ENAO Risk Analysis Process. Contents Page

Similar documents
AN INTRODUCTION TO RISK CONSIDERATION

RISK MANAGEMENT and ISO 17025:2017

EA Policy For Conformity Assessment Schemes

LOW VOLTAGE AGREEMENT GROUP (LOVAG) AGREEMENT

Contact address: Global Food Safety Initiative Foundation c/o The Consumer Goods Forum 22/24 rue du Gouverneur Général Eboué Issy-les-Moulineaux

Measurement Decision Risk and Decision Rules in the new ISO/IEC 17025

Risk Management Strategy

The Accreditation and Verification Regulation - Verifier s risk analysis

Risk Management Strategy

THE ROLE OF NATIONAL REGULATOR FOR COMPULSORY SPECIFICATIONS (NCRS) IN TERMS OF CONFORMITY ASSESSMENT. Speaker / Author: T Scriven Principal-author

Risk Management Policy

Common Safety Methods CSM

the considerable financial and reputation risk run by organizations if they are discovered to be involved

Organizations shall be accredited by TSSA to perform repairs without the acceptance of a TSSA Inspector pursuant to the provisions set forth below.

CEN GUIDE 414. Safety of machinery Rules for the drafting and presentation of safety standards. Edition 3,

APPLICATION PACKAGE FOR LISTING AS A PROVIDER FOR WATER SERVICE CONNECTIONS (DRILLERS) TO THE MANAGING NEW DEVELOPMENTS PROCESS

IAF Mandatory Document. Control of Entities Operating on Behalf of Accredited Management Systems Certification Bodies

CETA Agreement and Conformity Assessment

DRAFT OF MEDICAL DEVICE GUIDANCE DOCUMENT

CEN/CENELEC Internal Regulations - Part 4: Internal Regulations Part 4. Certification

COMPREHENSIVE LOSS CONTROL PROGRAM OVERVIEW

Using a Dispute Avoidance Board for contracts covered by the Housing Grants, Construction and Regeneration Act 1996

Risk Management Strategy January NHS Education for Scotland RISK MANAGEMENT STRATEGY

September 21, Panelists: Scott Soukup, Quality Specialist, RCA Inc. Joan M. Ward, Quality Subject Matter Expert, RCA Inc.

General Terms and Conditions (GTCs) of VDE Renewables GmbH (VDE Renewables GmbH)

Risk Workshop Session 1. Malcolm Leinster

INTERNATIONAL ASSOCIATION OF INSURANCE SUPERVISORS

Master Class: Construction Health and Safety: ISO 31000, Risk and Hazard Management - Standards

IBA RULES ON THE TAKING OF EVIDENCE IN INTERNATIONAL ARBITRATION

DRAFT SAINT LUCIA NATIONAL STANDARD DNS/ISO 31000: 2009 RISK MANAGEMENT PRINCIPLES AND GUIDELINES (ISO 31000: 2009, IDT) Stage 40 Enquiry Stage

Action 3: Fostering investment in sustainable projects reinforce advisory capacity developing sustainable infrastructure projects further measures

Documentation Control. Hazard Identification, Risk Assessment and Management Procedure. (This document is linked GG/CM/007- Risk Management Policy)

Risk Management Policies and Procedures

LOCAL GOVERNMENT ASSOCIATION TEMPLATE MEMORANDUM OF UNDERSTANDING FOR LGPS FUNDS

Standard Terms of Business (Effective from 1 st April 2017)

YACHTING AUSTRALIA. Club Risk Management Template. A Practical Resource for Clubs and Centres

Scouting Ireland Risk Management Framework

European Railway Agency Recommendation on the 1 st set of Common Safety Methods (ERA-REC SAF)

ISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security risk management

Wealth solutions for life in a complex world.

IN THE GENERAL ASSEMBLY STATE OF. Physician Profiling Programs and Network Determination Act

Risk Management Plan for the <Project Name> Prepared by: Title: Address: Phone: Last revised:

4. Clarification of the requirement for documents indicating compliance of timber with applicable legislation

Risk Management Policy

Direct Payments Suitable Person Guidance. Guidance developed by the All Wales Direct Payments Forum in conjunction with the Welsh Assembly Government

Risk Management at Central Bank of Nepal

R RELATIONSHIP BETWEEN SANAS AND THE REGULATORS

Risk Management Policy (v7.0)

SOP N : FCH/ IVB/ATT/VML/008 Version n : Page: 1 of 16. Name Date Signature. ATT Coordinator ACCESS TO TECHNOLOGIES

ISO INTERNATIONAL STANDARD. Medical devices Application of risk management to medical devices

Assurance Approach Delivery assurance activities for Retail Market Release April 2019

Risk Assessment Policy

CMP for Special Regs and Safety Issues. 1. INTRODUCTION Purpose Scope Submissions to Australian Sailing:...

IOSCO Public Consultation on Financial Benchmarks

GENERAL TERMS AND CONDITONS of Afvalstoffen Terminal Moerdijk B.V.

Kidsafe NSW Risk Management Plan. August 2014

Treatment Programme. Overview and General Requirements for the Supply of Official Treatments. 15 November 2018

A New Resource Adequacy Standard for the Pacific Northwest. Background Paper

A step forward to mitigate TP Risk: A (global) ISO 9001 Certification.

Introduction. General assurance processes

Security Risk Management

DIAGNOSTIC LABORATORY APPLICATION

[SECTOR] [VOLUME X] REQUIREMENTS FOR PARTICIPATION IN THE TNI STATIONARY SOURCE AUDIT SAMPLE PROGRAM. [Module Y] TNI Working Draft Standard

City of Toronto s Climate Change Risk Assessment. TAC 2013 Winnipeg September 24, 2013

Condition Monitoring and Condition Based Maintenance

GUIDE IEC GUIDE 116. Guidelines for safety related risk assessment and risk reduction for low voltage equipment. colour inside. Edition 1.

Florida Green Commercial Building Designation Standard

Planning a Standard Termination A Checklist for Practitioners

CONTRACT FOR SNOW AND ICE MANAGEMENT SERVICES. Updated November 15, 2018

COMMISSION DELEGATED REGULATION (EU) /... of amending Delegated Regulation (EU) No 231/2013 as regards safe-keeping duties of depositaries

Guidance Note System of Governance - Insurance Transition to Governance Requirements established under the Solvency II Directive

Proposal Ernst and Young (EY) Recommendation EY Priority LASA observations

New Business Checklist Form MM0200 (03/2004)

Good Governance Guide for Tasmanian Landcare groups. Version 1.0 July 2016

HIGH RISK CONSTRUCTION WORK

Exemption for properties damaged by pyrite

Redburn (Europe) Limited Pillar 3 Disclosures

CITY OF JOHANNESBURG METROPOLITAN MUNICIPALITY GROUP RISK AND ASSURANCE SERVICES GROUP RISK MANAGEMENT POLICY

INTERNAL REGULATIONS PART 4 CERTIFICATION (Aussi disponible en français) (Auch in deutscher Fassung erhältlich)

UNIVERSITY OF ABERDEEN RISK MANAGEMENT FRAMEWORK

Third Transition Resource Group meeting discussing the implementation of IFRS 17 Insurance Contracts

Having regard to the Treaty establishing the European Atomic Energy Community, and in particular Articles 31 and 32 thereof,

URBAN AGRICULTURE INCENTIVE ZONES CONTRACT BY AND BETWEEN THE CITY OF LOS ANGELES, A MUNICIPAL CORPORATION, AND

Information security management systems

Risk Management Policy

Planning the Risk Management File Audit

APPROVED OPERATOR CONDITIONS 2017/2018

NO X CONFORMITY OF PRODUCTION PROCEDURE 2002 V07. Lloyd's Register of Shipping, 71 Fenchurch Street, London EC3M 4BS, UK

JMH/SR EBF Ref.: D2263D Brussels, 30 January 2012

An Introduction to Risk

A guide to EU Benchmark Regulation

Warehousing Standard Terms & Conditions ( )

Break the Risk Paradigms - Overhauling Your Risk Program

PRINCE2-PRINCE2-Foundation.150q

The DCA Certification Scheme: Guidelines for DATA CENTRES

Committee on Payments and Market Infrastructures. Board of the International Organization of Securities Commissions. Technical Guidance

MODEL INTERNATIONAL ALLIANCE AGREEMENT INTERNATIONAL ALLIANCE AGREEMENT

A discussion of Basel II and operational risk in the context of risk perspectives

APPENDIX D ENQUIRY NO. : PUBLIC TENDER NO.: S E R V I C E S TERMS AND CONDITIONS OF PURCHASE ( INCLUDING THIS PAGE )

Council. International Seabed Authority ISBA/16/C/6

Transcription:

Page 1 of 9 Reviewed by: Getnet Tsigemelak Approved by: Araya Fesseha Position: Quality Manager Position:Director General Signature: Signature: Contents Page 1 Purpose...2 2 scope...2 3 References...2 4 Introduction...3 5 Liability...5 6 ENAO Related Risk...4 7 Risk based assessment (ISO/IEC 17011, 6.1.2.4)...8 8 Grading risks...9 9 Preparation by the customer of a lab for risk- based assessment...9 10 Preparation of a lab for risk- based assessment...10 11 Consequences for and reaction of an AB to risk-based assessment...11

Page 2 of 9 1 Purpose This document provides risk management process on the points which need to be identified, analysed, evaluate, treat, monitor and record on going bases on the risks to impartiality arising from ENAO activities 2 Scope This document is applicable to all ENAO's assessors, committee members, experts, all individuals and organization working for or on behalf of the ENAO's activity. 3 References The following documents are referenced: ISO/IEC 17011:2017 Conformity assessment - requirements for accreditation bodies accrediting conformity assessment bodies ISO 31000 Risk-Management Principles and Guidelines 4. Introduction The concept of risk- based assessment has been introduced to the standard ISO/IEC 17011:2017 as to allow for a more considered and meaningful accreditation and to give CABs an easier access to accreditation. A low risk routine lab may quench or impede its wish to become accredited when burdened with the same obligations as a high- risk lab. Not being accredited may even expel them from the market. Risk based assessment will allow the adaption of the accreditation process and to focus on essentials. Despite the possibility of adaptation of the accreditation process the CAB has still to comply with the relevant standard. Accreditation s target is already to avoid faulty results but still a CAB can produce faulty results and also accreditation may have been granted mistakenly. There are guidance and standards about risk assessment and risk management but the standards ISO/IEC 17011 and the applicable ISO/IEC standards contain already a large number of requirements, showing possibilities and methods for management, training and motivation of staff, suitability and calibration of equipment, validation, level of uncertainty, documentation, assessment of stability of methods, etc. as to low risks in their operation. For that reason, additional activities for risk assessment and risk management related to the daily activities beyond the new standard are not necessary for CABs

Page 3 of 9 and ENAO (this does not relate to the increased requirements to protect impartiality). The risks requiring special attention in the revised standards address risks stemming from the use of faulty results and/or reports issued by a CAB to the public about human health, safety and the environment. The CAB and ENAO shall be aware of the risks of a specific activity and shall take additional measures to further reduce them. A CAB may use more often a reference material or more often training; ENAO may ask for more participation in PTs, cross check of results etc where the process, decisions are susceptible to high or medium risk. Every activity or idleness implies a risk. The risk assessment as required by the standard does only address the consequences of using a faulty result of conformity assessment by its customer. Maybe, the customer will release of a product or a management system, to do a finance operation, to undertake a planning etc. If such decisions are based on faulty results it may cause severe damages to human's safety and healthy, environment, finances. 5. Definition and Objective of Risk Management Risk is an uncertain event which may occur in the future that may prevent or delay the achievement of an organization's objectives or goals. As risk is not certain, its likelihood can be estimated and based on its likelihood and impact the level of the risk can be estimated as low, medium and high. The Ethiopian National Accreditation Office has responsibility to ensure adequate risk management procedure to safe guard impartiality in the accreditation process. The risk management procedures are designed to ensure ENAO: o deliver consistence accreditation service o effectively governing itself and demonstrates competence and professionalism in the performance in its accreditation service o effectively manages its resources associate with accreditation o builds and strengthens stakeholder support and collaborates with other relative bodies and limit the impact of any unavoidable or residual risk Normally, a CAB will act on demand of a customer. The results may be used by the customer for decisions bearing possibly severe risks for humans, environment or finances. Thus, in a wider sense, the public is also a party involved and their interests have to be taken into account by the 3 directly involved parties. An organization like an AB faces risks stemming from external sources, risks due to internal

Page 4 of 9 mismanagement and due to its activities directed to its customers. In order to mitigate these risks and to take preventive actions, ENAO has developed a table of risks which has to be further developed due to growing experience. ENAO has to act within its legal framework and to fulfil the requirements of the standard ISO/IEC 17011 and the relevant internationally binding regulations. By its operation it shall consider the risks as given in the table below. All this done with due diligence, ENAO has done whatever it can do in contributing to a professional and trustworthy national quality infrastructure. ENAO is not liable for any false results or the consequences out of it issued by an accredited CAB. According to the standards a CAB has to follow its management system and all the required measures to be taken which are imposed as to minimize the risks by its operation. The role of the accredit or is to ensure at the time of assessment that the requirements are kept 6. Risk Assessment The assessment of risk area for the impartiality risk management is managed by Accreditation Quality Manager, two technical staffs and discuss with the representatives of one from private and one from government stakeholders before presented to the stakeholder forum. The risk assessment will focus on the accreditation process, competence of team leaders, assessors, experts, staff members. The risk assessment and leveling will be conducted as per to the risk matrices form. The metrics enhances risks to:- Accreditation Process: this includes from receiving of application from Conformity assessment body to granting accreditation certificate and the accreditation follow up. Competence: One of the factors to impartiality is incompetency hence, ENAO ensures the competence of all that involves in the accreditation process Operational Management: ENAO effectively manages its resources to perform its functions associated with its accreditation service and run its accreditation service impartially without the involvement of external body on the accreditation process and accreditation decisions. Stakeholder expectation: ENAO works to build stakeholder support and engagement in the accreditation scope expansion; risk assessment, and management to impartiality; customer satisfaction on ENAO accreditation service.

Page 5 of 9 Operational process of conformity assessment bodies: during on site assessment and witnessing there might be possibility of risks that affects the assessment process that should be considered by the assessment team. On the other hand conformity assessment bodies shall also implement risk based thinking that shall be assessed the effectiveness of their risk management by the assessment team. The risk matrices is found as one checklist of internal audit F09.7/A 7. Risk Analysis and Grading Risks associated with the accreditation processes are identified in terms of the likelihood of the risk occurring and the likely impact on the accreditation to impartiality while it occurs. The risk matrics as below is used for risk leveling from 1 that stands to extreme to level 7 which is negligible risk assessment. Likelihood of happening Likely Impact Very high High Medium Low Very high 1: Extreme ( certain) 2:Very high 3: High 5: Medium High 2:Very high 3: High 4: Significant 6: Low Medium 3: high 4: Significant 5: Medium 7: Negligible Low 4: Significant 5: Medium 6: Low 7: Negligible The risk to impartiality has to be mitigated to a level where the residual risk can be low. If the residual risk to impartiality is still high then ENAO will not proceed the accreditation process. 8. Risk Management: For the identified risk ENAO's different committees internal and external staffs will guard against the risk occurring and manage any adverse impacts when it occurs. Any risk found in the risk assessment will be, rated and managed. ENAO committee members, assessment team members, Director General, Deputy Director General, Quality Manager, Management members, technical and non-technical staff members are responsible for maintaining potential risks to impartiality, ensuring the accreditation procedure is followed, resources are well managed, and notifying the Quality Manager or Deputy Director General or Director General for any susceptible potential or actual risks. Note: ENAO management committed and ensured to allocate adequate resources to implement

Page 6 of 9 this risk management processes. 9. Monitoring and reviewing of Risk Quality manger in conjunction with the two stakeholder representatives will review the risk management plan developed by quality Manager annually. The review focuses on how the risks were managed, whether the mitigation mechanisms where effective, whether any new risks developed with recommendations shall be submitted on annual bases and the report shall be submitted to the Director General, management review committee and then after approval to the stakeholder forum. The risk review shall be conducted within the internal audit schedule and the report during management review to be discussed for any additional action if it required 10. Ensuring the implementation of risk based thinking by conformity assessment bodies The risks originating from the product or a technical system due to the use of faulty test results and /or reports shall be managed and ensured the residual risk is on the low level. Customers of the conformity assessment bodies shall have right to ensure whether the conformity assessment body has risk management and shall be discussed during contractual agreement or negotiation. 10.1 Testing and calibration 10.1.1 The conformity assessment body shall evaluate the risk assessment of its potential customer during the contract negotiations (ISO/IEC 17025, 7.1.1). The evaluation will include: - Complete description of potentially afflicted entities - Reasonable estimate of occurrence probability and potential losses, also considering the number of produced items - Proper sampling of the specimen to be tested or unambiguous description of a system - Estimate whether the uncertainty of the test result of the lab corresponds to the risk - Validation of the method to be contracted. Possibly, another method is advisable or an additional method should be applied (i.e. integrity testing of a chemical reaction vessel not by x- raying alone but also by ultrasonic means). 10.1.2.The mutually agreed risk assessment of the customer of the lab will be part of the contract between the parties. The lab and its customer have the obligation the check test results for their likeliness.

Page 7 of 9 10.1.3 The lab shall decide whether it will operate also in high and /or medium risk areas and communicate it to the ENAO before undertaking such tests. Such decisions can be made also for parts of the lab s scope if it can be clearly defined and naturally difficult to reduce. Note: If necessary the risk level can be indicated at the accreditation certificate. Note: risk- based assessment does not contradict ENAO's accreditation for flexible scopes 10.1.4 At initial assessment or follow-up activities, the AB shall analyse by document check whether - the lab complies with the requirements set out in 10.1.1 of this document - the risk level found jointly by the lab and its customer can be accepted. In case of disagreement between the lab and the ENAO, then ENAO has the right to step up the level of risk acceptance for the CAB and to adapt its activities accordingly 10.1.5 ENAO has show some flexibility when planning an initial assessment or a follow-up activity and being still in compliance with ISO/IEC 17011 on the document ENAO accreditation process as of - number of assessors and the lab s activities assessed in detail - number of persons to be witnessed - methods of follow up visits according to the list of methods of the AB - frequency of follow up activities - requirement for recalibration intervals - requirements on participating in PTs - depth of required verifications for critical/uncritical tests - requirement for methods of estimation of uncertainty 10.1.6 ENAO s follow up assessment plan frequency will considered the risk levels identified Consecutive good performance in PT or inter lab comparisons indicate that the lab is in full control of its processes. Such positive history should be taken into account by ENAO when conducting assessment follow up plan. 10.2 Risk based assessment can also be applied for medical testing, inspection, product, personnel and QM certifications.

Page 8 of 9 Revision No. Date approved Revision History 0 New developed procedure based on ISO/IEC 17011, 2017

Page 9 of 9

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback