Comments

  • Time to abandon the risk matrix?
    Some good points. You also need to consider:
    1. Is the outcome realistic and credible? Anything can kill us
    2. Focus on the event occurring, not the outcome (i.e., what has to happen before the final outcome? What is the event (risk) that will cause the plane to crash? One of the standards has a great example where before you can get HIV from a needle stick injury (commonly used consequence), you have to a). find a needle, b). be stuck by a needle, c) the needle has to have HIV on it. If you already have great controls in place, there is not a large number of needles found, there is not a significant problem with HIV in the community, the level of risk is extremely low.
  • Time to abandon the risk matrix?
    I have recently worked with a large international company on how they assess risk and together we have developed a risk management framework that works very well.

    Common problems highlighted in the initial review were:
    1. There was a wide range of interpretations on how to assess risk through the company
    2. The risk framework was designed with a business focused, and was not necessarily suited for health, safety and wellbeing
    3. The risk matrix was too limited, and the definitions/actions were standard (possibly copied from another one), and had not been thought through. E.g., a Lost Time Injury of one day pushed the risk level to Very High.
    4. Corporate Head Office did not follow through on extreme risk items (e.g., stop process)

    The review process included:
    1. Setting-up a working group of 4 people
    2. Reading at length the 'Risk Management Guidelines ISO31000:2018(E)', the Handbook - 'Managing Health and Safety Risk SA/SNZ HB 205:2017', and the document 'How to manage work health and safety risks: Code of Practice' Safe Work Australia May 2018
    3. Researching the value and construction of risk matrices
    4. Moving from a standard 2 dimensional risk 4 x 4 matrix to a 3 dimensional 6 x 6 x 6 Matrix (we added frequency)
    5. Debating at length the context, and definitions of the risk matrix and the outcomes
    6. Trialing the new process across the group with great success - taking on board any room for improvement. For this part, we made sure we have people from the factory floor in the trial - they have tp understand it.
    7. Getting the Executive Management Team to sign off on their role/responsibility when a risk is considered High/Very High.

    Key elements to the new process are:
    1. Involve the right people in the risk assessment
    2. Inherent risk is not evaluated (it has been removed) as this is to confusing. You have a hazard, associated risks, and current controls. You then evaluate your current level of risk.
    3. Focused on reducing risk SFAIRP, not ALARP.
    4. Not including the level of risk if controls were in place - this provides a false sense of security with no action having been completed
    5. Review the risk level once an improvement has been made.

    The key thing to remember is that the process is not perfect, and will not give you an answer that takes away a level of debate, thinking, input, collective knowledge etc.

    Where Risk Assessment processes fall down is the organisation has not followed a robust process that is unique for them, and they tend to adopt a standard off the shelf solution.
  • Quote of the year?
    Hi all. I think most of us can relate to the comment (and it's humour) as I am sure we have all been there at some point. Just to provide some context, the initial Risk Review was with a selection of key stakeholders and it laid the foundations of the risk management approach to managing safety for the whole event. It culminated in an event that ran over 3 months, involved 4 syndicates, over 800 amazing volunteers, a dedicated and welcoming security team, multiple contractors/suppliers, a site that was nearly 1km long, retail outlets (cafes and restaurants) opening onto the Event Village foot print, across a large several COVID-19 Alert Level changes, a syndicate's boat capsizing during a race, over 500,000 visitors to the village, over 10,000 spectator boats on the water, and no serious injuries. The risk management approach included great planning and input from a number of people, combined with very competent and committed people managing key workstreams. All of this contributed to the great result (on and off the water).