AS/NZS 4360: Risk Management (2004)
Applies to a wide range of activities, decisions or operations of any public, private or community enterprise, group or individual
AS/NZS 4360 provides a generic guide for identifying, analyzing, evaluating, treating, monitoring, communicating, and managing risk to achieve a more confident and rigorous basis for decision-making and planning and more effective allocation and use of resources. This standard is voluntary.
COSO ERM (2004)
Applies to management, directors, regulators, academics and others who are interested in better understanding enterprise risk management
COSO ERM is a framework providing integrated principles, common terminology and practical implementation guidance supporting entities' programs to develop or benchmark their enterprise risk management processes. This standard is voluntary.
ISO 31000: Risk Management (2009)
Applies to any public, private or community enterprise, association, group or individual. Therefore, it is not specific to any industry or sector
ISO 31000 provides principles and generic guidelines on risk management. Applies to any type of risk, whatever its nature, whether having positive or negative consequences.
ISO/IEC 31010: Risk Management – Risk Assessment Techniques (2009)
Applies to any public, private or community enterprise, association, group or individual. Therefore, it is not specific to any industry or sector
ISO 31010 assists organizations in implementing the risk management principles and guidelines provided by the recently published ISO 31000:2009, itself complemented by ISO Guide 73:2009 on risk management vocabulary. This standard deals with risk assessment concepts, risk assessment process, and selection of risk assessment techniques. This standard is not intended for certification, regulatory or contractual use.
ISO/IEC Guide 73: Risk Management Guidelines (2009)
Applies to those engaged in managing risks, those who are involved in activities of ISO and IEC, and developers of national or sector-specific standards, guides, procedures and codes of practice relating to the management of risk
The guide provides the definitions of generic terms related to risk management. It aims to encourage a mutual and consistent understanding of, and a coherent approach to, the description of activities relating to the management of risk, and the use of uniform risk management terminology in processes and frameworks dealing with the management of risk.
BS 31100 (Risk Management)
Applies to any organization of any size
BS 31100 provides a foundation for organizations to understand, create, integrate and maintain risk management programs by giving recommendations on its model, framework, and process with the goal of increasing the organizations chances of meeting its objectives.