Risk management

Coordinated activities to direct and control an organization with regard to risk. It includes the identification, analysis, evaluation, treatment, monitoring, and communication of risks on a continuous and systematic basis, in accordance with ISO 31000.