Actions to address risks and opportunities (Part 2)

To determine potential risks and opportunities, the organization shall:

  • Determine relevant interested parties.
  • Identify issues relating to these interested parties.
  • Define the level of risk impact that requires actions to address it.
  • Determine the risks associated with the identified issues.
  • Evaluate the risk for potential impact level.
  • Determine the source of the risk or opportunity.
  • Determine the root cause of the risk or opportunity.
  • Determine and plan action to address the risk or opportunity, giving a time limit.
  • Assign responsibility, authority and resources to address the risk or opportunity.
  • Implement planned action to address the risk or opportunity.
  • Evaluate action to address risk or opportunity for effectiveness.
  • Perform relevant validations.
  • Document and maintain records of action to address risk or opportunity.
  • Integrate the results of action into the Quality Management System.

Evaluating Risks and Opportunities

Actions to address risk shall be appropriate to the impact of the risk. To ensure this, there is a need to assess the risk for its risk impact. This will help to determine actions that will be appropriate to the impact of the risk.

To evaluate risk for its potential impact, the risk assessment matrix below is useful.

From the matrix, determine the likelihood rating of the risk. This refers to the frequency of occurrence of the risk. Determine the consequence rating of the risk and multiply the likelihood rating with the consequence rating to obtain the risk impact on the Quality Management System.

The risk impact can be categorized by the level of severity as critical, high, medium and low impact rating. Actions and responsibilities to address risks shall be appropriate to the severity of the risks.

To determine the likelihood rating of a risk, an organization may apply the matrix below.

To determine the consequence rating of a risk, the matrix below may be applied.

To determine the risk impact, the likelihood rating shall be determined from the occurrence assessment matrix and the consequence rating shall be determined from the risk consequence assessment matrix. Risk impact is the product of both likelihood rating and consequence rating of the risk.

From the risk impact rating matrix, low risk impact shall be managed by routine procedure or accepted by informed decision. Medium, high and critical risk impact shall be addressed as appropriate to the impact of the risk. For a likelihood rating of 4 and a consequence rating of 3, the risk impact is 12. From the risk impact rating matrix, this is high risk and shall be addressed by top management intervention.

Where a more substantial or coordinated response is required than the immediate risk owner can authorize or implement, such a risk shall be termed a critical risk and shall be escalated through established lines of management accountability to top management. The risk owner may provide key information such as statistical data on numbers of active hazards and risks, overdue actions, and others as appropriate.

The organization may recognize an opportunity as a circumstance that makes it possible to leverage positive factors and elements. For example:

  • Development of new products, services and processes.
  • Development of new markets or increase market share.
  • Improvement of the work environment.
  • Improvement of productivity.
  • Improvement of operational efficiency (reduction of resource use, reduction of waste, etc.).

Opportunities may be identified as positive effects of risks or a risk that is beneficial to the organization.

Share this post

Most read posts

Disclaimer

Comments here are sole opinions of the commenter and not that of Charicon CNL or any employee thereof.

Your comment will be visible after approval.

Leave a Reply

Your email address will not be published. Required fields are marked *

Older posts...

Charicon CNL to lunch an ISO 9001:2015 E-Book soon.

Charicon Contracting Nigeria Limited has developed…
by | 23/07/2022
by | 23/07/2022

Charicon CNL establishes an E-learning platform

In our drive to ensure adequate…
by | 23/07/2022

Charicon CNL acquires certified trainers

Professional Evaluation and Certification Board (PECB)…
by | 23/07/2022
by | 24/07/2022

Introduction to ISO 9001:2015 Book (QMS Made Easy)

Introduction to ISO 9001:2015 Book (Quality…
by | 26/07/2022

Introduction To Quality Management System And The Standard

Quality management system is a set…
by | 27/07/2022

Actions to address risks and opportunities (Part 1)

A planned process is more likely…
by | 13/04/2023

Actions to address risks and opportunities (Part 2)

It is required that an organization…
by | 13/04/2023

Actions to address risks and opportunities (Part 3)

Action to address risk shall be…
by | 14/04/2023

Setting SMART Compliant Quality Objectives

They are clear set measurable goals…
by | 14/04/2023

Planning actions to achieve the quality objectives

Striving to achieve the quality objective…
by | 15/04/2023

The Quality Policy

The quality policy is a top…
by | 29/08/2024