Risk Based Thinking


This page details Risk Based Thinking according to the ISO 31000 model. The main management steps are: identification of context, identification of risks and opportunities, analysis and assessment of risks and opportunities in order to identify, plan and manage actions. The flowchart (shown below) details the process managed by QSA.net. A well-structured setup and clear interfaces allow the efficient management of the requirement of the recently revised ISO Standards (amongst which, the most important are the ISO 9001:2015 and ISO 14001:2015).