ISO 31000 — The New, Streamlined Risk Management Standard
January 6, 2010
Why Read This Report
In November 2009, the International Organization of Standardization released the ISO 31000:2009 Risk management — Principles and guidelines standard, a well-crafted and straightforward framework explaining the elements of an effective risk management program. The standard will help risk professionals clearly define terminology, establish formal processes, explain the context of their efforts, and consider the opportunity inherent in risks. But this is just a start. The current version will not help risk professionals determine how to measure risk, make sure their risk taxonomy is complete, develop practical risk management tools, or make the business case for risk management investments. Regardless, we expect widespread adoption and recommend using the standard to bring your risk management program up to speed.
Already a Client?
Log in to read this document.
Become a Forrester Client
Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.
This report is available for individual purchase ($499 USD).Purchase
Predictions 2016: Vendors Win, Risk Management Loses
November 13, 2015 | Renee Murphy
Measure GRC Performance To Show Processes And Data Reliability
April 28, 2016 | Renee Murphy
Six Steps To A Better Security Strategy
January 22, 2016 | Martin Whitworth