Risk Register Explained: 4 Fields That Keep It Live
A short explainer on the four fields that keep a risk register useful in live operations instead of turning it into an archive.

Key takeaways
- 01A risk register is only useful when it changes with the work, not when it acts like an archive.
- 02The four fields that matter most are the risk statement, current control status, named owner, and review trigger.
- 03An action tracker and a checklist help, but neither one replaces the live risk picture that the register should hold.
- 04A register needs a trigger for review, or it will fall behind the real exposure.
A risk register is a living record of the risks that matter, the controls that should hold them back, the people who own those controls, and the moments when the register must be reviewed again. It matters because a register that does not change with the work only records old fear, not current risk.
A clean spreadsheet can still be a weak control tool. Andreza Araujo has seen that pattern across more than 250 cultural transformation projects, because teams often treat the register as an archive instead of a management instrument. In A Ilusao da Conformidade, the point is clear enough. Paper can look disciplined while the field has already moved on.
The thesis here is simple. A risk register earns its place only when it answers four live questions: what is the risk, what is currently controlling it, who owns the control, and what event should force the next review. Without those answers, the register becomes decorative.
Definition
ISO 31000 treats risk management as a structured way to create and protect value, which means the register is not a filing cabinet. It is the place where the organization keeps its current view of exposure, control health, and review triggers. James Reason's work on latent conditions helps here because the visible problem is often only the last sign of a longer chain.
That is why a useful register must stay close to the work. If the hazard changes, the control weakens, the owner moves, or the scope shifts, the register needs a new entry or a changed one. A static register is only a history note with a better name.
4 fields that keep the register live
The exact template can vary by company, but four fields matter in almost every serious operation. They keep the register tied to the work instead of to the audit calendar.
- Risk statement
- The risk statement describes what can happen, to what, and under which exposure condition. It should be short enough to read quickly and specific enough to change a decision.
- Current control status
- This field shows whether the control is in place, partial, overdue, bypassed, or not verified. It is the difference between a promise and evidence.
- Named owner
- The owner is the person or role that can act on the control now, not the person who filled the register months ago.
- Review trigger
- The trigger is the event that forces a fresh look, such as scope change, incident, control failure, new contractor, or a longer pause in the work.
1. Risk statement
The risk statement should name the exposure in plain language, because vague wording hides weak judgment. "Falls from height during roof maintenance" is useful. "Working at height" is not, because it does not tell the team where the failure could happen or what kind of condition makes it worse.
A good test is whether the statement still makes sense after a change in shift, contractor, or weather. If the wording stays too broad, the register cannot guide a real decision.
2. Current control status
This is the field most teams underbuild. They list a control, but they do not say whether it is active, verified, overdue, or bypassed. That gap matters because the register then claims a barrier exists when the field evidence is stale.
In practical terms, the control status should let a supervisor answer one question fast: do we have the barrier we think we have, right now? If the answer needs a meeting, the register is too slow for operational use.
3. Named owner
Ownership keeps the register from becoming everyone else's job. A control without a named owner drifts, especially when the task crosses departments or shifts. The owner does not have to do every task, but the owner must know who will.
That distinction matters in contractor work, maintenance, and temporary operations, where people often assume the record itself owns the risk. It does not. People do.
4. Review trigger
A register without a trigger is already behind. The trigger defines when the risk view expires, which keeps the record tied to reality instead of to a monthly ritual. Scope change, new materials, near miss, control failure, or a long pause are all valid triggers if they actually change exposure.
This is where the register connects to the article on How to Run a Scope-Change Risk Review in 20 Minutes and the guide on Risk Review Cadence: How to Build It in 30 Days. One sets the trigger logic, the other sets the rhythm.
How to differentiate in practice
| Tool | What it does | What it misses |
|---|---|---|
| Risk register | Shows the live risk picture, the control status, the owner, and the next review trigger | Can go stale if nobody updates it when work changes |
| Action tracker | Tracks tasks, deadlines, and closeout progress | Does not always show whether the risk itself is still live |
| Checklist | Confirms a set of expected items before work starts | Usually does not keep a changing risk picture over time |
The register becomes stronger when it can talk to the other two tools without pretending to replace them. A checklist prepares the job. An action tracker closes tasks. The register shows whether the risk view still matches the job.
When to use a risk register vs a checklist
Use a checklist when the question is whether a known set of preconditions exists right now. Use a risk register when the question is what changes the risk picture, who owns the control, and what should trigger a fresh review. They overlap, but they are not the same tool.
That matters in operations because teams often call every record a register and then expect one form to solve every problem. It does not. A register is for risk memory and control memory, while a checklist is for immediate readiness.
If the team still needs a clean way to separate current exposure from residual exposure, Residual Risk Explained: 5 States EHS Managers Should Separate is the next step. It shows why "controlled" and "safe" are not the same word.
What managers should remember
A risk register should make the next decision easier, not just make the audit file thicker. If it does not show the risk, the control status, the owner, and the trigger, it is not yet a management tool.
Andreza Araujo's view in A Ilusao da Conformidade applies cleanly here. The organization only learns what it is really controlling when the record changes at the same speed as the work. For deeper support, use Andreza Araujo's books and guides or request a diagnostic at Andreza Araujo.
Frequently asked questions
What is a risk register in safety?
What are the most important fields in a risk register?
How is a risk register different from a checklist?
About the author
Andreza Araújo
Safety Culture Expert | Senior EHS Executive
Andreza Araújo is a safety culture expert and senior EHS executive with more than 25 years of experience in environment, health and safety. She is a Civil Engineer and Occupational Safety Engineer from Unicamp, holds a Master's degree in Environmental Diplomacy from the University of Geneva, and completed sustainability studies at IMD Switzerland. Andreza has served in Global Head of EHS roles in Fortune 500 environments, leading cultural transformation programs across multinational operations. She has represented Brazil as a speaker at the United Nations in Paris and has spoken at the International Labour Organization in Turin. She is the author of more than 16 books on safety culture in Portuguese, Spanish, English and German. Her work has earned more than 10 EHS awards, including two recognitions from Indra Nooyi, former PepsiCo CEO.
- Civil & Safety Engineer (Unicamp)
- M.A. Environmental Diplomacy (University of Geneva)
- Sustainability Cert (IMD Switzerland)
- People Management & Coaching (Ohio University)
- UN Paris speaker representative for Brazil
- ILO Turin speaker
- LinkedIn Top Voice
- Indra Nooyi PepsiCo CEO recognition (2x)
Documentaries
Watch Andreza's documentaries
Three productions on safety culture, organizational failure and the human lessons behind major disasters.
Podcasts
Listen to Andreza's podcasts
She hosts three shows on safety leadership, EHS and organizational culture, in English and Portuguese.