In this article
Every SWMS and risk assessment involves two numbers for each hazard: the inherent risk (before controls) and the residual risk (after controls). The gap between them represents the effectiveness of your control measures. Getting residual risk right is not just an academic exercise -- it determines whether work can proceed, whether additional controls are needed, and whether your documentation will withstand regulatory scrutiny.
What Is Residual Risk?
Residual risk is the level of risk that remains after control measures have been applied. No control measure eliminates risk entirely (with the exception of true elimination, where the hazard itself is removed). Every other control -- substitution, isolation, engineering, administrative, PPE -- reduces risk but leaves some level of residual exposure.
Understanding residual risk matters because it tells you:
- Whether your controls are effective enough for the work to proceed safely
- Whether additional controls or monitoring are needed
- What the actual risk to workers is during the task
- Whether the risk is being managed to a level that is "so far as is reasonably practicable" (the HSWA 2015 standard)
Inherent Risk vs Residual Risk
These two concepts are often confused. Here is the distinction:
Inherent risk (also called initial risk or uncontrolled risk) is the risk level before any control measures are applied. It represents the worst-case scenario if the hazard is present and no controls are in place. For example: working on a flat roof at 6 metres height, with no edge protection, no harnesses, no safety nets. The inherent risk of a fall is high because both the likelihood (open edge, no protection) and the consequence (6-metre fall, potential fatality) are significant.
Residual risk is the risk level after control measures have been implemented. Using the same example: after installing temporary guardrails around the perimeter, restricting access to trained workers, and requiring harnesses as a backup, the likelihood of a fall is significantly reduced. The consequence of a fall (if it somehow occurred despite the guardrails) is also reduced if a harness arrests the fall. The residual risk score is therefore lower than the inherent risk score.
The 5x5 Risk Matrix
Most SWMS in New Zealand and Australia use a 5x5 risk matrix to calculate risk scores. The matrix multiplies two factors:
Likelihood (how likely is the hazard event to occur?):
| Score | Likelihood | Description |
|---|---|---|
| 1 | Rare | Could happen but only in exceptional circumstances |
| 2 | Unlikely | Could happen but not expected |
| 3 | Possible | Might happen at some time |
| 4 | Likely | Will probably happen in most circumstances |
| 5 | Almost Certain | Expected to happen in most circumstances |
Consequence (how severe is the outcome if it does occur?):
| Score | Consequence | Description |
|---|---|---|
| 1 | Insignificant | No injury or first aid only |
| 2 | Minor | Minor injury, first aid treatment |
| 3 | Moderate | Medical treatment required, lost time |
| 4 | Major | Serious injury, hospitalisation, permanent disability |
| 5 | Catastrophic | Death or multiple serious injuries |
Risk Score = Likelihood x Consequence, giving a score from 1 to 25:
| Score Range | Rating | Action Required |
|---|---|---|
| 1 -- 4 | Low | Manage by routine procedures |
| 5 -- 9 | Medium | Specific risk management measures required |
| 10 -- 16 | High | Senior management attention needed, detailed action plan |
| 20 -- 25 | Extreme | Immediate action required, work must not proceed |
For a comprehensive guide to using this matrix in your risk assessments, see our risk matrix guide.
How Controls Reduce Risk Scores
Control measures reduce risk by affecting either the likelihood, the consequence, or both. Understanding which factor each control affects helps you make realistic assessments:
Controls that primarily reduce likelihood:
- Guardrails and edge protection (reduce likelihood of a fall occurring)
- Lockout/tagout procedures (reduce likelihood of unexpected energisation)
- Permits to work (reduce likelihood of uncontrolled work occurring)
- Training and competency verification (reduce likelihood of human error)
- Machine guarding (reduce likelihood of contact with moving parts)
Controls that primarily reduce consequence:
- Fall arrest harnesses (reduce consequence of a fall from fatal to non-fatal)
- Safety nets (reduce fall consequence)
- Emergency response plans (reduce consequence through rapid treatment)
- PPE generally (reduce severity of injury if exposure occurs)
- Speed limits on site (reduce consequence of vehicle incidents)
Controls that reduce both:
- Elimination (removes hazard entirely -- both likelihood and consequence go to zero)
- Substitution with a less hazardous alternative (reduces both severity and exposure frequency)
- Engineering controls like ventilation (reduce both exposure frequency and concentration)
Worked Example: Working at Height
Let us work through a complete example. The task is installing solar panels on a commercial building roof, two storeys (approximately 7 metres), flat roof with a low parapet wall (300mm).
Hazard: Fall from roof edge
Inherent risk assessment (no controls):
- Likelihood: 4 (Likely) -- workers must approach the edge to install perimeter panels, parapet is only 300mm and provides minimal protection
- Consequence: 5 (Catastrophic) -- a 7-metre fall onto concrete is very likely to be fatal
- Inherent risk score: 4 x 5 = 20 (Extreme)
Control measures applied:
- Engineering: Install temporary guardrail system (scaffold-style) along all open edges and any edge where the parapet is below 900mm
- Administrative: All workers hold current Working at Heights certification; pre-start briefing covers edge protection and exclusion zones
- PPE: Full body harness with twin-tail lanyard attached to roof anchor points when working within 2 metres of any edge, as backup to guardrails
Residual risk assessment (with controls):
- Likelihood: 1 (Rare) -- guardrails physically prevent falls; harness provides redundancy; trained workers understand risks
- Consequence: 3 (Moderate) -- if a fall somehow occurred (e.g., guardrail failure), the harness would arrest the fall, but suspension trauma or impact with the building face could cause moderate injury
- Residual risk score: 1 x 3 = 3 (Low)
The controls reduced the risk from 20 (Extreme -- work cannot proceed) to 3 (Low -- manageable by routine procedures). This is a credible reduction because we applied engineering controls (guardrails) that physically prevent the event, supported by administrative and PPE controls.
Acceptable vs Unacceptable Residual Risk
After applying all reasonably practicable controls, the residual risk rating determines how the work should be managed:
- Low (1-4): Acceptable. Work can proceed with standard monitoring and supervision.
- Medium (5-9): Acceptable with specific management. Additional monitoring, supervision, or review checkpoints may be needed. Document the rationale for accepting this level.
- High (10-16): Requires senior management attention. Work may proceed only with a detailed action plan, enhanced monitoring, and management sign-off. Consider whether additional controls are reasonably practicable.
- Extreme (20-25): Unacceptable. Work must not proceed. The task must be redesigned, additional controls must be implemented, or the work must be eliminated from the scope.
The critical principle: extreme residual risk is never acceptable. If your controls cannot bring the risk below Extreme, the work cannot go ahead in its current form. This is not a guideline -- it is a fundamental requirement of risk management under HSWA 2015 and WHS Acts.
When Residual Risk Is Still Extreme
If your risk assessment shows an extreme residual risk even after applying controls, you must take one of the following actions:
- Redesign the task -- change the method of work to avoid the hazard entirely (e.g., prefabricate components at ground level instead of assembling at height)
- Apply additional controls -- consider whether there are higher-order controls you have not yet explored (e.g., can the work be done remotely? can a crane lift pre-assembled units into place?)
- Increase the quality of existing controls -- a single guardrail might be upgraded to a guardrail plus safety netting plus restricted access zone
- Reduce the scope of exposure -- limit the number of workers, the duration of exposure, or the frequency of the task
- Stop the work -- if no combination of controls can bring the risk to an acceptable level, the work must not proceed
Document whatever decision you make. If you choose to redesign the task, update the SWMS to reflect the new method. If you add controls, reassess the residual risk with the enhanced controls in place. This documented chain of reasoning is exactly what WorkSafe wants to see.
Understanding how controls interact with the hierarchy of controls is essential for making these decisions effectively.
Automatic Risk Scoring in Every SWMS
SafeMethod AI calculates inherent and residual risk scores for every hazard, applying the 5x5 risk matrix with proper control hierarchies. No manual calculations needed.
Try It Free