ISO 31000 - Risk management

Risks affecting organizations can have consequences in terms of economic performance and professional reputation, as well as environmental, safety and societal outcomes. Therefore, managing risk effectively helps organizations to perform well in an environment full of uncertainty.

ISO 31000:2018

ISO 31000:2018, Risk management – Guidelines, provides principles, framework and a process for managing risk. It can be used by any organization regardless of its size, activity or sector.

Using ISO 31000 can help organizations increase the likelihood of achieving objectives, improve the identification of opportunities and threats and effectively allocate and use resources for risk treatment.

However, ISO 31000 cannot be used for certification purposes, but does provide guidance for internal or external audit programmes. Organizations using it can compare their risk management practices with an internationally recognised benchmark, providing sound principles for effective management and corporate governance.

Preview our standards

ISO 31000:2018

ISO Store

Visit the ISO Store to buy more standards

Related Standards

Featured in the ISO Store box above, there are a number of other standards also relate to risk management.

  • ISO Guide 73:2009, Risk management - Vocabulary complements ISO 31000 by providing a collection of terms and definitions relating to the management of risk.
  • IEC 31010:2009, Risk management – Risk assessment techniques focuses on risk assessment. Risk assessment helps decision makers understand the risks that could affect the achievement of objectives as well as the adequacy of the controls already in place.  IEC 31010:2009 focuses on risk assessment concepts, processes and the selection of risk assessment techniques.
Cover page: ISO 31000 - Risk management
ISO 31000 - Risk management
This free brochure gives an overview of the standard and how it can help organizations implement an effective risk management strategy.

Useful articles

The new ISO 31000 keeps risk management simple
The new ISO 31000 keeps risk management simple

By Sandrine Tranchard

Damage to reputation or brand, cyber crime, political risk and terrorism are some of the risks that private and public organizations of all types and sizes around the world must face with increasing frequency. The latest version of ISO 31000 has just been unveiled to help manage the uncertainty.

The new arsenal of risk management
The new arsenal of risk management

By Ann Brady

A new version of ISO 31000 is due to be unveiled early next year. As the threat of risks grows for governments, organizations and the public alike, how can the new, streamlined standard help to make our future more secure?

ISO tackles early warning system for landslides
ISO tackles early warning system for landslides

By Elizabeth Gasiorowski-Denis

A landslide often causes high material damage with corresponding costs or even personal injury and death. Now, new work on early warning systems started by ISO will help warn populations in disaster prone areas of the risks and actions needed in the likelihood of a landslide.