ASHRM CPHRM Exam Questions

Subrogation is the insurer's right to seek recovery from a responsible third party after paying a loss. A waiver of subrogation clause means the insurer (or self-insured entity) gives up that recovery right, usually to support business relationships and reduce litigation between contracting parties. Risk financing objectives include understanding when waivers are acceptable (balanced against increased retained loss), ensuring the waiver aligns with insurance policy endorsements, and preventing unintended coverage gaps. Poorly managed waivers can shift costs back onto the organization and complicate recovery efforts. Contracts should be reviewed to ensure the waiver is mutual when appropriate and consistent with the organization's risk appetite and insurance program.

A practical FMEA requires enough process context to capture upstream causes and downstream consequences without becoming unmanageably large. A common operational rule-of-thumb is to examine roughly two steps upstream and two steps downstream from a target step to uncover handoffs, dependencies, and failure propagation. Risk management objectives focus on identifying failure modes that originate earlier (e.g., incorrect patient ID at registration leading to lab/specimen mismatch) and harms that emerge later (e.g., delayed result communication causing deterioration). The exact boundary depends on complexity and risk; high-hazard workflows (blood products, surgery, chemo) may require deeper mapping. The goal is usable granularity: map, identify failure modes, score (S--O--D), prioritize, implement controls, and reassess residual risk.

According to Health Care Risk Management standards outlined by ASHRM and the American Hospital Association Certification Center, a risk management policy and procedure manual should clearly define the structure, authority, and operational framework of the risk management program. An organizational chart is an essential component because it identifies reporting relationships, lines of authority, and accountability within the department and in relation to executive leadership and governing bodies.

A clearly documented organizational structure supports regulatory compliance, facilitates communication, and ensures that responsibilities for event reporting, claims management, patient safety initiatives, and regulatory oversight are properly assigned. It also demonstrates governance alignment and helps accrediting bodies evaluate program effectiveness.

Medical staff bylaws are separate governance documents that outline credentialing, peer review, and clinical governance standards. Actuarial reports are financial analyses used in risk financing decisions but are not part of a policy and procedure manual. Loss run reports summarize historical claims activity and support financial review but do not define program structure.

Health Care Operations objectives emphasize formal documentation of authority, processes, and accountability within the risk management framework. Therefore, inclusion of the department organizational chart is an essential element of a comprehensive risk management policy and procedure manual.

Boards are ultimately accountable for oversight of organizational risk, including patient safety, quality, compliance, and financial sustainability. While executives and risk leaders manage day-to-day operations, board governance sets expectations, ensures resources, monitors performance, and holds leadership accountable for corrective action. Risk management objectives at the governance level include approving risk appetite, reviewing top enterprise risks, ensuring systems exist for event reporting and learning, and verifying that mitigation plans are implemented and effective. In litigation and regulatory scrutiny, board oversight can be a critical factor: a board that demands transparency, tracks harm signals, and supports safety investment strengthens the organization's defensibility and reduces preventable harm.

SBAR is a standardized communication framework used to reduce preventable harm caused by incomplete, unclear, or delayed clinical communication---especially during handoffs, escalations, and urgent updates. The four elements are Situation (what is happening now), Background (clinical context and relevant history), Assessment (what you think the problem is based on data), and Recommendation (what you need/request as the next step). By forcing concise structure, SBAR improves shared situational awareness, supports early recognition of deterioration, and reduces ambiguity (''hinting and hoping''). From a risk management standpoint, SBAR strengthens frontline reliability, decreases communication-related sentinel events, and supports defensible care by demonstrating a consistent escalation process. It also aligns with patient safety objectives: clearer teamwork, faster response to clinical changes, and fewer omissions during transitions of care.