Foto: Nik MacMillan

Management system

ISO 31000 Risk management

Companies, both large and small-scale, may experience external and internal risks that can affect their vision and objectives. The standard ISO 31000 on risk management helps companies step by step with planning of strategies, objectives and decisions regarding risk willingness.

Buy the standard in our webshop

What is ISO 31000?

The standard entails that it is not about avoiding risks but to make deliberate decisions and continuously ensure that the existing uncertainties do not affect the company’s objectives in an adverse direction.

ISO 31000 is an international management standard for risk management that defines several principles and requirements that are important for ensuring the effectiveness of a company’s risk management. The standard provides guidance for the selection and application of techniques, which can be used to evaluate risks in different parts of the company. The techniques can inter alia be used as a guidance for decision making related to uncertainty. With the standard, you define potential risks as part of a process for risk management.

ISO 31000 on risk management is a fruitful tool for companies who want to respond to the risks and opportunities that may affect all aspects of the day-to day-operation of the company. Risk management is part of general management at top level and is crucial for how the company is managed at all levels.


Why work with ISO 31000?

ISO 31000 is for you who create and protect the company’s values through risk management, decision making, defining and the setting of strategic objectives to improve the company’s performance. The standard can be implemented in connection with the new GDPR. 


Kasper Hillgaard Mühlbach
Kasper Hillgaard Mühlbach Chefkonsulent | Chief Consultant
Standardisering | Digital & Bæredygtighed
T: 39 96 62 41

Buy the standard ISO 31000

Five advantages when working with ISO 31000

  1. ISO 31000 streamlines your company’s risk management.
  2. ISO 31000 provides your company with a structured approach for the protection of key activities.
  3. ISO 31000 provides guidance for your company in relation to risk management and can be applied by any company regardless of size and type.
  4. ISO 31000 provides a common approach to management of any type of risk and is neither limited to a specific industry nor sector.
  5. ISO 31000 for risk management can be applied to any activity in the company, amongst others decision-making at all organizational levels.