Contract Review and AS9100: Are We Doing It? Can We Do It? Do We Want To Do It? - A Risk-Based Approach | My ISO Consultants
- My ISO Jay
- Aug 14
- 3 min read
Contract Review and AS9100: Are We Doing It? Can We Do It? Do We Want To Do It? - A Risk-Based Approach
In the aerospace and defense industry, precision, reliability, and compliance are non-negotiable. One of the foundational elements of ensuring these standards is a robust contract review process, especially when aligned with AS9100 & AS9120, the internationally recognized quality management system standards for aviation, space, and defense organizations.
AS9100 & AS9120 build upon ISO 9001 but introduces additional requirements specific to aerospace, including risk management, configuration control, and product safety. Within this framework, contract review is not just a procedural step—it’s a strategic checkpoint that ensures the organization is prepared to meet customer requirements without compromising quality or compliance. In this article we will discuss “Contract Review and AS9100: Are We Doing It? Can We Do It? Do We Want To Do It? - A Risk-Based Approach.”
Contract Review in AS9100: Why It Matters
Clause 8.2.2 of AS9100 emphasizes the need for a formal review of customer requirements before committing to supply products or services. This review must ensure that:
Requirements are adequately defined and documented.
The organization has the capability and resources to meet those requirements.
Any differences or risks are resolved before acceptance.
This process is essential for preventing misunderstandings, scope creep, and nonconformities that could jeopardize customer satisfaction or regulatory compliance.
Risk Assessment in Contract Review: The Three Key Questions
To embed risk-based thinking into contract review, aerospace organizations should consistently ask three fundamental questions:
1. Are We Doing It?
This question examines whether the organization is already fulfilling similar requirements. It helps identify:
Existing contracts with overlapping scopes
Current resource commitments
Lessons learned from similar projects
By understanding what is already in motion, teams can avoid overextension and ensure consistency in execution.
2. Can We Do It?
This is the feasibility check. It assesses whether the organization has the capability to meet the contract’s requirements, including:
Technical expertise and infrastructure
Supply chain reliability
Compliance with regulatory and customer-specific standards
This step is critical for identifying risks related to capacity, technology gaps, or external dependencies.
3. Do We Want to Do It?
This question introduces strategic alignment. It considers whether the contract fits the organization’s goals, values, and risk appetite. Factors include:
Profitability and long-term value
Strategic relevance to core business
Ethical and reputational considerations
This ensures that contracts are not only feasible but also beneficial and aligned with the organization’s mission.
Embedding Risk-Based Thinking in AS9100/AS9120 Contract Review
To comply with AS9100/AS9120 and enhance decision-making, organizations should formalize their contract review process with:
A documented procedure that incorporates the three questions
Cross-functional involvement from engineering, quality, legal, and program management
A "register" to capture and monitor identified risks
Clear criteria for contract acceptance, negotiation, or rejection
This approach ensures that risks are identified early, mitigated proactively, and managed throughout the contract lifecycle.
Conclusion
Contract review under AS9100/AS9120 is a critical process that safeguards quality, compliance, and strategic alignment in aerospace operations. By systematically asking “Are we doing it?”, “Can we do it?”, and “Do we want to do it?”, organizations can make informed decisions that balance opportunity with risk. This not only strengthens customer relationships but also reinforces a culture of excellence and accountability.
