holder’s management of identified hazards and the risk posed by those hazards. The RMP has six major steps, as illustrated in the next page and briefly described below:
Step 1: Hazard Identification
The purpose of hazard identification is to describe, “What’s wrong,” with the certificate holder’s operation. To complete the hazard identification step, the PI describes the conditions or circumstances in the certificate holder’s operating environment or in its operating systems that could lead to an unplanned or undesired event.
Step 2: Risk Analysis
The purpose of risk analysis is to determine, “What could happen and why.” To complete the risk analysis step, the PI identifies the potential consequences that could result if the hazard was not addressed. The PI also identifies the factors that are causing or contributing to the hazard’s occurrence. The risk factors identify what must be fixed or controlled in order to reduce the level of risk.
Step 3: Risk Assessment
Risk assessment answers the question, “How likely is it to happen and how bad would it be if it did happen.” That is, what is the level of risk? To complete the risk assessment step, the PI uses the information from the risk analysis to determine the severity of the potential consequence, the likelihood of that consequence occurring if the hazard is left alone, and the overall level of risk. The overall level of risk is one consideration in determining what priority should be placed on ensuring the certificate holder addresses the hazard and its risk factors.
Step 4: Decisionmaking
Decisionmaking answers the question, “What’s to be done about it.” To complete the decision-making step, the PI decides: if action needs to be taken to eliminate the hazard to reduce the level of risk; if the certificate just needs to be monitored; or, if the responsibility for getting the hazard mitigated needs to be transferred to some other Flight Standards or FAA organization.
Step 5: Implementation
Implementation answers the question, “Who will do what, when and how.” To complete the implementation step, the PI identifies actions he/she will need to take to effectively oversee the certificate holder’s mitigation of the hazard. He/she will then carry out these oversight actions.
Step 6: Validation
Validation answers the question, “Did it work.” To complete the validation step, the PI reviews the current status of the hazard and verifies that the certificate holder has addressed the risk factors that contributed to or caused the hazard to occur and/or be encountered. The PI also verifies that the level of risk posed by the hazard was reduced. Using this evaluation of the current level of risk, the PI decides whether to close the risk management process for this risk hazard, or whether more implementation actions are required.