REPORT. ISO/TR. First edition. Reference number . This document was drafted in accordance with the editorial rules of the ISO/IEC. (International Standard Risk Management ISO Draft Review) ISO , the international standard for Risk Management – ‘Risk Management. Hi:bigwave: Does anybody have a copy of the draft working document ISO they could share with little me? ttfn Ben.

Author: Yozshuzshura Goltihn
Country: Vietnam
Language: English (Spanish)
Genre: Software
Published (Last): 5 January 2009
Pages: 456
PDF File Size: 18.88 Mb
ePub File Size: 4.45 Mb
ISBN: 906-7-98898-831-5
Downloads: 18162
Price: Free* [*Free Regsitration Required]
Uploader: Aragis

The Working Group meets next time on July 10th — 14th, in San Francisco to work on finalizing the revision. Cyber There’s a good time coming However, pursuing opportunities without managing threats and weaknesses and not building on strengths, can certainly bring about unexpected and unwanted consequences.

The draft of the standard for review and comment is now available on the BSI Draft Review system at https: This DIS is at an extremely important stage and we recommend that you review it very carefully in the context and wider activities of your organisation. In general the changes are in the direction of a better wording and more complete coverage of what the notes lso to convey.

The intention throughout the revision process in recent meetings has been to focus on the fundamentals and in doing so create a shorter, clearer and more concise document that is easier to read kso apply. It is important to keep in mind that we are not drafting an American or European standard, a public sector or financial services standard, but rather a generic international standard.

Internet of Things What does it mean? Please do review and pass on your thoughts and opinions by clicking the box below. In a series of articles we want to present and discuss the major changes that are to be expected. It immediately shows what the intent of the revision is. For more information go iiso riskmanagement.

The consequences are then the effects of uncertainty on the objectives related to the opportunity pursued.

The changes in the revision only concern the notes to the definitions. We can expect that the new version of ISO will be published at the end of or early in The message TC would like to pass on to the reader of the DIS is to critically assess if the current draft provides the required guidance while still remaining relevant to all organizations, in all countries.


The revision for the ISO standard is to be finalized in Two of these, the disruption and supply chain risk standards, have failed to make the grade and have recently been officially dropped, but the legal risk standard ISO is now in development with the national standards bodies of China and the UK jointly leading the work.

The decision to review ISO was taken at in Chicago in and now, 4 years later, a draft version of the proposed updates to the ISO document is available for users to see. In the committee commenting stages there was a strong desire to address the proliferation of terms, that could impair the ease of access to the standard or add to confusion across sectors for many users.

Comparing ISO 31000 (2009) with the draft ISO 31000 (2017) – Part 2

Don’t be the weak link. The one remark I have is the note 1 on the definition of risk. Because in my opinion, opportunities and threats are external risk sources in the same way as weaknesses and strengths are internal risk sources. Hosting services provided by: However, more complex language has been edited and reduced and accordingly the revised text is shorter and more precise and hopefully the user will find it much simpler to read. The final DIS text has not dramatically changed the version and all steps in the process have been kept.

This view was formed at the Moscow meeting and stuck to while resolving the comments on the technical committee draft reviewed in Jordan. From the comments made by the contributing experts it was clear that Annex A should be removed and instead the topic dealt with separately through a New Work item proposal to address risk management maturity. The next steps will be a review of the comments submitted that will modify the text further and then a ballot by ISO members to move to the final publication.

ISO Risk Management Standard Draft available for comment.

There was also support for more detailed and precise guidance though this ran the risk of adding to both the length and complexity of the standard. This is a new section in the standard. The process gives you the chance to suggest areas you would like to see adapted or removed and even add new elements that would benefit users in the front line.


A common theme found in the comments was the addition of concepts or examples specific to countries or industries. Below some of the changes to the version of ISO have been summarised and a few words on why the changes are being proposed:.

The next ISO meeting is being held in San Francisco in July and this suggests publication of the revised risk management standard perhaps early in The overall message of ISO stays the same that the risk management process is an integrated part of strategic and operational management. It can be positive sometimes expressed as opportunitiesnegative sometimes expressed as threats or both.

Revision of ISO 31000 Risk Management Guidelines – Draft available

The Commenting process provides a real opportunity for those with risk responsibilities to feedback to the committee on any issues or opportunities to improve the standard before it becomes a National and International standard. Climate adaptation measures and our BCM approach – a user perspective.

The problem I have with this sentence is the parts between brackets. It can be positive, negative or both. The definitions still mentioned in the standard … the following apply are kept to a strict minimum and mainly those that have updated notes:.

There was considerable discussion on fundamental issues on the role of standards. The content between 3004 should be left out.

The next steps of the revision process are translation into French followed by comments and ballots from the National Standardization Bodies. The result was that it was agreed that there was a need to reduce the text quite a lot but that an appropriate balance between giving guidance with enough details and not turning the guidance offered into a school text book.

Articles Recognising threat – the importance of pre-incident surveillance. For example, one could say that pursuing an opportunity, making use of ones strengths, while managing threats and weaknesses, can bring unexpected positive consequences. The major task to accomplish is progress the revision of ISO Although effects can also become risk sources, the isl note 1 is phrased only leads to a short sighted view on what can be understood by effects.