Your SlideShare is downloading. ×
  • Like
Upcoming SlideShare
Loading in...5

Thanks for flagging this SlideShare!

Oops! An error has occurred.


Now you can save presentations on your phone or tablet

Available for both IPhone and Android

Text the download link to your phone

Standard text messaging rates apply



it is reliability

it is reliability

Published in Technology , Business
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads


Total Views
On SlideShare
From Embeds
Number of Embeds



Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

    No notes for slide


  • 1. Industrial Safety and Risk Assessment
  • 2.
    • Risk assessment is the process of enumerating risks, determining their
    • classifications, assigning probability and impact scores, and associating controls with each risk.
  • 3.
    • “ The trick is for the right people to
    • use the right tools at the right time, each time!”
  • 4.
    • Risk Assessments measure the risk, the potential loss, and the probability that the loss will occur.
    • Risk (R) =Loss value (L) * Probability (P)
    • (or)
    • R=L*P
  • 5.
    • Risk: potential events that have a negative impact on the Integrity, Confidentiality, and Availability of information.
    • Vulnerability: condition of a missing or ineffectively administered safeguard or control that allows a risk to occur with a greater impact or frequency or both.
    • Impact – the potential effect a risk may have on an asset.
    • Control – measures taken to prevent, detect, minimize, or eliminate risk to protect the Integrity, Confidentiality, and Availability of information.
    • Probability – the likelihood of the event occurring, rated from 0n to 1
  • 6. Risk is a Common place
  • 7. What to Investigate
  • 8. Types of Risk Assessment
    • Qualitative – measure in terms like “high, medium, and low” for probability and impact. Look at relative value, risk.
    • Quantitative – measure in dollars and formulas.
      • The government has switched to more qualitative
    • processes – quantitative processes tend to take a very long time and while they generate “hard” data, they are rarely completed!
  • 9.
    • High, medium, and
    • low mean something
    • different to everyone.
    • Assign understandable
    • values, then seek
    • group agreement.
    • Document thought
    • process if necessary
    • or appropriate.
  • 10.  
  • 11.  
  • 12.
    • "The greatest opportunity for the discovery and correction of undesired deviations takes place while the Risk is being performed."
  • 13. Performing a Risk Assessment
    • Define the purpose of the assessment
    • Identify the product or system
    • Select assessment approach
    • Gather information
    • Develop attack scenarios
    • Estimate risk parameters
    • Produce assessment report
  • 14. Promoting the Risk Assessment
  • 15. Elements of good risk assessments 1. Provides clear instructions 2. Is composed of Segmented Questions 3. Simplifies user Response 4. Allows for user Commentary Area 5. Identifies support contacts 6. Focuses on leaders as well as executors 7. Provides feedback to users and Risk leaders 8. Has a broad Scope 9. Supports draft operating mode 10.Identifies User for follow up if necessary and applicable
  • 16. Risk Assessment Foundation
    • A strong foundation
    • is essential to the
    • success of a risk
    • assessment!
  • 17. Dealing with risk
    • Accept the risk
    • • You accept responsibility
    • and acknowledge
    • awareness of the risk.
    • • Not always an acceptable
    • alternative
    • • Formal acknowledgement
    • can be a useful tool!
  • 18. Dealing with risk
    • Address and control the risk
    • Determine appropriate controls,
    • from both a risk remediation and a
    • cost and effort to implement standpoint
  • 19. Meta Process
    • Sponsor
    • Scope
    • Team
    • Risk enumeration
    • Risk classification and
    • rating
    • Control identification
    • Report
    • Action plan and
    • execution
  • 20. Sponsorship
    • A key factor in the success of risk
    • assessment is having an effective sponsor.
    • The sponsor should be in charge of the area or system being assessed.
    • Sponsors should be willing to take responsibility for the assessment and to use its findings.
  • 21. Scope
    • Carefully scope your assessment
    • Write a scope statement and make
    • sure your group understands it.
    • Use scope to keep on topic during
    • brainstorming, but do not limit
    • brainstorming.
  • 22. Choosing a team
    • Diversity
    • Expertise
    • Sanity
    • Leadership
    • Numbers
  • 23. Reporting
    • Reports should include risks, probability
    • and impact ratings, and controls for each
    • risk.
    • Reports should be signed off on by the
    • project sponsor and the areas that must
    • implement controls.
    • Choose a reasonable implementation
    • timeframe and follow up!
  • 24. Formal Risk Assessment
    • Suggest a risk
    • Classify the risk
    • Rate Probability
    • Rate Impact
    • Suggest controls
  • 25. Formal Risk Assessment
    • Introduction - team members introduce themselves and very briefly describe their area of responsibility or expertise relevant to the scope of the assessment.
    • Brainstorm - Risks are brainstormed, no idea will be rejected or negatively discussed in the initial brainstorm.
    • Identification - risks categorized as affecting Confidentiality, Integrity, or Availability
    • Prioritization - risks are prioritized by their impact, and probability
    • Controls - controls are identified and recommended based on the risks identified. Controls are prioritized based on cost, priority, and capability to implement.
    • Report - a report is prepared by the facilitator and approved by the team.
    • Sign-off - the project lead is given the document and signs off on it.
  • 26. Steps Involved in Risk Assessment
    • 1. Make sure the risk assessment process is practical and realistic.
    • 2. Involve as many people as possible in the process, especially those at risk.
    • 3. Use a systematic approach to ensure all relevant risks and hazards are addressed.
    • 4. Look at the big picture ; don’t waste time on the obviously minor risks; and don’t obscure the process in too much detail.
    • 5. Start by identifying the hazards.
    • 6. Assess the risks from those hazards, taking into account the effectiveness of the existing controls;
    • 7. Be realistic, not idealistic. Look at what actually occurs and exists in the workplace and, in particular, include non-routine operations .
    • 8. Identify who is at risk. Include all workers, including visitors, contractors and the public.
    • 9. Start with the simple methods, use more systematic methods as necessary.
    • 10. Always record the assessment in writing, including all assumptions you make, with the reasons why.
  • 27. Disadvantages
    • Accuracy
    • Responsiveness
    • Ease of Use
  • 28.  
  • 29.
    • “ Risk Assessment is necessary to be Safe Always in All ways”
  • 30.
    • Thank You