Establishing an Occupational Health & Safety Management System E-Book

Establishing an occupational health & safety management system based on ISO 45001

Establishing an occupational health & safety management system based on ISO 45001

NAEEM SADIQ

Every possible effort has been made to ensure that the information contained in this book is accurate at the time of going to press, and the publisher and the author cannot accept responsibility for any errors or omissions, however caused. Any opinions expressed in this book are those of the author, not the publisher. Websites identified are for reference only, not endorsement, and any website visits are at the reader’s own risk. No responsibility for loss or damage occasioned to any person acting, or refraining from action, as a result of the material in this publication can be accepted by the publisher or the author.

Apart from any fair dealing for the purposes of research or private study, or criticism or review, as permitted under the Copyright, Designs and Patents Act 1988, this publication may only be reproduced, stored or transmitted, in any form, or by any means, with the prior permission in writing of the publisher or, in the case of reprographic reproduction, in accordance with the terms of licences issued by the Copyright Licensing Agency. Enquiries concerning reproduction outside those terms should be sent to the publisher at the following address:

IT Governance Publishing Ltd

Unit 3, Clive Court

Bartholomew’s Walk

Cambridgeshire Business Park

Ely, Cambridgeshire

CB7 4EA

United Kingdom

www.itgovernancepublishing.co.uk

© Naeem Sadiq 2019

The author has asserted the rights of the author under the Copyright, Designs and Patents Act, 1988, to be identified as the author of this work.

First published in the United Kingdom in 2019 by IT Governance Publishing.

ISBN 978-1-78778-142-9

FOREWORD

People are spending more time at their workplace, with many spending more than 40 hours at work every week. Workers expect to spend this time in a safe and healthy working environment, and getting injured or falling sick at work is not an eventuality they hope to encounter. For most individuals, health and safety is a matter of utmost importance and priority, next only to their basic physiological needs.

Unfortunately, workplaces across the globe still have a lot to do to provide safe and healthy working conditions. It is estimated that every 15 seconds a worker dies from a work-related accident or disease, and 153 people experience a work-related injury. This is an enormous burden for organisations and society as a whole, with more than 2.78 million deaths a year, not to mention the more than 370 million non-fatal accidents.1

2017/2018 UK health and safety statistics can be found on the Health and Safety Executive’s website www.hse.gov.uk/statistics/. They provide some idea of the extent of health and safety concerns, even in a well-organised society such as the UK:

•1.4 million working people suffered from a work-related illness;

•2,523 mesothelioma deaths because of past asbestos exposures (2017);

•147 workers killed at work;

•555,000 injuries occurred at work according to the Labour Force Survey;

•71,062 injuries to employees reported under Reporting of Injuries, Diseases and Dangerous Occurrences Regulations (RIDDOR);

•30.7 million working days lost because of work-related illness and workplace injury;

•£15 billion estimated cost of injuries and ill health from current working conditions (2016/17).

Many of these incidents result in extended periods of absence from work. The human cost of this daily adversity is vast, and the economic burden of poor occupational health and safety (OH&S) practices is estimated to be as high as 3.94% of global GDP every year.2

It is therefore not surprising that organisations across the globe have begun to assume greater responsibility for their role and obligation in providing safe and healthy working environments. The push towards improved health and safety comes not just from ethical considerations but is equally driven by the needs and policies of organisations, industrial practices, concerns of stakeholders and regulatory requirements.

This book is about establishing an occupational health and safety management system (OHSMS) based on the new ISO 45001:2018 Standard. ISO 45001 is an international standard that specifies requirements for an OHSMS with guidance for its use, to enable an organisation to proactively improve its OH&S performance in preventing injury and ill health. The new standard replaces OHSAS 18001, which has been in practice since 1999.

Occupational health deals with the promotion and maintenance of the physical, mental and cognitive health of workers, and their protection from disease and health-related risks. Safety, on the other hand, is often defined as freedom from unacceptable risk or harm. The subject of OH&S focuses on the identification of health as well as safety-related hazards, assessment of risks and the application of controls to eliminate or minimise the OH&S risks.

Driven by moral, legal and economic considerations, the requirements of health and safety at work play a vital role for workers as well as employers. It is now a legal obligation for the management of an organisation to provide a safe working environment, and to exercise due diligence to prevent ill health or injury to individuals at work.

This book is intended to help those who need to develop and implement an effective OHSMS based on the international standard ISO 45001. Standards often carry a formality about them, with each word bearing a specific meaning and context. They define requirements on ‘what’ must be done, without prescribing any specific details or methodology on ‘how’ it may be accomplished. This book is an attempt to demystify the ISO 45001 standard, by presenting its contents and implementation methodology in a simple, user-friendly and easily understandable manner. A large number of OH&S examples, procedures, plans, formats and reports have also been included to help explain the implementation of ISO 45001.

This book will cover two related topics: how to establish an OHSMS and how ISO 45001 can help an organisation establish such as system. Managers, OH&S auditors, trainers and OH&S professionals who are involved in any aspect of an OHSMS, including development, documentation, implementation, training, supervision or auditing, will find it useful to consult this book. It follows a hands-on and step-by-step approach to building an OHSMS. It explains the purpose and the requirements of each clause of ISO 45001, and goes on to describe how these requirements can be fulfilled by an organisation. It includes numerous examples, suggestions, sample formats and sample procedures to facilitate an understanding and implementation of an OHSMS. This book will also be helpful to those who have no previous background of the subject.

Naeem Sadiq

________________

1www.ilo.org/global/topics/safety-and-health-at-work/lang--en/index.htm.

2www.ilo.org/global/topics/safety-and-health-at-work/lang--en/index.htm .

ABOUT THE AUTHOR

Naeem Sadiq holds a BSc in Aerospace and a Masters in Manufacturing Engineering. He is a certified lead auditor, an ASQ-certified manager and a quality system auditor. Naeem’s work experience in engineering and management includes 25 years as an independent consultant, auditor and trainer for the ISO 9001, ISO 14001 and OHSAS 18001 standards.

Naeem has presented a number of papers at national conferences on management system standards, and has provided consultancy, training and auditing support to more than 100 organisations. As a freelance writer, he is a regular contributor to national newspapers reporting on safety, environmental and social issues. He is also the author of two books, OHSAS 18001 Step by Step – A practical guide and ISO 14001 Step by Step – A practical guide.

ACKNOWLEDGEMENTS

To all those individuals and organisations with whom I have had the opportunity to interact as a friend, trainer, consultant or auditor, and who not only shared their experiences but also asked hundreds of questions, the answers of which I was compelled to seek.

To Vicki Utting, for her patience, support and value-adding nudging. To Asif Hayat and Affan Khalid, for their critical feedback. To my wife Shifa Naeem, for her love, support, constant encouragement, frequent editorial corrections and countless cups of green tea. To my grandchildren, Aameneh, Deena, Laila, Pareevash, Sophia, Zaara and Zarak, who were sometimes resentful but always very amused at my spending long hours working on my computer while writing this book.

I would also like to thank Chris Achillea, Belhaj Hajar, Roland Tan and Chris J Ward, for their time and helpful comments during the review process.

DISCLAIMER

All names and examples quoted in this book are fictitious and have been presented solely for learning, understanding and explaining purposes. Websites quoted in this book may change over a period of time, and readers will need to look up the new addresses if a change has taken place.

CONTENTS

Chapter 1: ISO 45001

1.1 The need for ISO 45001:2018

1.2 What is ISO 45001?

1.3 Terms and definitions

Chapter 2: Context of the organisation

2.1 Understanding the organisation and its context (ISO 45001:2018, Clause 4.1)

2.2 Understanding the needs and expectations of workers and other interested parties (ISO 45001:2018, Clause 4.2)

2.3 Determining the scope of the OHSMS (ISO 45001:2018, Clause 4.3)

2.4 An example of the ‘scope’ of an organisation’s OHSMS

2.5 OHSMS (ISO 45001:2018, Clause 4.4)

Chapter 3: Leadership

3.1 Leadership and commitment (ISO 45001:2018, Clause 5.1)

3.2 OH&S policy (ISO 45001:2018, Clause 5.2)

3.3 An example of an OH&S policy

Chapter 4: Organisational roles and worker participation

4.1 Organisational roles, responsibilities and authorities (ISO 45001:2018, Clause 5.3)

4.2 Consultation and participation of workers (ISO 45001:2018, Clause 5.4)

Chapter 5: Planning

5.1 Actions to address risks and opportunities (ISO 45001:2018, Clause 6.1)

5.2 Hazard identification (ISO 45001:2018 Clause 6.1.2.1)

5.3 Assessment of OH&S risks and other risks to an OHSMS (ISO 45001:2018, Clause 6.1.2.2)

5.4 Assessment of OH&S and other opportunities for the OHSMS (ISO 45001:2018, Clause 6.1.2.3)

Chapter 6: Determination of legal and other requirements (ISO 45001:2018, Clause 6.1.3)

6.1 What are legal and other requirements?

6.2 Determination of legal and other requirements

6.3 Implementing OH&S legal requirements

6.4 Useful sources for regulatory information

Chapter 7: Planning actions

7.1 Planning for risks and opportunities (ISO 45001:2018 Clause 6.1.4)

7.2 Planning to address legal and other requirements (ISO 45001:2018 Clause 6.1.4)

7.3 Planning to ‘prepare for’ and ‘respond to’ emergency situations (ISO 45001:2018 Clause 6.1.4)

7.4 Planning to integrate actions and evaluate their effectiveness (ISO 45001:2018 Clause 6.1.4)

Chapter 8: OH&S objectives and their planning (ISO 45001:2018, Clause 6.2)

8.1 Why OH&S objectives?

8.2 Factors that contribute towards making OH&S objectives

8.3 Typical characteristics of OH&S objectives

8.4 Some examples of OH&S objectives

8.5 Planning to achieve OH&S objectives (ISO 45001:2018, Clause 6.2.2)

Chapter 9: Competence and awareness (ISO 45001:2018, Clause 7.2)

9.1 Understanding competence (ISO 45001:2018, Clause 7.2)

9.2 The requirements about ‘competence’

9.3 Awareness (ISO 45001:2018, Clause 7.3)

9.4 Situations of imminent and serious danger

Chapter 10: Communication

10.1 General requirements (ISO 45001:2018, Clause 7.4.1)

10.2 Issues that require communication

10.3 When to communicate

10.4 How to communicate

10.5 Documented information

Chapter 11: Documented information

11.1 Documentation and ISO 45001 (Clause 7.5.1a)

11.2 Documented information required by ISO 45001

11.3 Documented information determined by an organisation (Clause 7.5.1b)

11.4 Documented information (documents and records)

11.5 Creating and updating documents (ISO 45001 Clause 7.5.2)

11.6 Control of documented information (ISO 45001 Clause 7.5.3)

Chapter 12: Operational planning and control

12.1 General (ISO 45001, Clause 8.1)

12.2 Control of OHSMS processes

12.3 The hierarchy of controls

12.4 Permit to work

12.5 Personal protective equipment

12.6 Management of change (ISO 45001, Clause 8.1.3)

12.7 Behaviour-based safety

12.8 Critical pressure equipment

Chapter 13: Procurement

13.1 General (ISO 45001, Clause 8.1.4.1)

13.2 Contractors (ISO 45001, Clause 8.1.4.2)

13.3 Outsourcing (ISO 45001, Clause 8.1.4.3)

Chapter 14: Emergency preparedness and response

14.1 General requirements (ISO 45001, Clause 8.2)

14.2 Preparedness

14.3 Response

14.4 Documented information

Chapter 15: Monitoring, measurement, analysis and performance evaluation

15.1 General (ISO 45001, Clause 9.1)

15.2 Requirements (ISO 45001, Clause 9.1.1)

15.3 Health monitoring and surveillance

15.4 Performance indicators and criteria

15.5 Measuring and monitoring equipment

15.6 Measuring and monitoring plan

15.7 Evaluation of regulatory compliance (ISO 45001, Clause 9.1.2)

Chapter 16: Internal OHSMS audit

16.1 Why conduct internal audits? (ISO 45001, Clause 9.2.1)

16.2 Internal audit programme (ISO 45001, Clause 9.2.2)

16.3 Internal audit criteria and scope

16.4 Competence of auditors

16.5 Audit as a tool for continual improvement of OH&S performance

16.6 Implementing an OH&S internal audit programme

16.7 Documented information

Chapter 17: OHSMS review

17.1 General

17.2 Requirements (ISO 45001, Clause 9.3)

17.3 Inputs to the management review process

17.4 Management review output

Chapter 18: Continual improvement of the OHSMS

18.1 General (ISO 45001, Clause 10.1)

18.2 Incident, nonconformity and corrective action (ISO 45001, Clause 10.2)

Chapter 19: Continual improvement

19.1 Requirements

19.2 Opportunities for continual improvement

Chapter 20: Beyond ISO 45001

Appendix A: A sample risk assessment for a small warehouse

Appendix B: A 3x3 risk matrix for severity and likelihood

Appendix C: A 5x5 risk matrix for severity and likelihood

Appendix D: A 6x6 risk matrix for severity and likelihood

Appendix E: A sample hazard identification and risk assessment procedure

Appendix F: HAZOP

Appendix G: A sample procedure for identifying and managing occupational health hazards

Appendix H: A sample programme for occupational health surveillance

Appendix I: An example of ‘planning’ to achieve OH&S objectives

Appendix J: A sample procedure for competence, training and awareness

Appendix K: Behaviour-based safety

Appendix L: A sample procedure for critical pressure equipment

Appendix M: A sample OH&S measuring and monitoring plan

Appendix N: A sample of an OHSMS review input report

Appendix O: A sample corrective action request form

Bibliography

Further reading

Index

CHAPTER 1: ISO 45001

1.1 The need for ISO 45001:2018

It is common for organisations to simultaneously implement a number of management system standards such as ISO 14001, ISO 9001, ISO 22001 and OHSAS 18001. Although most standards follow the ISO’s Annex SL, and have the same high-level structure in terms of clauses, sequence and terminology, this was not the case with OHSAS 18001. Hence the need for developing a truly international management system standard for OH&S had been on the cards for a long time. ISO 45001 fulfils this need by complying with the ISO’s Annex SL and following the same high-level structure as other international standards.

ISO 45001:2018 is the first global OHSMS standard. It was developed by experts from more than 60 countries over a five-year period. It replaces OHSAS 18001:2007 (officially BS OHSAS 18001), which has been around for almost 19 years, since it was first published in 1999. OHSAS 18001 was originally developed to protect the safety of workers, by providing a framework that would ensure businesses adopting the standard would meet all the minimum health and safety requirements expected of them.

ISO 45001 was specifically created to help businesses reduce the number of workplace injuries, incidents of ill health and death at work every year. Users of standards such as OHSAS 18001 and the ILO-OSH Guidelines can easily adopt ISO 45001 as it does not conflict with these documents. Instead, it enhances the opportunity for integrating OH&S management into overall business processes.

ISO 45001:2018 is based on the format, structure and terminology defined in ISO’s Annex SL and is hence easily integrated with other management systems. This greatly improves the understanding and acceptability of the new OH&S standard across different organisations and countries.

1.2 What is ISO 45001?

ISO 45001:2018 defines the requirements of an OHSMS. These requirements may be implemented by any organisation that wishes to establish and maintain a world-class OHSMS. An organisation is defined as a person or group of persons, with their own functions, responsibilities, authorities and relationships. Implementing and maintaining an effective OHSMS can benefit an organisation in numerous ways, including:

•Improving the OH&S of its workers by providing safe working conditions that prevent injury and ill health;

•Eliminating hazards and minimising OH&S risks;

•Complying with all applicable legal OH&S requirements;

•Implementing a policy for OH&S and achieving its OH&S improvement objectives;

•Developing a proactive and preventative OH&S system, as opposed to a post-accident reactive system;

•Enhanced participation and accountability of senior management. ISO 45001 requires senior management to take full and final responsibility for the OHSMS of the organisation; and

•Continual improvement of an organisation’s OH&S performance by following the ‘Plan-Do-Check-Act’ (PDCA) cycle.

ISO 45001:2018 does not address issues such as product safety, property damage or the environment, unless they impact upon the health and safety of workers and other relevant interested parties. Any claims of compliance to ISO 45001 are considered valid only if an organisation meets all the requirements of the standard.

1.3 Terms and definitions

It is important to note how some of the key terms are defined in ISO 45001:2018.

Worker is defined as any person performing work or work-related activities that are under the control of an organisation. Workers include senior management as well as those who perform managerial or non-managerial functions. For the purposes of OH&S, it does not matter if the work arrangement of a worker is paid, unpaid, regular, part-time, temporary, seasonal or casual. Work or work-related activities under the control of an organisation may be performed by workers who are employed by the organisation, contractors, external providers, individuals or agency workers. They are all included in the definition of ‘worker’, and the organisation is responsible for their health and safety, subject to the extent that it shares control over their work or work-related activities.

Consultation is defined as seeking views before making a decision, and includes engaging health and safety committees, workers’ representatives and the relevant stakeholders (where they exist).

Participation is defined as the process of involvement in decision-making. This includes engaging health and safety committees, workers’ representatives and the relevant stakeholders (where they exist).

Workplace is defined as a place under the control of an organisation, where a person needs to be or go to for work purposes. The definition clarifies that the organisation’s responsibilities under the OHSMS for the workplace depend upon the degree of its control over the location.

OH&S policy is defined as a policy to prevent work-related injury and ill health to workers, and to provide safe and healthy workplaces.

Injury and ill health are defined as adverse effects on the physical, mental or cognitive condition of a person, and include occupational injuries, diseases, illness and death.

Hazard is defined as a source with a potential to cause injury or ill health.

OH&S risk is defined as a combination of the likelihood of the occurrence of a work-related hazardous event (or exposure), and the severity of injury and ill health that can be caused by that event or exposure.

Competence is defined as the ability to apply knowledge and skills to achieve intended results.

Documented information is defined as the information required to be controlled and maintained by an organisation. It can be in any format or media. It could be information created in order for an organisation to operate its processes. Such information is also referred to as documentation. It could also be information maintained as evidence of the results achieved. Such information is normally referred to as records. ISO 45001:2018 typically requires documented information to be maintained (when considered as documentation) and retained (when considered as records).

OH&S performance is defined as performance related to the effectiveness of an organisation in prevention of injury and ill health, and the provision of safe and healthy workplaces.

Incident is defined as an occurrence arising out of or in the course of work that could or does result in injury and ill health. An incident where an injury or ill health occurs is sometimes referred to as an ‘accident’. An incident where no injury or ill health occurs but has the potential to do so, may also be referred to as a ‘near miss’’, ‘near hit’ or ‘close call’’.

Corrective actions are defined as actions to eliminate the cause(s) of a nonconformity or an incident and to prevent its recurrence.

Preventive actions are defined as actions to eliminate the cause of a potential nonconformity or other potential undesirable situations. It goes without saying that a good organisation should be on the lookout for preventive actions (proactive in nature), rather than being forced to take corrective actions after errors or unsafe situations have already taken their toll.

CHAPTER 2: CONTEXT OF THE ORGANISATION

2.1 Understanding the organisation and its context (ISO 45001:2018, Clause 4.1)

ISO 45001:2018 clearly recognises that no organisation is an island unto itself. Every organisation has its unique circumstances, conditions, characteristics, strengths and weaknesses. It is therefore important for an organisation to take a holistic view and identify those specific internal and external factors that have the ability to affect the outcomes of its OHSMS in any manner, positive or negative.

Examples of external factors that can affect the outcome of an organisation’s OHSMS:

•Social and community factors, such as a negative or positive perception of health and safety issues relating to an organisation’s products or processes.

•Legal factors, such as an organisation not meeting the legal OH&S requirements applicable to its personnel or processes.

•Contractors’, competitors’ or suppliers’ products or activities that could impact an organisation’s OH&S.

•Environmental factors, such as noise, dust or the smell from a neighbourhood manufacturing unit.

•Changes in laws that may have an OH&S impact.

•Changes in technology that may offer improved OH&S options.

•Events that may affect the corporate image or reputation of an organisation.

Examples of internal issues that can affect the outcome of an organisation’s OHSMS:

•Changes in an organisation’s role, structure, management or personnel that may impact upon an organisation’s OHSMS and call for fresh awareness, training, sensitisation or risk assessment.

•Changes in an organisation’s OH&S policies and objectives.

•Inadequate resources (capital, human and technological) needed for building a robust OHSMS.

•Capability of an organisation’s information system to support a safe and healthy workplace.

•Horizontal and vertical relationships between staff and management. Conducive human relations are often vital to creating a healthy and stress-free work environment.

•Adequacy and effectiveness of OH&S controls.

•Management of contractors and other outsourced activities.

•Working hours, shifts, working conditions and organisational culture that may have an impact on OH&S.

•Perception of employees towards their work, working conditions and relationships.

•Changes in products, processes and equipment that could impact upon OH&S.

•Needs and expectations of workers in relation to their health and safety at work.

This is an important proactive requirement of the new Standard. An organisation is required to identify all relevant internal and external factors, including conditions, characteristics or changing circumstances that can affect its OHSMS. This could provide an opportunity for an organisation to take proactive steps to address in advance those factors that may impact upon its OHSMS at a later stage.

Although ISO 45001 does not call for documented information to demonstrate compliance with this requirement, it is recommended that an organisation documents this process and its outcome. This will enable an organisation to periodically review and update its OH&S impacts and proactively develop mitigation strategies.

2.2 Understanding the needs and expectations of workers and other interested parties (ISO 45001:2018, Clause 4.2)

ISO 45001:2018 lays down three requirements in the context of understanding the needs and expectations of workers and other interested parties. These are as follows:

Firstly, ISO 45001:2018 requires an organisation to identify all ‘interested’ parties that are relevant to its OHSMS. Although workers are logically the first and the most easily identified ‘interested’ party, there could be many others who could also fall in the same category. Consider the following as possible examples of ‘interested’ parties:

•Legal and regulatory bodies have a responsibility to ensure enforcement of OH&S regulations.

•Contractors often provide maintenance, construction, manufacturing, assembly, human resource or administrative services that could impact upon the OH&S performance of an organisation.

•Suppliers that provide products that may have serious OH&S implications for workers or users.

•Workers, worker unions and worker representatives are the foremost interested parties, as often they are the first ones to raise their concerns on matters relating to OH&S. They are normally also the first ones to be impacted by any direct impacts or negative outcomes of the OHSMS.

•Parent organisations provide an OH&S framework to subordinate or partner organisations, and have a stake in the implementation of their prescribed framework standards.

•The health and safety of customers, users and communities could be impacted by the products and services offered by an organisation. Thus, they could also be considered as interested parties on issues of OH&S.

The second requirement of Clause 4.2 is for an organisation to identify the OH&S-related needs and expectations of its workers and all other interested parties. These may relate to working conditions, work processes, hazards, risks and controls. They may also relate to work timings, shift duration, facilities and organisational matters that concern the health and safety of workers.

Thirdly, an organisation is required to identify which of these needs and expectations are, or could become, legal or regulatory requirements. Emergency exits, availability of personal protective equipment (PPE), permits to work (PTW), emergency drills, the workplace environment, equipment certification, licenses and working hours are some examples of concerns that may also have regulatory implications. Some of these needs and expectations may already be incorporated in the existing laws and regulations, and are therefore mandatory. There may yet be other voluntary requirements that an organisation subscribes to. The Standard requires the OHSMS of an organisation to address the identified needs and expectations of its interested parties.

2.3 Determining the scope of the OHSMS (ISO 45001:2018, Clause 4.3)

Defining the ‘scope’ is an important step in the process of establishing an OHSMS because many of the activities that follow depend on what has been determined as the ‘scope’ by an organisation. The ‘scope’ of an OHSMS should include a number of aspects such as:

•Defining the physical location and the boundaries of an organisation. It must be specified if the OHSMS is applicable to a part or the whole of an organisation.

•Defining the work-related activities (current and planned) undertaken by an organisation. These are those that are within an organisation’s control or influence and could impact upon its OH&S performance.

•Defining products and services that are within an organisation’s control or influence and could impact upon its OH&S performance.

•Defining any special framework standards (often specified by parent organisations) or regulatory requirements that should be complied with by an organisation.

Under no circumstances should the scope be used to exclude activities, products or services that have, or could have, the potential to impact an organisation’s OH&S performance, or to evade its legal and other obligations. An organisation making a statement of its compliance to ISO 45001 should make an unambiguous statement about the scope of its OHSMS. Interested parties should be clearly able to understand what parts, products, boundaries and activities of an organisation are covered by its OHSMS.

ISO 45001:2018 requires the ‘scope’ of an organisation to be maintained as ‘documented information’.

2.4 An example of the ‘Scope’ of an organisation’s OHSMS

2.5 OHSMS (ISO 45001:2018, Clause 4.4)

Clause 4.4 is perhaps the briefest and yet the most comprehensive clause of the Standard. It makes it mandatory for an organisation claiming to have developed (or intending to develop) an OHSMS based on ISO 45001 to comply with all requirements of ISO 45001. These requirements include establishing, implementing, maintaining and continually improving an organisation’s OHSMS.

A management system is composed of a number of ‘processes’ that are linked with each other in a defined sequence. They work together to create the desired outputs or results. Thus, the implementation, maintenance and continual improvement of an OHSMS cannot be possible without taking the same approach for its constituent ‘processes’.

CHAPTER 3: LEADERSHIP

3.1 Leadership and commitment (ISO 45001:2018, Clause 5.1)

It is now well established that OH&S is the responsibility of all employees in an organisation. ISO 45001 categorically requires senior management to demonstrate commitment, support and leadership towards its OHSMS. It considers senior management’s support and commitment as critical to the success of the OHSMS and its intended outcomes. The Standard places specific responsibilities and requires specific actions from senior management, including:

•