ISO 31000 - Risk Management
ISO 31000 is the International Standard for risk management. It provides principles and practices for generic risk management that can be employed whatever the sector, type or location of the organisation.
The principles and practices in the Standard can be applied throughout a wide range of activities with an organisation. These activities include: strategies and decisions, operations, processes, functions, projects, products, services and assets.
The current iteration of the Standard was published in 2009 (ISO31000:2009) and forms the first part of the ISO31000 family of standards. Other parts of the ISO31000 risk management family include:
- ISO Guide 73: This document provides a generic vocabulary for risk management.
- ISO/IEC 31010: This Standard gives guidance on the selection of techniques for generic risk management and their application.
All three International Standards can be purchased in our ISO31000 Risk Management Kit. In addition to these members of the ISO31000 standards family, a British Standard, BS 31100 has been published to aid with the implementation of ISO31000.