Risk Impact - Risk Assessment Sample/Method per ISO 9001:2015

[QAMTY]

Hi all
Does anybody can share a sample of how to apply risk assessment?
I refer to the methodology to use in order to evaluate the impact of the risk.
For example: I already detected the risk, i.e. delivery to client, ok I know it, I may have other in other process, (machine failure).

But how to apply to them the real impact? I have seen somewhere that is possible to assign likelihood, priority, and some other qualifiers.

Could you recommend what methodology to apply at evaluating risks
under iso 9001 2015?

thanks in advance

 

[mpaul2277]

Hi all
Does anybody can share a sample of how to apply risk assessment?
I refer to the methodology to use in order to evaluate the impact of the risk.
For example: I already detected the risk, i.e. delivery to client, ok I know it, I may have other in other process, (machine failure).

But how to apply to them the real impact? I have seen somewhere that is possible to assign likelihood, priority, and some other qualifiers.

Could you recommend what methodology to apply at evaluating risks
under iso 9001 2015?

thanks in advance

The risk impact will be more dangerous when we consider the connected medical devices especially safety and life saving devices installed at Hospitals. In US the FDA is now on record requiring that manufacturers assess security risks and maintain medical device functionality and safety through carefully chosen cybersecurity controls. It will be high time to secure the networks with regular audits and documentations.

I have been using Opsfolio(from Netspective Communications LLC) and their supports for our cybersecurity risk framework, conduct comprehensive assessments, implement cybersecurity standards, and document your infrastructure, threats, vulnerabilities