ISO 31000 : 2009 are about risk management. The iso are adaptation from COSO (Comitee of Sponsoring. Organizaation) from five international accounting public association.
Risk are everything that can influence our target. From ISO 31000 : 2009 have eleven principle and divide from two main : individual aspect and organizational aspect.
Risk owner is person or entity with the accountability and authority to manage risk. Risk breakdown structure are from corporate level, SBU level, divisional, department.
Accontabilty are from risk owner, risk assurance, risk controller and risk champion and write it from risk register.
Inherent risk – existing control = residual risk
Posted with WordPress for BlackBerry.