The challenge lies in the 'how', not the 'what' of implementing the International Risk Management Standard (ISO 31000).
I have personally tracked many debates about different aspects of implementing the ISO 31000. There are many approaches, some of which involve diagnostics using spreadsheets or manual processes.
I believe that organisation development and diagnostic assessment and advice ('consulting') offers an opportunity to support organisations to create the framework, incorporate the principles and enhance the processes so eloquently described in ISO 31000.
I look forward to hearing from risk management practitioners and facilitators who are implementing ISO 31000. Let's share some thoughts about the 'how' and the potential to introduce a more structured approach to risk management implementation in organisations.