Management system guidance
6.1 Address Risks and Opportunities
ISO Navigator Pro™ is a free tool that provides practical, expert guidance for businesses wishing to interpret and better implement the requirements of ISO 9001:2015, ISO 14001:2015 and ISO 45001:2018.
Our range of templates cover the requirements of ISO 9001:2015, ISO 14001:2015 and ISO 45001:2018, and offer an easy way to implement your next management system.
6.1.4 Planning action
This is a new element of ISO 14001: 2015 and ISO 45001:2018. The essence is that it be clear how the management system addresses the risks, opportunities, legal and compliance obligations and emergency preparedness and response measures arising from 6.1.2, 6.1.3 and 8.2.
This can take the form of control measures in the implementation section (8), or formulating objectives (including for improvement), as seen in 6.2. The ‘familiar programme’ from OHSAS 18001 is now linked to the objectives (6.2.2).
This is new requirement is for ensuring that once your processes are determined; your organization must identify the risks and opportunities associated with these processes. In order to realize the benefits associated with the identified risks and opportunities, subsequent changes may be needed. These changes could relate to any aspect of any process, such as:
Changes are intended to be beneficial but they need to be carried out when determined by your organization as relevant and achievable. In addition, consideration of newly introduced risks and opportunities should also be taken into account. To achieve the benefits associated with changes, your organization should consider all types of change that may occur. These changes may be generated, for example, in:
- Processes and procedures;
- Documented information;
- Process equipment;
- Employee training;
- Supplier evaluation;
- Stakeholder management;
- Interested party requirements.
You should seek and record evidence that your organization has retained documented information relating to planning and implementing changes that impact upon the EMS/OH&SMS. Check that organizational knowledge is reviewed before changes to the EMS are made when responding to any change. Ensure that your organization has planned how to integrate and implement the changes into its EMS/OH&SMS processes. Check that your organization has considered:
- The purpose of the changes and their potential consequences (risk and opportunities);
- The integrity of the management system (how does the change effect current process?);
- The availability of resources (are resources allocated to affect change?);
- The allocation or reallocation of responsibilities and authorities (are the right staff allocated?)
More information on PDCA
Monitoring, measurement, analysis and evaluation
Want to know more?
- Read our customer's feedback
- Client list - who's using our templates?
- How the templates are formatted and download examples
- Why we use turtle diagrams and process maps
- What's the difference between a process and a procedure?
- About documented information
A certificate guarantees the information your internet browser is receiving now originates from the expected domain - https://www.iso9001help.co.uk. It guarantees that when you make a purchase, sensitive data is encrypted and sent to the right place, and not to a malicious third-party.
Free PDCA guidance
ISO Navigator™ is our FREE online training tool that shows you how to apply the principles of PDCA to your operations. We also offer many helpful templates that get you on the road to documenting your management system, please visit the download page.