Welcome Guest! The IOSH forums are a free resource to both members and non-members. Login or register to use them

Postings made by forum users are personal opinions. IOSH is not responsible for the content or accuracy of any of the information contained in forum postings. Please carefully consider any advice you receive.

Notification

Icon
Error

Options
Go to last post Go to first unread
Helen Waddington  
#1 Posted : 14 July 2010 10:44:02(UTC)
Rank: New forum user
Helen Waddington

Morning all, I have been doing some research on risk management and have just read ISO 31000:2009 and BS EN 31010:2010, I am thinking of putting a proposal forward to the Directors, suggesting we implement the model framework in ISO 31000, or at least systematically review what we have got at the moment against it. I was just wondering if anybody else had used the framework and whether they had any pointers for implementation?
redken  
#2 Posted : 14 July 2010 12:33:13(UTC)
Rank: Super forum user
redken

No but would not be sure that "their" risk is the same as "our" risk and that it very much wider than SH&E which is perhaps what you want: "Definition of risk There are many definitions of risk and risk management. The definition set out in ISO Guide 73 is that risk is the “effect of uncertainty on objectives”. In order to assist with the application of this definition, Guide 73 also states that an effect may be positive, negative or a deviation from the expected, and that risk is often described by an event, a change in circumstances or a consequence.
jwk  
#3 Posted : 14 July 2010 15:03:30(UTC)
Rank: Super forum user
jwk

Afternoon Helen, I am in the process of implementing BS31100 in our organisation. It does indeed cover a much wider set of objectives than the management of OH&S risk, however the framework in BS31100 (and in ISO310000) is a good approach to the management of any kind of risk. Pointers I would suggest are the same as for any management system, the key is top-level buy-in and support, and good communication about your RM objectives. Something I found was the need to be very clear about just what the organisations objectives are; risk is meaningless without understanding what the objectives are, and it took a fair bit of digging before I was able to uncover ours. Maybe that will be easier for you, John
Helen Waddington  
#4 Posted : 15 July 2010 15:24:20(UTC)
Rank: New forum user
Helen Waddington

Thanks both, I am aware that ISO 31000 covers all types of risk not just OH&S but I am implementing 18001 system at the moment and thought it would tie in quite nicely if we built our procedure for 4.3.1 around the concepts in ISO 31000. The Director of Compliance has given the go ahead and I am going to talk to the MD next week, so top management buy should hopefully follow. I am a bit concerned about the objectives, I have been trying to extract them for some time for 18001 purposes so hopefully ISO 31000 will give a bit more impetus. John - how have you documented the framework in 31000? As an element of a management system or as a overarching management system?
jwk  
#5 Posted : 15 July 2010 16:06:00(UTC)
Rank: Super forum user
jwk

As an overarching management system, but it is, as always slightly complicated. We have an environment manager who is working towards ISO 14000, but has barely managed to get tghis off the ground as yet. We also have a Healthcare directorate (which is our charitable aim), and they apply a very NHS version of risk management, which does fit into the BS/ISO model, but only with a bit of tweaking and some compromise, mostly on their part. There is some useful information on the IRM website; IRM/AIRMIC/ALARMhave a risk management standard which has been revised in the light of ISO3100 and is available free, John
Users browsing this topic
Guest
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.