QEHSQEHS
Book a demo

Risk

Residual risk

The risk remaining after controls are applied.

Residual risk = inherent risk adjusted for the effectiveness of controls in place. ISO 45001 requires organisations to determine whether residual risk is acceptable (tolerable) or requires further action. A risk register typically records both inherent and residual scores for each entry. Residual risk is the basis for management decisions on further treatment.

Back to glossarySee how QEHS tracks Residual risk
Residual risk · Glossary · QEHS — QEHS