Development of a novel method for cross-disciplinary hazard identification

Parchment, Ann

January 2013

Hazards and risks are currently identified in generic risk silos using top-down tools and methods which are incorporated into whole system risk management frameworks such as enterprise risk management. The current methods of identification and documentation are linear in approach and presentation. However, the world is multi-dimensional requiring a method of identification which responds to complex non-linear relationships. A method is required to identify cross- disciplinary hazards and formulate a register method to evidence the identified hazards. This study uses expert elicitation, web, survey and case studies to develop a method for cross-disciplinary hazard identification by application of the dimensions of generic, interface, causation and accumulation. The results of the study found many of the tools and methods used for hazard and risk identification such as hazard and operability studies took a top down approach commencing with a known failure and establishing cause and effect. The starting position of a known failure or event precludes identification of new types of failure or events and perpetuates a linear approach to hazard identification. Additionally the linear design of a risk register does not facilitate the presentation of multidimensional hazards. The current methods do not accommodate multiple lifecycles and components within cross discipline relationships. The method was applied to three case studies. The first case study had an existing risk register of 50 risks, post method application an additional 531 hazards were identified; case study (2) a register of 49 hazards and post method application additional hazards of 261; case study (3) an initial register of 45 hazards and an additional 384 hazards after method application. The impact of the method application highlights inconsistencies in the initial risk register and provides a tool which will aid the identification understanding and communication of hazards. Additionally it documents previously unidentified cross-disciplinary hazards and provides a proactive register method for identification and documentation by application of the dimensions of interface, causation and accumulation.

Social policing or social welfare? : a study of justice, power and partnership within the initial child protection conference

Bell, Margaret Rose

January 1997

No description available.

301

Audiological screening of low-risk neonates at different times following birth through the use of otoacoustic emissions : a feasiblity study.

Harbinson, Shannon L.

16 January 2012

Objective: To determine the feasibility of audiological screening in low-risk neonates, using Otoacoustic Emissions (OAEs), at various test times following birth. The achievability of a screening programme within the Midwife Obstetric Unit (MOU) 3-day assessment clinic at the Phola Park Community Health Centre (PPCHC) was deliberated. Participants: Two hundred and seventy two neonates were included in this study. Design: A prospective and longitudinal design was employed. Methods and Materials: Case history interviews, otoscopic examinations and Distortion Product Otoacoustic Emissions (DPOAEs) were carried out at two sessions. The initial session took place within 6 hours after birth and the second session at approximately 3 days after birth at the MOU 3-day assessment clinic. Data Analysis: Data was collected as “pass” and “refer” screening results, the number of births was compared to the number of participants at the two sessions. The number of “pass” and “refer” results per session were analysed and results per participant at the two sessions were compared to detect false-positives. The return for follow-up rate was considered. Results: Screening is possible within hours of birth but is more practical and efficient at the MOU 3-day assessment clinic. During the study, 260 neonates were born at PPCHC, 38.07% of these were screened at session 1 and a total of 268 newborns were screened at session 2. The pass rate was 16.16% at session 1 and 99.25% at session 2; rendering a false-positive rate of 82.10% at session 1. Time of birth relative to discharge, resources, environmental factors, noise levels, return for follow-up rate and referral rate have been identified as factors that may impact the practicability and efficiency of screening. Conclusion: Outcomes of the study highlight the importance of studying methodologies to ensure effective reach for hearing screening within the South African context. Based hereon, screening neonates immediately after birth is possible. However, it is recommended that screening forms part of the MOU 3-day assessment protocol to ensure that a higher number of neonates are reached when confounding factors such as vernix have plummeted; hence decreasing false- positives.

Otoacoustic emissions

Newborn audiological screening

Infant hearing

Protocols

Universal hearing

High risk register

South Africa.

Metodika tvoby registru rizik IT / Methodics of creating risk register IT

Svěcený, Jan

January 2012

Nowadays risk management is an essential part of project management. It is necessary to identify, analyze, registr and respond to risks. They have to be assesed by means of the probability of their occurence and their final impacts. One of the tools for risk and response management and for keeping the evidence is risk register. This study will compare different theoretical approaches to risk management (e.g. based on PRINCE2) and based on the comparison a template for risk register and related user guide for different IT project environments will be derived. The study will have two parts: the theoretical part will introduce the issue and analyze different methods; in the practical part will be compared these methods and the template for risk register will be derived together with the user guide.

IT Risk register / Registr IT rizik

Kohout, Karel

January 2011

The theoretical part of the thesis analyzes several selected methodologies and best-practices related to information technology risks management, with focus on documents and guidance developed by ISACA. It builds a set of ideas and basic requirements for effective model of an IT risk register. Strong emphasis is placed on mapping CobiT 4.1 based Risk IT to COBIT 5. The practical part describes implementation of an exploratory web-based IT risk register in Python programming language utilizing the Django framework and employs concepts from the analysis.

Problémy bezpečnosti a ochrany zdraví při práci / Problems of Occupational Safety and Health Protection at work

Hlobilová, Lucie

January 2010

As a theme for my Master's Thesis I chose the theme of problems which are connected with application of Occupational Safety and Health Protection principles in practice. The aim of the Master's Thesis is to outline possible problems which we could come across while implementing the Occupational Safety and Health Protection policy and to map a major part of important legal enactments covering sphere of Occupational Safety and Health Protection. The Master's Thesis is divided into two parts, theoretical and practical one. In the theoretical part I at first briefly outline historical development of legal regulation in the Czech Republic then I proceed to a summary and characteristics of the most important contemporary legal enactments whereas I don' t omit an European legal regulation and legal regulation within the framework of International Labour Organisation. Another important part of the theoretical part is devoted to national policy of occupational safety and health protection at work. In the practical part I present the Occupational Safety and Health Protection problematic in practice and I focus on training, analysis and risk classification and formation of risk register in company Hella Autotechnik, s.r.o.

Řízení rizik ve vybrané organizaci / Risk Management in an Organization

TALACHOVÁ, Kateřina

January 2018

The thesis is focused on risk management in the selected company STRABAG, respectively its branch of building and civil engineering in the Ceske Budejovice. In the literary review the theoretical knowledge of risk; for example a definition of risk, approaches to risk, classification of risk, is described. Further, in the review the six parts of the risk management process are explained. Finally, the crisis management and planning and risk register are described here. Then follows the characterization and historical development of the organization STRABAG and its branch of building and civil engineering in Ceske Budejovice. This is followed by an assessment of its current state using the company guidelines and standards. To obtain detailed information about risk management in the organization an interview was conducted with the Economic Director of the organization. A questionnaire survey was also carried out. The questionnaire was filled out by the employees involved in risk management in the organization. In the next chapter changes to improve risk management in the organization are proposed. Here you will find an analysis of a real project of the organization with the suggestions for improvement that are recommended in this thesis. Finally, a process map and a training proposal for employees with its detailed quantification are included. The proposed changes should help the company to develop its risk management.

Finanční dopady rizik ve stavebnictví a jejich řízení / Risk in Costruction Industry: The Management and Financial Impact

Štěpánková, Vladěna

January 2017

The present dissertation studies financial impacts of risks in the construction industry, providing one of possible ways of the risks expression and monitoring, through which they can be efficiently managed. Theoretical assumptions and selected methodology provided basis for an overall analysis of the Czech Republic construction market, identifying possible external risks sources including their processing and description. The present dissertation aims at finding major risks and assessing their financial impacts that pose threats to companies active in the construction sector, indeed a specific sector for doing business. These risks have been compiled in a Risk Catalogue intended as a guide for selected risks management. To elaborate on the risks identified, two specific companies have were selected, having provided their data (financial reports, accounts statements, number of projects contracted including their volume and type, personnel information, etc.), as well as key indicators they have been using. The dissertation outcome presents construction sector analysis and Risk Register compilation. The work clearly defines the procedure of the Register compilation, possibly to be used by construction companies with respect to recurrent activities and the risks involved. The Catalogue sorts risks in categories and defines their possible occurrence as well as their financial impact on the company. Furthermore, it presents their possible management, i.e. how they can be minimized or even eliminated, as well as necessary costs involved. Indeed, the costs have to be considered in the sense of financial impacts so that it does not result in covering risks with rather low financial impact.

GAP analýza systému řízení bezpečnosti informací / GAP analysis of information security management system

Konečný, Martin

January 2019

The master’s thesis focuses on GAP analysis of information security management system. The thesis consists of theoretical, analytical and practical part. The first part discusses the theoretical background of the issue of information and cyber security. The analytical part describes the current condition of the researched company. The thesis’s output is the draft of risk register and draft of security countermeasures implementation. The draft targets on countermeasures leading to increase information security in company.

Introducing Risk Management Process to a manufacturing industry : Master thesis in identification of risk avoidance strategies at Coca Cola Enterprises Sweden

Bayer, Emma, Öberg Bustad, Gabriel

January 2013

Risk can be viewed as a state where there is a possibility of a loss but also a hope of gain. To realise the existence of a risk, one must be aware of both the gains and losses incurred.Increased number of natural disasters and companies having global supply chains to a higher extent, are both factors which have increased the number of risks that can affect anorganisation’s supply chain negatively. This fact has made it even more important to focus on risk prevention. In the beverage industry market, characterized by fast-moving products,manufacturing companies like Coca-Cola Enterprises Sweden (CCES) can be highly affected if disturbances occur in their supply chain. Risk management is, according to ISO 31000, “coordinated activities to direct and control an organization with regard to risk “. A risk management processes therefore aims at mitigatingnegative impact of external and internal disturbances in order to avoid interruptions in production, product quality issues and financial losses. CCES’s control over internal processes and its disturbances is mostly based on reactive approaches rather than a proactive strategy and there exist no guidelines of how to identify and handle occurring disturbances. The main purpose of the project has therefore been to identify the most critical risks the company is facing within their “Source” and “Make” processes, and find both proactive and reactive mitigation actions. Another significant part of the project delivery is to present a model for how the company should organize and maintain a sustainable risk picture. The model aims to present a dynamic risk management process that can be used by CCES as well as other companies in the future. The project consists of three major phases; Risk Identification, Risk Avoidance Mapping and Implementation of a Risk Management Process. In the first phase, the brainstorming tool Hazard and Operability (HAZOP) has been used during workshop events for risk identification and assessment. Some of the most critical risks identified are; Sabotage during  transport from supplier to CCES, Lack of spare parts for maintenance, Lost production time due to long beverage change overs and Filling bottles with too much beverage. In order to find feasible preventive and reactive mitigation actions for the critical risks, both employee interviews and the Supply Chain Operations Reference (SCOR) model has been applied. Some of the actions recommended to perform are concluded to be; Let suppliers own transports, Standardize the product change process and the shift hand overs and Implement routines of having locked transports from supplier to CCES. The structure of the project has acted as a basis for the recommended way of continuing the risk management work at CCES. The authors have identified the importance of keeping the risk management process dynamic, and therefore a Risk Register have been introduced for documentation and follow-up. Another way of following up the risk management work, is to perform Risk Audits after the event of a disturbance. This will help the organisation to realize the impact a certain disturbance brings, but it will also measure of the recovery work’s effectiveness. The authors highlight the importance of having a dedicated owner of the risk management process in order to keep it dynamic. A complete risk management process has finally been created, adaptable to different kind of organisations. By making this process a part of SCOR, the authors believes that the process can be used to identify individual risks within the management processes Plan, Source, Make, Deliver and Return for all SCOR member companies. Thereafter, a general risk mapping can be created from the individual risks that can be used to share information and experiences among the member companies. / En risk kan förklaras som ett tillstånd där det finns en chans att vinna, men också en sannolikhet för förlust. För att vara medveten om en risks existens måste man därför förstå både vad det finns att förlora och vinna. Under de senaste årtiondena har antalet naturkatastrofer och annan extern påverkan ökat. Detta i kombination med att företag idag har globala värdekedjor i allt större utsträckning, har gjort att organisationer utsätter sig för risker till en större grad idag. Därför har betydelsen av att fokusera på riskförmildrande åtgärder ökat. I dryckesindustrin, karaktäriserat av snabbrörliga produkter, kan företag såsom Coca-Cola Enterprises Sweden (CCES) påverkas hårt om störningar sker i deras värdekedja. Risk Management är, enligt ISO 31000, ”koordinerade aktiviteter för att styra och kontrollera riskhantering i en organisation”. En riskhanteringsprocess ämnar därför förmildra negativ påverkan av interna och externa störningar för att undvika till exempel avvikelser i produktion, försämrad produktkvalitet och finansiella förluster. CCES’s kontroll över interna processer och dess störningar baseras främst på reaktiva åtgärder, och företaget har inga riktlinjer för hur de ska identifiera och hantera uppkommande störningar. Syftet med detta projekt har därför varit att identifiera kritiska risker inom företagets leverantörs- och produktionsprocesser och att hitta proaktiva och reaktiva lösningar för att förmildra och undvika störningar. Ytterligare en stor del av projektets syfte har varit att presentera en dynamisk process för hur CCES, samt andra företag, ska organisera en hållbar riskbild. Projektet består av tre huvudsakliga delar; riskidentifiering, riskförmildrande åtgärder och implementering av en riskhanteringsprocess. I den första fasen har verktyget Hazard and Operability (HAZOP) används under workshops för att identifiera och värdera risker. Några av de mest kritiska riskerna som identifierats är; Sabotage under transport från leverantör till CCES, Brist på reservdelar för underhållsarbete, Förlorad produktionstid på grund av för långa dryckesbytartider och Fyller flaskor med för mycket dryck. För att hitta passande reaktiva och proaktiva lösningar för de kritiska riskerna har både intervjuer med anställda genomförts och referensmodellen Supply Chain Reference Model (SCOR) använts. Några av de åtgärder rekommenderade att göra har identifierats till att vara; Låta leverantörerna själva sköta transporter, Standardisera produktbytesprocessen samt skiftöverlämningar och Implementera rutiner för att ha låsta transporter från leverantör till CCES. Strukturen av projektet har använts som en bas för den rekommenderade strukturen på CCE’s fortskridande arbete inom riskhantering. Författarna vill bestryka vikten av att hålla den framtida riskhanteringsprocessen dynamisk och i detta syfte har därför ett riskregister tagits fram för dokumentation och uppföljning. Ett annat sätt att följa upp riskprocessarbetet är att genomföra så kallade audits efter en störning har inträffat. Detta hjälper organisationen både att förstår en störnings påverkan på verksamheten, men fungerar också som ett verktyg för att mäta hur effektivt återhämtningsarbetet efter en störning har varit. Författarna menar också att en dedikerad ägare till riskprocessen är av stor betydelse för ett dynamiskt, framgångsrikt och effektivt riskarbete. En fullständig riskhanteringsprocess har slutligen sammanställts, användbar för många olika typer av organisationer. Genom att göra processen till en del av SCOR-modellen, kan processen i framtiden användas till att identifiera individuella risker inom de fem managementprocesserna Planering, Inköp, Tillverkning, Leverans och Retur för alla SCOR’s medlemsföretag. Därefter menar författarna att en generell kartläggning över de mest kritiska riskerna inom varje managementprocess kan skapas för att dela information och utbyta erfarenheter mellan medlemsföretagen.

Coca-Cola Enterprises

Risk management process

Risk identification

assessment and avoidance mapping

SCOR

HAZOP

Risk Register

Risk auditing

Resilience

Coca-Cola Enterprises

Riskprocess

Riskidentifiering

Riskvärdering

SCOR

HAZOP

Riskregister

Riskuppföljning

Motståndskraft

Engineering and Technology

Teknik och teknologier