Risk Based Thinking - Is a Documented Procedure required?

qusys

Trusted Information Resource
#1
Is it requested a documented procedure to establish the method followed to meet this requirement for risk analysis?
Could you share your experience and eventually some templates to follow?
thanks
 
Elsmar Forum Sponsor

pziemlewicz

Involved In Discussions
#2
Risk Based Thinking is not required as a stand-alone procedure. You do however need to demonstrate that you're assessing risk at all levels of the organization. If you have a procedure on supplier assessment, you're already doing this in Purchasing. Preventive Actions, PFMEAs, Cross Training Matrix, Contingency Plans, AQL sampling plans, capability studies, and Gage R+R's are all examples of Risk Assessment.
 

qusys

Trusted Information Resource
#3
Thank you. I know that it is not a requirement, but the auditor could ask : which kind of method you follow for each QMS process? Which tables?
 

Sidney Vianna

Post Responsibly
Staff member
Admin
#4
I know that it is not a requirement, but the auditor could ask :
If you want to second guess the million possible asinine questions some auditors could ask, let the ISO gods have mercy on you.

Stick to the requirements of the standard and how you your system complies with them, in a meaningful manner, and you will be in a much better and sane place.

Systems are not meant to pass audits. Especially when conducted by questionably competent auditors. Systems exist to provide GOVERNANCE to an organization.

Good luck.
 

Marc

Hunkered Down for the Duration
Staff member
Admin
#5
If it was me, I'd do a spreadsheet listing your processes. In it I would put in things your company does to assess risk(s) for each. If you do that it will get you to thinking about all the areas you do some type of risk assessment, paper based or otherwise. That way you will have a "cheat sheet" that you can use and discuss with the auditor, and it will help you to more fully understand all the various ways your company assesses various risks.

:2cents:
 
M

marcbritten

#7
Have you read the official guide to risk based thinking put out by ISO?

I apparently can't post links but ISO/TC 176/SC2/N1284 RISK-BASED THINKING IN ISO 9001:2015
 
Thread starter Similar threads Forum Replies Date
E Basic Risk based thinking questions Risk Management Principles and Generic Guidelines 5
Jen Kirley Risk Based Thinking and acts of God/Mother Nature Business Continuity & Resiliency Planning (BCRP) 1
Chennaiite But who said we are new to Risk based thinking Imported Legacy Blogs 1
Sidney Vianna Are the TC 176 Documents on Risk Based Thinking useful to you? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 13
A Informational Risk Management (and Risk Based Thinking) in ISO 9001:2015 ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 54
silentmonkey Rationalising the level of effort and depth of software validation based on risk ISO 13485:2016 - Medical Device Quality Management Systems 10
S Risk based internal auditing Internal Auditing 6
G Any good examples of CAPA forms that include a risk based approach? ISO 13485:2016 - Medical Device Quality Management Systems 8
D Reduction of software class based on multiple external risk controls IEC 62304 - Medical Device Software Life Cycle Processes 5
D Validation of existing equipment - Risk based approach example ISO 13485:2016 - Medical Device Quality Management Systems 3
D Requirement of Pharmacovigilance (Drug Safety) Risk Based Strategic and Tactical Audit Plan General Auditing Discussions 0
Ed Panek Are audit non conformances also risk based? ISO 13485:2016 - Medical Device Quality Management Systems 1
C Usability IEC 62366-1:2015 and MDR 2017/745 - Risk based approach IEC 62366 - Medical Device Usability Engineering 1
M Informational USFDA draft guidance – A Risk-Based Approach to Monitoring of Clinical Investigations Questions and Answers Guidance for Industry Medical Device and FDA Regulations and Standards News 0
P Looking for Risk Assessment Template - Not necessarily Asset based IEC 27001 - Information Security Management Systems (ISMS) 1
S Can anybody share a sample risk assessment prepared based on ISO 17025:2017? ISO 17025 related Discussions 15
Pmarszal ISO 19011:2018 - Risk Based Approach for planning, conducting and reporting of internal audits Internal Auditing 8
T What is Risk-based Design? ISO 14971 - Medical Device Risk Management 15
Q Questions about the Risk-based approach to QMS processes ISO 13485:2016 - Medical Device Quality Management Systems 17
Sidney Vianna FAA and DCMA to leverage OASIS data to assist in planning risk-based oversight audits Federal Aviation Administration (FAA) Standards and Requirements 3
S ISO 13485:2016 - Risk-based Approach ISO 13485:2016 - Medical Device Quality Management Systems 3
S Risk based approach - Procedures already take a risk-based approach to QMS processes ISO 13485:2016 - Medical Device Quality Management Systems 3
S Risk Based Approach for ISO 13485:2016 Form/Procedure ISO 13485:2016 - Medical Device Quality Management Systems 23
Y Examples of Risk and Opportunities based on ISO 9001:2015 ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 2
Q Is it worth the effort to implement ISO 31000 Risk based on ISO 9001:2015? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 5
alonFAI How to define a Risk Based Approach for Supplier Management per ISO 13485:2016 ISO 13485:2016 - Medical Device Quality Management Systems 1
B Risk Requirements to meet the explicit Risk Based Approach of ISO 13485:2016 Examples ISO 13485:2016 - Medical Device Quality Management Systems 21
J Timeframes for Risk-Based Biocompatibiilty Assessment Other Medical Device Related Standards 3
S Help me with preparing Internal Audit Schedule based on Risk analysis 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 2
D Risk Based Inspection: Injection Molding Inspection, Prints (Drawings), Testing, Sampling and Related Topics 6
A Risk Based Internal Quality Audit Scheduling and Planning Internal Auditing 2
T Risk based Impact Level related to Customer Complaints 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 2
G Why do we use Sampling Plans based on Producer's Risk? Inspection, Prints (Drawings), Testing, Sampling and Related Topics 20
RoxaneB Risk-Based Audit Results - Audit Program for Multiple Locations General Auditing Discussions 8
V Evolving QA from 'Compliance-based' to 'Science/Risk-based' approach US Food and Drug Administration (FDA) 2
AnaMariaVR2 Risk Based Approach to Validation [article] Qualification and Validation (including 21 CFR Part 11) 3
W Customer wants 'Risk Based Compliance' for our Plastic Component Other Medical Device and Orthopedic Related Topics 3
D PA, CA and Risk-Based Decision Making - Need Input Preventive Action and Continuous Improvement 7
C Is Risk Based Decision Making part of Preventive Action Preventive Action and Continuous Improvement 5
Ajit Basrur Risk Based Internal Auditing - Pharmaceutical Plants Internal Auditing 3
J Overall Residual Risk Procedure based on the 2007 version of ISO 14971 ISO 14971 - Medical Device Risk Management 4
S Supplier Risk Check Sheet based on Quality and Delivery needed Supplier Quality Assurance and other Supplier Issues 1
C ISO/ PAS 28000 Implementation Guide - I'm interested in its risk based approach Other ISO and International Standards and European Regulations 4
Jen Kirley Some Options for Risk Based Auditing The Reading Room 14
sathis Risk Based Certification General Auditing Discussions 2
Sidney Vianna Risk Based Audits - Will the industry change it's approach? Registrars and Notified Bodies 0
C How is risk management handled in a software-based product ISO 13485:2016 - Medical Device Quality Management Systems 1
Scott Catron Any difference in FDA inspections since the risk-based approach was announced? US Food and Drug Administration (FDA) 6
E Risk Based Audits ocussing on those areas of identified risk General Auditing Discussions 3
Sravan Manchikanti Software Risk Management & probability of occurrence as per IEC 62304 IEC 62304 - Medical Device Software Life Cycle Processes 8

Similar threads

Top Bottom