We use this for the business risks that sit outside health and safety - the symbols and the inherent and residual columns make a finished assessment quick to read at a glance.

Effective form templates

This form template is supplied in fully editable MS Word format (and works in Google Docs), and can be easily customised and edited. The document uses pre-defined style formatting throughout, with all text in Calibri font for improved readability.
The following document labelling is included in the footer:

• Form number and title
• Information-classification
• Version
• Page number / total pages

alphaZ documents - beautifully designed, tried and tested form templates. No junk, jargon or unnecessary fields. Simple and usable form templates developed over 25 years through practical use in the real world. No AI generated nonsense here!

Further Reading

Further guidance on managing risk in your management system:

• Risk and Opportunity Management
• Risk Assessment - Likelihood and Consequence
• Treating Risks - Avoid, Reduce, Transfer, Accept

Logo Update Service *

Download this form template with your company name and logo already added!
Document Preparation available with all document toolkits.

How to Download

To get access to this file please click on Add to Cart to purchase for immediate download. If you have an alphaZ Subscription just click on Download Files to view all the files available to download. This form is also included in the alphaZ ISO toolkits, so if you need the wider set of documents for a full management system, the toolkit route gives you this file plus everything else you need in one download.

Need Help Implementing?

If you'd like hands-on help putting risk assessment into practice across your management system, our remote support services provide direct expert input from our team, by the day, by project, or on an ongoing basis.

General Risk Assessment Template

A professional, easy-to-use general risk assessment template in Microsoft Word and Google Docs format, designed to help businesses of all sizes identify, evaluate and control organisational risks.

This template provides a clear, structured format for recording business risks, assessing risk levels, documenting control measures, and confirming that residual risk has been reduced to an acceptable level. Unlike a health and safety risk assessment it focuses on business risks rather than physical hazards, so it suits operational, financial, compliance, information security, people and strategic risks alike.

The Files in this Set

This template comes as a set of three files, so you can pick the version that suits each assessment:

• F-Q36A General Risk Assessment - the standard risk assessment form, with the risk rating matrix, the assessment table and the confirmation section.
• F-Q36B General Risk Assessment - the same form with an added Persons Consulted field and the full set of symbols built in, for assessments where you need to record who was involved.
• F-Q36A Appendix i - the symbols reference sheet, containing the full set of risk, control and prohibition icons to copy into your assessment (also available as a free download).

What's Included in this Risk Assessment Template

The template uses a straightforward inherent risk / residual risk approach, supported by a built-in risk rating matrix that helps assessors consistently evaluate likelihood and consequence. Each entry captures the activity being assessed, the associated risks and potential consequences, the control measures currently in place, and the resulting residual rating once those controls are taken into account.

Header styles are colour-coded to match the risk ratings, so completed assessments are clear and easy to read at a glance. A confirmation section lets you record that residual risk is at an acceptable level, with space for any additional controls required, notes, further opportunities to reduce risk, and feedback from interested parties.

Visual Risk, Control and Prohibition Symbols

This is what sets the alphaZ general risk assessment apart from a plain table. Supplied alongside the form is a set of symbols that let you mark risks, controls and prohibited actions visually, so a completed assessment can be read at a glance. Orange hexagons represent risks, green circles represent controls, and red ringed symbols represent prohibited actions - you simply copy the symbols you need into the assessment as you complete it.

The symbols span a broad range of business-risk topics, from data loss, cyber and fraud through to supply chain, people and conduct and AI tool use, with matching controls and prohibitions. They are kept in an accompanying symbols appendix (F-Q36A Appendix i), which is available as a free download from our free featured files page.

Supports Your Management System

A general risk assessment supports the "actions to address risks and opportunities" thinking common to ISO management system standards such as ISO 9001 and ISO 27001, giving you a consistent, auditable record of how organisational risks are identified and controlled. It works as a standalone form or as part of a wider integrated management system.

Who Needs a General Risk Assessment?

This template is suitable for any organisation needing to assess risks that fall outside health and safety, including:

• Business risks
• Information security risks
• Governance and compliance risks
• People and culture risks
• Financial and commercial risks
• Environmental and sustainability risks
• Operational risks