Guide
SQF Edition 9: A Food Safety System That Survives an Unannounced Audit
The SQF (Safe Quality Food) Food Safety Code Edition 9, published by SQFI and effective from May 2021 with continued amendments, is the GFSI-recognised scheme owned by FMI (Food Industry Association) and used heavily by US food manufacturers and by suppliers into US retail. Edition 9 split the System Elements from the Good Manufacturing Practices into separate annexes per sector — Primary Production, Manufacturing, Storage and Distribution, Retail, Foodservice, Manufacture of Food Packaging, Animal Product Manufacturing, and others — and elevated food safety culture, environmental monitoring, and food fraud requirements. This guide walks through the Edition 9 structure, the System Elements, the unannounced audit option, and a practical readiness path. It is written for SQF Practitioners, QA managers, technical managers and operations directors at food manufacturers.
Start free trial Free trial, no credit card, onboard in days, not months.
The Edition 9 structure: System Elements plus sector GMPs
Edition 9 separates the System Elements (Module 2 — applicable to all scopes) from the GMP requirements (Module 11 for Food Manufacturing, with parallel modules per sector). The System Elements cover Management Commitment, Document Control and Records, Specifications, Formulations and Realisation, Food Safety System (HACCP, food defence, food fraud), Verification, Product Identification, Trace and Recall, Food Safety Culture, Crisis Management, Training. The sector GMP module covers the operational and physical controls. The split lets one corporate System Elements approach be cascaded across multiple plants and sectors, but it also means an audit's System Elements section is the spine on which everything else hangs — a weak Module 2 fails the audit before the GMP walk even starts.
Food safety culture: Edition 9's headline elevation
Edition 9 made food safety culture (clause 2.1.4) an explicit SQF requirement, with the site required to have a documented performance management plan that promotes a positive food safety culture as a minimum addressing communication, training, feedback from employees, performance measurement. Auditors test by floor interviews — operators are asked open questions and the answers calibrate the rest of the audit. Edition 9 also tightened management commitment (2.1) with a senior management responsibility to provide resources, conduct a documented management review at least annually, and demonstrate the policy in practice. The 'culture' question and the 'resources' question are two sides of the same audit.
Environmental monitoring (clause 11.2.1.4) and the seek-and-destroy expectation
Edition 9 strengthened environmental monitoring for the Manufacturing scope (clause 11.2.1.4 in Module 11) — sites producing ready-to-eat products and products supporting microbial growth are expected to have a documented environmental monitoring program covering pathogens and indicator organisms, with seek-and-destroy follow-up when positives are found. The bar in 2026 inspections is higher than 'we take swabs monthly and file the results' — auditors test the program's design (zones, frequencies, organism targets), the trending, the response when positives are found, and the link to verification of corrective action. A monitoring program that has never detected a positive is itself a red flag because the design probably is not aggressive enough.
Food fraud and food defence: 2.7.2 and 2.7.1
Edition 9 retains food defence (2.7.1 — site-level threat assessment, mitigation, response plan) and food fraud (2.7.2 — vulnerability assessment per ingredient, mitigation, ongoing review). Both are System Elements requirements and both attract more attention from auditors than they did in Edition 8 — particularly food fraud, where Edition 9 expects the vulnerability assessment to be ingredient-specific, to consider economic factors, supplier history, geographic origin, and the sophistication of routine testing, and to be reviewed at minimum annually. A generic site-level fraud assessment that lists 'all suppliers approved' as the mitigation is the common 2026 minor.
Unannounced audit option and rating
SQF offers two audit programs: Announced Recertification (the default) and Unannounced Recertification (every third year unannounced if the site opts in, or fully voluntary). Edition 9 also retained the rating system: E (Excellent — minimums met with no major nonconformities, 96-100 score), G (Good — 86-95), C (Complies — 70-85), or Fails. Major retailers in 2026 typically require a minimum G rating and increasingly favour suppliers on the Unannounced Recertification program because it reflects real operational state. The gap between E and G is usually one or two avoidable minors — environmental monitoring response, training records, or specifications.
A 90-day readiness path
Days 1 to 15: gap assessment against Module 2 System Elements first, then the relevant sector GMP module; assess food safety culture evidence; assess environmental monitoring program design and trend depth. Days 16 to 45: close System Elements gaps — typically food fraud vulnerability assessment, management review evidence, and training records; refresh HACCP plan. Days 46 to 70: environmental monitoring program rebuild if needed, including seek-and-destroy response evidence; internal audit covering Module 2 and the sector module. Days 71 to 90: management review; mock audit with priority on the System Elements opening; pre-audit logistics for either Announced or Unannounced program.
Where this lives in V5 Ultimate
The clauses above aren't theoretical — every one maps to a shipped module and an industry profile. Jump to the parts of the product that turn this guide into evidence on a Monday morning.
Modules that do the work
Food safety QMS
Module 2 System Elements anchored in one QMS spine.
Audits & CAPA
Internal audit aligned to Edition 9 clauses.
Document control
HACCP, specifications and PRPs as live, versioned records.
Supplier approval
Approval and vulnerability assessment per ingredient.
Compliance self-assessment
Score readiness against Edition 9 with rating projection.
Industries this hits hardest
Frequently asked
Is SQF certification mandatory?
It is not a regulatory requirement, but it is a contractual requirement from many US retailers and food-service companies for supplier approval. Walmart, Wegmans, Kroger and many others accept GFSI-recognised certificates including SQF, BRCGS, FSSC 22000 and IFS. SQF is the most common choice for US-domiciled manufacturers; international suppliers more often hold BRCGS or FSSC.
What is the SQF Practitioner requirement?
Each certified site must designate an SQF Practitioner who is a site employee, has completed an SQF Implementing course, has knowledge and competency to implement and maintain the SQF system, is trained in HACCP, and understands the relevant SQF Food Safety Code. The Practitioner is the auditor's primary point of contact during the audit, and a Practitioner who cannot answer system-level questions in detail is itself a finding.
How does SQF differ from FSSC 22000 and BRCGS?
SQF is a fully owned scheme by FMI/SQFI with its own clause structure. FSSC 22000 is built on ISO 22000 plus PRPs and FSSC additional requirements. BRCGS is a UK-origin retailer-driven standard with Fundamentals. All three are GFSI-recognised. Customer preference usually dictates choice — US retail tends to SQF, UK retail to BRCGS, ingredient supply chains to FSSC. Many global manufacturers hold multiple certificates.
When does an Edition 10 come?
SQFI publishes new editions on a multi-year cycle (Edition 8 in 2017, Edition 9 in 2020/2021 effective). Edition 10 consultation is anticipated in the 2026-2027 window with effective date following an announced transition period. Sites should track the SQFI website for the consultation draft and the published effective date.
See it on your shop floor.
Free trial, no credit card, onboard in days, not months.