ISO 31000 — Risk Management Guidelines
ISO 31000 is an international standard that focuses on designing, implementing, and reviewing risk management processes and practices.
- Helps to:
- create and protect value
- integrate organizational procedures
- be part of the decision-making process
- explicitly address uncertainty
- be a systematic, structured, timely risk management program
- ensure risk management program is based on the best available information
- be tailored to the organization’s business requirements and actual risks
- take human and cultural factors into account
- ensure the risk management program is transparent and inclusive
- create a risk management program that is dynamic, iterative, and responsive to change
- facilitate continual improvement and enhancement