We're getting started on our Jama journey and are struggling with the guidance we see, for example, in the Jama Connect Medical Risk Management guidance, about configuring the Risk Analysis records.
Every example I see has a single Risk Item and a single Mitigation. Does nobody assign multiple mitigations to a single Risk Item? (We see this more often in Cybersecurity Risk Management) If so, how are you representing your Risk Control Measures in a way that allows traceability to Risk Requirements and Verification Test for a single control measure?
We've considered documenting Risk Control Measures in a separate record, and relating them via links to the Risks they Mitigate, but this makes it more difficult to present a single table view of Risks and their Mitigations. (If only we could create a view that merges the tables)How are you handling multiple RCMs on a single Risk Item, and the associated traceability?
Thanks for your consideration.
HEADQUARTERS|135 SW Taylor Suite 200, Portland, Oregon, 97204