Hazard: A potential source of harm or adverse health effects.

Risk: The likelihood of harm occurring as a result of the hazard.

Danger: An immediate threat that requires urgent action.

Analysis of Options:

A. Conference room emergency sign directs people to an exit that is no longer available for use (Hazard): Correctly identified as a hazard since it poses a potential risk during emergencies.

B. The carpet on the main staircase is peeling off (Risk): This is a hazard, not a risk, as it represents a source of potential harm.

C. The emergency light in the gift shop did not work when checked (Risk): This is a hazard because it is a condition that could lead to a risk during emergencies.

D. The fire extinguishers in the Natural World area have not been serviced in the last five years (Risk): Correctly identified as a risk because the likelihood of fire-related harm increases without proper servicing.

E. The head of the dinosaur suspended over the main hall has become detached from the rest of the skeleton (Risk): This is a hazard, not a risk, as it represents a potential source of harm.

F. The non-slip mats have been removed from the restaurant (Risk): This is a hazard, not a risk.

G. There is a high possibility of unfit food being sold due to the failure of the oven temperature indicator in the visitors ' restaurant (Hazard): This is a risk because it specifies the likelihood of harm occurring (selling unfit food).

H. There is a water leak next to the electric heater in the admissions area (Danger): Correctly identified as a danger because it represents an immediate and critical threat.

ISO References:

Clause 6.1.2: Hazard identification and assessment of risks and opportunities.

This statement is True .

ISO 45001:2018 requires the organization to determine, access, and comply with its legal requirements and other requirements related to occupational health and safety. It also requires the organization to evaluate compliance with those legal and other requirements as part of performance evaluation. This is clearly addressed in Clause 6.1.3 Determination of legal requirements and other requirements and Clause 9.1.2 Evaluation of compliance . Therefore, when an audit team conducts a certification renewal assessment, it is part of the audit responsibility to verify that the organization has established, implemented, and maintained processes to meet and evaluate compliance with applicable legal OH and S requirements.

In a renewal audit, the audit team is not limited to checking documents only. It must assess whether the management system continues to be effective and whether the organization fulfills the requirements of ISO 45001, including compliance obligations relevant to worker health and safety. Since legal compliance is a core expected outcome of the OH and S management system, checking this area is an essential audit activity before certification is renewed.

So the correct answer is:

A. True

ISO 45001 Clause 7.2 Competence requires the organization to:

determine the necessary competence of workers that affect or can affect OH and S performance;

ensure workers are competent , including the ability to identify hazards ;

where applicable, take actions to acquire and maintain competence and evaluate the effectiveness of those actions; and

retain appropriate documented information as evidence of competence .

Based on that wording, C is clearly correct because the clause explicitly says workers must be competent, including having the ability to identify hazards . If there is no evidence of that ability, this directly supports a nonconformity against Clause 7.2.

F is also correct because Clause 7.2 requires the organization to determine the competence needed for roles and ensure workers meet it. If there is no evidence that workers’ knowledge and skills are assessed against role requirements , the organization cannot demonstrate that competence has been determined and verified.

H is the third correct answer because Clause 7.2 requires the organization to retain documented information as evidence of competence . Attendance on OH and S training is not, by itself, full proof of competence, but the absence of training records can still support a finding that the organization lacks documented evidence related to competence development and maintenance.

Why the others are not Clause 7.2 findings:

A belongs to Clause 7.3 Awareness , which requires awareness of the consequences of not conforming.

B also relates more to Clause 7.3 Awareness , which includes awareness of the ability to remove themselves from imminent and serious danger.

D is also Clause 7.3 Awareness , because workers must understand their contribution to the effectiveness of the OHSMS.

E relates to consultation and participation under Clause 5.4, not competence.

G refers to quality policy and objectives, which are not ISO 45001 OH and S competence requirements.

Analysis of Options:

A. The organisation must attempt to identify and address every risk it faces: Incorrect. ISO 45001 focuses on OH and S risks and not every risk faced by the organization.

B. The effect of uncertainty (i.e. risk) can result in positive outcomes as well as negative ones: Correct. Clause 3.20 defines risk as the " effect of uncertainty, " which may result in positive or negative outcomes.

C. Although organisations are required to carry out risk management, the method by which they do so is up to them: Correct. ISO 45001 does not prescribe specific risk management methods, leaving the organization to choose the approach that best suits its context (Clause 6.1.2).

D. Risk assessment is an activity that must be carried out by top management: Incorrect. Risk assessment can involve workers and other personnel; it is not limited to top management.

E. The organisation is required to assess risks arising from OH and S hazards: Correct. Clause 6.1.2.2 requires organizations to assess OH and S risks associated with hazards.

F. Risk is often expressed as a combination of likelihood and impact: Correct. This is a common way to express risk, aligned with Clause 6.1.2.

ISO References:

Clause 3.20: Definition of risk.

Clause 6.1.2: Hazard identification and risk assessment

The correct answers are D and F .

In audit interviewing practice, open questions are mainly used to get explanation, description, and insight, while closed questions are used to confirm specific facts or verify that the auditor’s understanding is correct. Guidance on audit interviews says auditors should rely mainly on open questions for expanded responses and use closed questions to confirm answers . ( The Auditor )

That is why D. To confirm conformity or a non-conformity finding is correct. Once the auditor has gathered evidence, a closed question can be used to verify a precise point, confirm whether a requirement has or has not been met, or make sure the factual basis of a conformity/nonconformity is accurate before recording the finding. ISO 19011 also states that nonconformities and supporting audit evidence should be reviewed with the auditee so the evidence is accurate and understood. ( Synersia Foundation )

F. To check that your understanding of a situation is correct is also correct. Closed questions are especially useful at the end of a discussion to confirm the auditor’s interpretation of what was said or observed. This is a standard interview technique in auditing. ( Designing Buildings )

Why the other options are not correct:

A. To obtain an overview of how a task is performed is better done with open questions , because the auditor needs explanation and sequence. ( The Auditor )

B. To establish communication with the auditee with a view to building trust is usually done through general conversation and open dialogue, not mainly through closed questioning. ( The Auditor )

C. To gain greater insight into the operation of a process also requires open questions . ( The Auditor )

E. To follow your audit trail generally needs probing and exploratory questions, which are typically open rather than closed. ( The Auditor )

The correct answers are A and F .

A. The auditee should review the audit plan for agreement is true because, in certification auditing practice, the audit plan is communicated to the client/auditee in advance and should be agreed regarding the practical arrangements for the audit. ISO guidance on certification auditing includes preparation of the audit plan and communication of the audit plan and audit team as part of planning audits. ( ISO )

F. The audit team leader must define the responsibilities of team members and observers is also true. ISO/IEC 17021-1 states that the audit team leader , in consultation with the audit team, shall assign to each team member responsibility for auditing specific processes, functions, sites, areas or activities . This is a direct audit-planning responsibility of the team leader. Observers are also part of the audit arrangements that must be defined and managed during planning. ( IAS )

Why the other statements are false:

B. The audit team leader should plan to interview each employee is false. Certification audits are conducted using sampling , not by interviewing every employee. Audit evidence is gathered on a representative basis. ( ISO )

C. The organisation must provide hospitality for the audit team is false. Hospitality is not a certification requirement and can raise impartiality concerns.

D. The audit team leader should audit the Occupational Health and Safety Manager is not a mandatory requirement. The audit plan must cover relevant processes, functions, activities and responsibilities, but it does not require the team leader personally to audit one named individual. ( IAS )

E. The organisation should cancel all staff leave during the audit is false. The auditee should ensure availability of relevant personnel as needed, but cancelling all leave is not an audit requirement.

Therefore, the two true statements are:

A, F