#116 – ISO 31000 RISK MANAGMENT PRINCIPLES – GREG HUTCHINS

Posted on by

Greg Hutchins pix

I’ve been working on an ISO 31000 book and am struggling to finish it.  Why?

Well.  ISO 31000 standard is 26 pages.  And, my book has ballooned out to more than 26o pages.  Do I have to say more?

One reason why my book is ten times longer than the standard is because ISO 31000 is a guideline that is open to interpretation and based on guidelines.

ISO 31000 GUIDELINES

ISO 31000 is organized around 11 risk management principles. A management principle refers to a fundamental idea, rule, or truth about a subject. ISO 31000 risk principles serve as a guideline, method, logic, design, and implementation for the risk management framework and process.

ISO 31000 does not specify how the principles can be used to design, implement, and assure a risk management framework. ISO 31000 believes an organization should apply and tailor these principles to the organizational context. ISO 31000 as a guidance document is applicable to all organizations and may be used with any product or service.

  1. Risk Management Establishes and Sustains Value
  2. Risk Management Is An Integral Part Of All Organizational Processes
  3. Risk Management is Part of Decision Making
  4. Risk Management Explicitly Addresses Uncertainty
  5. Risk Management Is Systematic, Structured, And Timely
  6. Risk Management Is Based On The Best Available Information
  7. Risk Management Is Tailored
  8. Risk Management Takes Human And Cultural Factors Into Account
  9. Risk Management Is Transparent And Inclusive
  10. Risk Management Is Dynamic, Iterative, And Response To Change
  11. Risk Management Facilitates Continual Improvement Of The Organization

SO WHAT NOW?

ISO risk guidelines are motherhoods.  They are well intending.  But how do you apply them based on the above principles with ISO 9001:2015, ISO 14001:2015 and other ISO management system?  And how do you apply ISO 31000 with Risk Based Thinking?

That’s why I think we’re in for interesting times.

Bio:

Greg Hutchins PE and CERM (503.233.101 & GregH@QualityPlusEngineering.com)  is the founder of:

CERMAcademy.com
800Compete.com
QualityPlusEngineering.com
WorkingIt.com

He is the evangelist behind Future of Quality: Risk®.  He is currently working on the Future of Work and machine learning projects.

He is a frequent speaker and expert on Supply Chain Risk Management and cyber security.  His current books available on all platform are shown below:

Leave a Reply

Your email address will not be published.