeats matter because they signal weak root-cause correction or poor sustainment.
5. Why can a low finding count still create a high score?
A small number of findings can still be serious when they are critical, repeated, or tied to many overdue corrective actions. Severity and timeliness heavily affect risk.
6. Should overdue actions be counted only from open actions?
Usually yes. Overdue actions are actions not closed by the target date. Make sure the overdue count never exceeds total corrective actions entered in the form.
7. Can this be used for supplier audits?
Yes. It works for internal, supplier, process, product, system, or regulatory audits. Just apply the same counting logic and suitable severity weights.
8. What is considered a good result?
A lower risk score and higher control score are better. Teams often target low repeat rates, low overdue actions, strong closure performance, and high checkpoint compliance.