Work health and safety risk management
All businesses, regardless of their structure or size, must have work health and safety risk assessment that is current and meets legal obligations.
Your risk management plan should identify risks in your business. The plan will describe ways to minimise the likelihood of an incident by including 'controls' - measures to either prevent or manage hazards. To make your risk management plan more effective, you need to monitor the risks and review and update the plan regularly.
A strong risk management plan, as part of a larger business continuity plan, will improve your business resilience and help you recover from incidents.
Risks and hazards
A hazard is something with the potential to cause harm. A risk is the likelihood that the harm will occur from exposure to the hazard. For example, if you have identified electricity as a potential hazard in your workplace, the risk is the likelihood that a worker might be electrocuted because of exposure to electrical wires that are inadequately insulated.
Workplace hazards involving the risks of illness or injury may include:
- chemicals and substances hazards - such as hazardous substances and dangerous goods, asbestos, lead and waste management
- biological hazards and infectious diseases - such as legionella and hendra virus
- physical hazards - such as equipment, confined spaces, electrical hazards and working at heights
- manual tasks hazards - such as the use of the human body to perform any kind of manual task
- environmental hazards - such as noise, lighting, surrounding environment (including uneven floor surfaces, etc.), cold, dust and heat stress
- psychosocial hazards - such as fatigue, work-related stress, workplace harassment and occupational violence.
Find out more about managing hazardous chemicals in the workplace.
Risk management legislation
Under the How to manage work health and safety risks code of practice 2011 (PDF, 494KB), to properly manage exposure to risks you must:
- look for the hazards
- determine who might be harmed and how
- decide on control measures
- put controls in place
- review the controls.
Control measures should be implemented in the following order:
- Get rid of the harm or prevent the risk.
- If this is not possible
- replace with something less harmful
- separate people from the harm
- change work processes or the physical work environment (e.g. by redesigning work, plant, equipment, components or premises)
- apply administrative arrangements (e.g. limit entry or time spent in a hazardous area)
- use personal protective equipment.
- Read more about managing risks and hazards.
- Learn more about identifying business risk.
- Find out how to manage people through change.
- Read about information technology risk management.
- Find out how you can use the PPRR risk management model to address work health and safety risks.
- Read about pandemic risk management for business.
- Learn how an incident response plan can help your business deal with crises.
- Find out how a recovery plan can help minimise losses and get your business running again.
- Learn more about personal safety in the workplace.