ISO ‘Misses the Mark’ on Context

SO 31000:2009 included several definitions that provide the support for organizations to understand the meaning of context:

Establishing the context (2.9) – defining the external and internal parameters to be considered when managing risk and setting the scope and risk criteria (2.22) for the risk management policy (2.4). Continue reading →