Organisations implementing a successful SMS system recognize that the SMS is an organizational tool and not one more of the “many” compliances which have to be met.
The goal is actually quite straight forward to identify, and characterize threats and exposures which we consider as a risk to our organisation.
To assess our exposure and to assess the risk in a way which we can use to manage our organizational process.
To develop an understanding of how we can mitigate our exposure, and finally to prioritize our risk reduction measures based on a company strategy.
A fundamental understanding should accept that Risk management should create value. Means that the resources which we expend to mitigate risk should be less than the consequence of inaction.
To be most effective the process should be an integral part of organizational processes and to be part of the organisations decision making and management process.
It should also be systematic (to deliver consistency) and have the capacity to explicitly address uncertainty and assumptions, as well as taking into account human factors.
The SMS story is without end so should be capable of continuous improvement and we will need to ensure periodic assessments of the effectiveness.
Risk sources may be internal or external to the organization, note that risk deals with factors of decision-making that cannot be directly managed, instead we develop mitigations.
Risks are related to identified threats. When either source or problem is known, the events that a source may trigger or the events that can lead to a problem can be investigated.
The chosen method of identifying risks within our organization will depend on multiple factors including culture, industry practice and compliance.
The identification methods can be formed by templates for identifying source, problem or event.
Some Common risk identification methods include:
Objectives-based risk identification – Organizations and project teams (SAG ?) have objectives. Any event that may endanger achieving an objective partly or completely is identified as risk.
Scenario-based risk identification – In scenario analysis different scenarios are created. The scenarios may be the alternative ways to achieve an objective, or an analysis of the interaction of event.
Taxonomy-based risk identification – The taxonomy in taxonomy-based risk identification is a breakdown of possible risk sources. Based on the taxonomy and knowledge of best practices, a questionnaire is compiled. The answers to the questions reveal risks.
Common-risk checking, lists with known risks are employed. Each risk in the list can be checked for application to a particular situation.
Sofema Aviation Services offers SMS Implementation and Hazard and Risk Identification training please see www.sassofia.com
Tags:
Hazard and Risk Identification, Risk Assessment, Aviation Safety, sms implementation, SMS system, Sofema Aviation Services