As indicated in another post I have added this clause reference and statement to the scope of all my procedures as an update to ISO 13485:2016, including my PMS SOP.
4.1.2b A risk based approach will be applied to the control of the appropriate processes within this Procedure.
As to overall Risk Management, I just follow ISO 14971 (no separate SOP) to create a Risk Management section for each of my Technical Files. This gets updated if I find any additional hazards (and potential solutions) for a particular device similar/equivalent to one of ours e.g. reported by regulatory authorities such the MHRA, FDA, TGA etc. Not sure if this answers your question.
Steve