Risk Management Specialist
风险管理专家
ISO 14971:2019 risk management implementation throughout the medical device lifecycle.
面向医疗器械全生命周期的ISO 14971:2019标准风险管理落地指南。
Risk Management Planning Workflow
风险管理规划工作流
Establish risk management process per ISO 14971.
Workflow: Create Risk Management Plan
工作流:创建风险管理计划
- Define scope of risk management activities:
- Medical device identification
- Lifecycle stages covered
- Applicable standards and regulations
- Establish risk acceptability criteria:
- Define probability categories (P1-P5)
- Define severity categories (S1-S5)
- Create risk matrix with acceptance thresholds
- Assign responsibilities:
- Risk management lead
- Subject matter experts
- Approval authorities
- Define verification activities:
- Methods for control verification
- Acceptance criteria
- Plan production and post-production activities:
- Information sources
- Review triggers
- Update procedures
- Obtain plan approval
- Establish risk management file
- Validation: Plan approved; acceptability criteria defined; responsibilities assigned; file established
- 定义风险管理活动范围:
- 医疗器械标识
- 覆盖的生命周期阶段
- 适用的标准与法规
- 制定风险可接受性标准:
- 定义发生概率分级(P1-P5)
- 定义严重程度分级(S1-S5)
- 创建带可接受阈值的风险矩阵
- 分配职责:
- 定义验证活动:
- 规划生产与产后活动:
- 获取计划审批
- 建立风险管理档案
- 校验:计划已获批、可接受性标准已定义、职责已分配、档案已建立
Risk Management Plan Content
风险管理计划内容
| Section | Content | Evidence |
|---|
| Scope | Device and lifecycle coverage | Scope statement |
| Criteria | Risk acceptability matrix | Risk matrix document |
| Responsibilities | Roles and authorities | RACI chart |
| Verification | Methods and acceptance | Verification plan |
| Production/Post-Production | Monitoring activities | Surveillance plan |
| 板块 | 内容 | 证明材料 |
|---|
| 范围 | 覆盖的设备与生命周期 | 范围说明文档 |
| 标准 | 风险可接受性矩阵 | 风险矩阵文档 |
| 职责 | 角色与权限 | RACI责任分配矩阵 |
| 验证 | 方法与可接受标准 | 验证计划 |
| 生产/产后 | 监控活动 | 监督计划 |
Risk Acceptability Matrix (5x5)
风险可接受性矩阵(5x5)
| Probability \ Severity | Negligible | Minor | Serious | Critical | Catastrophic |
|---|
| Frequent (P5) | Medium | High | High | Unacceptable | Unacceptable |
| Probable (P4) | Medium | Medium | High | High | Unacceptable |
| Occasional (P3) | Low | Medium | Medium | High | High |
| Remote (P2) | Low | Low | Medium | Medium | High |
| Improbable (P1) | Low | Low | Low | Medium | Medium |
| 发生概率 \ 严重程度 | 可忽略 | 轻微 | 严重 | 危重 | 灾难性 |
|---|
| 频繁 (P5) | 中 | 高 | 高 | 不可接受 | 不可接受 |
| 大概率 (P4) | 中 | 中 | 高 | 高 | 不可接受 |
| 偶发 (P3) | 低 | 中 | 中 | 高 | 高 |
| 小概率 (P2) | 低 | 低 | 中 | 中 | 高 |
| 极罕见 (P1) | 低 | 低 | 低 | 中 | 中 |
Risk Level Actions
风险等级对应措施
| Level | Acceptable | Action Required |
|---|
| Low | Yes | Document and accept |
| Medium | ALARP | Reduce if practicable; document rationale |
| High | ALARP | Reduction required; demonstrate ALARP |
| Unacceptable | No | Design change mandatory |
| 等级 | 可接受 | 所需措施 |
|---|
| 低 | 是 | 记录并接受 |
| 中 | ALARP | 可行情况下降低风险,记录判定理由 |
| 高 | ALARP | 必须降低风险,证明符合ALARP要求 |
| 不可接受 | 否 | 必须进行设计变更 |
Risk Analysis Workflow
风险分析工作流
Identify hazards and estimate risks systematically.
Workflow: Conduct Risk Analysis
工作流:开展风险分析
- Define intended use and reasonably foreseeable misuse:
- Medical indication
- Patient population
- User population
- Use environment
- Select analysis method(s):
- FMEA for component/function analysis
- FTA for system-level analysis
- HAZOP for process deviations
- Use Error Analysis for user interaction
- Identify hazards by category:
- Energy hazards (electrical, mechanical, thermal)
- Biological hazards (bioburden, biocompatibility)
- Chemical hazards (residues, leachables)
- Operational hazards (software, use errors)
- Determine hazardous situations:
- Sequence of events
- Foreseeable misuse scenarios
- Single fault conditions
- Estimate probability of harm (P1-P5)
- Estimate severity of harm (S1-S5)
- Document in hazard analysis worksheet
- Validation: All hazard categories addressed; all hazards documented; probability and severity assigned
- 定义预期用途与可合理预见的误用场景:
- 选择分析方法:
- FMEA用于组件/功能分析
- FTA用于系统级分析
- HAZOP用于流程偏差分析
- 使用错误分析用于用户交互场景
- 按类别识别危害:
- 能量危害(电气、机械、热)
- 生物危害(生物负载、生物相容性)
- 化学危害(残留物、浸出物)
- 操作危害(软件、使用错误)
- 判定危险场景:
- 估算伤害发生概率(P1-P5)
- 估算伤害严重程度(S1-S5)
- 记录到危害分析工作表
- 校验:覆盖所有危害类别、所有危害已记录、已分配概率与严重程度
Hazard Categories Checklist
危害类别检查清单
| Category | Examples | Analyzed |
|---|
| Electrical | Shock, burns, interference | ☐ |
| Mechanical | Crushing, cutting, entrapment | ☐ |
| Thermal | Burns, tissue damage | ☐ |
| Radiation | Ionizing, non-ionizing | ☐ |
| Biological | Infection, biocompatibility | ☐ |
| Chemical | Toxicity, irritation | ☐ |
| Software | Incorrect output, timing | ☐ |
| Use Error | Misuse, perception, cognition | ☐ |
| Environment | EMC, mechanical stress | ☐ |
| 类别 | 示例 | 是否已分析 |
|---|
| 电气 | 触电、灼伤、干扰 | ☐ |
| 机械 | 挤压、切割、卡滞 | ☐ |
| 热 | 灼伤、组织损伤 | ☐ |
| 辐射 | 电离、非电离 | ☐ |
| 生物 | 感染、生物相容性 | ☐ |
| 化学 | 毒性、刺激性 | ☐ |
| 软件 | 输出错误、时序错误 | ☐ |
| 使用错误 | 误用、感知偏差、认知偏差 | ☐ |
| 环境 | 电磁兼容性、机械应力 | ☐ |
Analysis Method Selection
分析方法选择
| Situation | Recommended Method |
|---|
| Component failures | FMEA |
| System-level failure | FTA |
| Process deviations | HAZOP |
| User interaction | Use Error Analysis |
| Software behavior | Software FMEA |
| Early design phase | PHA |
| 场景 | 推荐方法 |
|---|
| 组件故障 | FMEA |
| 系统级故障 | FTA |
| 流程偏差 | HAZOP |
| 用户交互 | 使用错误分析 |
| 软件行为 | 软件FMEA |
| 早期设计阶段 | PHA |
Probability Criteria
发生概率标准
| Level | Name | Description | Frequency |
|---|
| P5 | Frequent | Expected to occur | >10⁻³ |
| P4 | Probable | Likely to occur | 10⁻³ to 10⁻⁴ |
| P3 | Occasional | May occur | 10⁻⁴ to 10⁻⁵ |
| P2 | Remote | Unlikely | 10⁻⁵ to 10⁻⁶ |
| P1 | Improbable | Very unlikely | <10⁻⁶ |
| 等级 | 名称 | 描述 | 发生频率 |
|---|
| P5 | 频繁 | 预期会发生 | >10⁻³ |
| P4 | 大概率 | 很可能发生 | 10⁻³ 到 10⁻⁴ |
| P3 | 偶发 | 可能发生 | 10⁻⁴ 到 10⁻⁵ |
| P2 | 小概率 | 不太可能发生 | 10⁻⁵ 到 10⁻⁶ |
| P1 | 极罕见 | 几乎不可能发生 | <10⁻⁶ |
| Level | Name | Description | Harm |
|---|
| S5 | Catastrophic | Death | Death |
| S4 | Critical | Permanent impairment | Irreversible injury |
| S3 | Serious | Injury requiring intervention | Reversible injury |
| S2 | Minor | Temporary discomfort | No treatment needed |
| S1 | Negligible | Inconvenience | No injury |
See: references/risk-analysis-methods.md
| 等级 | 名称 | 描述 | 伤害 |
|---|
| S5 | 灾难性 | 死亡 | 死亡 |
| S4 | 危重 | 永久性损伤 | 不可逆伤害 |
| S3 | 严重 | 需要医疗干预的伤害 | 可逆伤害 |
| S2 | 轻微 | 暂时不适 | 无需治疗 |
| S1 | 可忽略 | 不便 | 无伤害 |
参考:references/risk-analysis-methods.md
Risk Evaluation Workflow
风险评估工作流
Evaluate risks against acceptability criteria.
Workflow: Evaluate Identified Risks
工作流:评估已识别的风险
- Calculate initial risk level from probability × severity
- Compare to risk acceptability criteria
- For each risk, determine:
- Acceptable: Document and accept
- ALARP: Proceed to risk control
- Unacceptable: Mandatory risk control
- Document evaluation rationale
- Identify risks requiring benefit-risk analysis
- Complete benefit-risk analysis if applicable
- Compile risk evaluation summary
- Validation: All risks evaluated; acceptability determined; rationale documented
- 通过概率×严重程度计算初始风险等级
- 与风险可接受性标准对比
- 为每项风险判定:
- 可接受:记录并接受
- ALARP:进入风险控制流程
- 不可接受:强制开展风险控制
- 记录评估理由
- 识别需要开展收益-风险分析的风险
- 必要时完成收益-风险分析
- 汇总风险评估摘要
- 校验:所有风险已评估、可接受性已判定、理由已记录
Risk Evaluation Decision Tree
风险评估决策树
Risk Estimated
│
▼
Apply Acceptability Criteria
│
├── Low Risk ──────────► Accept and document
│
├── Medium Risk ───────► Consider risk reduction
│ │ Document ALARP if not reduced
│ ▼
│ Practicable to reduce?
│ │
│ Yes──► Implement control
│ No───► Document ALARP rationale
│
├── High Risk ─────────► Risk reduction required
│ │ Must demonstrate ALARP
│ ▼
│ Implement control
│ Verify residual risk
│
└── Unacceptable ──────► Design change mandatory
Cannot proceed without control
已完成风险估算
│
▼
应用可接受性标准
│
├── 低风险 ──────────► 接受并记录
│
├── 中风险 ───────► 考虑降低风险
│ │ 未降低则记录ALARP理由
│ ▼
│ 是否具备降低可行性?
│ │
│ 是──► 实施控制措施
│ 否───► 记录ALARP理由
│
├── 高风险 ─────────► 必须降低风险
│ │ 必须证明符合ALARP要求
│ ▼
│ 实施控制措施
│ 验证残余风险
│
└── 不可接受 ──────► 必须进行设计变更
无控制措施不得推进
ALARP Demonstration Requirements
ALARP证明要求
| Criterion | Evidence Required |
|---|
| Technical feasibility | Analysis of alternative controls |
| Proportionality | Cost-benefit of further reduction |
| State of the art | Comparison to similar devices |
| Stakeholder input | Clinical/user perspectives |
| 标准 | 所需证明材料 |
|---|
| 技术可行性 | 替代控制措施分析 |
| 相称性 | 进一步降低风险的成本收益分析 |
| 技术先进性 | 与同类设备的对比 |
| 利益相关方反馈 | 临床/使用者视角 |
Benefit-Risk Analysis Triggers
收益-风险分析触发条件
| Situation | Benefit-Risk Required |
|---|
| Residual risk remains high | Yes |
| No feasible risk reduction | Yes |
| Novel device | Yes |
| Unacceptable risk with clinical benefit | Yes |
| All risks low | No |
| 场景 | 需要开展收益-风险分析 |
|---|
| 残余风险仍为高 | 是 |
| 无可行的风险降低方案 | 是 |
| 新型设备 | 是 |
| 具备临床收益的不可接受风险 | 是 |
| 所有风险为低 | 否 |
Risk Control Workflow
风险控制工作流
Implement and verify risk control measures.
Workflow: Implement Risk Controls
工作流:落地风险控制措施
- Identify risk control options:
- Inherent safety by design (Priority 1)
- Protective measures in device (Priority 2)
- Information for safety (Priority 3)
- Select optimal control following hierarchy
- Analyze control for new hazards introduced
- Document control in design requirements
- Implement control in design
- Develop verification protocol
- Execute verification and document results
- Evaluate residual risk with control in place
- Validation: Control implemented; verification passed; residual risk acceptable; no unaddressed new hazards
- 识别风险控制选项:
- 设计层面本质安全(优先级1)
- 设备内置防护措施(优先级2)
- 安全相关提示信息(优先级3)
- 按照优先级选择最优控制方案
- 分析控制措施是否引入新危害
- 在设计需求中记录控制措施
- 在设计中落地控制措施
- 制定验证方案
- 执行验证并记录结果
- 评估控制措施落地后的残余风险
- 校验:控制措施已落地、验证通过、残余风险可接受、无未处理的新危害
Risk Control Hierarchy
风险控制优先级
| Priority | Control Type | Examples | Effectiveness |
|---|
| 1 | Inherent Safety | Eliminate hazard, fail-safe design | Highest |
| 2 | Protective Measures | Guards, alarms, automatic shutdown | High |
| 3 | Information | Warnings, training, IFU | Lower |
| 优先级 | 控制类型 | 示例 | 有效性 |
|---|
| 1 | 本质安全 | 消除危害、故障安全设计 | 最高 |
| 2 | 防护措施 | 防护装置、警报、自动关停 | 高 |
| 3 | 信息提示 | 警告、培训、使用说明书 | 较低 |
Risk Control Option Analysis Template
风险控制选项分析模板
RISK CONTROL OPTION ANALYSIS
Hazard ID: H-[XXX]
Hazard: [Description]
Initial Risk: P[X] × S[X] = [Level]
OPTIONS CONSIDERED:
| Option | Control Type | New Hazards | Feasibility | Selected |
|--------|--------------|-------------|-------------|----------|
| 1 | [Type] | [Yes/No] | [H/M/L] | [Yes/No] |
| 2 | [Type] | [Yes/No] | [H/M/L] | [Yes/No] |
SELECTED CONTROL: Option [X]
Rationale: [Justification for selection]
IMPLEMENTATION:
- Requirement: [REQ-XXX]
- Design Document: [Reference]
VERIFICATION:
- Method: [Test/Analysis/Review]
- Protocol: [Reference]
- Acceptance Criteria: [Criteria]
风险控制选项分析
危害ID: H-[XXX]
危害: [描述]
初始风险: P[X] × S[X] = [等级]
考虑的选项:
| 选项 | 控制类型 | 新危害 | 可行性 | 是否选择 |
|--------|--------------|-------------|-------------|----------|
| 1 | [类型] | [是/否] | [高/中/低] | [是/否] |
| 2 | [类型] | [是/否] | [高/中/低] | [是/否] |
选中的控制措施: 选项 [X]
理由: [选择依据说明]
落地情况:
- 需求编号: [REQ-XXX]
- 设计文档: [引用链接]
验证情况:
- 方法: [测试/分析/评审]
- 方案: [引用链接]
- 可接受标准: [标准说明]
Risk Control Verification Methods
风险控制验证方法
| Method | When to Use | Evidence |
|---|
| Test | Quantifiable performance | Test report |
| Inspection | Physical presence | Inspection record |
| Analysis | Design calculation | Analysis report |
| Review | Documentation check | Review record |
| 方法 | 使用场景 | 证明材料 |
|---|
| 测试 | 可量化的性能表现 | 测试报告 |
| 检查 | 物理存在性校验 | 检查记录 |
| 分析 | 设计计算 | 分析报告 |
| 评审 | 文档检查 | 评审记录 |
Residual Risk Evaluation
残余风险评估
| After Control | Action |
|---|
| Acceptable | Document, proceed |
| ALARP achieved | Document rationale, proceed |
| Still unacceptable | Additional control or design change |
| New hazard introduced | Analyze and control new hazard |
| 控制措施落地后状态 | 措施 |
|---|
| 可接受 | 记录,推进流程 |
| 已符合ALARP要求 | 记录理由,推进流程 |
| 仍不可接受 | 新增控制措施或设计变更 |
| 引入新危害 | 分析并控制新危害 |
Post-Production Risk Management
产后风险管理
Monitor and update risk management throughout product lifecycle.
Workflow: Post-Production Risk Monitoring
工作流:产后风险监控
- Identify information sources:
- Customer complaints
- Service reports
- Vigilance/adverse events
- Literature monitoring
- Clinical studies
- Establish collection procedures
- Define review triggers:
- New hazard identified
- Increased frequency of known hazard
- Serious incident
- Regulatory feedback
- Analyze incoming information for risk relevance
- Update risk management file as needed
- Communicate significant findings
- Conduct periodic risk management review
- Validation: Information sources monitored; file current; reviews completed per schedule
- 识别信息来源:
- 客户投诉
- 服务报告
- 警戒/不良事件
- 文献监控
- 临床研究
- 制定收集流程
- 定义评审触发条件:
- 识别到新危害
- 已知危害发生频率升高
- 严重事件
- 监管反馈
- 分析收集到的信息的风险相关性
- 按需更新风险管理档案
- 同步重大发现
- 定期开展风险管理评审
- 校验:信息来源已监控、档案已更新、按计划完成评审
| Source | Information Type | Review Frequency |
|---|
| Complaints | Use issues, failures | Continuous |
| Service | Field failures, repairs | Monthly |
| Vigilance | Serious incidents | Immediate |
| Literature | Similar device issues | Quarterly |
| Regulatory | Authority feedback | As received |
| Clinical | PMCF data | Per plan |
| 来源 | 信息类型 | 评审频率 |
|---|
| 投诉 | 使用问题、故障 | 持续 |
| 服务 | 现场故障、维修 | 每月 |
| 警戒 | 严重事件 | 立即 |
| 文献 | 同类设备问题 | 每季度 |
| 监管 | 监管机构反馈 | 收到时 |
| 临床 | 上市后临床跟踪数据 | 按计划 |
Risk Management File Update Triggers
风险管理档案更新触发条件
| Trigger | Response Time | Action |
|---|
| Serious incident | Immediate | Full risk review |
| New hazard identified | 30 days | Risk analysis update |
| Trend increase | 60 days | Trend analysis |
| Design change | Before implementation | Impact assessment |
| Standards update | Per transition period | Gap analysis |
| 触发条件 | 响应时间 | 措施 |
|---|
| 严重事件 | 立即 | 全面风险评审 |
| 识别到新危害 | 30天 | 更新风险分析 |
| 风险趋势上升 | 60天 | 趋势分析 |
| 设计变更 | 落地前 | 影响评估 |
| 标准更新 | 过渡周期内 | 差距分析 |
Periodic Review Requirements
定期评审要求
| Review Element | Frequency |
|---|
| Risk management file completeness | Annual |
| Risk control effectiveness | Annual |
| Post-market information analysis | Quarterly |
| Risk-benefit conclusions | Annual or on new data |
| 评审项 | 频率 |
|---|
| 风险管理档案完整性 | 每年 |
| 风险控制有效性 | 每年 |
| 上市后信息分析 | 每季度 |
| 风险-收益结论 | 每年或有新数据时 |
Risk Assessment Templates
风险评估模板
Hazard Analysis Worksheet
危害分析工作表
HAZARD ANALYSIS WORKSHEET
Product: [Device Name]
Document: HA-[Product]-[Rev]
Analyst: [Name]
Date: [Date]
| ID | Hazard | Hazardous Situation | Harm | P | S | Initial Risk | Control | Residual P | Residual S | Final Risk |
|----|--------|---------------------|------|---|---|--------------|---------|------------|------------|------------|
| H-001 | [Hazard] | [Situation] | [Harm] | [1-5] | [1-5] | [Level] | [Control ref] | [1-5] | [1-5] | [Level] |
危害分析工作表
产品: [设备名称]
文档编号: HA-[产品]-[版本号]
分析人员: [姓名]
日期: [日期]
| ID | 危害 | 危险场景 | 伤害 | P | S | 初始风险 | 控制措施 | 残余概率 | 残余严重程度 | 最终风险 |
|----|--------|---------------------|------|---|---|--------------|---------|------------|------------|------------|
| H-001 | [危害] | [场景] | [伤害] | [1-5] | [1-5] | [等级] | [控制措施引用] | [1-5] | [1-5] | [等级] |
FMEA WORKSHEET
Product: [Device Name]
Subsystem: [Subsystem]
Analyst: [Name]
Date: [Date]
| ID | Item | Function | Failure Mode | Effect | S | Cause | O | Control | D | RPN | Action |
|----|------|----------|--------------|--------|---|-------|---|---------|---|-----|--------|
| FM-001 | [Item] | [Function] | [Mode] | [Effect] | [1-10] | [Cause] | [1-10] | [Detection] | [1-10] | [S×O×D] | [Action] |
RPN Action Thresholds:
>200: Critical - Immediate action
100-200: High - Action plan required
50-100: Medium - Consider action
<50: Low - Monitor
FMEA工作表
产品: [设备名称]
子系统: [子系统名称]
分析人员: [姓名]
日期: [日期]
| ID | 项 | 功能 | 故障模式 | 影响 | S | 原因 | O | 控制措施 | D | RPN | 行动 |
|----|------|----------|--------------|--------|---|-------|---|---------|---|-----|--------|
| FM-001 | [项] | [功能] | [模式] | [影响] | [1-10] | [原因] | [1-10] | [探测方式] | [1-10] | [S×O×D] | [行动] |
RPN行动阈值:
>200: 关键 - 立即采取行动
100-200: 高 - 需要制定行动计划
50-100: 中 - 考虑采取行动
<50: 低 - 监控
Risk Management Report Summary
风险管理报告摘要
RISK MANAGEMENT REPORT
Product: [Device Name]
Date: [Date]
Revision: [X.X]
SUMMARY:
- Total hazards identified: [N]
- Risk controls implemented: [N]
- Residual risks: [N] Low, [N] Medium, [N] High
- Overall conclusion: [Acceptable / Not Acceptable]
RISK DISTRIBUTION:
| Risk Level | Before Control | After Control |
|------------|----------------|---------------|
| Unacceptable | [N] | 0 |
| High | [N] | [N] |
| Medium | [N] | [N] |
| Low | [N] | [N] |
CONTROLS IMPLEMENTED:
- Inherent safety: [N]
- Protective measures: [N]
- Information for safety: [N]
OVERALL RESIDUAL RISK: [Acceptable / ALARP Demonstrated]
BENEFIT-RISK CONCLUSION: [If applicable]
APPROVAL:
Risk Management Lead: _____________ Date: _______
Quality Assurance: _____________ Date: _______
风险管理报告
产品: [设备名称]
日期: [日期]
版本: [X.X]
摘要:
- 识别到的总危害数: [N]
- 已落地的风险控制措施数: [N]
- 残余风险: [N]项低风险, [N]项中风险, [N]项高风险
- 总体结论: [可接受 / 不可接受]
风险分布:
| 风险等级 | 控制前 | 控制后 |
|------------|----------------|---------------|
| 不可接受 | [N] | 0 |
| 高 | [N] | [N] |
| 中 | [N] | [N] |
| 低 | [N] | [N] |
已落地的控制措施:
- 本质安全: [N]项
- 防护措施: [N]项
- 安全信息提示: [N]项
总体残余风险: [可接受 / 已证明符合ALARP要求]
收益-风险结论: [如有]
审批:
风险管理负责人: _____________ 日期: _______
质量保证负责人: _____________ 日期: _______
Risk Control Selection
风险控制选择
What is the risk level?
│
├── Unacceptable ──► Can hazard be eliminated?
│ │
│ Yes─┴─No
│ │ │
│ ▼ ▼
│ Eliminate Can protective
│ hazard measure reduce?
│ │
│ Yes─┴─No
│ │ │
│ ▼ ▼
│ Add Add warning
│ protection + training
│
└── High/Medium ──► Apply hierarchy
starting at Level 1
风险等级是什么?
│
├── 不可接受 ──► 能否消除危害?
│ │
│ 是─┴─否
│ │ │
│ ▼ ▼
│ 消除危害 防护措施能否降低风险?
│ │
│ 是─┴─否
│ │ │
│ ▼ ▼
│ 新增防护措施 新增警告+培训
│
└── 高/中风险 ──► 从优先级1开始应用控制层级
| Question | If Yes | If No |
|---|
| Does control introduce new hazard? | Analyze new hazard | Proceed |
| Is new risk higher than original? | Reject control option | Acceptable trade-off |
| Can new hazard be controlled? | Add control | Reject control option |
| 问题 | 是 | 否 |
|---|
| 控制措施是否引入新危害? | 分析新危害 | 推进流程 |
| 新风险是否高于原风险? | 驳回控制选项 | 可接受的权衡 |
| 新危害能否被控制? | 新增控制措施 | 驳回控制选项 |
Risk Acceptability Decision
风险可接受性判定
| Condition | Decision |
|---|
| All risks Low | Acceptable |
| Medium risks with ALARP | Acceptable |
| High risks with ALARP documented | Acceptable if benefits outweigh |
| Any Unacceptable residual | Not acceptable - redesign |
| 条件 | 结论 |
|---|
| 所有风险为低 | 可接受 |
| 中风险符合ALARP要求 | 可接受 |
| 高风险已记录ALARP证明 | 收益高于风险则可接受 |
| 存在任何不可接受的残余风险 | 不可接受 - 需重新设计 |
Tools and References
工具与参考资料
| Tool | Purpose | Usage |
|---|
| risk_matrix_calculator.py | Calculate risk levels and FMEA RPN | python risk_matrix_calculator.py --help
|
Risk Matrix Calculator Features:
- ISO 14971 5x5 risk matrix calculation
- FMEA RPN (Risk Priority Number) calculation
- Interactive mode for guided assessment
- Display risk criteria definitions
- JSON output for integration
| 工具 | 用途 | 使用方法 |
|---|
| risk_matrix_calculator.py | 计算风险等级与FMEA RPN | python risk_matrix_calculator.py --help
|
风险矩阵计算器特性:
- 符合ISO 14971标准的5x5风险矩阵计算
- FMEA RPN(风险优先级数)计算
- 引导式评估的交互模式
- 展示风险标准定义
- 支持JSON输出用于集成
| Document | Content |
|---|
| iso14971-implementation-guide.md | Complete ISO 14971:2019 implementation with templates |
| risk-analysis-methods.md | FMEA, FTA, HAZOP, Use Error Analysis methods |
| 文档 | 内容 |
|---|
| iso14971-implementation-guide.md | 含模板的ISO 14971:2019完整落地指南 |
| risk-analysis-methods.md | FMEA、FTA、HAZOP、使用错误分析方法说明 |
Quick Reference: ISO 14971 Process
快速参考:ISO 14971流程
| Stage | Key Activities | Output |
|---|
| Planning | Define scope, criteria, responsibilities | Risk Management Plan |
| Analysis | Identify hazards, estimate risk | Hazard Analysis |
| Evaluation | Compare to criteria, ALARP assessment | Risk Evaluation |
| Control | Implement hierarchy, verify | Risk Control Records |
| Residual | Overall assessment, benefit-risk | Risk Management Report |
| Production | Monitor, review, update | Updated RM File |
| 阶段 | 核心活动 | 输出 |
|---|
| 规划 | 定义范围、标准、职责 | 风险管理计划 |
| 分析 | 识别危害、估算风险 | 危害分析报告 |
| 评估 | 对照标准判定、ALARP评估 | 风险评估报告 |
| 控制 | 按优先级落地、验证 | 风险控制记录 |
| 残余风险 | 总体评估、收益-风险分析 | 风险管理报告 |
| 生产阶段 | 监控、评审、更新 | 已更新的风险管理档案 |
| Skill | Integration Point |
|---|
| quality-manager-qms-iso13485 | QMS integration |
| capa-officer | Risk-based CAPA |
| regulatory-affairs-head | Regulatory submissions |
| quality-documentation-manager | Risk file management |
| 技能 | 集成点 |
|---|
| quality-manager-qms-iso13485 | 质量管理体系集成 |
| capa-officer | 基于风险的纠正预防措施 |
| regulatory-affairs-head | 监管申报 |
| quality-documentation-manager | 风险档案管理 |