Document Name: Hazard Identification & Risk Assessment Procedure

Document No.: HIRAP-001

1. PURPOSE
The purpose of this procedure is to define the process for hazard identification, risk assessment, and risk
control in accordance with ISO 45001:2017, Occupational Health and Safety Management Systems (OH&S).
This procedure ensures a systematic approach to proactively identify hazards, assess associated risks, and
implement necessary control measures to prevent accidents and injuries.
2. SCOPE
This procedure applies to all employees, contractors, visitors, and other stakeholders involved in or affected
by work activities. It covers the identification, assessment, evaluation, and mitigation of risks in all operational
activities and environments, including offices, manufacturing facilities, and other locations under the
organization's control.
3. DEFINITIONS
 HAZARD: A source, situation, or act with potential to cause harm in terms of injury, ill health, damage,
or loss.
 RISK: The likelihood that a hazard will cause harm, combined with the severity of the outcome.
 RISK CONTROL: Actions taken to eliminate or minimize the risks associated with identified hazards.
 Risk Assessment: A structured process for evaluating the nature and extent of risks in the workplace
and determining the controls required to reduce the risk to acceptable levels.
4. REFERENCES
 ISO 45001:2017: Occupational Health and Safety Management Systems — Requirements with
guidance for use.
 OHSAS 18001: Occupational Health and Safety Assessment Series (if applicable).
 LOCAL HEALTH AND SAFETY REGULATIONS: Relevant national and regional legislation and regulations.
5. RELATED DOCUMENTS
 Risk Assessment Template
 Hazard Identification Checklist
 Incident and Accident Reporting Procedure
 Training Records and Certificates
 Corrective Action Register

6. RESPONSIBILITIES
 TOP MANAGEMENT: Ensure the implementation of the hazard identification and risk assessment
procedure and provide adequate resources.
 HSE MANAGER: Oversee the hazard identification and risk assessment process, ensure compliance, and
report to top management.
 SUPERVISORS/MANAGERS: Conduct regular hazard identification and risk assessments in their respective
areas. Implement and monitor the effectiveness of risk control measures.
 EMPLOYEES: Participate in hazard identification and risk assessments, report hazards, and follow safe
working practices.
7. PROCEDURE
7.1. HAZARD IDENTIFICATION
Hazard identification involves the process of recognizing & documenting potential hazards associated with
workplace activities, materials, equipment, and environmental factors.
The steps for hazard identification include:
7.1.1. WORKPLACE INSPECTIONS: Conduct regular, systematic inspections of workplaces to identify any hazards.
7.1.2. TASK ANALYSIS: Review all activities and tasks carried out at the workplace and identify hazards
associated with them.
7.1.3. EMPLOYEE FEEDBACK: Engage employees and other stakeholders for their observations and concerns
about potential hazards.
7.1.4. ACCIDENT & INCIDENT REPORTS: Review past accident and incident records to identify patterns and
recurring hazards.

HIRAP-001 Rev: 00 HAZARD IDENTIFICATION & RISK ASSESSMENT PROCEDURE ISSUE DATE: JANUARY 01, 2025 PAGE 1 OF 2
 Document Name: Hazard Identification & Risk Assessment Procedure
Document No.: HIRAP-001
Document Date: January 01, 2025 Rev: 00
7.1.5. INDUSTRY BEST PRACTICES: Benchmark against industry standards, regulations, and lessons learned from
similar organizations.
7.1.6. LEGAL & REGULATORY REQUIREMENTS: Consider applicable legal obligations and the requirements of ISO
45001:2017.
7.2. RISK ASSESSMENT
Once hazards are identified, the next step is to assess the risks associated with each hazard. This involves
determining the likelihood of the hazard causing harm and the severity of the potential outcome.
The risk assessment process includes:
7.2.1. RISK MATRIX: Use a risk matrix to evaluate the likelihood and severity of identified hazards.
 LIKELIHOOD: Likely, Possible, Unlikely
 SEVERITY: Minor, Moderate, Major, Catastrophic
7.2.2. RISK RATING: Assign a risk rating based on the combination of likelihood and severity (e.g., Low,
Medium, High, or Very High).
7.2.3. RISK PRIORITIZATION: Prioritize risks based on the severity and likelihood of the potential impact.
7.2.4. DOCUMENTATION: Record all risk assessments, including the identified hazard, likelihood, severity, risk
rating, and proposed control measures.
7.3. RISK CONTROL
After assessing the risks, appropriate risk control measures are required to eliminate, reduce, or control the
risk. Risk control follows the HIERARCHY OF CONTROLS:
7.3.1. ELIMINATION: Remove the hazard completely (e.g., change of process to eliminate a dangerous
chemical).
7.3.2. SUBSTITUTION: Replace the hazard with something less hazardous (e.g., using a less toxic chemical).
7.3.3. ENGINEERING CONTROLS: Implement physical controls (e.g., installing guards on machinery, ventilation
systems).
7.3.4. ADMINISTRATIVE CONTROLS: Modify work procedures, training, or scheduling to minimize exposure (e.g.,
job rotation, standard operating procedures).
7.3.5. PERSONAL PROTECTIVE EQUIPMENT (PPE): Provide appropriate PPE as a last line of defense (e.g., gloves,
helmets, safety goggles).
7.4. MONITORING AND REVIEW
7.4.1. EFFECTIVENESS OF CONTROLS: Regularly monitor and evaluate the effectiveness of risk control measures.
7.4.2. RE-ASSESSMENT: Conduct periodic reviews of risk assessments to ensure they remain valid and updated.
7.4.3. INTERNAL AUDITS: Carry out internal audits to assess compliance with the hazard identification and risk
assessment procedure.
7.4.4. CORRECTIVE ACTIONS: If risk controls are found to be ineffective or if new hazards are identified,
corrective actions must be taken promptly.
7.5. DOCUMENTATION AND RECORDKEEPING
7.5.1. HAZARD IDENTIFICATION REPORTS: Document all hazards identified, including descriptions, locations, and
potential impacts.
7.5.2. RISK ASSESSMENT RECORDS: Keep records of all completed risk assessments, including risk ratings and
control measures.
7.5.3. RISK CONTROL PLANS: Maintain records of implemented risk control measures and their effectiveness.
7.5.4. AUDIT REPORTS: Retain internal audit reports related to hazard identification and risk assessments.

HIRAP-001 Rev: 00 HAZARD IDENTIFICATION & RISK ASSESSMENT PROCEDURE ISSUE DATE: JANUARY 01, 2025 PAGE 2 OF 2