2 replies to this topic

[Venkateshkini]

In the recent ISO22000 audit, our auditor suggested - "Site Security System Assessment is conducted to assess potential threats but without following the risk assessment methodology".

We already had monthly security assessment checklist. But auditor suggested the assessment shall be made based on RISK ASSESSMENT. Can anyone give me draft security risk assessment references

[Inathiwam2014]

Hi Venkateshkini, do you have your VACCP and TACCP spreadsheet, which tables all the site areas. From there you can make risk assessment. Below is what it should looklike

 

      THREAT IDENTIFICATION         Step # Area Process Step / equipment name Actual Threat
(What are we considering) Threat Category Source of Risk Contamination Risk Current Control / Mitigation Measures Assessment of Existing Controls Likelihood of Threat Severity of Threat Likelihood score Severity Score Total Score Threat Identification Risk Rating

[Venkateshkini]

Hi Inathiwam,

 

Yes we do have TACCP and VACCP spreadsheets. We will use it close this observation.

 

Thanks for the useful feedback

 

 

 

Hi Venkateshkini, do you have your VACCP and TACCP spreadsheet, which tables all the site areas. From there you can make risk assessment. Below is what it should looklike

 

      THREAT IDENTIFICATION         Step # Area Process Step / equipment name Actual Threat
(What are we considering) Threat Category Source of Risk Contamination Risk Current Control / Mitigation Measures Assessment of Existing Controls Likelihood of Threat Severity of Threat Likelihood score Severity Score Total Score Threat Identification Risk Rating