This Technical Report provides guidance for organizations on managing risk effectively by implementing ISO 31000:2009. It provides:
— a structured approach for organizations to transition their risk management arrangements in order to be consistent with ISO 31000, in a manner tailored to the characteristics of the organization;
— an explanation of the underlying concepts of ISO 31000;
— guidance on aspects of the principles and risk management framework that are described in ISO 31000.