ISO31000 - Risk Management
ISO31000 is the International Standard for risk management. It provides principles and practices for generic risk management that can be employed whatever the sector, type or location of the organisation.
The principles and practices in the Standard can be applied throughout a wide range of activities with an organisation. These activities include: strategies and decisions, operations, processes, functions, projects, products, services and assets.
The current iteration of the Standard was published in 2009 (ISO31000:2009) and forms the first part of the ISO31000 family of standards. Other parts of the ISO31000 risk management family include:
ISO/IEC 31010: This Standard gives guidance on the selection of techniques for generic risk management and their application.
In addition to these members of the ISO31000 standards family, a British Standard, BS 31100 has been published to aid with the implementation of ISO31000.