1-888-310-4540 (main) / 1-888-707-6150 (support) info@spkaa.com
Select Page

Risk Management in the PTC Integrity Medical Device Solution

Published by SPK Blog Post
on August 10, 2015

An important part of creating any product intended for use in the medical field is that the manufacturer should have identified all of the risks involved in using the device, and have done their best to mitigate those risks before their product ever sees a patient. With this in mind, PTC bundled a Risk Management module as part of the Medical Device solution to be used with PTC Integrity Lifecycle Manager. In my last post, I discussed the Medical Device solution in general—today I am going to dive deeper into the Risk Management portion of this solution.

Risk Management, as defined in ISO 14971, among other things covers the following: Risk Analysis, Risk Evaluation, and Risk Control. Risk analysis consists of the following three steps:

  1. Determine the intended use and the characteristics related to the safety of the medical device.
  2. Identify the hazards of the medical device.  These are an abstract view of what the risks may be for the patient.
  3. Estimate the potential outcome for each of the identified hazards.

One you have analyzed the risks associated with your new product, you need to perform an evaluation of the risks. Risk Evaluation consist of the following three items:

  1. Identify the potential sources of the hazards you identified in the phase above.  Each of these potential sources would be considered a Risk.
  2. Determine the severity of each Risk as well as the probability of occurrence. This means you need to determine what could happen to the patient, as well as how likely it is for that outcome to occur.
  3. Based on that the severity and the probability of occurrence, you can then determine if the Risk is Acceptable, Unacceptable, or Needs Investigation.

Any risks that are determined to be either Unacceptable risks or risks that require further investigation, are subject to Risk Control. These risks can be controlled in the following manner:

  1. You first perform a risk control option analysis to if a given unacceptable or needs investigation risk can be controlled in any of the following three ways:
    1. Inherent safety by design.  This is where you change the design of your product to reduce or eliminate the risk.
    2. A protective measure. This is where add a safety feature to the product to reduce the risk.
    3. Provide information for the safety of the user. This is where you would provide information about the specific risk, and how the customer should safely use the product.
  2. Once risk controls have been implemented, a residual risk evaluation is needed, it may be that the new reduced risks will still require risk control, or if new risks have been introduced as a result of the risk control measures implemented.
  3. Document risks arising from risk controls and the overall completeness of risk control.

Of course, once you have completed those three parts Risk Analysis, Risk Evaluation and Risk Control, you need to provide an evaluation of the overall residual risk acceptability before you can move forward with the product. All of this would be bound together in a Risk Management Report that can be signed off by the appropriate stakeholders.

PTC, in order to implement this in the Medical Device solution for PTC Integrity Lifecycle Manager, chose to create three new document domains called Hazard, Risk, and Risk Control Measure to handle the Risk Analysis, Risk Evaluation, and Risk Control steps respectively.  The diagram below explains how each of the three new domains are traced to each other and how they can connect into the Requirements Management portion of the Medical Device solution.

SPK Risk Management

As you can see above, Hazards in the Hazard document are the result of the Risk Analysis step. These Hazards are traced via the “Caused By” trace relationship to Risk document.  Within the Risk document you would perform your evaluation of each risk.  Those risks that require mitigation are traced by the “Mitigated By” trace relationship to the Risk Control Measure document.  These control measures are integrated into Requirement Specification, Design Specification, and Test Protocol via the “Implemented By” and “Verified/Validated By” trace relationships.

The Risk Management portion of the Medical Device solution provides the functionality you need to manage risk as part of your product development lifecycle. All the major pieces are covered off, and with it you can hit the ground running when it comes to developing safe new products efficiently.

Next Steps:

Latest White Papers

Three Trends Are Transforming The Service Desk

Three Trends Are Transforming The Service Desk

Your IT service desk is about to change. Find out what's shaping the future. Three factors — enterprise service management (ESM), collaboration, and intelligent service management — are driving the transformation of the service desk. To better meet customers’ needs...

Related Resources

Is The IT Department Really “Dead?”

Is The IT Department Really “Dead?”

“It’s Time to Get Rid of the IT Department.”  That was the title of an opinion piece recently published in the Wall Street Journal.  Provocative?  Sure.  My answer to this is not “yes,” but many of the author’s points are valid.  The Same Old IT Department? No, the IT...

How To Add More Disk Space To Your Redhat Server Without Reformatting

How To Add More Disk Space To Your Redhat Server Without Reformatting

(Originally published in 2012, updated January 2022.) One of the common tasks for any system administrator is managing disk space on a server. A common question is how to increase disk space on a linux system. I won't go into a boring lecture on why managing disk...

January 2022 vCAD feature updates

January 2022 vCAD feature updates

Happy New Year vCAD Users! It was a busy 2021 in terms of vCAD development and feature enhancements. We've been receiving lots of feedback regarding the platform, and we're assembling a roadmap for 2022 based on our users' needs. Here's what to expect in 2022:...