Safety Risk Assessmnet and Safe Systems of Work
Safety Risk Assessmnet and Safe Systems of Work
Safety Risk Assessmnet and Safe Systems of Work
systems of work
This chapter is split into two parts:
Part 1: Directive. This part provides direction that you must follow to help you comply
with (keep to) health and safety law, Government policy or Defence policy.
Part 2: Guidance. This part provides the guidance and good practice that should be
followed and will help you to keep to this policy.
Contents
Title Page
Amendment record 2
Terms and definitions 2
Scope 4
Assurance 4
Alternative acceptable means of compliance 4
Part 1: Directive
Introduction 5
Safety risk assessment process 6
Safety risk assessment policy statements 6
Part 2: Guidance
Plan activities and identify hazards 18
Evaluate the risk 19
Review the risk assessment 21
Learn from experience 23
Retention of records 24
Related documents 24
The policy contained within this chapter is not written for areas of Defence whose primary
purpose is working with young persons under the age of 18 (for example Defence-run
schools or cadet forces). Those areas of Defence (where Defence owes a duty of care),
must maintain their own safety policies and governance and must provide statutory
compliant infrastructure and safe systems of work appropriate for young persons. They may
use material from this chapter as a reference point, but where appropriate their respective
policies should be adapted to meet the needs of young persons and to follow any
applicable Department for Education guidelines or legislation.
Assurance
The application of the policy contained within this chapter must be assured (that is, its use
must be guaranteed). As part of their overall assurance activity, the commander,
manager, or accountable person (AP) must make sure that this policy is followed and put
into practice effectively. Assurance must be carried out in accordance with JSP 815
(Defence Safety Management System) Volume 2, Element 12 – Assurance.
Alternative acceptable means of compliance
This policy is mandatory across Defence and the only acceptable means of compliance
(AMC) is attained by following the directive and guidance set out in this chapter. However,
there may be circumstances where a small number of military units may be permanently
unable to comply with (keep to) parts of the policy. In such circumstances an alternative
AMC is set out in the JSP 375 Directive and Guidance.
4 JSP 375 Vol 1 Chapter 8 (V1.6 Dec 23)
Part 1: Directive
Introduction
1. UK health and safety (H&S) legislation requires employers to make sure, so far as is
reasonably practicable (SFAIRP), the H&S of employees and anyone else who may be
affected by a work activity is not compromised. This is commonly referred to as the ‘duty of
care’. The legislation requires employers to fulfil their ‘duty of care’ responsibilities by
reducing risks as low as is reasonably practicable (ALARP). In accordance with the
Secretary of State’s (SofS) Policy these requirements apply to all Defence activities.
2. Defence more commonly uses the term ALARP. The Health and Safety Executive
(HSE) consider that the two phrases (SFAIRP and ALARP) essentially mean the same
thing. This Defence policy must be followed to manage:
a. the H&S risks to Defence personnel and those affected by Defence activities;
and
b. the measures to be taken to eliminate those risks or reduce them to as low as
reasonably practicable (ALARP), in order to minimise harm and comply with current
UK H&S legislation.
3. All activities across Defence must be conducted within the elements of a Safe
System of Work (SSW). An SSW is a method of work which puts in place control
measures arising from a risk assessment, in order to manage identified hazards, which are
broken down into four elements; safe person, safe equipment, safe place and safe
practice.
4. Reducing a risk to ALARP does not always require activities to stop – it means
balancing the level of risk against the measures needed to control the risk (in terms of
money, time, or trouble).
6. A risk assessment considers the likelihood of an event happening, and the severity of
any potential harm. It is about identifying potential risks in the workplace and taking
suitable and sufficient measures to control them.
9. Any identified risks must be assessed using the methodology set out in this chapter
unless a chapter of JSP 375 that is specific to a particular hazard states otherwise.
However, the principles of risk assessment remain the same.
10. Safety risk assessment (in this policy referred to as ‘risk assessment’) is a logical
process which can be broken down into the following five steps (the five-step risk
assessment process):
Step 1 – Identify the hazards.
Step 2 – Decide who might be harmed and how.
Step 3 – Evaluate the risks and identify suitable and sufficient control measures.
Step 4 – Record and implement findings.
Step 5 – Review the risk assessment and update as necessary.
12. The MOD has established the following policy statements, which must be followed.
a. Policy Statement 1 (step 1 – Identify the hazards)
The commander, manager or accountable person must make sure that all hazards
that are reasonably foreseeable (could reasonably be expected) associated with the
activities under their command or supervision, are identified.
c. Policy Statement 3 (step 3 – Evaluate the risks and identify suitable and
sufficient control measures)
The commander, manager or accountable person must make sure that the risks
associated with the activity are evaluated and identify suitable and sufficient control
measures, which must be put in place and maintained.
14. The person carrying out the hazard identification should have a good understanding
of the activity, process or substance that is being assessed and should carry out this
hazard identification in consultation with the personnel taking part in the activity.
15. The commander, manager or accountable person must identify who might be at risk
from the hazards associated with the activity and decide whether it is just those taking part
in the activity at risk or could it be for example other workers, visitors, or members of the
public.
17. Special consideration must be given to vulnerable groups such as those with a
disability or young persons under the age of 18, (for example apprentices, recruits, those
in the recruitment process) and to anyone who is not familiar with the activity or the
location and so may be at an increased risk. Further guidance on health and safety
considerations when working with young people is set out in Chapter 19 (Young persons)
of JSP 375, Volume 1 and for cadet forces guidance is set out in JSP 814 (Policy and
Regulations for Ministry of Defence Sponsored Cadet Forces).
18. For some activities, the risk assessment may require a medical plan to be developed.
If a medical plan is required, the commander, manager or accountable person must make
sure that it is developed in conjunction with advice from medical personnel. Further
information on medical plans is covered under Policy Statement 6 (medical plans
paragraph’s) of this Part 1.
Policy Statement 3 (step 3 – Evaluate the risks and identify suitable and
sufficient control measures)
The commander, manager or accountable person must make sure that the risks
associated with the activity are evaluated and identify suitable and sufficient control
measures, which must be put in place and maintained.
19. A proportionate risk assessment must be carried out for all Defence related activity.
This includes, but is not limited to, hazards arising from:
a. Training, exercise, operational, non-operational activities and administrative
activities;
b. Constructing, using, maintaining, modifying, or repairing buildings or other
infrastructure on the Defence estate; and
c. Constructing, operating, maintaining, modifying, and repairing equipment.
20. The risk assessment process must identify what could cause harm in the workplace,
who and how it could harm, and consider what control measures are required to reduce
the risk to ALARP and tolerable.
21. Control measures that have been identified must be put in place, clearly
communicated to personnel, maintained, and used properly.
22. All risk assessments must be carried out with consideration to the ‘hierarchy of
controls’ (the measures to control risk), the order must be followed; for example, always
try to eliminate the hazard first and do not simply jump to the easiest control. It may require
a combination of measures to control a risk.
8 JSP 375 Vol 1 Chapter 8 (V1.6 Dec 23)
23. The order of the hierarchy of controls is as follows:
1. Elimination
Redesign the job or use a different process, substance, or piece of equipment and so
on so that the hazard is removed or eliminated (for example, avoid working at height
if possible).
2. Substitution
Replace the process, substance, or equipment with a less hazardous one (for
example, use a mobile elevating work platform instead of step ladders). Care should
be taken to make sure the alternative is safer than the original.
3. Engineering controls
Engineer the equipment to protect the operator (for example, make the equipment
less noisy) or separate the hazard from the operator (for example, by having screens
or guards on dangerous items of machinery or equipment).
4. Administrative controls
These are all about identifying and implementing the procedures that need to be
followed to work safely (for example, rotating tasks to reduce the time workers are
exposed to hazards, banning the use of mobile phones in hazardous areas, putting
up safety signs, and carrying out risk assessments and so on).
5. Personal protective equipment
If all the previous hierarchy of control measures have been evaluated and found to
be ineffective or not able to reduce risks to ALARP, personal protective equipment
(PPE) must be used. For example, when you cannot eliminate the risk of a fall, use
work equipment or other measures (such as harnesses) to minimise the
consequences of a possible fall. PPE is the final control measure to be considered as
this relies on the wearing of and reliance on human behaviour. This control measure
requires proactive supervision to make sure this is sufficiently applied / followed.
24. Consideration must be given to the effects or new hazards that may be introduced
as a result of implementing any of the controls.
25. The commander, manager or accountable person is responsible for controlling risk in
the workplace, so they must make sure risk assessments are carried out and dynamically
assessed throughout the duration of the task / activity. They may delegate the
responsibility for carrying out a risk assessment to a competent person, but they:
a. must make sure that the risk assessment is suitable and sufficient; and
b. are responsible for approving it and remain accountable for it.
26. Once the risk assessment has been approved, it must be followed by all personnel
involved with or affected by the activity.
27. A commander, manager or accountable person or any person who has been
delegated the responsibility to carry out a risk assessment must be competent in risk
assessment having successfully completed recognised risk assessment training.
28. The person carrying out the risk assessment should have a good understanding of
the activity, process or substance that is being assessed and must carry out the
assessment in consultation with the personnel taking part in / or affected by the activity
and use local HS&EP support and SME’s where appropriate.
30. For some activities that share the same hazards and controls (for example, routine
maintenance or cleaning), generic risk assessments can be produced. However, the
assessment must take into consideration the environment and the situation where the
activity is being carried out.
31. Where control measures have been put in place, yet there remains significant
residual risk resulting from activities, this information must be evaluated to assess the
requirement of additional control measures to bring the residual risk to ALARP and
tolerable.
32. Where the residual risk identified is significant, this must be recorded in the risk
assessment and communicated to those undertaking the activity. Where circumstances
change, the risk assessment and control measures must be reviewed and modified as
necessary.
33. The commander, manager or accountable person must make sure the control
measures and the findings from the risk assessment are recorded. Based upon this,
informed decisions can be made about incorporating further control measures if
necessary.
34. The findings and associated control measures from the risk assessment must be
implemented and effectively communicated to those undertaking or affected by the activity.
The control measures in the risk assessment must be complied with (kept to). The
commander, manager or accountable person must consider how they are going
communicate the findings of the risk assessment and the control measures that have been
identified to those that may be affected. This may be accomplished by producing a
proportionate communications plan. Where it is considered that a communication plan is
necessary then the plan must identify the methods of effective communication, examples
are:
a. Allow all activity participants to read the risk assessment - then get them to sign.
b. A written (or verbal) brief to all activity participants to be given by activity lead /
deliverer. The written brief is an annex of the activity instruction.
c. The activity lead / deliverer confirms with the activity participants that control
measures are in place.
35. Personnel must tell the commander, manager or accountable person about any
ineffective control measures and must report any new hazards not previously identified in
the original risk assessment. Personnel must co-operate with those carrying out risk
assessments and comply with any necessary control measures.
37. Risk assessments and associated documents should be kept for audit and
investigation purposes and should be held locally within the specific unit or establishment.
When a risk assessment or document has been replaced or is no longer valid, it can either
continue to be held locally or sent to archive (see JSP 441) and should be stored for at
least three years. There are some exceptions (for example, health surveillance and health
records) which have to be stored for longer. Timescales are set out in Chapter 39 of JSP
375 Volume 1.
38. The commander, manager or accountable person must review and approve the risk
assessment for an activity.
39. Risk assessments are live documents and must be reviewed at a frequency that is
appropriate and proportionate to the risk level of the activity. When an unexpected hazard
arises, or an activity changes (for example during the planning stage or immediately before
an activity starts), the risk assessment in place must be reviewed to make sure it is still
valid and that the control measures identified in the original risk assessment still apply and
are in place. As part of this review, it may be necessary for the commander, manager or
accountable person to change or put further control measures in place.
40. Once an activity has started, commanders, managers or accountable persons must
‘dynamically’ risk manage it. A dynamic risk assessment must be carried out if an
unexpected hazard arises whilst the activity is underway; this could be as a result of an
emergency or change to the activity or surrounding circumstances (for example, a sudden
change in the weather conditions), which could increase the risk of injury or illness. The
recommended template for dynamic risk assessments is the MOD Form 5010A (please
see Guidance Notes).
41. As well as scheduled reviews, a risk assessment must be reviewed when any of the
following apply:
a. There is reason to doubt the effectiveness of the assessment.
b. There has been an accident or a near miss.
42. The findings from a dynamic risk assessment, and any control measures put in place,
must be recorded when reasonably practicable (even if this is retrospectively) in line with
step 4 of the five-step risk assessment process. That record should specify the information
available at the time the risk assessment was carried out, and be held by the commander,
manager, or accountable person as evidence of the dynamic risk assessment being
carried out. The record can be, for example, a note in a notebook, a logged message over
the radio network or on the MOD Form 5010A.
43. If at any stage of the activity, including before it starts, the direction in this policy
cannot be followed or the control measures in the risk assessment cannot be met, or if an
accident, injury or near miss occurs the commander, manager or accountable person
must re-assess the risk. They must then consider the following actions.
44. Although rare, there are activities where it is essential to continue despite a high level
of risk, for these activities a risk assessment must still be carried out to reduce the risk to
ALARP and tolerable. When this is the case:
a. the level of risk must be approved through the chain of command; and
b. any direction on the appropriate action to take must be followed.
45. Within the Military Commands there are two further derivatives of an SSW that may
be applied. These are:
a. an operational safe system of work (OSSW); and
b. a safe system of training (SST).
46. An OSSW and an SST comprise of the same four elements as the SSW (safe
person, safe equipment, safe place, and safe practices). The OSSW takes into
consideration the realities of operations and the SST takes into consideration the extra
training elements.
47. Those taking part in a training or operational activity must know who the commander
manager or accountable person is. Before the activity begins, the commander, manager or
accountable person must make sure that all those taking part in that activity receive a brief
that clearly identifies them. This may be formalised by a written instruction or detailed
orders.
49. Safety Plan - As part of the overall risk assessment for a training or operational
activity, commanders, managers or accountable person must make sure that a safety plan
is developed that provides details of the control measures to be put in place and their use.
The safety plan must be incorporated within the exercise or activity instructions or as a
separate annex to them. Examples of safety plans are as follows:
a. For activity involving blank ammunition and pyrotechnics, an exercise action
safety plan (EASP).
b. Where live firing is being undertaken, a range action safety plan (RASP) or
range safety document (RSD).
50. Medical Plan - As part of the overall risk assessment for a training or operational
activity, commanders, managers or accountable person must make sure that a medical
plan has been developed appropriate to the level of risk. The medical plan must identify
the appropriate response to any casualties or medical incidents . When developing the
medical plan, the commander, manager or accountable person should:
a. involve medical personnel;
b. consider the level of medical cover (staffing) needed for the activity;
c. consider the type and amounts of medical equipment needed for the activity;
and
d. consider how and where any casualties will be evacuated to.
51. See Chapter 5 of JSP 375 Volume 1 (First aid at work), as well as Military Command
policy for medical guidance and JSP 950 Leaflet 5-2-8 Competent Medical Authority.
13 JSP 375 Vol 1 Chapter 8 (V1.6 Dec 23)
52. Communication plan - As part of the overall risk assessment for a training or
operational activity, commanders, managers or accountable person must make sure that
a communication plan that is proportional to the level of risk has been developed. The
communication plan must identify the appropriate methods of communicating for example
response to any casualties or medical incidents and must be promulgated to those who
may be affected by the risk and those supervising the activity.
53. The commander, manager or accountable person must make sure all risk
assessments for a training or operational activity are continuously reviewed during the
activity (including the requirement to conduct a dynamic risk assessment when
appropriate).
54. There may be exceptional circumstances where requirements of this policy or control
measures in the risk assessment cannot be met, but the activity has to go ahead (for
example within the OSSW where risks from certain hazards arise from the operational
environment). The risk assessment for these activities must explain why that activity
needs to continue and that the greater level of risk is tolerable and to be accepted.
55. Activities that need to proceed despite a high level of risk are rare but, they must still
be assessed to reduce any residual risk to ALARP and tolerable. In these situations, the
commander, manager, or accountable person must undertake a dynamic risk assessment
in line with Policy Statement 5 to re-assess the risk. As part of the dynamic risk
assessment the commander, manager or accountable person must consider the following
actions.
a. Pausing or stopping the activity – The dynamic risk assessment may
determine that the activity needs to be paused or stopped. However, there are a very
limited number of activities that may need to continue without pausing or stopping.
Examples include combat operations and other instances where pausing or stopping
the activity could cause a greater risk to life than continuing. The original risk
assessments for these activities must indicate that a greater level of risk is tolerable
for the task to be achieved. When this is the case, the level of risk must be elevated
and approved at the appropriate level in the chain of command before the activity
starts.
c. Elevating the risk – If the risk of an activity is higher than the level of risk the
commander, manager or accountable person is authorised to accept, the risk must
be elevated in line with their Military Command’s or Defence organisation’s elevation
process. In exceptional and unforeseeable operational circumstances where it is not
possible or proportionate to refer the matter to a superior officer, the commander,
manager, or accountable person may accept the risk and take personal responsibility
for the consequences. However, in these circumstances the commander, manager or
accountable person must report their decisions up through their chain of command
at the earliest opportunity.
56. Using the SSW methodology, the OSSW must make sure that activities are
conducted on operations by trained personnel with risks reduced to ALARP whilst
considering and balancing the tolerability of risk against the realities of operations.
Operational risks may include those that arise from combat operations or other
circumstances where personnel are required to operate outside of their normal working
practices.
57. While UK Forces are deployed on operations outside of the UK the Secretary of
State’s HS&EP policy statement requires that “Overseas, we will comply with the laws of
Host States, where they apply to us, and in circumstances where such requirements fall
short of UK requirements, we will apply UK standards so far as it is reasonably practicable
to do so”.
Operational and training activities
58. Those directing operational and training activities must make sure that activities are
performed in line with legislation, regulation, approved codes of practice (ACOPs), Service
instructions, Defence codes of practice (DCOPs), directives and policies, while taking
account of any risks to personnel. To do this they must make sure that:
a. operational and training activities take place in a way that is as safe as is
reasonably practicable;
b. any Service instructions, DCOPs, policies and so on that apply to the
operational and training activities are complied with and are communicated to those
providing and supervising the activity, as well as those taking part in the activity: and
c. those taking part in the operational and training activities are told about the
hazards they will face during those activities.
Safe system of training (SST)
59. The SST forms part of the SSW but takes into account that those undergoing training
cannot be assumed to be competent until they have successfully completed their training,
met any required standards, and gained the necessary experience. All those undergoing
training must follow all instructions given before and during the training. Further detailed
information regarding the SST is set out in Part 2 of this Chapter 8.
60. The SST sets the conditions under which training must be delivered, so making sure
that trainees are given the appropriate information, instruction, and supervision to provide
them with the best possible preparation for the roles they may undertake in times of
conflict, while keeping risks ALARP. This enables the military to meet the training
imperative required to achieve the operational requirement.
61. The aim of the risk assessment for a training activity is to do the following.
a. Establish if all elements of the SST are in place, identify any hazards that are
not covered by the SST and consider what additional controls are needed to reduce
the risk to ALARP.
b. Analyse any residual risk to decide if it is:
(1). adequately controlled (in which case the training activity can be carried
out); or
(2). not adequately controlled (in which case, further measures will need to be
put in place to reduce the risk to ALARP and tolerable).
62. The first step when carrying out a risk assessment of a training activity is to establish
whether all elements of the SST are in place. If all elements are in place, the relevant
control measures must be recorded in the risk assessment.
63. Training should be delivered as it was planned, with the correct facilities, suitably
qualified and experienced training staff and with the correct procedures and instructions.
Undue pressure must not be put on those delivering training to deviate from planned and
endorsed training programmes. Where any changes are made to the planned training, the
risk assessment for that training must be reviewed to make sure there is no impact on
safety, increased risk to life or serious injury.
64. The review of the risk assessment and any further control measures that are required
(for example modifying the training imperative) to reduce the risk must be approved by the
commander, manager or accountable person.
65. For military training activities, the hazards must have already been assessed. The
resulting control measures must have been approved by the appropriate authority and
built into formal procedures to reduce the risks to ALARP, within the constraints of the
training imperative.
66. If there are proposed changes to training exercises, the SST should be checked to
make sure it will still apply and there will be no new hazards. If there is any doubt, a full
risk assessment of the changed activity must be carried out.
67. The commander, manager or accountable person must consider the effects of any
changes to training activities, before and particularly during the activities, before those
changes are made.
68. The commander, manager or accountable person should monitor the training
activity, liaising with junior commanders, safety staff and medical providers where
appropriate.
69. If an accident, injury, incursion or near miss happens, the training activity must be
paused. A dynamic risk assessment must be carried out to consider introducing further
control measures to prevent further incidents.
71. The commander, manager or accountable person must make sure that instructors
and those supervising training are competent to do so (a competent person) and have
received an appropriate level of supervision to make sure that the training they provide
matches the ability of those being trained and complies with all the elements of the SST.
Trainees must be fully briefed on all hazards they will face during training.
72. For equipment (including explosives and ammunition) that has been brought into
service, it must have appropriate documents that define their safe operation and
maintenance, the commander, manager or accountable person must make sure that:
a. instructors and those supervising training have and make proper use of that
equipment in order to provide training in line with the appropriate Service publications
or a similar set of instructions;
b. only competent people, or those receiving training under the appropriate
supervision, are allowed to operate and service the equipment; and
c. all training and maintenance records are stored in line with Chapter 39 of
JSP 375 Volume 1.
73. The place training is provided in must have the control measures necessary to
enable the training to be provided safely. Those control measures must have been
identified by a site-specific risk assessment.
74. The commander, manager or accountable person must make sure instructors and
the personnel receiving training are fully briefed on all necessary control measures.
75. Safe practices are ones that are carried out in line with procedures and instructions
laid down by the Military Command. These procedures and instructions are set out in the
safety case and developed in line with the Defence Systems Approach to Training (DSAT).
76. Safe practice includes following correct procedures, providing effective supervision,
delivering effective training, providing all warnings, cautions and controls, and using
appropriate personal protective equipment (PPE), to make sure risks remain ALARP and
tolerable.
77. Training must only be provided by a competent person in order to make sure that
procedures are strictly followed and training is closely supervised.
1. The commander, manager or accountable person is responsible for making sure that
all reasonably foreseeable hazards associated with the activity are identified and a risk
assessment is carried out as part of the planning process where they have:
a. control of the workplace;
b. responsibility for planning an activity; or
c. control of those taking part in an activity.
2. The commander, manager or accountable person is responsible for making sure that
all those who might be exposed to a hazard are made aware of, and understand, the
findings of the risk assessment and the results of the risk assessments are communicated.
4. The five-step risk assessment process set out in policy statements 1 to 5 in Part 1 of
this chapter are supplemented with guidance in this Part 2 and illustrated in the risk
assessment flow chart in Annex A. Further information regarding risk management is
available from the HSE links: Steps needed to manage risk, The health and safety toolbox
HSG 268 and How to control risks at work.
5. The first step is to look for hazards. Consider the location of the activity or process
and check for potential dangers. Concentrate on anything with the potential to cause
serious harm to Defence personnel, contractors, and visitors. Also ask for input from
Defence personnel involved in or affected by the activity or process.
8. Accident and ill-health records are a good way of revealing how occurrences have
happened in the past. Manufacturer’s instructions and datasheets contain information that
should also be considered. Consider any hazards with the potential to cause long-term
(chronic) ill health to personnel (for example, loud or persistent noise, vibration, or toxic
substances).
10. Some workers may have particular requirements, for example new and young
workers new or expectant mothers, people with disabilities, temporary workers,
contractors, homeworkers, and lone workers. For each hazard the commander, manager
or accountable person need to clear about who might be harmed.
11. Involving safety representatives (from within Defence and from trade unions) will
provide useful information and make the risk-assessment process more thorough and
effective. Advice and guidance may also be available from the particular unit’s or
establishment’s safety adviser.
Policy Statement 3 (step 3 – Evaluate the risks and identify suitable and sufficient
control measures)
The commander, manager or accountable person must make sure that the risks
associated with the activity are evaluated and identify suitable and sufficient control
measures, which must be put in place and maintained.
14. For some common activities that share the same hazards and controls (for example,
routine maintenance or cleaning) generic risk assessments can be used, rather than
individual risk assessments being put in place. A generic assessment should only be used
if you consider that the control measures set out in it adequately reduce risks to ALARP
and tolerable.
15. Using a generic risk assessment for an activity may appear the easiest option, but it
does not take into account the specific location or environment the activity is taking place
in or consider the consequences that may arise when more than one activity or process is
taking place at the same time. Therefore, the assessment should:
a. be reviewed before commencement of the activity;
b. fully identify and describe the activities or processes;
c. identify all reasonably foreseeable hazards;
d. identify how people may be harmed;
e. consider who is likely to be exposed to the risk, how and for how long (including
third parties who may be affected due to their proximity);
f. identify the potential severity of the harm that could be caused;
g. evaluate the residual risk after all required control measures are put in place;
h. identify and communicate the required control measures; and
i. consider the findings of other related risk assessments that may affect the
activity (for example, a fire-safety risk assessment).
16. All risk assessments are to be carried out with consideration to the ‘hierarchy’ of
measures to control risk as set out in more detail in Part 1 of this Chapter.
17. Everyone who might be exposed to a hazard, are to receive training on the risks from
the process, equipment, or substances they work with, and the control measures
developed to minimise the risks. It would not be practicable to train members of the public
however, so it is necessary that they are informed and warned of any hazards that could
affect them. You should make sure that:
a. information about H&S risks, and the control measures, are communicated to
those carrying out the task;
b. any training needed to carry out the task has been completed and recorded;
c. work instructions specify the control measures to be used;
19. For risks on the Defence estate these are to be recorded in the site risk assessments
(see the checklist in Annex B).
Policy Statement 5 (step 5 – Review the risk assessment and update as necessary)
The formal risk assessment record must be reviewed at a frequency that is appropriate
and proportionate to the risk level of the activity. This includes immediately before the
activity starts and if further hazards are identified or the activity changes, additional control
measures must be added where necessary.
Where there are changes to the activity whilst it is underway or to the surrounding
circumstances (for example, a sudden change in the weather conditions), which could
increase the risk injury or illness, then a dynamic risk assessment must be carried out.
20. When control measures have been put in place, an initial review should take place
shortly afterwards to check their effectiveness and should be regularly reviewed at a
frequency that is appropriate to the risk (for example, every six months for high-risk
activities, once a year for medium-risk activities, and at least every three years for low-risk
activities). When necessary, reviews should be carried out as soon as possible, rather
than waiting for the scheduled review date.
21. Each review should include the commander’s, manager’s, or accountable person’s
assessment of the effectiveness of control measures, and any further controls that may be
needed.
22. Rapid responses to changing conditions or signs of risk are vital for avoiding serious
injuries or environmental damage. The ‘RAPID’ checklist below is intended as a guide to
be used immediately before and during a planned activity to make sure the key elements
of the safe system of work are in place. It does not replace the MOD five-step risk-
assessment process used to carry out a formal risk assessment.
• Does the activity increase risk? Do you understand the intensity of the activity?
What are the specific What clothing and equipment is needed?
A considerations relating to
the Activity? • Do you have the correct equipment?
• How would you manage an emergency?
Are the Personnel • Consider education and training, experience, knowledge of the activity.
P prepared and competent
for the activity?
• Do you have enough personnel with the necessary knowledge, skills,
experience, and behaviours (KSEB) for the activity?
Has the correct Information • Does everybody understand the control measures?
I been supplied to the • Do those taking part in the activity understand the processes they are
workforce? following and what to do if things go wrong?
23. H&S legislation requires all activities to be performed within a safe system of work
(SSW), as explained in part 1 of this Chapter. For the Military Commands this includes an
operational safe system of work (OSSW) and safe systems of training (SST).
24. Exercise or activity instructions should contain a copy of any exercise risk
assessment, which should take account of the following:
a. The Defence personnel and the general public who may be involved with or
affected by the activity;
b. Any equipment being used, including whether they have associated publications
that contain hazard warnings and control measures;
c. Materials (including ammunition, food, water, and fuel) being used;
d. Any procedures and associated guidance relevant to the activity;
e. The environmental conditions (particularly climate, weather, and terrain); and
f. Any specific Military Command publications, drills, practices, and instructions
that need to be followed in order to carry out the task safely.
25. Within an OSSW, risks resulting from certain hazards within the operational
environment may have to be accepted due to limits on the controls which could be put in
place to reduce the risk, for example this may be in a combat situation. Whether it is
reasonably practicable to take alternative or additional measures to mitigate the risk will
depend on the operational context.
26. If the activity is critical, the risk must be elevated through the Military Command’s
chain of command for a decision on whether or not to proceed with the activity. Where it is
not possible or proportionate to refer the matter through the chain of command, the
commander may accept the risk and take personal responsibility for the consequences,
however, in these circumstances they must report their decisions up through their chain of
command at the earliest opportunity.
Safe system of training (SST)
27. Within an SST the acceptable level of risk for training activities is set by the Miltary
Command that owns the training activity, in line with the direction on the steps of training
and education (analysis, design, delivery, assurance, management) set out in JSP 822. In
exceptional circumstances, the acceptable level of risk may be set by the commander
responsible for training within the operational environment.
People at risk during military training
30. If all the elements of the SSW and SST are in place, the risk assessment for an
exercise or activity should list the control measures in place. If parts of the SSW or SST
are missing or do not fully cover the exercise or activity, additional hazards should be
added to the risk assessment.
31. Exercise or activity instructions should clearly state the written authority required to
make changes to the exercise or activity.
33. Risk assessments and associated documents should be kept for at least three years
after they expire, and in line with Chapter 39 of JSP 375 Volume 1 (Retention of records).
Related documents
34. The following documents are related to this chapter.
Step 2
Decide who might be harmed and how
Implement
additional control
Identify most suitable type of measures
assessment
Yes
Dynamic risk assessment
This allows for immediate safety assessments to be made without
implementing the written risk assessment process.
Step 3
Evaluate the risk and identify suitable and sufficient control measures
Yes
Accident/Incident
investigation
In the event of an Yes
accident / incident a copy
of the risk assessment No
should be kept with the Step 4
accident investigation Record and implement findings
report.