OH&S, Quality & Safety, Risk & Incident Management

Built within Microsoft Dynamics 365, the solution is structured with a framework that supports the methodology of the Australian Standard for Risk Management AS/NZ 4360:2004, AS ISO 31000:2018 and the Australian Standard for Compliance Programs AS3806.

This includes:

Compliance Types for each regulator including ASIC, ATO, APRA, NDIA.

Consequence Areas across Fixed Assets, Intangible Assets, Business Interruption, Reputation, Employee etc with Rating from Insignificant, Minor, Moderate, Major to Catastrophic.

Likelihoods from Almost Certain, Likely, Possible, Unlikely and Rare.

Risk Conclusions include Accepted, Ignored, Treatment Required.

Treatment Types support Avoid Risk, Existing Control, Reduce Consequences, Reduce Probability, Transfer Risk.

Configurable Task Types (out of box Dynamics 365 entity that integrates with Outlook/Microsoft 365).

Incident Types include Breach, Complaint, Reportable.

Incident Status Types can include Complete and Pending.

Frequency Type includes Annual, Monthly, Fortnightly, Weekly, Daily.

The main Risk entity has tabs for Identify, Analyse, Evaluate, Treat plus Documents and Related Incidents and Activities:

Identify tab has Name, Description, Review Date, Review Frequency with checkboxes for Risk Identification Complete and Notify.

Analyse tab records Compliance, Likelihood, Description, Consequence, Details, Existing Controls, Risk Level and Risk Analysis Complete checkbox.

Evaluate tab has Objectives, Conclusion, Comments with Target Risk Level – Target Risk Description, Likelihood, Likelihood Description, Consequence, Consequence Description, Risk Level and checkbox for Risk Level.

Treatment records Type, Name, Description, Residual Risk.

For more information, visit: https://d365risk.com/ Risk & Incident Management.