1.
Risk management according to ISO 31000Borut Jereb,
Matjaž Knez,
Darja Kukovič,
Tina Cvahte Ojsteršek,
Matevž Obrecht, 2016, samostojni znanstveni sestavek ali poglavje v monografski publikaciji
Opis: Organizations of all types and sizes face internal and external factors and influences that make it uncertain whether and when they will achieve their objectives. The effect this uncertainty has on an organization's objectives is «risk».
Although the practice of risk management has been developed over time and within many sectors in order to meet diverse needs, the adoption of consistent processes within a comprehensive framework can help to ensure that risk is managed effectively, efficiently and coherently across an organization. The generic approach described in this International Standard provides the principles and guidelines for managing any form of risk in a systematic, transparent and credible manner and within any scope and context.
All activities of an organization involve risk. Organizations manage risk by identifying it, analysing it and then evaluating whether the risk should be modified by risk treatment in order to satisfy their risk criteria. Throughout this process, they communicate and consult with stakeholders and monitor and review the risk and the controls that are modifying the risk in order to ensure that no further risk treatment is required. ISO 31000 describes this systematic and logical process in detail. (IS0 31000, 2009).
Ključne besede: risk management, risk analysis, risk evaluation, business, organizations, companies
Objavljeno v DKUM: 10.05.2018; Ogledov: 1574; Prenosov: 119
Celotno besedilo (1,11 MB)
Gradivo ima več datotek! Več...