Reference established by International Organization for Standardization that deals with risk management. The definition, scope analysis, identification, and mitigation plan related to the risk context, in any organization, will be considered. ISO 31000 is easier to be implemented in organizations that have previously adopted an ISO 9001.
Published in Chapter:
ISO Standards and Audit: A Case Study About ISO 31000
Alcina Sena Portugal Dias (Instituto Politécnico do Porto, Portugal) and Madalena Maria Ribeiro Magalhaes (Instituto Politécnico do Porto, Portugal)
Copyright: © 2019
|Pages: 25
DOI: 10.4018/978-1-5225-7356-2.ch005
Abstract
Standards are applicable to any kind of activity and could be defined, in a general way, as an activity aiming to apply an ordered system to repetitive functions that take place in the context of industry, technology, science, and economy. Auditing is deeply connected to the implementation of any standard, and this chapter aims to do its connection. Standardization can stimulate international comparability eliminating obstacles arising from some different national practices in accounting and in auditing using IFRS and ISA, in risk analysis using ERM or ISO 31000, in people's safety, in the product or in the environment. A case study about ISO 31000 in a municipality where IFRS and ISA are followed and ISO 9001, 14001, 18000 are a reality will frame this issue. ISO 26000 about corporate social responsibility will be the new future challenge.