Requirements under OHSAS 18001 for the Control of Risks

O

OzDave

#1
Hi there good folk. This site is a trully amazing site, so many people sharing their knowledge and experience - great to see.

I've trolled through the site trying to find an answer to what is probably a pretty simple question about 18001.

Clause 4.3.1 requires the identification of hazards, assessment of risks and determination of controls.

Clause 4.4.6 require the identification of operational controls.

As both of these clauses require the identification of controls, what's the difference between them (assuming there is a difference)?

Thanks

Dave
 
Elsmar Forum Sponsor

Jen Kirley

Quality and Auditing Expert
Staff member
Admin
#2
Re: Requirements under 18001 for the control of risks

Welcome to the Cove! :bigwave: You are among friends.

In the simplest of terms, 4.3.1 asks us to identify the hazards, and 4.4.6 asks us to define the controls to address the risks we identified as per 4.3.1.

Does this help?
 
O

OzDave

#3
Re: Requirements under 18001 for the control of risks

Thanks Jennifer, I could understand the requirements if the standard said what you have suggested. Where I'm having some difficulty is that 4.3.1 doesn't just require the identification of hazards it also requires risk assessment and, more importantly to me at the moment, risk controls to be identified which appears to duplicate the requirements of 4.4.6.

The way I can rationalise it inside my own confused mind is that 4.3.1 requires the need for a control and the nature of the control (based on the hierarchy of controls) to be identified and 4.4.6 requires the details of the controls to be specified. Does that make sense to anyone else and would that be a correct interpretation of the standard?
 

Randy

Super Moderator
#4
Re: Requirements under 18001 for the control of risks

Thanks Jennifer, I could understand the requirements if the standard said what you have suggested. Where I'm having some difficulty is that 4.3.1 doesn't just require the identification of hazards it also requires risk assessment and, more importantly to me at the moment, risk controls to be identified which appears to duplicate the requirements of 4.4.6.

The way I can rationalise it inside my own confused mind is that 4.3.1 requires the need for a control and the nature of the control (based on the hierarchy of controls) to be identified and 4.4.6 requires the details of the controls to be specified. Does that make sense to anyone else and would that be a correct interpretation of the standard?
You've stumbled across why it is called a "System", one element helps to meet the requirments of another and or others

There is nothing confusing here...Identify hazards, determine risks associated with them, develop controls to manage the risks...

In the good old US of A quite a bit has already been done for ya by OSHA and it's free. Examples:

Use chemicals in the workplace?...Hazcom Program - 29CFR1910.1200
Hazardous waste handling?....Hazwoper - 29CFR 1910.120
Forklifts?.....Powered Industrial Trucks - 29CFR1910.170
so on and so forth....

Just follow the yellow brick road or this link..http://www.osha.gov/law-regs.html

The OSHA regs will tell you exactly what needs to be in your "controls" and OSHA even provides downloadable "controls" that you can freely adapt to your use

Nothing mystical here or complicated until you get a bunch of non-safety professionals providing advice
 

somashekar

Staff member
Super Moderator
#5
Re: Requirements under 18001 for the control of risks

Thanks Jennifer, I could understand the requirements if the standard said what you have suggested. Where I'm having some difficulty is that 4.3.1 doesn't just require the identification of hazards it also requires risk assessment and, more importantly to me at the moment, risk controls to be identified which appears to duplicate the requirements of 4.4.6.

The way I can rationalise it inside my own confused mind is that 4.3.1 requires the need for a control and the nature of the control (based on the hierarchy of controls) to be identified and 4.4.6 requires the details of the controls to be specified. Does that make sense to anyone else and would that be a correct interpretation of the standard?
Yaa....4.3.1 is your planning and 4.4.6 is your implementation and operation of that planning .
You are going in the right order of the PDCA.
 
O

OzDave

#6
Re: Requirements under 18001 for the control of risks

Thanks for the replies.

Somashekar, thanks for the confirmation I am going down the right track.

Randy, you're going to have to try a little harder if condescension is your aim.

Regards

Dave
 

Paul Simpson

Trusted Information Resource
#7
Re: Requirements under 18001 for the control of risks

<snip>Randy, you're going to have to try a little harder if condescension is your aim.</snip>
Now, Dave you're just going to have to get used to l'il old Randy. :D His bark is worse than his bite but he just forgets that not everyone recognizes his 'tell it like it is' style and some may find it a bit condescending. :notme:

In his post there were a couple of gems that should help in your investigation.

  • Randy mentioned the fact we are talking about systems. Now this is often difficult to describe in a standard but is totally appropriate when discussing O H & S and how an organization manages its risks.
  • There are lots of interrelationship of elements (clauses) of a standard. So the purpose of going through a process of identifying hazards is to assess risks and identify controls to be implemented through a management system. So 4.3.1 has to link through to Objectives and programmes (4.3.3), Roles and responsibilities (4.4.1), Training needs (4.4.2), Communication (4.4.3), Documentation (4.4.4), Operational Control (4.4.6), Emergency response (4.4.7) etc.
  • This results in a little duplication across the standard but reduced risks of people missing key requirements if they focus just on operational control (for example)

Hope this helps. :)
 
O

OzDave

#8
Re: Requirements under 18001 for the control of risks

Thanks Paul, I am no stranger to H&S management systems having developed, implemented, monitored and maintained them in one form or another for more than 25 years. This, however, is the first time I have used the 2007 version of 18001 and I struggled and am still struggling with the duplication of requirements across different clauses and particularly those described in the initial post.

So just to clarify, I know what a HSMS is, how to develop one, how to integrate one, how to maintain one. I know how performance standards work having used a number of them. I am just a little confused over some asepects of this one (18001) because of the duplicated requirements.

Regards

Dave
 

Randy

Super Moderator
#9
Re: Requirements under 18001 for the control of risks

Thanks Paul, I am no stranger to H&S management systems having developed, implemented, monitored and maintained them in one form or another for more than 25 years. This, however, is the first time I have used the 2007 version of 18001 and I struggled and am still struggling with the duplication of requirements across different clauses and particularly those described in the initial post.

So just to clarify, I know what a HSMS is, how to develop one, how to integrate one, how to maintain one. I know how performance standards work having used a number of them. I am just a little confused over some asepects of this one (18001) because of the duplicated requirements.

Regards

Dave
Didn't really change from the 1999 revision or BS 8800 for that matter

Within your Australian regs you'll find stuff just like our OSHA (even better in some cases)

Didn't realize you weren't from the states... My Aussie mates from the '69-71 era were laid back
 
Thread starter Similar threads Forum Replies Date
JoCam Software Translation under MDR requirements EU Medical Device Regulations 5
D CE Marking Requirements MDD & MDR - new product development covered under same scope EU Medical Device Regulations 1
L Label Content Requirements under MDR regulation EU Medical Device Regulations 5
J UDI Requirements - Products that all fall under the same family 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 3
T Oversight of Distributors - Supply chain requirements under the MDR EU Medical Device Regulations 9
S CE Marking requirements - A Medical device with different config sold under same name EU Medical Device Regulations 0
Y Liability Insurance Requirements under the MDR - p. 15 (item 31) EU Medical Device Regulations 1
I Requirements for shipping items that fall under the Cartagena Protocol Various Other Specifications, Standards, and related Requirements 4
F Traceability Requirements for Computer Hardware Equipment under ISO 13485 ISO 13485:2016 - Medical Device Quality Management Systems 2
A Do we need to the requirements listed under the heading NOTE General Measurement Device and Calibration Topics 4
M Definition Contingency Plan - What is the meaning under ISO/TS requirements Definitions, Acronyms, Abbreviations and Interpretations Listed Alphabetically 17
T How to implement Customer Requirements into your QMS under TS IATF 16949 - Automotive Quality Systems Standard 1
B Calibration 'Requirements' under ISO? Design and Development Laboratory M&TE Design and Development of Products and Processes 10
D Labeling requirements for reagents, etc ISO 13485:2016 - Medical Device Quality Management Systems 4
I Addiotional National requirements for placing MD in the EU countries EU Medical Device Regulations 4
G Tool tracebility and First calibration requirements for aerospace (AS9100) organisation AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
P Managing How PPAP Requirements are Communicated in the Manufacturing Process and to Suppliers APQP and PPAP 4
T Controlled Forms or documented requirements for records? ISO 13485:2016 - Medical Device Quality Management Systems 2
E SIP/SOP requirements for USB port used for charging IEC 60601 - Medical Electrical Equipment Safety Standards Series 3
S Requirements to obtain ISO 50001 Certification ISO 14001:2015 Specific Discussions 2
L Exemption from the Regulation COVID-19 and QMS requirements EU Medical Device Regulations 2
A ANSI/AAMI versions of 60601-1-2 and related testing requirements Other Medical Device Related Standards 0
P Equipment 21 CFR 820.70(g) - User Requirements Document for Off the shelf equipment 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 7
S PSW - Requirements for "off-the shelf" component that has multiply manufacturing locations Off the Shelf Item Manufacturing and Related Processes 1
D IATF16949 - Interpretation of Customer Requirements clauses Elsmar Cove Forum Suggestions, Complaints, Problems and Bug Reports 2
S Customer Specific Requirements (CSR) not signed/approved IATF 16949 - Automotive Quality Systems Standard 17
B FCA US IATF 16949 Customer Requirements updates Customer and Company Specific Requirements 3
A Does ISO 9001:2015 cover all the requirements of ISO 10012:2003? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 6
C Non-EU Language Requirements Other Medical Device Regulations World-Wide 3
A Baby food manufacture - food safety requirements Food Safety - ISO 22000, HACCP (21 CFR 120) 0
S Forced ServiceNow validation - No change in our current user and functional requirements IT (Information Technology) Service Management 6
P Surgical masks ( type IIR) - Cleanroom Requirements EU Medical Device Regulations 3
K IEC 62304 - Functional and performance requirements for SOUP items IEC 62304 - Medical Device Software Life Cycle Processes 2
DuncanGibbons Should the requirements FAA/EASA Part 21 be addressed within the QMS and AS9100D quality manual? AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
D IVD (in vitro diagnostic) Labelling Requirements - 98/79/EC CE Marking (Conformité Européene) / CB Scheme 2
dgrainger Clue to UK's new regulatory requirements - approval of all devices placed on the market? Other Medical Device Regulations World-Wide 1
R Requirements for MDR Article 22 Systems EU Medical Device Regulations 1
shimonv Minimum 60601 requirements for a clinical trial IEC 60601 - Medical Electrical Equipment Safety Standards Series 3
K OEM specific requirements - PPAP was rejected by STA Customer and Company Specific Requirements 5
W Insulation requirements of BF type infant skin temperature probe IEC 60601 - Medical Electrical Equipment Safety Standards Series 0
L FDA Biocompatibility Requirements - Transitory Contact Other US Medical Device Regulations 1
Ed Panek CE Mark Requirements on Kits (off the shelf product requirements met) CE Marking (Conformité Européene) / CB Scheme 2
A Interpretation of GMP Requirements for class 1 medical device manufacturer (device GMP exempt, only General controls applicable) 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 4
S MDR GSPR Clause 17 - Software Requirements EU Medical Device Regulations 2
L Turkish Requirements - Does the Software need to be translated? CE Marking (Conformité Européene) / CB Scheme 2
A Regulatory requirements for electrical cosmetic appliances US Food and Drug Administration (FDA) 5
M IEC 61000-4-2: Requirements for coating declared as insulating IEC 60601 - Medical Electrical Equipment Safety Standards Series 3
was named killer AS9100 Supplier Approval Requirements AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 10
K China Medical Device Labeling requirements - Language China Medical Device Regulations 3
S A clinical performance evaluation study with an IVD product as Investagional Use product - Clinical Monitor requirements 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 4

Similar threads

Top Bottom