These Risk Management Procedures describe the methodology for the development, management, monitoring and review of a risk management system to be implemented internally within an organisation. It defines the methodology for identifying risks, developing risk treatment options, creating a risk treatment plan and implementing risk management and monitoring processes.
These Risk Management Procedures are suitable for organisations of all sizes and complies with the guidelines of the International Standard for Risk Management.
- Description. 1
- Purpose. 2
- Scope. 2
- Methodology. 2
- Plan. 2
- Do. 4
- Check. 4
- Act 4
- Document information. 5
The purpose of developing these Risk Management Procedures (Procedures) is to set out the processes and procedures for the risk management system established by [Organisation name] and described in the Risk Management Framework and Risk Management Policy.
These Procedures must be read in conjunction with the following documents:
These Procedures apply to all directors, officers, employees, consultants and contractors of [Organisation name]. The Procedures extend to all current and future activities of [Organisation name], and to any new opportunities [Organisation name] may encounter from time to time.
The methodology used by [Organisation name] to establish these Procedures complies with the Plan Do Check Act (PDCA) model adopted by the Risk Management Framework and is aligned with the guidelines of the International Standard for Risk Management.
Risk management planning includes establishing business strategy and scope, governance and accountability structure, frameworks and documentation and other processes required to ensure the development of an effective and responsive risk management system.
The Procedures expand on the PDCA model with respect to identifying risk management responsibilities, assessing enterprise risks and managing obligations by incorporating the International Standard for Risk Management guidelines.