Aplicación de las normas ISO a los principales riesgos de una empresa mediante un modelo integral de gestión de riesgos basado en el proceso de la gestión de riesgos presentado en la ISO 31000

Risk management has become an issue of great importance over time, as preventing risks is much more beneficial for companies in the future. For this reason, the International Organization for Standardization (ISO, for its acronym in English), developed a pioneering standard for risk management in an...

Full description

Autores:
Tipo de recurso:
Fecha de publicación:
2021
Institución:
Universidad de América
Repositorio:
Lumieres
Idioma:
spa
OAI Identifier:
oai:repository.uamerica.edu.co:20.500.11839/8459
Acceso en línea:
https://hdl.handle.net/20.500.11839/8459
Palabra clave:
Cadena de abastecimiento
Salud y seguridad en el trabajo
Seguridad de la información
Supply chain
Health and Safety at Work
Security of the information
Tesis y disertaciones académicas
Rights
License
Atribución – No comercial
Description
Summary:Risk management has become an issue of great importance over time, as preventing risks is much more beneficial for companies in the future. For this reason, the International Organization for Standardization (ISO, for its acronym in English), developed a pioneering standard for risk management in an organization, called ISO 31000. This standard contains the set of parameters to effectively manage risks. However, its information is very global and only with its reading and implementation are missing data to develop parameters such as risk identification, analysis, treatment, among others. For this reason, in this document this missing information was supplemented with other ISO standards that refer to other types of management systems in organizations, such as the environmental management system, the occupational health and safety management system. , the information security management system and the supply chain management system, and with documents containing information on the sources of the risks, their analysis and treatment, developing a comprehensive model that contains all the stipulated sections by the ISO 31000 standard, the provisions of the ISO 14001, 45001, 27001 and 28000 standards referring to the same sections, and the information of interest set forth in other documents.

Publicaciones similares