Risk Assessment & Contingency Planning (API Q1, 9th. Ed.)

M

MalDu

#1
Referring to the new requirements of the 9th. Edition of API Spec Q1 for risk assessment & management & contingency planning, I've made a standard (general) Risk Assessment and Management Sheet and a Standard Contingency Plan and specified in procedure that specific ones are generated when needed. i.e. when the requirements differ (e.g. new order that we haven't done before).

In other words, we don't have to do risk assessment and contingency planning for every single order I mean. Please correct me if I am wrong.

Thanks.
 
Elsmar Forum Sponsor
B

bluepagen

#3
MalDu, we made a simple Risk Register, something that was divided by processes, jotting down things that have caused issues in the past for each process and things that can go wrong in each process.
 

RoxaneB

Super Moderator
Super Moderator
#5
Referring to the new requirements of the 9th. Edition of API Spec Q1 for risk assessment & management & contingency planning, I've made a standard (general) Risk Assessment and Management Sheet and a Standard Contingency Plan and specified in procedure that specific ones are generated when needed. i.e. when the requirements differ (e.g. new order that we haven't done before).

In other words, we don't have to do risk assessment and contingency planning for every single order I mean. Please correct me if I am wrong.

Thanks.
While I am not familiar with this particular standard, in my experience when 'contingency planning' is involved, this is more inline with developing and implementing processes and practices should there be a disaster or emergency which impacts your facility. These could include computer systems/backups, energy shut-downs and start-ups, natural disasters, terrorism, etc. The purpose is two-fold:

  1. To ensure the company resumes operating in a safe and effective and timely manner.
  2. To demonstrate that processes are in place ensuring all possible actions will be taken to meet customer requirements (e.g., product specifications, delivery dates, etc.)

I didn't think this particular subject addressed making a new order (i.e., one with specifications that has not be manufactured previously)...wouldn't that fall under product planning/design?

Again, I am not familiar with the details of this particular standard and if I am wrong, I'm sure I'll be corrected. :cool:
 
B

BGirard

#7
Thanks bluepagan... that was very helpful... so once this register is made, when is it consulted? every order... were a service company trying to make it in a manufacturing spec...lol

BG
 
B

bluepagen

#8
That is a very good question, and one that our Quality Manager just asked me yesterday. He wanted to kow what was the evidence of the review of the risk register.

In our company, we use the risk register right up front, in requests for quotes, reviewing an order and entering an order. Then bringing all together again to go through all the details of a job. Sales can see what has happened in the past, what can happen, and how we have mitigated it to reduce the risk. We went as far as to document a question on our contract review form and supplemental contract review form asking if the risk register has been reviewed. This requires the sales person to do a quick check, in his areas listed on the register, and sign. This form and the supplemental contract review form both have the question, and once filled out during the reviews, it is put into the sales file, or scanned in for the electronic file.

Evidence of the review of the risk register is the person's name on the checklists, which also gets dated.

One of the new questions when doing internal audits, is at what point in your job is the risk register reviewed? Followed with- and how are you indicating the review? A simple print out of that departments review of risks associated with their area of responsibilities, can be printed, signed, dated and forwarded to sales for inclusion into the file.

Our engineering department does FEMA and FEMDA's on their end, so that is associated to the design file.

It is a new process for us also. We really did not know how to approach it either. As an auditor, I have a finding history that I have kept for 10+ years. I always review back to that file when something is noted in an audit that I know is a blast from the past. A lot of times something will occur again when we beef up our staff with new people or when we are swamped! So people tend to try to hurry, skip a step, fail to question, or whatever we as people tend to do. That history, to me, meant is was possible to do it because we at some point did it, but, we had a corrective actioin for it, and that was where I started. These things did happen and could happen again. Luckily we had a way to midigate the risk, and that was by looking at the documentation that was provided when it was and opportunity for improvement or a finding.
 
B

BGirard

#9
bluepagen... thanks for the insight, I seen in your profile that we work for the same company under the same group, I could really use some help bouncing some stuff. If you would be interested hit me up on the company email

Brian Girard
 
Thread starter Similar threads Forum Replies Date
R Risk assessment on IT containers and the information they contain IEC 27001 - Information Security Management Systems (ISMS) 4
B Threat/Vulnerability Catalogue for risk assessment IEC 27001 - Information Security Management Systems (ISMS) 4
R FOD Risk Assessment - What tools would you recommend for assessing FOD risk? AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 1
B Risk Assessment Checklist for Non product Software IEC 62304 - Medical Device Software Life Cycle Processes 1
M Informational Final guidance – GUIDELINES on the benefit-risk assessment of the presence of phthalates in certain medical devices covering phthalates which are carc Medical Device and FDA Regulations and Standards News 0
D Risk Assessment Procedure in accordance with ISO 17025:2017 ISO 17025 related Discussions 5
M Informational EU – 12th Meeting of the Working Group on Guidelines on benefit – risk assessment of Phthalates in Medical Devices Medical Device and FDA Regulations and Standards News 0
D Doing both a top-down and a bottom-up risk assessment - How to combine ISO 14971 - Medical Device Risk Management 6
V Sequence of performing risk assessment: User_FMEA (User Errors) vs Design Inputs FMEA and Control Plans 1
chris1price Cleanroom Monitoring Plan - ISO14644-2:2015 - Risk Assessment Other Medical Device Related Standards 3
T IEC 60601-1 - Risk assessment to determine the liquid - 11.6.3 IEC 60601 - Medical Electrical Equipment Safety Standards Series 6
P Looking for Risk Assessment Template - Not necessarily Asset based IEC 27001 - Information Security Management Systems (ISMS) 1
S Can anybody share a sample risk assessment prepared based on ISO 17025:2017? ISO 17025 related Discussions 15
M Informational EU – SCHEER – Minutes of the Working Group meeting on guidelines on the benefit-risk assessment of the presence of phthalates in certain medical devic Medical Device and FDA Regulations and Standards News 1
Q Risk & opportunity assessment - ISO 14001 ISO 14001:2015 Specific Discussions 1
Don Fardie CAPA vs. Risk Assessment - Changing a product material for better performance ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 2
J Simple supplier evaluation qualification process form that includes Risk Assessment Document Control Systems, Procedures, Forms and Templates 2
K Risk Assessment Registry - ISO 27001 IEC 27001 - Information Security Management Systems (ISMS) 8
M Risk Identification and Risk Assessment for any Process - Is it necessary? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 22
D Qualitative vs. Quantitative Risk Assessment AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
B Process Risk Assessment Example for a Manufacturing Company Quality Tools, Improvement and Analysis 2
A Risk Assessment Technique that fits the Context of the Organization ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 5
Q Risk Impact - Risk Assessment Sample/Method per ISO 9001:2015 ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 1
somashekar How to put in place a Risk Assessment of Vulnerabilities & Corruption... Sustainability, Green Initiatives and Ecology 2
A Preventive Action and Risk Assessment Audit Process Audits and Layered Process Audits 5
A Risk Assessment- What to do? ISO 14971 - Medical Device Risk Management 3
somashekar FDA proposal on Medical Device Accessory Risk Assessment Other US Medical Device Regulations 15
V Risk Assessment Precedence - FMEA > Risk Matrix (Modified PHA) > Ishikawa? FMEA and Control Plans 11
P Example Risk Assessment for CAPA's Document Control Systems, Procedures, Forms and Templates 5
S Product Risk Assessment and Management Procedure per API Q1 9th Edition Oil and Gas Industry Standards and Regulations 8
J Timeframes for Risk-Based Biocompatibiilty Assessment Other Medical Device Related Standards 3
SteveK RoHS Conformity Risk Assessment - Medical Devices RoHS, REACH, ELV, IMDS and Restricted Substances 2
J API Q1-9 Critical Supppliers 5.6.1.2 and Risk Assessment Oil and Gas Industry Standards and Regulations 6
A Risk Assessment Considerations for various Activities Occupational Health & Safety Management Standards 10
S Can anyone share template for Device Risk Assessment ? ISO 14971 - Medical Device Risk Management 2
S Definition Technical Risk Assessment - Definition Definitions, Acronyms, Abbreviations and Interpretations Listed Alphabetically 3
Wes Bucey The Ethics of Risk Assessment Philosophy, Gurus, Innovation and Evolution 13
AnaMariaVR2 Structured Approach to Benefit-Risk Assessment in Drug Regulatory Decision-Making Pharmaceuticals (21 CFR Part 210, 21 CFR Part 211 and related Regulations) 0
M How to document Risk Assessment on Repeat Business AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 4
P What are FMEA Risk assessment techniques? FMEA and Control Plans 4
V Which Risk Assessment tool is adequate? FMEA and Control Plans 2
V How to Measure Effectiveness of Risk Assessment Processes FMEA and Control Plans 7
Wes Bucey Supply Chain Risk Assessment - Asia Floods Business Continuity & Resiliency Planning (BCRP) 1
V Examples of Risk Assessment (FMEA) through the Life Cycle of the Product Development ISO 14971 - Medical Device Risk Management 16
A Risk Assessment, Business Continuity Planning, Testing, BCP, etc as part of ISO 27001 IEC 27001 - Information Security Management Systems (ISMS) 8
V PIC/S Committee has adopted an Aide-Memoire on Assessment of Quality Risk Management ISO 14971 - Medical Device Risk Management 2
S Hazard Identification and Risk Assessment - Can Risk Assessment be "Grandfathered"? Occupational Health & Safety Management Standards 4
G Pharmaceutical Risk Assessment - Use of Medical Staff Pharmaceuticals (21 CFR Part 210, 21 CFR Part 211 and related Regulations) 4
E Meeting ISO 10993-1 2009 Material Risk Assessment Requirements Other Medical Device Related Standards 13
K Risk Assessment / FMEA - Using the same Risk Opportunities - Opinion Question AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 9

Similar threads

Top Bottom