Professional Documents
Culture Documents
Commissioning and
Qualification
Program
Ronald Brunelle
Bob Buhlmann
Nick Haycocks
1
Agenda
3
Agenda
Introducing Change
Goal
Simplify Validation
Better, Cheaper, Faster
Industry Guidance Utilized
ASTM E2500
ICH
Introducing Change
From Impact Assessments to System
Boundaries
Site
Automation Quality Risk
GEP SOPs Validation
SOP Assessment
SOPs
Commissioning
Planning and
Execution
Process BMA/BAS
Sample HAVC System Pipe System Equipment System Security
Sample Sample Facility
Summary Commissioning Commissioning commissioning commissioning commissioning and Commissionin System
Reports Plan / template Specifications sample report sample report sample report Automation g sample Commissioning
guidance report
GEP Framework
Engineering
Quality Systems
Engineering Walk
Vendor Data Vendor CMMS Instrument Receipt Down and
Requirements Assessment Data Calibration Verification Punch
listing
Cleaning
Process
Validation Validation
User
Requirements Installation
Development
Design
Implement
Change
Decomm
-
Inspection
aCommissioning
nd
and
Operational
SIP
/
PQ
Qualification for
Use Control issioning
Testing Testing
Risk
Assessment Commissioning
IQ OQ I
OQ Performance
Monitoring
Qualification
Validation
Quali
and acceptance
criteria for risk
Build / Construct
nt an
controls
ty Ov
ssme
ersigh
controls
identified
Asse
Requirements
t
Approvals of
Risk
program
standards, GEPs
Qualification
SOPs
Quality Oversight model at full maturity of
the Engineering, Automation and Quality
processes.
Plan Design Build Test
Quality Pre and Post Approval Quality Review Quality Approval
Quality Oversight model at early stages of
maturity of the Engineering, Automation and
Quality processes.
Plan Design Build Test
Verification tests, SAT
Development
Validation Plan Design Reviews Testing
Quality Pre and Post Approval Quality Review Quality Approval
Amgen Relational Model for Qualification
SMEs
Process
Product
System User
Regulatory Requirements
Quality
Vendors
Traceability
System Qualification
Risk Commissioning Performance
Specifications report
Assessment / Testing Qualification
Engineering
Qualification
Integrated
Processes
Quality
Process
Overall Maturity
24
Assessing Maturity
PROGRAM ITEM MATURITY STAGE
User requirements
Risk Assessment
Design Review
Commissioning
Calibration
Confirmation of Qualification
Quality Oversight
Maturity - Commissioning
We are
here No predefined commissioning strategy
Early Company documents developed independently of vendor documents
Adaptation Limited use of SMEs
26
Assessing Maturity
Program Maturity stage of program as defined by program item
item
EARLY ADAPTATION TRANSITIONAL STAGE MATURE STAGE
27
Lessons Learned - Wins
29
Maturing the Process
Engineering is intensifying their practices and
delivery models to provide more robust systems
Alignment of procedures and practices between
groups (Engineering, Automation, Validation)
Understanding and accountability of SME Role
Legacy systems applicability
Intensify training for risk assessments
Individual site assessments to ensure maturity
progression
30
Benefits Beyond Large Capital Projects
Project Scope
Operate &
Plan Design Build Test
Maintain
Adopted Practices
Ronald Brunelle -
rbrunell@amgen.com
32
Workshop Warm-up
Review of Key
Deliverables
33
Review of Key Deliverables
User Requirements
Risk Assessment
Qualification Summary Report
User Requirements - Purpose
Serves as:
The guiding document for the engineering
design, commissioning, and qualification process
for a system.
A focal point for documenting and
communicating requirements.
It is maintained throughout the lifecycle of the
system.
User Requirements Structure
Sections include:
Performance Requirements
Design Requirements
Operational Requirements
Automation Requirements
Miscellaneous Requirements
User Requirements Structure
ID No Category and Requirement Type Source
Parameter
1 Performance
This is a good requirement (for a
granulator)
1.1 Process The system must be capable of a Quality SPP
chopper speed range of 1500 and 3000
rpm 10%.
1.2 General This is an appropriate requirement
The system must include a scale
capable of measuring the 100 Liter tank Quality SPP
and contents with an accuracy of 0.1kg
2 Automation
General This requirement is inappropriate: Business
The control system must be operable in
2.1 Quality /
automatic or manual modes manual will
QRAES
allow stepping through the control
sequence for each recipe.
Why: Standard functionality should not
be specified within URS. This
requirement should be defined in the
detailed design documents.
3 ETC
Quality Risk Assessment
(Quality Risk Assessment for Equipment &
Automated Systems)
Risk assessment method for assessing
and evaluating quality risks as they pertain
to equipment and automated systems
Utilizes Severity, Likelihood, Detection
Business risks and safety risks are not
part of the Quality Risk Assessment
Applicability of the Quality Risk Assessment
To identify the equipment design and
performance elements that impact or
control the system quality attributes
To provide a quality focus within the
design, commissioning, and testing
activities
To assess the impact of changes to
legacy equipment and automated
systems
Requisites
System Quality Attributes and System
Process Parameters
Draft or Final User Requirement
Document or Equivalent
Appropriate SMEs
Preliminary or Final Design Specifications
Quality Risk Assessment
SQAs - A physical, chemical, biological, or
microbiological property or characteristic of the system
output that should be within an appropriate limit, range,
or distribution.
SQAs should always be able to be mapped to: Safety, Identity,
Strength, Quality, Purity
Impacted
Systems
What
Reference
No.
Occurrence
Detection
Effect
/
mechanisms
Severity
Potential
hazard
of
the
hazard
hazard
likelihood
of
are
in
place
Risk
SQA consequence
of
would
detect
Comments
to
SQA (how
can
the
occurrence
hazard
working
as
Level
the
hazard the
result
if
the
hazard
occur?) (Instrumentatio occurrence
specified
risk
occurred?
n,
alarms
and
(SOPs,
training
(development
interlocks).
manuals) testing,
IV,
OV)
Installation
Breakdown
of
the
Verification
(IV)
Compliance
with
could
not
be
product
c ontact
PM's
will
i nclude
the
s pecifications
completed
i f
there
materials
of
the
r equirement
to
for
the
product
or
are
deviations
Particulate
Potential
construction
Specification
of
inspect
the
ingredient
c ontact
from
the
Consider
1 Purity contamination
contamination
of
(metallic)
-
due
to
appropriate
equipment
during
N/A
materials
will
be
specifications,
that
Rouge
(metallic) the
s ystem
product the
product,
materials. maintenance
a nd
confirmed
through
cannot
be
r eviewed
excipients
or
report
a ny
installation
and
a ccepted
cleaning
degradation
or
verification
(IV). through
materials. corrosion
found.
engineering
c hange
management.
The
s pecification
Operational
The
r eport
from
includes
the
verification
(OV)
maintenance
of
2 N/A N/A N/A N/A requirement
to
N/A will
c onfirm
that
any
damage,
N/A N/A
clean
a nd
the
s ystem
was
degradation
or
passivate
the
cleaned
a nd
corrosion
found.
system
prior
to
passivated
prior
to
Qualification Summary Report
Nick Haycocks
haycocks@amgen.com
47
Computer Systems
Developing a Risk
Based Approach
49
Data Integrity Assessment
Is the concept for delivering a risk based
approach to computer system validation
50
GAMP Risk Management Process
System GxP Determination
What is the Overall System Impact
Y
Identify Functional Risks
Assess Functional Risks
Identify Required Controls
51
GAMP Functional Risk Assessment
52
How do you provide for Product Quality
and Patient Safety ?
Data
Integrity
Product Patient
Quality Safety
53
Data Integrity Assessments Why
The growing need for electronic data:
Globalization
Operational Efficiency
Paperless
Companies need to:
Validate systems for Intended Use
Validate systems to ensure Data Integrity
Meet Regulatory Requirements (e.g., Part 11,
SOX)
In preparation for FDAs Part 11 inspection
initiative
Computer Systems and deployments have grown in complexity 54
Data Integrity Assessments Why -cont.
Ensure Data Integrity and identify controls to
prevent:
Inaccurate, incomplete, or missing data
Uncontrolled data modification (e.g., no recorded
reason)
Cross outs of data
Evaluate high impact computer systems for:
Electronic records identification and documentation
Data flow and Audit trails
Data backup/restore/archival
Security and Training
Electronic signatures
Critical Quality Parameter = Data (integrity) 55
Data Integrity Assessments What
High impact to product quality data systems
(e.g., Lab instruments, LIMS, CDS, MES)
Identify design elements that impact or control the
system quality attributes (data) in the area of:
Data Output
Data Change/Entry
Data Security
Data Backup
Provide a quality focus within the design, testing,
operations, and periodic review activities
Provide a basis for assessing the impact of changes to
systems
56
Data Integrity Assessments Do NOT
Determine the need or level (Rigor) of testing
Resource Constraints
Build/
Configure
Design Test
Data
Plan Integrity Maintain
Assessment
58
Data Integrity Assessments
Uses and Benefits
Determine/Define the risk and controls for the
systems electronic data:
Defines critical data fields
Identifies data that requires review
Ensure systems remain Validated for Intended
Use:
Requirements/Design Specification(s) Completeness
Supports the periodic review process
Provide continual improvement
Supports the Change Control Process
59
SUMMARY
60
Thank You!
Bob Buhlmann
61
Technique for Data Integrity Assessment
Question:
If reprocessing is performed, or if data is modified, describe
how and when someone would detect if it was performed
and by what means would it be detected
Response:
Reprocessing of data in the system is called reactivation.
Reactivation of the data is performed if there is any
correction to be made to the data (results) that is already
approved; this reactivation process and impact assessment
of the reactivation of data entities in LIMS is controlled and
governed by procedures.
62
Data Changes - Example
# Action Required
What if (Risk) Effect Controls to Reduce and Detect Risk
63
Technique for Data Integrity Assessment
Question:
Describe how (electronic/hardcopy) results are reviewed/
approved and by whom. What data is being reviewed/
approved (i.e. Sample ID, Lot Number, particle size).
Response:
An Authorized user logs samples and generates Sample
Labels and Sample Collection work list . Once the sample
plans/ Jobs are logged the following are printed and sent to the
client for sample collection.
Sample Labels
Mfg, EM and Water and Stability Collection Work lists
Samples are collected and the chain of custody is initiated
and Samples are received into Sample Management area and
distributed to the Lab.
64
Data Output - Example
# Action Required
Controls to Reduce and Detect
What if (Risk) Effect
Risk
Sample Management
Sample Labels are Label Control: Multiple System control: Once the chain of
reprinted sets of Labels for the custody is initiated on the sample,
same sample custody cannot be re initiated again on
the same sample. Also once the
Labels would be printed custody is started on a particular
and applied to samples sample; it will drop off of the collection
that would be tested and if work list. Samples are scanned in
the results did not pass, using a Bar Code and no label can be
the label could be scanned in more than 1 time. The
reprinted on a second Event Log captures how many labels of
sample that would then be been printed for each label.
tested.
Procedure
65