What is ISO 31000: Enterprise Risk Management?
International Organization for Standardization (ISO) developed ISO 31000 as its risk management guideline for its management system standards. More than 60 countries have adopted ISO 31000 as their national risk management standard. ISO 31000: Enterprise Risk Management is the first book to address: ISO Enterprise Risk Management; risk based, problem solving; risk based, decision making; Risk Based Thinking; and governance, risk, and compliance requirements. Everyone who is certified to ISO 9001:2015 needs to read this book to understand and implement Risk Based Thinking in ISO 9001:2015 and newer ISO standards.
What This Book Can Do for You?
Describes how you can architect, design, deploy and assure risk controls that are appropriate to your organization's context and risk appetite?
Supports executive management with operational governance, risk management, and compliance (GRC).
Identifies emerging and current risks so plans can be developed to control, manage, and mitigate risks.
Identifies emerging and current opportunities so appropriate investments can be pursued.
Increases the probability of success in achieving the organization's strategic plan and mission critical objectives
Explains key risk concepts such as RBT, risk management assessment, risk management, VUCA, risk context, Risk Maturity, etc.
Explains and gives examples of ISO 31000 risk management principles and risk management framework.
Explains in detail ISO 31000, ISO 31010, and other key risk standards.
Provides an example of an ISO 31000 risk management process that you can design and deploy in your organization based on context and maturity.
Determines clear accountability, ownership, and responsibility of risk throughout the organization.
Supports leaning, simplification, and innovation strategies to ensure optimized use of resources.
Greg Hutchins is the founder of 800Compete.com, WorkingIt.com, CERMAcademy.com, QualityPlusEngineering.com, and other startups. Greg Hutchins is the risk evangelist who coined the expression Future of Quality: Risk(R) Greg Hutchins PE CERM is also the principal professional engineer Quality + Engineering - international supply and quality management firm. He has written best selling books on global ISO standards and risk management. Greg is the author of ISO 9000 (best selling - translated into 8 languages published through John Wiley), Value Added Auditing, ISO 31000: Enterprise Risk Management, ISO Risk Based Thinking, Risk Based Thinking, Supply Management Strategies (APICS, ISM, ASQ endorsed and used in certifications), and Standard Manual of Quality Auditing and more than a dozen article international books. Q+E is the designer and developer of Certified Enterprise Risk Manager(R) (CERM), CERM Cyber(TM)certificate, and best selling ISO and ERM books. Q+E has deep domain expertise in ISO 31000, ISO 27001, and NIST 800's. Q+E designed CERM based on its security IP including Critical Infrastructure Protection: Forensics, Assurance, Analytics(R); Value Added Auditing(TM); Certified Enterprise Risk Manager(R); Future of Quality: Risk(R); CERM: Risk Based, Problem Solving - Risk Based, Decision Making(R); etc. Q+E has been certified by the Department of Homeland Security for Critical Infrastructure Protection: Forensics, Assurance, Analytics(R). Q+E has conducted the following Critical Infrastructure Protection (CIP) risk assessments: -Analytical. Q+E engineers and scientists conduct analytical analyses following Q+E protocols evaluating business continuity, cyber security, and physical security systems against IEEE, NFPA, ISA, PMI, ISO, NIST, COSO, NERC, DIACAP, FISMA, and ASIS standards.