The risk management process described in AS/NZS ISO 31000:2018 Risk Management – Principles and Guidelines is one way of achieving a structured approach to the management of risk. Consistently implemented, it allows risks to be identified, analysed, evaluated and managed in a uniform and focused manner. ISO 31000 recommends that risk management be based on three core elements: • A set of principles that describes the essential attributes of good risk management, which support the creation and protection of value; • A risk management framework that provides a structure for risk management within an entity or activity that is underpinned by leadership and commitment; and • a risk management process that prescribes a tailored, structured approach to understanding, communicating and managing risk in practice. Legislation, Standards and Codes may be linked to one or more of the University's compliance frameworks either as the driver of the requirements, or as a component of the framework. The relevant frameworks are listed below.AS ISO 31000:2018 Risk Management – Guidelines (Int) - Level 3
Relevant Compliance Frameworks
Summary