Exam ISO-45001-Lead-Auditor Topic 1 Question 8 Discussion
Actual exam question for PECB's ISO-45001-Lead-Auditor exam
Question #: 8
Topic #: 1
Question #: 8
Topic #: 1
You are an audit team leader conducting a Stage 2 audit of a Financial Services Provider. You are currently interviewing the organisation's Risk and Compliance Officer, who appears very competent when it comes to the management of business risks. As the Risk and Compliance Officer, she is also identified as having lead responsibility for the management of OH&S risk, and you are now seeking evidence that she understands the requirements relating to risk that are contained within ISO 45001. During your conversation, she makes the following six statements about risk within an ISO 45001-based OHSMS. Which four of his statements are correct?
Suggested Answer: B,C,E,F Vote an answer
Analysis of Options:
* A. The organisation must attempt to identify and address every risk it faces:Incorrect. ISO 45001 focuses on OH&S risks and not every risk faced by the organization.
* B. The effect of uncertainty (i.e. risk) can result in positive outcomes as well as negative ones:
Correct. Clause 3.20 defines risk as the "effect of uncertainty," which may result in positive or negative outcomes.
* C. Although organisations are required to carry out risk management, the method by which they do so is up to them:Correct. ISO 45001 does not prescribe specific risk management methods, leaving the organization to choose the approach that best suits its context (Clause 6.1.2).
* D. Risk assessment is an activity that must be carried out by top management:Incorrect. Risk assessment can involve workers and other personnel; it is not limited to top management.
* E. The organisation is required to assess risks arising from OH&S hazards:Correct. Clause 6.1.2.2 requires organizations to assess OH&S risks associated with hazards.
* F. Risk is often expressed as a combination of likelihood and impact:Correct. This is a common way to express risk, aligned with Clause 6.1.2.
ISO References:
* Clause 3.20: Definition of risk.
* Clause 6.1.2: Hazard identification and risk assessment
* A. The organisation must attempt to identify and address every risk it faces:Incorrect. ISO 45001 focuses on OH&S risks and not every risk faced by the organization.
* B. The effect of uncertainty (i.e. risk) can result in positive outcomes as well as negative ones:
Correct. Clause 3.20 defines risk as the "effect of uncertainty," which may result in positive or negative outcomes.
* C. Although organisations are required to carry out risk management, the method by which they do so is up to them:Correct. ISO 45001 does not prescribe specific risk management methods, leaving the organization to choose the approach that best suits its context (Clause 6.1.2).
* D. Risk assessment is an activity that must be carried out by top management:Incorrect. Risk assessment can involve workers and other personnel; it is not limited to top management.
* E. The organisation is required to assess risks arising from OH&S hazards:Correct. Clause 6.1.2.2 requires organizations to assess OH&S risks associated with hazards.
* F. Risk is often expressed as a combination of likelihood and impact:Correct. This is a common way to express risk, aligned with Clause 6.1.2.
ISO References:
* Clause 3.20: Definition of risk.
* Clause 6.1.2: Hazard identification and risk assessment
by Duncan at Mar 09, 2026, 08:57 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).