ISO 31000:2018 risk management
ISO 31000 is an international standard published in 2009 that provides principles and guidelines for effective risk management. It outlines a generic approach to risk management, which can be applied to different types of risks (financial, safety, project risks) and used by any type of organization.
ISO 31000: Using Technology to Achieve the 11 Principles
- Risk Management establishes and sustains value
- Risk management is an integral part of all organizational processes
- Risk management is part of the decision-making
- Risk management explicitly addresses uncertainty
- Risk management is systematic, structured, and timely
- Risk management is based on the best available information
- Risk management is tailored
- Risk management takes human and cultural factors into account
- Risk management is transparent and inclusive
- Risk management is dynamic, iterative, and responsive to change
- Risk management facilitates continual improvement of the organization
SORGEX
The Art & Science of Protecting People & Profits