The Cove Business Standards Discussion Forums

Welcome to the Elsmar Cove discussion forums! Registering to participate in the Elsmar Cove Forums is Free. You do have to Register for many features and functions such as E-Mail Digests, Notification of New Posts and/or Threads, Personal Messaging and downloading of Post Attachments to work. If your intent is to simply scan/search for information, there is no advantage to registering. If you would like to Register, click HERE. If you would like to just browse the message base without registering, feel free to do so. Many of the forum software features are disabled for Unregistered Guests for security reasons. See This Thread for more information. If this is your first visit, be sure to check out the FAQ and The Basic "How To's" in the Elsmar Cove Discussion Forums forum. By proceeding to browse these discussion forums, you are expressing your interest in reading information in discussion threads and files attached to posts in discussion threads for research and/or educational purposes in accordance with Title 17 U.S.C. Section 107.
To browse without Registering, go to the forum or discussion thread that you want to view and click on it. A 'Lock' icon on a forum only means you can not Start a New Discussion Thread or Reply to a Post in an existing Discussion Thread in that forum.

This message header and advertisement will not show after you Register and Log In.
Registration is FREE!


The Elsmar Cove Business Systems and Standards Discussion Forums (https://elsmar.com/Forums/)
-   ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards (https://elsmar.com/Forums/forum208/)
-   -  

Risk Management (and Risk Based Thinking) in ISO 9001:2015

(https://elsmar.com/Forums/iso-9000-iso-9001-and-iso-9004-quality-management-systems-standards/65946-risk-management-risk-based-thinking-iso-9001-2015-a.html)

aburaggi 19th November 2014 06:05 AM

Risk Management (and Risk Based Thinking) in ISO 9001:2015
 
hello everyone

does anyone made risk identification and assessment to share with us?

i like to see some samples;)

Marc 19th November 2014 06:17 AM

Re: Risk Management in ISO 9001:2015
 
See: How the addition of "Risk" will affect ISO 9001:2015.

Sidney has an ISO 9001:2015 group on Linkedin which is discussing Risk but I don't have the link off hand. I'm sure Sidney will add it here when he sees this post/thread.

Some Risk Examples: Financial uncertainty, project failure, security aspects, competition, technology problems, the effect on the environment from operations such as wastes produced and dangerous emission(s).

Sidney Vianna 19th November 2014 11:59 AM

Re: Risk Management in ISO 9001:2015
 
Quote:

In Reply to Parent Post by Marc (Post 563694)
Sidney has an ISO 9001:2015 group on Linkedin which is discussing Risk but I don't have the link off hand. I'm sure Sidney will add it here.

This is the link for the discussion group but there is no material there, as requested by the OP.

John Broomfield 19th November 2014 12:54 PM

Re: Risk Management in ISO 9001:2015
 
Quote:

In Reply to Parent Post by aburaggi (Post 563684)
hello everyone

does anyone made risk identification and assessment to share with us?

i like to see some samples;)

aburaggi,

We speak as if we are not already managing risk while realizing opportunities.

When we plan a new project or process we agree the objectives then we consider what could happen to stop us fulfilling the objectives and what we must do to be assured of meeting the objectives.

Accordingly, we ensure we have the necessary resources and controls in place to manage the risks while realizing the opportunity.

Resources include facilities, equipment, materials, authorities and competencies. Controls include methods, procedures, responsibilities, care and coordination. Of course, the resources and controls come with the necessary contingencies such as making sure we do not have single points of control.

For example, we are planning to do business with a supplier for the first time. We apply our established selection criteria and then invest in more monitoring than we do for suppliers accomplished in fulfilling our requirements. Another example, our customers are slow to pay. We find out why and may ensure our management system results in accurate invoices issued as soon as possible. Or, we design a product or process but want to ensure it does not cause injury so we organize multidisciplinary reviews between each design iteration.

Just about every decision is predicated by a risk assessment. Naturally, we need our management systems to help us to manage the knowledge proven useful to quickly assess opportunities and their risks.

The greatest risk, as I see it, is forgetting what we already know and do with our processes and projects in favor of chasing what ISO newly specifies explicitly instead of implicitly.

John

heartolearn 1st December 2014 05:43 PM

Re: Risk Management in ISO 9001:2015
 
In order to provide evidence it would seem from the text within Marc's post that the incorporation of risk based thinking will require some form of tool(s) to log in risks as they apply to the appropriate process. (This in itself becomes a process, does it not?) Personnel accepting of risk management seemingly would need guidance and a working structure to operate from. On-going risk to improvement opportunity conversions would require documentation of some type or else how could they be analyzed, reacted upon, measured and monitored, and lastly reported to Leadership?

aburaggi 3rd December 2014 02:48 AM

Re: Risk Management in ISO 9001:2015
 
Quote:

In Reply to Parent Post by John Broomfield (Post 563741)
aburaggi,

We speak as if we are not already managing risk while realizing opportunities.

When we plan a new project or process we agree the objectives then we consider what could happen to stop us fulfilling the objectives and what we must do to be assured of meeting the objectives.

Accordingly, we ensure we have the necessary resources and controls in place to manage the risks while realizing the opportunity.

Resources include facilities, equipment, materials, authorities and competencies. Controls include methods, procedures, responsibilities, care and coordination. Of course, the resources and controls come with the necessary contingencies such as making sure we do not have single points of control.

For example, we are planning to do business with a supplier for the first time. We apply our established selection criteria and then invest in more monitoring than we do for suppliers accomplished in fulfilling our requirements. Another example, our customers are slow to pay. We find out why and may ensure our management system results in accurate invoices issued as soon as possible. Or, we design a product or process but want to ensure it does not cause injury so we organize multidisciplinary reviews between each design iteration.

Just about every decision is predicated by a risk assessment. Naturally, we need our management systems to help us to manage the knowledge proven useful to quickly assess opportunities and their risks.

The greatest risk, as I see it, is forgetting what we already know and do with our processes and projects in favor of chasing what ISO newly specifies explicitly instead of implicitly.

John

thanks John
of course risk always is considered that?s why we always add control measures in each and every process we do,,,, and i think incorporating it with the QMS should give a greater value. since the risk will be identified and evaluated. Frequency x Severity = Risk

i just need to see few samples -if exist- to start identifying and categorizing those risks

John Broomfield 3rd December 2014 03:56 AM

Re: Risk Management in ISO 9001:2015
 
aburaggi,

Sure, we'd all like a few examples of the evidence expected of risk-based thinking as specified in the DIS.

The DIS also says that it is not specifying requirements for a risk-based management system.

So, are we to generate additional evidence to keep auditors happy or are we to continue managing risk as we now do, without keeping a record?

Hopefully, the FDIS will clarify this.

John

LUV-d-4UM 20th January 2015 09:54 PM

Re: Risk Management in ISO 9001:2015
 
I am taking a big risk by posting the Quality Policy statement for the ISO9001:2015 management system. I welcome everyone to critique this quality policy. Thank you.

"We the employees of XYZ company are committed to deliver quality in every product and service which we provide to all our customers. To meet this commitment we will:

Supply products and services which meet customer expectations and requirements surpassing or equalizing the competition

Develop and introduce innovative products and services to meet emerging expectations and requirements

Maintain an environment which encourages us to continuously strive to improve the quality of work, both individual and as a team.

This commitment to quality is a responsibility accepted by all XYZ Company employees to maintain the loyalty and trust of our customers."




The time now is 10:25 AM. All times are GMT -4.
Your time zone can be changed in your UserCP --> Options.




   

FAIR USE and CORRECTNESS NOTICE: This site contains copyrighted material the use of which has not always been specifically authorized by the copyright owner. We are making such material available in our efforts to advance understanding of environmental, political, human rights, economic, democracy, scientific, and social justice issues, etc. We believe herein constitutes a 'fair use' of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C. Section 107, the material on this site is distributed without profit to those who have expressed a prior interest in receiving the included information for research and educational purposes. For more information go to: http://www.law.cornell.edu/uscode/17/ If you wish to use copyrighted material from this site for purposes of your own that go beyond 'fair use', you must obtain permission from the copyright owner. In addition, I do not guarantee the correctness of the content. The risk of using content from the Cove web site and forums remains with the user/visitor.

Responsibility Statement: Each person is responsible for anything they post in the Cove Discussion forum. Liability for post content resides with the poster as does interpretation and/or acceptance and/or use of advice by the reader.

Complaints: If you have a complaint with a post in a forum discussion thread, including Content in general, fighting, flaming, copyright infringement, defamation and/or 'slander', please use the 'Report This Post Report This Post Button button which appears at the top of every post in every thread.