OHSAS 18001 may be automated from within the Proteus EnterpriseTM governance, risk and compliance utility from UK firm Information Governance Limited.
It is the standard for Occupational Health and Safety Systems. Many organisations are now looking at implementing the Occupational Health and Safety Management System. Although not a legal requirement, it is a recognised specification that structures the implementation of an effective H & S management system. OHSAS 18001 is the latest certification specification for Occupational Health and Safety Management Systems. It is based on already published criteria such as BS 8800 and the Management Regulations 1992. OHSAS 18001 is an audit/certification specification, not a legislative requirement or a guide to implementation.
Registration to OHSAS 18001 demonstrates a commitment to implement, maintain and improve the way in which you manage your Health and Safety system. Organisations registered to OHSAS 18001 can be more confident about meeting the requirements of H & S legislation. The setting of targets through the Health and Safety policy, together with the ongoing measurement against it ensures a process of continual improvement.
Essentially, it involves evaluating the health and safety needs of your staff and visitors and then identifying the boundaries of your system, documents and procedures. Once fully implemented to the Standard, they are then audited and regularly reviewed. Conformance to legislative requirements must also be borne in mind.
Proteus EnterpriseTM provides a convenient and easy mechanism to implement OHSAS 18001. It also enables large, medium and small enterprises to manage multiple standards such as those in Financial-GRC, IT-GRC and Operational-GRC within the same tool, and is designed to assist in delivering the key benefits of good information security governance:
- Improved trust in customer relationships
- Protecting the organization’s reputation
- Decreasing likelihood of violations of privacy and potential liabilities
- Providing greater confidence when interacting with trading partners
- Enabling new and better ways to process electronic transactions
- Reducing operational costs by providing predictable outcomes
- Mitigating risk factors that may interrupt the process
The Control Objectives in OHSAS 18001 are fundamental to good Governance, and automation of the initial and ongoing management of this standard is highly recommended. Enterprise-wide visibility of the success of those controls is also vital because stakeholders and Boards want assurance that controls and risks are being managed. This visibility is provided through the Proteus RiskView™ module. This bridges the gap between the technical, regulatory compliance, risk communities and senior management within your organization. RiskViewTM distils, displays and reports on an enormous amount of information gathered from within your organization and displays it within a real time dashboard view. The web-server design makes deployment and access as simple and efficient as possible whilst retaining central coordination.
Proteus enables compliance-based management of risks, enterprise-wide – internationally because of its web-based design features. Large enterprises are experiencing an ever-increasing burden of regulation and legislation against which they have to demonstrate compliance. To make matters worse, this myriad of legislation occurs in different areas, for example financial regulation (Sarbanes Oxley), corporate governance, environmental issues, health & safety and industry sector specific.
This problem is not going away and is further compounded by having to map the standards against the company’s business processes. Proteus EnterpriseTM enables this mapping, therefore exposing the areas of non-compliance, the potential financial consequences, and the need to combine this with other existing risk management practices.
Proteus EnterpriseTM enables any standard to be automated, and in national languages too. We have a growing library of questionnaires so call or email with your particular requirement.
Information Governance Limited has extended its Licence Agreement with the British Standards Institute for its 14th year, enabling the embedding and automation of BSI Standards within the Proteus range of GRC software solutions. The BSI’s top standards for automation are Infogov’s priority.
Proteus EnterpriseTM was developed so that companies and institutions can comprehensively tackle varied and complex governance, risk, compliance and fraud challenges together. It is the world’s most mature single, combined GRC web-based utility. We started the GRC automated convergence revolution and a member of our management team conceived and authored the world’s first fraud management standard, soon to be published as BSI PAS 8000.
Governance, Risk, and Compliance or ‘GRC’ is about organizations focusing on attaining compliance with laws, regulations and standards and sustaining that compliance thereafter whilst identifying, quantifying, preventing or avoiding the identified risks in the market place, business and supply chain. Holistically, enterprise and operational compliance requirements and risks will increasingly be managed together. Corporate governance, IT governance, financial risk, strategic risk, operational risk, IT risk, corporate compliance, business continuity, employment/labour compliance, privacy compliance are all aspects of GRC.
Proteus EnterpriseTM, InfoGov’s software solution, provides such essential capability as compliance, supplier audit, remediation, action planning, incident management, business impact analysis, business continuity, asset management, risk assessment, policy management, management information and reporting in the form of a graphical ‘dashboard’.
OHSAS 18001 automation can be achieved with Proteus EnterpriseTM by contacting Infogov at contact@infogov.co.uk - more information is available at www.infogov.co.uk.