Professional Documents
Culture Documents
management
1. Purpose:
The purpose of this procedure is to provide for a system and instructions to assign responsibilities for identifying
and evaluating risks and opportunities.
2. Scope:
NMQCRL activity include (risks to users, customers, environment, etc.); Health and Safety (risks to the health
and safety of workers); Environment (risks of uncontrolled emissions, spills, etc.); and any other types of risks
that need to be identified and controlled.
3. Definition and abbreviations:
4. Responsibility:
Code no: GQP 16 Version no: (02) Version date: /0/2018 Effective date:0/0/2021 Expire date: / / Page 1of 5
Risk assessment team
HOD HOU
HOU
NMPB staff
5. Procedure:
1. The lab director confirms the risk assessment team which who trained in risk management to establish the
risk assessment.
2. Establish the context
To define the external and internal context parameters must consider when they manage risk and it includes
2.1. The lab director and QAM identify the scope, goals, interested parties and etc by using form no ()
2.2. Classify and analysis of strengths and weaknesses by SWOT analysis using excel sheet for risk
Assessment - Internal & External Issue ().
2.3. Determine of the risk assessment criteria form ().
3. Risk assessment
3.1. Risk identification
3.1.1. Register the risk and identify the sources of a particular risk, areas of impacts, and potential events
including the causes and consequences
3.1.2. Classify the source as internal or external
Using form ()
3.2.Risk Analysis
3.2.1. Identify a detailed consideration of uncertainties, risk sources, consequences, likelihood, events,
scenarios, controls and their effectiveness.
3.2.2. analysis the Risk
Code no: GQP 16 Version no: (02) Version date: /0/2018 Effective date:0/0/2021 Expire date: / / Page 2of 5
- Severity, Probability and detectability.
- Methods of scoring severity.
- Probability estimate – quantitative, qualitative.
- Assessment of detectability.
- Risk Levels, Risk Acceptability.
- Determining an acceptable level of risk.
- Determining the Risk Priority Number..
Code no: GQP 16 Version no: (02) Version date: /0/2018 Effective date:0/0/2021 Expire date: / / Page 3of 5
2.1. Evaluate the effectiveness of the procedures performed by reviewing the changing activities and
matching them with the possible results of the variable activity with the risk management plan
2.2. Conduct an internal audit by internal audit team and preparation of the report
2.3. Implementation of supervisory visits and reporting
2.4. Management Review
3. Awareness of employees and beneficiaries the risk assessment team and HODs and HOUs
3.1. risk assessment team prepare awareness plan
3.2. Implement the awareness plan and its programs
4. Close the hazard status
The QA Manger takes a decision to accept risk and close it
5. Related documents:
6. References:
ISO 31000:2018
-
7. Attachments:
Code no: GQP 16 Version no: (02) Version date: /0/2018 Effective date:0/0/2021 Expire date: / / Page 4of 5
Risk assessment Interested
Scope
criteria parties
Objectives context of
risk Risk
Strengths Weaknesses management
Identification
Risk Risk
Opportunities Threats Assessment Risk Analysis FMAE Form
Management
Risk
Evaluation Evaluation
criteria
Risk Identification
Treatment option
Risk treatment
Provide action plan
consulting Communication
Action plan
& Consultation
Strategy plan
(Goals, Strategies
& Associated
Actions)
Risks SOP,Plan, Auditors,
awareness Monitoring conduct audit
and review Internal audit
Document
Risk treatment
Report
status report
Code no: GQP 16 Version no: (02) Version date: /0/2018 Effective date:0/0/2021 Expire date: / / Page 5of 5