RISK MANAGEMENT PROCEDURE

Version 1.1

Signatures below indicates approval of this Management Document.

Prepared by:

Safety Officer
Approved by:

Sec 16.2
Approved by:

Sec 16.1 CEO

Page 1 of 7
1 Contents

1 SUPPORTING DOCUMENTATION .................................................................................................... 3

2 PURPOSE ......................................................................................................................................... 3
3 SCOPE ............................................................................................................................................. 3
4 REFERENCES.................................................................................................................................... 3
5 ABBREVIATIONS .............................................................................................................................. 3
6 RESPONSIBILITIES ........................................................................................................................... 4
7 PROCEDURE .................................................................................................................................... 4
7.1 Identify .................................................................................................................................... 4
7.2 Analyse .................................................................................................................................... 4
7.3 Treat ........................................................................................................................................ 5
7.4 Monitor ................................................................................................................................... 6
7.5 Report ..................................................................................................................................... 6
8 TRAINING ........................................................................................................................................ 6
9 DOCUMENTS................................................................................................................................... 6
10 REVIEW PERIOD .............................................................................................................................. 6
11 ENFORCEMENT ............................................................................................................................... 7

Page 2 of 7
1 SUPPORTING DOCUMENTATION

This document should be read in conjunction with the following

Document Name

1. Company Policies

2 PURPOSE

The company is committed to ensuring the health, safety and welfare of all its employees,
contractors, visitors and the public, as well as being committed to ensuring a sustainable
environment.

The purpose of this procedure is to identify a risk model for the Company’s Occupational Health,
Safety and Environmental performance to identify and prevent any situation that that may have
a significant impact on Company services and activities, in the interest of ensuring continuing
compliance and seeking continual improvement during the services of installation, delivery of
equipment, onsite maintenance and support for the Company’s clients.

3 SCOPE

Risk management is incorporated into all areas of the and is the responsibility of all staff. Whilst
specific staff may have explicit risk management responsibilities, it is the responsibility of all
staff to be proactive in the Company’s risk management.
The Risk Management Procedure details the process for the identification, analysis, treatment,
monitoring and reporting of risks.

4 REFERENCES

Occupational Health and Safety Act, No. 85 of 1993.

Health and Safety Regulation 1981

5 ABBREVIATIONS

16(1) Sec 16.1 Chief executive Officer

16(2) Sec 16.2 Assistant Chief Executive Officer
COID Compensation for Occupational Injuries and Diseases

Page 3 of 7
6 RESPONSIBILITIES

The Health and Safety Audit and Risk Committee or relevant appointed person is responsible for
reviewing the risk management practices of the Company. This includes overseeing the
Company’s Risk Register and ensuring significant risks to Company services of installation,
delivery of equipment, onsite maintenance and support for the Company’s and/or clients are to
be reported to the 16(2) appointees.

The Planning, Quality and Risk Committee is responsible for:

• Overseeing the risk management process, in particular, the development of Client Services
and delivery Risk Registers;
• Monitoring, reviewing and updating the Company Risk Register;
• Endorsing the Company’s Risk Register prior to its submission to the Audit and Risk
Committee; and
• Providing updates to the 16(2) appointee and Audit and Risk Committee as appropriate.

7 PROCEDURE

The Risk Management Process consists of the following steps:

• Identify;
• Analyse;
• Treat;
• Monitor; and
• Report.

7.1 Identify

Identify the risk events that may prevent or delay the achievement of the strategic goals
and objectives. Staff will need to outline the:

• Risk Event – brief description of the risk; and

• Risk Owner – person who is responsible for the risk and ensures that the risk is
effectively managed.

The Risk Owner will usually be the Health and Safety Officer or the representative person.
When identifying risks, staff are encouraged to focus on the high-level risks that impact
upon the Services, Delivery and Installation of equipment to the Clients.

7.2 Analyse

Outline the causes, impacts and existing treatments in order to assess the consequence
and likelihood of the risk and determine the risk rating. Staff will need to outline the
following:

• Causes – origin of the risk and/or mechanisms that fail;

Page 4 of 7
 • Impacts – consequences or outcomes that the company can expect if the risk
eventuates;
• Existing Treatments – existing treatments that are in place, which may include
procedural or administrative policies or physical barriers;
• Likelihood Rating – chance that the risk will occur;
• Consequence Rating – extent to which the risk will affect the company, if it occurs;
• Risk Rating – product of the consequence rating and likelihood rating, which
defines the magnitude of the risk.

With the existing treatments in place, staff will use Table 1 (below) to determine the risk
rating. Staff will need to consider the likelihood of the risk occurring (ranging from ‘Rare’ to
‘Almost Certain’) and the consequence if the risk is realized (ranging from ‘Insignificant’ to
‘Catastrophic’).
Table 1 – Risk Rating Table

Likelihood Risk Rating

5
11 Medium 16 Significant 20 Significant 23 High 25 High
Almost Certain
4
7 Medium 12 Medium4 17 Significant 21 High 24 High
Likely
3
4 Low 8 Medium 13 Significant 18 Significant 22 High
Possible
2
2 Low 5 Low 9 Medium 14 Significant 19 Significant
Unlikely
1
1 Low 3 Low 6 Medium 10 Medium 15 Significant
Rare
1 2 3 4 5
Consequence
Insignificant Minor Moderate Major Catastrophic

7.3 Treat

Implement both existing and future treatments in order to prevent and/or mitigate the
risk. Staff will need to outline the:

• Future Treatments – specific treatments that will further prevent and/or mitigate
the risk event;
• Action Owner – person responsible for implementing the future treatments; and
• Resolution/ Review Date – the date the treatments will be resolved or reviewed.

Staff should outline all the future treatments that will be implemented, either in the short-
term or long-term, to prevent and/or mitigate the risk event. The risk treatments should be
proportionate to and indicative of the risk rating.
The Action Owner, in consultation with the Risk Owner, is responsible for ensuring that the
risk treatments are implemented in accordance with the resolution/review date. Following
the continuation of existing treatments and implementation of future treatments, the risk
should be reduced or minimized.

Page 5 of 7
 Once a future treatment has been implemented, it will become part of usual business
practice and be considered an existing treatment.

7.4 Monitor

Continually monitor and evaluate the risks and treatments in order to maintain the
effectiveness and appropriateness of the Risk Management.
The Risk Owner, in consultation with the respective Site Supervisor, will need to review
the:
• Risk event, causes and impacts;
• Risk rating to ensure it is appropriate; and
• Existing and future treatments (including the resolution/review dates) in order to
determine whether further treatments are required.

7.5 Report

Provide reports and updates in order to assure management that risks are being
appropriately managed and treated.
The frequency and method of reporting may vary and should reflect the significance of the
risk and whether the risk is on the Risk Register.

8 TRAINING

All Employees shall be trained and competent to do the work they are employed to do and trained
on the tools they will be working with.
All employees shall be trained on the risks and control measures of the tools that they will be
required to use for the work they are employed to do.
All Supervisors shall be trained and competent to do the work they are employed to supervise.
All Supervisors shall be trained on the risks and control measures of the tools to be used to do the
work they are employed to supervise.

9 DOCUMENTS

All records relevant to these procedures are to be maintained in a recognized recordkeeping

system and stored for a period as prescribed by the relevant applicable legislation.

10 REVIEW PERIOD

This procedure will be revised annually should there be any change in the requirements for
legal compliance or should there be any change to the regulatory requirements that impact the
specific procedure.

The Health & Safety Manager will update the procedure and thereafter be approved by the
appointed Sec 16.1 or Sec 16.2 in leu of the Health and Safety Occupational act and the relevant
regulations.

Page 6 of 7
 Any procedure altered, shall be placed on the training matrix within 48 hours, to ensure updated
procedures are communicated to all levels of employees.

11 ENFORCEMENT

This procedure will be enforced upon sign off. Staff members and Contractors who do not adhere
to this process, could face disciplinary action which could lead to dismissal.

Page 7 of 7