Decoding ISO

45001:2018

Vishal Chavan
G.M.-Client Training Service
Introduction.
Background to
the changes.
The ISO 45001:2018 migration timeline.

Quarter 1 2018 Quarter 1 2018 Migration

Period
FDIS to be ISO 45001:2018
published published 3 years from
standard
publication

Please note that these timescales are subject to change.

Annex SL.
Overview of Annex SL.

Annex SL - a framework for a generic management system.

However, it requires the addition of discipline-specific
requirements to make a fully functional standard.

Annex SL

High-level Identical Common

structure core text definition
Annex SL – High-level structure.
The major clause numbers and titles of all management system
standards will be identical.
1. Scope
2. Normative references
3. Terms and definitions
4. Context of the organisation
5. Leadership
6. Planning
7. Support
8. Operation
9. Performance evaluation
10. Improvement.
ISO 45001:2018.
Overview of the changes.
ISO 45001:2018.
Key areas of change to requirements
Clause number: Title Item Change
Some clarification stating all requirements in
1: Scope Scope
the standard relate to all organisations

2: Normative references Normative references There are no normative references

3: Terms and definitions Terms and definitions New & updated terms and definitions

4: Context of the Context of the

New requirements
organisation organisation
Greater area of focus, integral to business
5: Leadership Leadership
processes and accountability
Risks/Opportunities New requirement
6: Planning
Planning of changes Greater area of focus

Competence
Must be defined
Awareness
New requirements
7: Support Information &
Greater area of focus
communication
New terminology
Documented Information
ISO 45001:2018.

Key areas of change to requirements - Part 2

Clause number: Title Item Change

Managing Change New requirement

Outsourcing Requirements made clearer
8: Operation
Procurement New requirement
Contractors New requirement

9: Performance Analysis and evaluation Greater area of focus especially on performance

evaluation Management review Greater area of focus on risk(s) and performance

Incident, nonconformity Clarification on approach and structure, removal

10: Improvement & corrective action of preventive action
Continual improvement Enhanced requirements
Scope of the standard.

Clause 1

Has been enhanced.

However, claims of conformity to this document are not

acceptable unless all its requirements are incorporated into an
organisation's OH&S management system and fulfilled without
exclusion.

This means that anything that would impact upon the

occupational health, safety and welfare of employees must be
considered as part of the management system.
Scope of ISO 45001:2018.
Aim
● Improve occupational health
and safety
● Eliminate hazards and
minimize OH&S risks
(including system
deficiencies),
● Take advantage of OH&S
opportunities, and
● Address OH&S management
system nonconformities
associated with its activities
Lloyd's Register
Intended outcome
● Continual
improvement of
OH&S performance;
● Fulfilment of legal
requirements and
other requirements;
● Achievement of OH&S
objectives.
● To integrate other
aspects of health and
safety, such as worker
wellness/wellbeing. 12
Scope of the standard.

Sections 1-3

Section 1: Scope No substantive change

Section 2: Normative references No longer references 18002,

or ILO:2001 guidelines on
OSH-MS

Section 3: Terms and definitions Some new definitions

Terms and definitions.
Term Definition
Interested Person or organisation that can affect, be affected by, or perceive itself
party to be affected by a
decision or activity
Worker Person performing work or work-related activities that are under the
control of the organisation
Workplace Place under the control of the organisation where a person needs to be
or to go for work purposes
Risk Effect of uncertainty
Documented information required to be controlled and maintained by an
information organisation and the medium on which it is contained

Outsource Make an arrangement where an external organisation performs part of

an organisation’s function or process
Contractor external organisation providing services to the organisation in
accordance with agreed specifications, terms and conditions
Lloyd's Register 14
Terms and definitions.

Removed from ISO 45001

3.1 Acceptable Risk acceptability does not appear within

ISO 45001.

3.7 Hazard Identification no formal definition, although hazard

identification is still referred to in
clause 6.1.2.1.

3.12 Occupational Health although no formal definition in the

and Safety standard, it is referred to
in clause 3.11.
Structure of ISO 45001 versus PDCA.

Internal and Context of the organisation (4) Needs and

external issues Scope of the OH&S management system (4.3 / 4.4) expectations of
(4.1) interested
parties (4.2)
Planning
(6)

Plan

Improvement Leadership Support

(10) Act and worker Do and operation
participation (7,8)
(5)

Check

Performance
evaluation
(9)

Intended outcomes of
the OH&SMS
 The High Level Structure for OH&S management.

PLAN DO CHECK ACT

4. 5.
6. 7. 8. 9.
CONTEXT OF LEADERSHIP 10.
PERFORMANCE
THE AND WORKER PLANNING SUPPORT OPERATION IMPROVEMENT
EVALUATION
ORGANISATION PARTICIPATION

9.1 Monitoring,
4.1 Understanding 6.1 Actions to 10.1 Incident,
5.1 Leadership and 8.1 Operational measurement,
the organisation address risks and 7.1 Resources nonconformity and
commitment planning and control analysis and
and its context opportunities corrective action
evaluation

6.2 OH&S
4.2 Understanding 8.6 Emergency
objectives and
the needs and 5.2 OH&S policy 7.2 Competence preparedness and 9.2 Internal audit 10.2 Continual
planning to improvement
expectations of response
achieve them
workers and other
interested parties
5.3 organisational 9.3 Management
roles, 7.3 Awareness
4.3 Determining the review
scope of the OH&S responsibilities,
management accountabilities
system and authorities
7.4 Information
and
4.4 OH&S communication
management 5.4 Participation,
system and consultation
7.5 Documented
information
Context of the
organisation.

Risk Based Approach.

What is context of the organisation?

Definition

● Business environment: combination of internal and external

factors and conditions that can have an effect on an
organisation's approach to its products, services and
investments and interested parties

Lloyd's Register 19
Clause interrelationships: Clauses 4, 6.1 and 8.1

Plan Plan

Determine
Act scope of Do
your OH&SMS
considering:

Check External Internal

issues issues

Interested
parties and
their
requirements
controlled by:

determine:
OH&SMS and its Risks
processes Opportunities Strategic
Purpose
direction

Lloyd's Register 20
Risks and opportunities.

Organisational risks Operational risks and

and opportunities opportunities

Achievement of
Compliance
purpose and
obligations
strategic direction

Competitive Enhance OH&S

advantage performance

Lloyd's Register 21
Feed through ISO 45001:2018 requirements.

• Determine external and internal issues (4.1)

• Determine relevant interested parties and their requirements (4.2)

• Consider the issues and requirements and determine the risks and opportunities
that need to be addressed (6.1)

• Plan actions to address these risks and opportunities and integrate and
implement the actions into the OH&SMS processes (6.1) (8.1)
• Plan how to evaluate the effectiveness of these actions (6.1)

• Evaluate performance (9.1)

• Review information, including trends and indicators on the effectiveness of
actions taken to address risks and opportunities (9.3)

Lloyd's Register 22
 Process
approach

Lloyd's Register 23
Process model.

Controls

Inputs Process Outputs

Resources

Intended
results

Lloyd's Register 24
Process terms.

“…The organisation shall establish, maintain, implement

and continually improve a OH&SMS, including
processes……”

“…shall determine the processes needed”

“…determine and apply the criteria and methods (including

monitoring, measurements, and related performance
indicators)”
“….evaluate these processes….”

Lloyd's Register 25
Documented
information.
Documented information.

● information required to be controlled and maintained by an

organisation and the medium on which it is contained

● Where the standard says “maintain documented information”

this is what we used to call documents and where it says “retain
documented information” this is what we used to call records

Lloyd's Register 27
Leadership.
Leadership.

Lloyd's Register 29
Leadership.
Statement

● Leaders at all levels establish unity of purpose and direction and

create conditions in which people are engaged in achieving the
quality objectives of the organisation

Rationale

● Creation of unity of purpose, direction and engagement enable

an organisation to align its strategies, policies, processes and
resources to achieve its objectives

(Source – ISO 9000:2015)

Lloyd's Register 30
Leadership.
Top management activities

Top management…
by taking accountability for…
ensuring that… promoting the use of…
… by engaging, directing and supporting persons to…
ensuring… risks and opportunities…are determined and addressed
… shall establish, implement and maintain…
shall assign the responsibility and authority for...
… shall review the organisation's OH&S MS …
… promoting a culture…

Lloyd's Register 31
Conclusion and
close.