[en] Risk assessment
[en] Risk assessment is a submodule of QHSES and provides the opportunity to perform risk assessments in RamBase. Users may choose which areas or RamBase objects to assess, and how to assess them. Risk assessment aims to cover activities that a business must perform to comply with legislative, internal, and external requirements (such as Internal Control Regulations and ISO requirements).
[en] Areas where risk is present may be assessed by adding potential consequences such as high-level stakeholder analysis, work environment, operational processes, supplier/customer performance, legislative compliance and more. By setting up a preferred risk matrix in the QHSES setup (QISADMIN) application, users may add and quantify existing mitigation controls. Users may also create actions based on findings and handle them to control and reduce risk impact. When actions are handled, they may later be converted to controls.
[en] It is possible to perform regular re-assessments at chosen intervals or copy existing assessments/risks to use them as templates for further work in the same or similar areas.
[en] The submodule comprises the following three applications:
[en] Risk assessments (RAM)
[en] Risk assessment (RAS)
[en] Risks list (RISK)