1. Describe the problem
Used to further describe the problem, it’s impact, and/or risks.
2. Contain or temporarily fix the problem
Note that these actions are just damage control – they do not correct the cause of the problem.
These steps are the “remedial actions” or “Immediate Corrective Actions” taken to bring the noncompliance back into compliance.
3. Investigate the root cause
It is very important to distinguish between the observed symptoms of a problem and the fundamental (root) cause of the problem.
There are many different techniques to assist in determining the root cause. One of the simplest is to ask a series of ‘why?’ questions (ref: 5 WHY technique) to dig deep into the situation until the fundamental reason for the problem is found.
You will need to collect all relevant date, talk to all stakeholders, and investigate all possible contributing causes.
It is important that the investigation is not about finding someone to blame.
4. Propose a solution to prevent recurrence
The solution proposed should address the root cause. The aim is to stop the incident from occurring again. The solution will often involve a change to the process involved (and associated documentation).
5. Implement the solution
Record the details on what actions were taken, and when. Supporting evidence may include uploaded files and/or images.
6. Verify the solution was effective
After some time has elapsed with the solution in place, you need to assess whether it has been effective in preventing the original problem.
This response should provide a record of the objective evidence sighted that shows the solution was effective.
You will need to be an action officer for this issue or a manager user in order for the Issue workflow state to change from ‘In progress’ to ‘Closed’