ISO 31000:2009 can be applied to any type of risk, regardless of its nature, whether positive or negative results. Although ISO 31000:2009 provides generic guidelines, it is not intended to promote uniformity of risk management between organizations. The design and implementation of a risk management plan and the framework will need to take into account the different needs of a specific organization, its particular objectives, context, structure, operations, processes, functions, projects, products, services, or assets and specific activities are used. It was planned as ISO 31000:2009 is used to harmonize the processes of risk management in the current and future standards. It provides a common approach to supporting the standards deal with risk and/or specific fields, and not to replace these standards.
đang được dịch, vui lòng đợi..