Risk Management Series - Part 4: Transferring Risks from Fault Trees to FMEAs

Similar documents
Design Verification The Case for Verification, Not Validation

Controlling Risks Risk Assessment

Risk Assessment Tools for Identifying Hazards and Evaluating Risks Associated with IVD Assays

FMEA and FTA Analysis

Risk Assessment for Medical Devices. Linda Braddon, Ph.D. Bring your medical device to market faster 1

ThinkReliability. Six Common Errors when Solving Problems. Solve Problems. Prevent Problems.

Preparing for the GED Essay

FMEA Failure Risk Scoring Schemes

Workbook 4 Noticing unhelpful thinking. Dr. Chris Williams. Overcoming Depression A Five Areas Approach

REQUIREMENTS OF SAFETY MANAGEMENT SYSTEM

Calculation of Risk Factor Using the Excel spreadsheet Calculation of Risk Factor.xls

Quality Risk Management Tools Quality Risk Management Tool Selection When to Select FMEA: QRM Tool Selection Matrix

Designing an Effective Risk Matrix

Motivations. spm adolfo villafiorita - introduction to software project management

McKinney Vento Homeless Assistance Act

Doctor Visits. How Much to Participate

Thinking of getting pregnant?

Wait-Time Analysis Method: New Best Practice for Performance Management

CORP RISK MANAGEMENT POLICY & METHODOLOGY

Risk Management and the Impact of EN ISO 14971:2012 Annex Z

A bigger family, a better future.

ELECTRICAL SAFETY RISK ASSESSMENT

Skills Knowledge Energy Time People and decide how to use themto accomplish your objectives.

Safety Management Systems (SMS) guidance for organisations

Study Guide for the Pre-Professional Skills Test: Writing

Solving Linear Equations in One Variable. Worked Examples

STEAM STUDENT SET: INVENTION LOG

36 TOUGH INTERVIEW QUESTIONS And ways to structure the responses

RETTEW Associates, Inc. RISK MANAGEMENT PLAN. for. (client project/rfp number) (date of proposal submission)

Audit Readiness Lessons Learned

QUALITY RISK MANAGEMENT (QRM): A REVIEW

FDA 50-State Conference Call OIG Early Alert on FDA s Voluntary Food Recall Initiation Process. June 10, :30 pm EDT

Linear functions Increasing Linear Functions. Decreasing Linear Functions

Application of Quality Risk Management to Pharmaceutical Operations. Eldon Henson, Vice President, Quality Operations

Lesson 8 Setting Healthy Eating & Physical Activity Goals

Guidance for Industry: Quality Risk Management

WRITING EFFECTIVE REPORTS AND ESSAYS

Grade 2 Lesson 3: Refusing Bullying. Getting Started

The 5 P s in Problem Solving *prob lem: a source of perplexity, distress, or vexation. *solve: to find a solution, explanation, or answer for

Incident / Accident Report Form

Root Cause Analysis Dealing with problems not just symptoms 1

Epilepsy and Neuropsychology Dr. Sare Akdag, RPsych

Linear Programming Notes VII Sensitivity Analysis

GET THINKING. Lesson: Get Thinking Museums. Teacher s notes. Procedure

A Small guide to some Insurance products that you have heard of, but, not sure what they mean!

Counters and Decoders

TeachingEnglish Lesson plans

ASA Storage Room Security Town Hall Meeting, 16 February 2008

Traffic Safety Quiz Show. Grade level: 4/5

Development of a Risk-Based Decision Support Tool to Assist Fire Departments in Managing Unwanted Alarms SupDet 2013 Conference

Water Environment Association of Texas. General Concepts of Asset Management

Electronic Bill of Lading for Carriers

Here to help sort out problems with your legal service provider

Winning Initiatives and Best Practices for Physical Security

The Supports Coordinator s Role in Incident Management

MOST FREQUENTLY ASKED INTERVIEW QUESTIONS. 1. Why don t you tell me about yourself? 2. Why should I hire you?

Most Common Words Transfer Card: List 1

Helping you find and get on in work

The 2014 Ultimate Career Guide

TIPS TO HELP YOU PREPARE FOR A SUCCESSFUL INTERVIEW

Acknowledge, Ask, Adapt Negotiation Practice

ISO 14971: Overview of the standard

Why are thesis proposals necessary? The Purpose of having thesis proposals is threefold. First, it is to ensure that you are prepared to undertake the

Evaluating a CATW Writing Sample

Five Steps Towards Effective Fraud Management

IAAPA Institute for Attractions Managers. Facility Operations and Safety

Ten steps to better requirements management.

Lights! Camera! Action! How to put on a perfect filmscreening

SENTINEL EVENTS AND ROOT CAUSE ANALYSIS

Solving Linear Equations - General Equations

BBC LEARNING ENGLISH 6 Minute Grammar Conditionals review

Claim form ICS non-medical expenses

The Doctor-Patient Relationship

Introduction to Fractions

Active Listening. Learning Objectives. By the end of this module, the learner will have

Faculty of Science and Engineering Placements. Stand out from the competition! Be prepared for your Interviews

Preparing and Revising for your GCSE Exams

Moderator Guide for SFDebate

There are basically three options available for overcoming barriers to learning:

Make and register your lasting power of attorney a guide

A step-by-step guide to making a complaint about health and social care

An Introduction to Risk Management. For Event Holders in Western Australia. May 2014

STEP 5: Giving Feedback

Insurance Guide. for Arborists. Call us now for... Further information Advice Quotations

Medical Device Reporting (MDR) Requirements the New FDA Draft Guidance

Windows Server 2003 migration: Your three-phase action plan to reach the finish line

13 Simple Facebook Best Practices To Build Your Business Facebook Page

August 21, :00 3:00 pm. Presented by: Barbara Zortman, Center for Traffic Safety Fritzi Schreffler, PennDOT District 8 Safety Press Office

Guaranteed income for life

BBC Learning English Talk about English Business Language To Go Part 1 - Interviews

TeachingEnglish Lesson plans

McKinsey Problem Solving Test Top Tips

Installing Windows 7. On your Samsung R519

Inductive Reasoning Page 1 of 7. Inductive Reasoning

Motion Detection Recording

ABI Position paper. Supplement to ED/2009/12 Financial Instruments: Amortised Cost and Impairment

Pedestrian Struck By Forklift

Supplemental Activity

State of Medical Device Development State of Medical Device Development seapine.com 1

IBM SPSS Direct Marketing

Transcription:

Risk Management Series - Part 4: Transferring Risks from Fault Trees to FMEAs Forward: MEDIcept is presenting this ongoing series of articles focused on the conduct of risk management in the medical device industry to provide practitioners with insight into how to apply risk management principles and tools to improve the performance and safety of their devices; and, as an added benefit, maintain compliance with risk management standards. Our team at MEDIcept, plans to use these articles to capture best practices, explore the more challenging aspects of maintaining risk management systems over the long term, and elicit discussions among practitioners. To this last point, if you have questions or comments on the issues discussed, or if you have recommendations for topics to consider in the future, please let us know: 508-231-8842. In our last article (Part 3: Using Fault Trees to Focus and Simplify Risk Analysis), we described the basic approach for conducting a Fault Tree Analysis (FTA) and the benefits of using FTA to conduct a comprehensive analysis of the causes of device failures and use errors. We also identified a few weaknesses of the FTA approach i.e., its structure can be un-wieldy, and there is no efficient way to track the implementation of needed mitigations or document that you ve verified that the mitigations are effective. These weaknesses are two of the strengths of the FMEA risk analysis format. Therefore, this article describes an approach for transferring risk information from a completed FTA to an FMEA so that you will be able to take advantage of the strengths of both. I ve finished the FTA... Now What? As discussed in Part 3: Using Fault Trees to Focus and Simplify Risk Analysis, FTAs can be valuable tools as you work to improve the performance and safety of your medical device. They help to ensure that your risk analysis is comprehensive and can help you set priorities for where and how to implement needed mitigations. Most companies, however, will want to take what they learned from the FTA and move it into a FMEA format. There are a few reasons for this: The FTA structure is not designed to support the easy evaluation of risk acceptability, FTA does not allow for easy tracking of the implementation and verification of mitigations; and Many companies require that final risk analyses be in the FMEA format. However, you might ask, Won t you lose some of the important information from the FTA when you move its output into the FMEA format? The answer... is Yes, but not entirely. When you move information from an FTA, which illustrates the relationships among causes, to the more linear FMEA format, the details of the causal relationships will not show up in the FMEA - but they won t be lost. The FTA will be referenced in the FMEA (or at least included as an attachment), so you can always refer back Risk Management Page 1 of 6 July 2011

to it to understand the thinking that went into the analysis. All that you need to transfer to the FMEA is overall risks and the underlying causes that are associated with planned mitigations. In the end, you ll be in a much better position than if you had gone straight to the FMEA. In most FMEA sessions, the details of the causal relationships may be discussed by the analysis team, but those details rarely make it into the FMEA. As a result, these important details will be maintained only in the memories of individual team members. With the FTA (or FTAs) included as attachments to the FMEA, your team will have a much better record of the original team s thinking when you go back and update the risk assessment in response to a design change or as part of a regular review. When transferring FTA information into a FMEA, the two main steps are: 1. Complete the evaluation of risk acceptability (to confirm that a mitigation is needed) 2. Record risk information in the FMEA relevant to the cause(s) and mitigations The balance of this article addresses these two points. Risk Evaluation Are mitigations needed? To illustrate how to transfer FTA information into a FMEA, we ll go back to the Late for Work fault tree created in the previous article (see Figure 1). Figure 1: Late for Work FTA Risk Management Page 2 of 6 July 2011

In this example, we identified three main causes for showing up late to work (left home late, traffic, and car trouble). We also identified the sub-causes and their relationships, and estimated the probability of occurrence for each cause. This is all good information, but there s no context. Is showing up late for work 51% of the time a bad thing? Probably, but it depends a bit on the type of work you do and just how late you are. If you work independently and can make up your time by working through lunch or staying late, it s probably not a big problem. If you re a surgeon and a critical operation is scheduled for 9:00 am, it s best to show up on time. For a medical device company, its risk acceptability criteria (approved by management) establishes the context for determining which risks are acceptable and which require mitigation. Figure 2 provides a simple table that we ll use for evaluating the risks in our late to work example. Figure 2: Risk Acceptability Matrix Severity Probability 1 Negligible/ Transient Effect 2 Delay in Treatment 3 Minor Injury 4 Serious Injury or Death 4 (> 50%) ALARP UNACCEPTABLE UNACCEPTABLE UNACCEPTABLE 3 (26 50%) BA ALARP UNACCEPTABLE UNACCEPTABLE 2 (10 25%) BA ALARP ALARP UNACCEPTABLE 1 (< 10%) BA BA BA ALARP U: Unacceptable ALARP: As Low as Reasonably Practicable BA: Broadly Acceptable For the purpose of our example, let s say that our surgeon s late arrival will cause a Delay in Treatment, which has a severity score of 2. When transferred to the FMEA format (see Figure 3), we are able to see that the overall risk of Late for Work (i.e., a 51% chance of a Delay in Treatment ) is not acceptable. Figure 3: Sample FMEA, Un-Mitigated Risk Failure Mode 1. Late for Work Effect of Failure Severity Cause P(Occur.) Un-Mitigated Risk Delay in Treatment 2 Overall 4 U (Unacceptable) - - - Left home late 3 ALARP - - - Traffic 3 ALARP - - - Car Trouble 1 BA Risk Management Page 3 of 6 July 2011

This example also illustrates one of the differences that you will see when working with FTA data in an FMEA format. The FTA acknowledges that the probability of occurrence for the top-level fault (the Overall cause) will be different from its lower-level causes. Typically in a FMEA, the information about the Overall or top-level fault is not captured. In this example, we see that while the lower-level causes are considered ALARP or BA, the Overall risk is Unacceptable. It is important to capture this Overall assessment because this is, ultimately, the risk you need to mitigate. There are a lot of actions we could take to mitigate the risk of getting to work late and causing a delay in treatment. Figure 4 identifies a variety of mitigations that could be implemented. Are they all needed? That s unlikely. Some would be redundant and others would involve expensive fixes to problems that rarely occur. For example, the backup generator for the alarm clock would be an expensive fix to a relatively low-probability event. And since Car Trouble is estimated to cause our doctor to be late only 0.32 percent of the time, any mitigations in that area would have a negligible impact on the overall probability of occurrence. Figure 4: Late for Work FTA, With Mitigations Risk Management Page 4 of 6 July 2011

Looking at our options, establishing a procedure where the doctor leaves home earlier each day, keeps the car keys on a hook near the door, and locks out the TV so that it can t be turned on in the morning seem to be the most practical risk reduction actions. We estimate that leaving home earlier will make being late due to slow traffic four times less likely to occur, and keeping the keys on the hook will reduce the probability of that cause occurring by about half. Locking out the TV will totally eliminate that cause from delaying our doctor. As shown in Figure 5, these three mitigations reduce our overall probability of being late from about 51% to about 24%, which according to our risk acceptability table is ALARP. Figure 5: Late for Work FTA, With Mitigations and Revised Probabilities Is getting down to the ALARP zone good enough? That s debatable. There are a few other causes that have a significant impact on the overall likelihood of occurrence. If there are some practical methods to ensure that the kids don t miss the bus (or someone else can get them to school if they do), that might be worth considering. It s the responsibility of the risk analysis team, and ultimately their management, to determine what level of risk is acceptable and, in this case, whether the planned mitigations do in fact reduce the risk as low as reasonable practicable. When transferring information from the FTA to an FMEA format, only the primary causes (e.g., Left Home Late, Traffic, and Car Trouble) need to be listed in separate rows. The planned mitigations (if any) Risk Management Page 5 of 6 July 2011

associated with those causes can then be listed so that the risk reduction benefit of the mitigations can be clearly captured see Figure 6. Ultimately, references will need to be added to a Verification column to provide evidence that the mitigation did, in fact, achieve the desired objective. Figure 6: Sample FMEA, Un-Mitigated and Mitigated Risks Failure Mode 1. Late for Work Effect of Failure Delay in Treatment (2) S Cause 2 Overall P(O) U-M Risk Recommended Actions M P(O) M-Risk 4 U See below 2 ALARP - - - Left home late 3 - Lock out TV SOP: Keys on hook - - - Traffic 3 - SOP: Leave earlier - - - Car Trouble 1 - No action required S = Severity P(O) = Probability of Occurrence M = Mitigated UM = Unmitigated 2 ALARP 2 ALARP 1 BA Next Steps So far in our series, we have emphasized the need to recognize that risk management is not simply a set of forms to satisfy regulators, but rather as a critical element of your efforts to ensure the safety of your medical devices throughout their lifecycles. We then introduced an approach to help prioritize your risk analysis efforts and recommended the use of Fault Tree Analysis (FTA) to gain a more complete understanding of safety risks. Now that we ve identified how the FTA results can be fed back into your FMEA format, in the next article we ll begin to dig into the challenges of using the FMEA process to guide decisions that will improve device safety. www.medicept.com Risk Management Page 6 of 6 July 2011

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information