Читать книгу Risk Assessment - Georgi Popov - Страница 46

Found within the aforementioned standards and others related works are a number of important terms and definitions related to the practice of hazard analysis, risk assessments, and risk management. The following are selected risk‐related terms and how they are defined in their context. Many of the definitions are taken from referenced standards, which in some cases have multiple variations. These variations have been provided to illustrate subtle differences and similarities for certain terms used in the standards.

Acceptable Risk:

 The risk level that is considered as low as reasonably practicable (ALARP) by the organization and acceptable in its current context. This level of risk is generally lowered as the organization matures and the control technologies improve. (Authors)

 That risk for which the probability of an incident or exposure occurring and the severity of harm or damage that may result are ALARP in the setting being considered. (ANSI/ASSP Z590.3‐2011(R2016))

 A risk level achieved after risk reduction measures have been applied. It is a risk level that is accepted for a given task (hazardous situation) or hazard. For the purpose of this standard, the terms – acceptable risk and – tolerable risk are considered to be synonymous. (ANSI B11.0‐2020)

 Risk that the appropriate acceptance authority (as defined in DoDI 5000.02) is willing to accept without additional mitigation. (MIL‐STD‐882E‐2012)

As Low as Reasonably Achievable (ALARA):

 ALARA is an acronym for “as low as (is) reasonably achievable,” which means making every reasonable effort to maintain exposures to ionizing radiation as far below the dose limits as practical, consistent with the purpose for which the licensed activity is undertaken, taking into account the state of technology, the economics of improvements in relation to state of technology, the economics of improvements in relation to benefits to the public health and safety, and other societal and socioeconomic considerations, and in relation to utilization of nuclear energy and licensed materials in the public interest. (Title 10, Section 20.1003, of the Code of Federal Regulations)

As Low as Reasonably Practicable (ALARP):

 That level of risk which can be further lowered only by an increase in resource expenditure that is disproportionate in relation to the resulting decrease in risk. (ANSI/ASSP Z590.3‐2011(R2016))

Asset:

 Something valuable that an entity owns, benefits from, or has use of, in generating income or to provide a service to society. Examples include employees and management, customers and vendors, property and buildings, liability, income, technology and information, and reputation. (Adapted from Businessdictionary.com)

Audit:

 A systematic, independent, documented process for obtaining information and data and evaluating it objectively to determine the extent to which defined audit criteria are fulfilled. (ANSI/ASSP Z10.0‐2019)

 Systematic, independent, and documented process for obtaining audit evidence and evaluating it objectively to determine the extent to which the audit criteria are fulfilled. (ANSI/ASSP/ISO 45001‐2018)

Barrier:

 Physical or procedural control measures that are put in place to prevent or reduce likelihood of risk exposure (proactive) and/or reduce severity of impact/consequence (reactive) resulting from a hazardous event. A fixed machine guard is an example of a “proactive barrier.” An example of a “reactive barrier” might be an air bag that is deployed in a car crash. (Authors)

Causal Factor:

 One or several mechanisms that trigger the hazard that may result in a mishap. (MIL‐STD‐882E‐2012)

Compliance:

 Meeting the requirements of local, state, or federal statutes, standards, or regulations. (ANSI/ASSP Z10.0‐2019)

Conformance:

 Meeting the requirements of the organization’s OHSMS and this standard. (ANSI/ASSP Z10.0‐2019)

Conformity:

 Fulfillment of a requirement. (ANSI/ASSP/ISO 45001‐2018)

Consequence:

 Outcome of an event affecting objectives. (ANSI/ASSP/ISO 31000‐2018)

Consultation:

 Seeking views before making a decision. (ANSI/ASSP/ISO 45001‐2018)

Continual Improvement:

 The process of enhancing the OHSMS to achieve ongoing improvement in overall health and safety performance in line with the organization’s health and safety policy and performance objectives. (ANSI/ASSP Z10.0‐2019)

 Recurring activity to enhance performance. (ANSI/ASSP/ISO 45001‐2018)

Contractor:

 A person or organization providing services to another organization in accordance with agreed‐upon specifications, terms, and conditions. (ANSI/ASSP Z10.0‐2019)

 External organization providing services to the organization in accordance with agreed specifications, terms, and conditions. (ANSI/ASSP/ISO 45001‐2018)

 An entity in private industry that enters into contracts with the Government to provide goods or services. (MIL‐STD‐882E‐2012)

Control:

 Measure that maintains and/or modifies risk. (ANSI/ASSP/ISO 31000‐2018)

Corrective Action:

 Action taken to eliminate or mitigate the cause of a system deficiency, hazard, or risk (e.g. fix an existing problem). (ANSI/ASSP Z10.0‐2019)

 Action to eliminate the cause(s) of a nonconformity or an incident and to prevent recurrence. (ANSI/ASSP/ISO 45001‐2018)

Critical Control Point (CCP) Decision Tree:

 A decision‐making flowchart tool used to identify “high severity with low probability” risks that require additional control measures to reduce severity. (Authors)

Current State Risk:

 For present conditions, a risk assessment that takes into consideration existing controls and their effects on risk is referred to as a “current state” risk level. (Authors)

Design:

 The process of converting an idea or market need into the detailed information from which a product, process, or technical system can be produced. (ANSI/ASSP Z590.3‐2011(R2016))

 To plan and develop the machine to meet the intended purpose and function during its life cycle. (ANSI B11.0‐2020)

Design Safety Review:

 An important management process tool for integrating safety and health into the design process for new facilities, processes, or operations, and for changes in existing operations. (ANSI/ASSP Z590.3‐2011(R2016))

Ergonomics:

 The scientific discipline concerned with the understanding of interactions among humans and other elements of a system, and the profession that applies theory, principles, data, and other methods to design in order to optimize human well‐being and overall system performance. (Human Factors and Ergonomics Society)

 Occupational ergonomics is the applied science of designing workplace demands and environment to accommodate human capabilities and limitation for well‐being and optimum performance. (Authors)

Event:

 Occurrence or change of a particular set of circumstances. (ANSI/ASSP/ISO 31000‐2018)

Exposure:

 Extent to which an organization and/or stakeholder is subject to an event. (ISO Guide 73/ANSI/ASSP 690.1‐2011)

 Contact with or proximity to a hazard, taking into account duration and intensity. (ANSI/ASSP Z10.0‐2019)

 Exposure includes the frequency and duration of a hazard coming into contact with the population or assets at risk. Frequency of exposure describes how often an event might take place over a specified time period. Duration of exposure is the length of time that a single exposure occurs. (Authors)

 State or condition of being unprotected and open to damage, danger, risk of suffering a loss in a transaction, or uncertainty. Examples of exposure to hazards include natural hazards, fire and explosion, spills or releases, process breakdowns, utility failures, transportation or distribution disruption, human error, intentional acts, regulatory, and liability. (Adapted from Businessdictionary.com)

Exposure Assessment:

 For occupational health and environmental purposes, exposure assessment is the multidisciplinary field that identifies and characterizes workplace exposures, develops estimates of exposure‐response and makes risk assessment studies, and evaluates the significance of exposures and effectiveness of intervention strategies. (ANSI/ASSP Z590.3‐2011(R2016))

 The process of measuring or estimating the exposure profiles of workers, including the relevant characteristics of the exposures such as the duration and intensity. (ANSI/ASSP Z10.0‐2019)

Failure Mode:

 A failure mode is the manner in which the item or operation potentially fails to meet or deliver the intended function and associated requirements. Failure modes may include functions that fail to perform within defined limits, inadequate or poor performance, intermittent performance, or performing an unintended or undesired function. (Carlson 2012)

Financial Risks:

 Risks that arise from the effect of market forces on financial assets or liabilities and include market risk, credit risk, liquidity risk, and price risk. (The Institutes)

Frequency:

 Number of events or outcomes per defined unit of time. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

 “Frequency” is a rate measure and needs a denominator such as a unit of time [e.g. per hour/ per year], the number of tasks performed [e.g. per 1000 miles driven/per 100 drill holes completed], units produced [e.g. per million tons of coal], of life cycle of equipment, process, or product. Note: “Likelihood” is a general term that can be expressed specifically as a “Frequency” or “Probability” of the future occurrence of the chosen consequence scenario. (Whiting 2013)

Future State Risk:

 When additional control measures are proposed, a “future state” risk level is estimated considering their effect in reducing risk. Future state residual risk assessments are performed to also validate and support the proposed risk reduction measures. (Authors)

Harm:

 Physical injury or damage to health of people. (ANSI B11.0‐2020)

Hazard:

 The potential for harm. (ANSI/ASSP Z590.3‐2011(R2016))

 Source of potential harm. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

 A condition, set of circumstances, or inherent property that can cause injury, illness, or death. (ANSI/ASSP Z10.0‐2019)

 Source with a potential to cause injury and ill health. (ANSI/ASSP/ISO 45001‐2018)

 A potential source of harm. (ANSI B11.0‐2020)

 A source of possible injury or damage to health. (NFPA 70E‐2018)

 Any real or potential condition that can cause injury, illness, or death to personnel; damage to or loss of a system, equipment, or property; or damage to the environment. (MIL‐STD‐882E‐2012)

Hazard – Insurance Context:

 Condition or situation that creates or increases chance of loss in an insured risk, separated into two kinds. (1) Physical hazard: physical environment which could increase or decrease the probability or severity of a loss. It can be managed through risk‐improvement, insurance policy terms, and premium rates. (2) Moral hazard: attitude and ethical conduct of the insured. It cannot be managed but can be avoided by declining to insure the risk. (Adapted from Businessdictionary.com)

Hazard Analysis:

 A process that commences with the identification of a hazard or hazards and proceeds into an estimate of the severity of harm or damage that could result if the potential of an incident or exposure occurs. (ANSI/ASSP Z590.3‐2011(R2016))

 It includes an analysis of severity level, but does not consider probability of occurrence. Examples might include Maximum Foreseeable Loss or Maximum Probable Loss used by insurance underwriting practices. (Manuele 2013)

Hazard Identification:

 Process of recognizing that a hazard exists and defining its characteristics. (BS OHSAS 18001‐2007)

 The act of anticipating, detecting, and identifying existing and potential hazards and their characteristics. (Authors)

Hazard Risks:

 Risks arising from property, liability, or personnel loss exposures which are generally the subject of insurance. (The Institutes)

Hazard/Risk Avoidance:

 Prevent entry of hazards into a workplace by selecting and incorporating appropriate technology and work methods criteria during the design processes. (ANSI/ASSP Z590.3‐2011(R2016))

Hazard/Risk Elimination:

 Eliminate workplace and work methods risks that have been discovered. (ANSI/ASSP Z590.3‐2011(R2016))Author’s Cautionary Note: In risk management, care must be taken when using absolute terms such as “eliminate” or “stop” or “prevent” as they imply the false confidence belief that zero risk is achievable. Risk management can never reduce risk to zero. Usually, only some risk factors which form parts of a risk scenario can be absolutely removed or eliminated. More often than not, risk treatment is usually about substituting a lower risk ‐ risk factor rather than completely eliminating a risk. For example, a highly toxic solvent may be replaced by a less toxic solvent. So in some respects the exposure to the highly toxic solvent has been eliminated but there has been essentially a reduction in risk by substitution not elimination. Also be careful with believing that simply declaring a rule that a particular solvent is not to be used, is no guarantee that the chances of further use and exposure has been completely eliminated. (Whiting 2013)

Hazardous:

 Involving exposure to at least one hazard. (NFPA 70E‐2018)

Hazardous Event:

 An event that can cause harm. (ANSI B11.0‐2020)

Hazardous Situation:

 A circumstance in which a person is exposed to a hazard(s). (ANSI B11.0‐2020)

Hierarchy of Controls:

 A systematic approach to avoiding, eliminating, controlling, and reducing risks, considering steps in a ranked and sequential order, beginning with avoidance, elimination, and substitution. (ANSI/ASSP Z590.3‐2011(R2016))

Human Factors:

 Human factors is concerned with the application of what we know about people, their abilities, characteristics, and limitations to the design of equipment they use, environments in which they function, and jobs they perform. (Human Factors and Ergonomics Society)

 Applied human factors engineering is “the designing of systems with the user in mind.” (Authors)

Incident:

 An event in which a work‐related injury or illness (regardless of severity) or fatality occurred or could have occurred (commonly referred to as a “close call” or “near miss”). (ANSI/ASSP Z10.0‐2019)

 Occurrence arising out of, or in the course of, work that could or does result in injury and ill health. (ANSI/ASSP/ISO 45001‐2018)

Initial Risk:

 The first assessment of the potential risk of an identified hazard. Initial risk establishes a fixed baseline for the hazard. (MIL‐STD‐882E‐2012)

Injury and Ill Health:

 Adverse effect on the physical, mental, or cognitive condition of a person. (ANSI/ASSP/ISO 45001‐2018)

Level of Risk:

 Magnitude of a risk or combination of risks, expressed in terms of the combination of consequences and their likelihood. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Life Cycle:

 The phases of design, construction, operation, maintenance, and disposal for a facility, equipment, process, and material. (ANSI/ASSP Z590.3‐2011(R2016))

 The phases of a machine including but not necessarily limited to: planning and specification; acquisition and contracting; design and construction; transport and commissioning, reassembly, installation, initial adjustment, relocation; operation and maintenance (e.g. setting, teaching/programming, process changeover, cleaning, planned or unplanned maintenance, trouble‐shooting); modification; decommissioning, dismantling, and, as far as safety is concerned, disposal. (ANSI B11.0‐2020)

 All phases of the system’s life, including design, research, development, test and evaluation, production, deployment (inventory), operations and support, and disposal. (MIL‐STD‐882E‐2012)

Likelihood:

 Chance of something happening. (ANSI/ASSP/ISO 31000‐2018; ANSI/ASSP/ISO 31010‐2019)

 “Likelihood” is a general term that can be expressed specifically as a “Frequency” or “Probability” of the future occurrence of the chosen consequence scenario. The Likelihood of the complete scenario needs to include estimates of the likelihoods of each scenario event and circumstance so as to obtain an overall likelihood. This compounding of contributing likelihoods can be qualitative or quantitative. (Whiting 2013)

 Author’s Cautionary Note: It is very useful for novice risk assessors to clearly distinguish between the terms “likelihood” and “probability” and “frequency.” The effective way of avoiding confusion of terms is to use “likelihood” as the generic term with “probability” and ‘frequency as being alternative ways or subsets of expressing likelihood. This can be illustrated by improving the way in which the likelihood scale can better provide guidance of how to estimate likelihood more reliably and consistently.

Management System:

 Set of interrelated or interacting elements of an organization to establish policies and objectives and processes to achieve those objectives. (ANSI/ASSP/ISO 45001‐2018)

Measurement:

 Process to determine a value. (ANSI/ASSP/ISO 45001‐2018)

Mishap:

 An event or series of events resulting in unintentional death, injury, occupational illness, damage to or loss of equipment or property, or damage to the environment. For the purposes of this Standard, the term “mishap” includes negative environmental impacts from planned events. (MIL‐STD‐882E‐2012)

Mitigation Measure:

 Action required to eliminate the hazard or when a hazard cannot be eliminated, reduce the associated risk by lessening the severity of the resulting mishap or lowering the likelihood that a mishap will occur. (MIL‐STD‐882E‐2012)

Monitoring:

 Determining the status of a system, a process, or an activity. (ANSI/ASSP/ISO 45001‐2018)

Objective:

 Result to be achieved. (ANSI/ASSP/ISO 45001‐2018)

Occupational Health and Safety Risk:

 Combination of the likelihood of occurrence of a work‐related hazardous event(s) or exposure(s) and the severity of injury and ill health that can be caused by the event(s) or exposure(s). (ANSI/ASSP/ISO 45001‐2018)

Occupational Health and Safety Management System (OHSMS):

 A set of interrelated elements that establish and/or support occupational health and safety policy and objectives, and mechanisms to achieve those objectives in order to continually improve occupational health and safety. (ANSI/ASSP Z10.0‐2019)

 Management system of part of a management system used to achieve the OH&S policy. (ANSI/ASSP/ISO 45001‐2018)

OHSMS Issues:

 Hazards, risks, management system deficiencies, and opportunities for improvement. (ANSI/ASSP Z10.0‐2019)

Operational Risk:

 Risks that are generated from work‐related operations and hazards. (Authors)

 Risk of loss resulting from inadequate or failed processes, people and systems, or from external events. This definition includes legal risk, but excludes strategic and reputational risk. (Bank for International Settlements)

 Arise from people or a failure in processes, systems, or controls, including those involving information technologies. (The Institutes)

Operational Risk Management System:

 A management system that encompasses all operational risks such as occupational safety, health, environmental, liability, and other risks that must be managed to achieve and sustain the organization’s business objectives through a continually improve process. (Authors)

Organization:

 A public or private company, corporation, firm, enterprise, authority, or institution, or part or combination thereof, whether incorporated or not, that has its own management functions. This can consist of one or many sites or facilities. (ANSI/ASSP Z10.0‐2019)

 Person or group of people that has its own functions with responsibilities, authorities, and relationships to achieve its objectives. (ANSI/ASSP/ISO 45001‐2018)

Performance:

 Measurable result. (ANSI/ASSP/ISO 45001‐2018)

Preventive Action:

 Action taken to reduce the likelihood an underlying system deficiency or hazard will occur or recur in another similar process. (ANSI/ASSP Z10.0‐2019)

Prevention Through Design:

 Addressing occupational safety and health needs in the design and redesign process to prevent or minimize the work‐related hazards and risks associated with the construction, manufacture, use, maintenance, retrofitting, and disposal of facilities, processes, materials, and equipment. (ANSI/ASSP Z590.3‐2011(R2016))

Probability:

 An estimate of the likelihood of an incident or exposure occurring that could result in harm or damage for a selected unit of time, events, population, items, or activity being considered. (ANSI/ASSP Z590.3‐2011(R2016))

 Measure of the chance of occurrence expressed as a number between 0 and 1, where 0 is impossibility and 1 is absolute certainty. (ANSI/ASSP/ISO 31010‐2019)

 An expression of the likelihood of occurrence of a mishap. (MIL‐STD‐882E‐2012)

 “Probability” is an expression of chances or odds and is pure number with no units usually expressed in a variety of ways such as 1 chance in 100 or 1% of the occurrences or 0.01 or even 1E‐02. The first of these expressions is recommended as the best, most easily interpreted way to describe a probability. (Whiting 2013)

Process:

 A series of progressive and interrelated steps by which an end is attained; continuous action, operation, or a series of changes taking place in a definite manner; the action of going forward. (ANSI/ASSP Z590.3‐2011(R2016))

 Set of interrelated or interacting activities which transforms inputs into outputs. (ANSI/ASSP/ISO 45001‐2018)

Procedure:

 Specified way to carry out an activity or a process. (ANSI/ASSP/ISO 45001‐2018)

Protective Measure (Risk Reduction Measure):

 Any action or means used to eliminate or control access to hazards and/or reduce risks. (ANSI B11.0‐2020)

Qualitative Risk Assessment:

 A risk assessment based on subjective ratings. (Authors)

Quantitative Risk Assessment:

 A risk assessment based on data supported numerical ratings. (Authors)

Raw Risk:

 The initial risk assessed assuming no risk‐reduction methods are in place. Raw risk serves as a baseline for the measurement of further risk reduction. Raw risk estimations may also be applicable to situations where the existing controls are considered very low on the Hierarchy of Controls and/or unreliable such as warnings, administrative level, or personal protective equipment type controls. (Authors)

Reasonable Foreseeable Misuse:

 The predictable use of facilities, equipment, or materials in a way not intended in the original design. (ANSI/ASSP Z590.3‐2011(R2016))

Redesign:

 A design activity that includes all retrofitting and altering activities affecting existing facilities, equipment, technologies, materials, and processes, and the work methods. (ANSI/ASSP Z590.3‐2011(R2016))

Residual Risk:

 The risk remaining after risk reduction measures have been taken. (ANSI/ASSP Z590.3‐2011(R2016))

 Risk remaining after risk treatment. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

 The risk remaining after risk reduction measures (protective measures) are taken. (ANSI B11.0‐2020)

Risk:

 An estimate of the probability of a hazard‐related incident or exposure occurring and the severity of harm or damage that could result. (ANSI/ASSP Z590.3‐2011(R2016))

 Effect of uncertainty on objectives. (ANSI/ASSP/ISO 31000‐2018)

 Effect of uncertainty. Note 4 to entry: Risk is often expressed in terms of a combination of the consequences of an event (including changes in circumstances) and the associated “likelihood” (as defined in ISO Guide 73:3009, 3.6.1.1) of occurrence. (ANSI/ASSP/ISO 45001‐2018)

 An estimate of the combination of the likelihood of an occurrence of a hazardous event or exposure(s), and the severity of injury or illness that may be caused by the event or exposures. (ANSI/ASSP Z10.0‐2019)

 A combination of the probability of occurrence of harm and the severity of that harm. (ANSI B11.0‐2020)

 A combination of the likelihood of occurrence of injury or damage to health and the severity of injury or damage to health that results from a hazard. (NFPA 70E‐2018)

 A combination of the severity of the mishap and the probability that the mishap will occur. (MIL‐STD‐882E‐2012)

Risk Acceptance:

 Informed decision to take a particular risk. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Analysis:

 Process to comprehend the nature of risk and to determine the level of risk. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Assessment:

 A process that commences with hazard identification and analysis, through which the probable severity of harm or damage is established, followed by an estimate of the probability of the incident or exposure occurring, and concluding with a statement of risk. (ANSI/ASSP Z590.3‐2011(R2016))

 Overall process of risk identification, risk analysis, and risk evaluation. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

 Process(es) used to evaluate the level of risk associated with hazards and system issues. (ANSI/ASSP Z10.0‐2019)

 The process by which the intended use of the machine, the tasks and hazards, and the level of risk are determined. (ANSI B11.0‐2020)

 An overall process that identifies hazards, estimates the likelihood of occurrence of injury or damage to health, estimates the potential severity of injury or damage to health, and determines if protective measures are required. (NFPA 70E‐2018)

 The scientific process that characterizes the nature and magnitude of health risks to humans and ecological receptors from chemical contaminants and other stressors that may be present in the environment. (Environmental Protection Agency)

Risk Avoidance:

 Informed decision not to be involved in, or to withdraw from, an activity in order not to be exposed to a particular risk. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Centric

 The state when an organization gains a sense of urgency around a fatal or serious injury/illness‐level risk as an actual catastrophic event; seeing risk of harm as actual harm itself resulting in the action of mitigating risk in advance of mishaps. (Walline 2014)

 The mindset of acting upon risk rather than hazards. (Authors)

Risk Criteria:

 Terms of reference against which the significance of a risk is evaluated. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Description:

 Structured statement of risk usually containing four elements: sources, events, causes, and consequences. (ANSI/ASSP/ISO 31010‐2019)

Risk Driver:

 Factor that has a major influence on risk. (ANSI/ASSP/ISO 31010‐2019)

Risk Evaluation:

 Process of comparing the results of risk analysis with risk criteria to determine whether the risk and/or its magnitude is acceptable or tolerable. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Factor:

 A component of risk derived from an identified hazard used to estimate and measure a risk level. The primary risk factors used in risk assessments are severity of consequence (S), and likelihood (L) or probability (P) of occurrence. Other risk factors used include exposure (E), frequency of exposure (F), detection of failure (D), control reliability (CR), and prevention effectiveness (PE). (Authors)

Risk Identification:

 Process of finding, recognizing, and describing risks. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Level:

 The characterization of risk as either High, Serious, Medium, or Low. (MIL‐STD‐882E‐2012)

Risk Management:

 Coordinated activities to direct and control an organization with regard to risk. (ANSI/ASSP/ISO 31000‐2018)

Risk Management Plan:

 Scheme within the risk management framework specifying the approach, the management components and resources to be applied to the management of risk. (ANSI/ASSP/ISO 31000‐2018)

Risk Management Process:

 Systematic application of management policies, procedures, and practices to the activities of communicating, consulting, establishing the context, and identifying, analyzing, evaluating, treating, monitoring, and reviewing risk. (ANSI/ASSP/ISO 31000‐2018)

Risk Matrix:

 Tool for ranking and displaying risks by defining ranges for consequence and likelihood. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Profile:

 Description of any set of risks. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Priority Number:

 A combined risk score of three or more risk factors such as severity, probability, and exposure or prevention effectiveness to produce a priority number used in risk ranking. (Authors)

Risk Professional:

 A person skilled, knowledgeable, and experienced in the risk assessment and management process. (Authors)

Risk Reduction:

 That part of the risk assessment process involving the elimination of hazards or selection of other appropriate risk reduction measures (protective measures) to reduce the probability of harm or its severity. (ANSI B11.0‐2020)

Risk Reduction Measure (Protective Measure):

 Any action or means used to eliminate hazards and/or reduce risks. (ANSI B11.0‐2020)

Risk Register:

 Record of information about identified risks. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Retention:

 Acceptance of the potential benefit of gain, or burden of loss, from a particular risk. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Source:

 Element which alone or in combination has the potential to give rise to risk. (ANSI/ASSP/ISO 31000‐2018)

Risk Tolerance:

 Organization's or stakeholder's readiness to bear the risk after risk treatment in order to achieve its objectives. (ISO Guide 73/ANSI/ASSP Z690.1‐2011)

Risk Treatment:

 Process to modify risk. (ANSI/ASSP/ISO 31000‐2018)

Safe:

 “Safe” is viewed as having reached a level of acceptable or minimal residual risk. (ANSI/ASSP Z10.0‐2019)

 Deciding that a thing is safe or not safe requires judgments of whether the probability of an undesired incident occurring and the severity of its outcome are acceptable. (Manuele 2013)

 The state of being protected from recognized hazards that are likely to cause physical harm. There is no such thing as being absolutely safe, that is, a complete absence of risk. (Whiting 2013)

Safe‐Work Procedure(s):

 Formal written documentation developed by the user that describes steps that are to be taken to safely complete tasks where hazardous situations may be present or hazardous events are likely to occur. (ANSI B11.0‐2020)

Safety:

 Freedom from unacceptable risk. (ANSI/ASSP Z590.3‐2011(R2016))

Safety Professional:

 Trained individual dedicated to the protection of people, assets, and the environment. (Authors)

Severity (of Consequence):

 An estimate of the magnitude of harm or damage that could reasonably result from a hazard‐related incident or exposure. (ANSI/ASSP Z590.3‐2011(R2016))

 The magnitude of potential consequences of a mishap to include: death, injury, occupational illness, damage to or loss of equipment or property, damage to the environment, or monetary loss. (MIL‐STD‐882E‐2012)

 Author’s Cautionary Note: The author recommends not using emotive subjective and judgmental descriptors for Severities of Consequences. It is appropriate to use such terms for sizes or levels of risk when deciding priorities for risk treatment, e.g. if desired, the term “Catastrophic” could be used instead of “High” in the A1 cell of the matrix. But if used with Consequence Severities, there is an expectation to consider tolerability based on Consequence alone. Using them with severities encourages the restrictive and inappropriate practice of decision‐making based ONLY on Consequence Severity instead of Risk [Both Likelihood AND Consequence R = L * C]. (Whiting 2013)

Stakeholder:

 Person or organization that can affect, be affected by, or perceive themselves to be affected by a decision or activity. (ANSI/ASSP/ISO 31000‐2018)

 Person or organization that can affect, be affected by, or perceive itself to be affected by a decision or activity. (ANSI/ASSP/ISO 45001‐2018)

Standard:

 A required or recommended practice endorsed by a credible organization. (Authors)

Strategic Risks:

 Risks that arise from trends in the economy and society, including changes in the economic, political, and competitive environments, as well as from demographic shifts. (The Institutes)

Supplier:

 Any entity that provides or makes available equipment, material, or professional services. (ANSI/ASSP Z590.3‐2011(R2016))

 An individual, corporation, partnership, or other legal entity or form of business that provides equipment or services. (ANSI B11.0‐2020)

System:

 An integrated composite of people, products, and processes that provide a capability to satisfy a stated need or objective. (ANSI/ASSP Z590.3‐2011(R2016))

 The organization of hardware, software, material, facilities, personnel, data, and services needed to perform a designated function within a stated environment with specified results. (MIL‐STD‐882E‐2012)

System Safety:

 The application of engineering and management principles, criteria, and techniques to achieve acceptable risk within the constraints of operational effectiveness and suitability, time, and cost throughout all phases of the system life cycle. (MIL‐STD‐882E‐2012)

Task:

 Any specific activity that is done on or around the machine during its life cycle. (ANSI B11.0‐2020)

Threat:

 Potential source of danger, harm, or other undesirable outcome. (ANSI/ASSP/ISO 31010‐2019)

 Often used in security‐related concerns, a threat is an indication of an approaching or imminent menace. A threat is a negative event that can cause a risk to become a loss, expressed as an aggregate of risk, consequences of risk, and the likelihood of the occurrence of the event. A threat may be a natural phenomenon such as an earthquake, flood, storm, or a man‐made incident such as fire, power failure, sabotage, etc. (adapted from Businessdictionary.com). Anything that might exploit a vulnerability of an asset. Examples include arson, theft, cyber‐attacks, sabotage, and terrorism (Rausand, 2011).

Trigger:

 An event or action that initiates the exposure to a hazard allowing a pathway to a mishap. (Authors)

User:

 An individual, corporation, partnership, other legal entity or form of business that utilizes a machine, machine production system, or related equipment. (ANSI B11.0‐2020)

Validation:

 Final testing on the as‐built machine to confirm that the safety functions operate as designed to meet the requirements of the risk assessment. (ANSI B11.0‐2020)

Verification:

 The process of checking that the design and development outputs have met the requirements of the risk assessment during the design phase. (ANSI B11.0‐2020)

Vulnerability:

 Degree to which an asset is susceptible to harm, degradation, or destruction by being exposed to a hazard (adapted from Businessdictionary.com). A weakness of an asset that can be exploited by one or more threat agents. Vulnerability refers to the security flaws in a system that allow an attack to be successful (Rausand 2011).

Warning:

 A means used to call attention to a hazard. (ANSI B11.0‐2020)

Workplace:

 Place under the control of the organization where a person needs to be or to go for work purposes. (ANSI/ASSP/ISO 45001‐2018)

Worst Conceivable Risk:

 The worst conceivable consequence from an incident that could occur, but probably will not occur, within the lifetime of the system. (ANSI/ASSP Z590.3‐2011(R2016))

Worst Credible Consequence:

 The worst credible consequence from an incident that has the potential to occur within the lifetime of the system. (ANSI/ASSP Z590.3‐2011(R2016))