A management tool related to the prevention and mitigation of Risk. ERM is a kind of risk approach applicable to a top down process of management pertaining to any company. ERM makes part of the mission, vision, and strategy of the organization and is considered across the hierarchy established in the organization.
Published in Chapter:
ISO Standards and Audit: A Case Study About ISO 31000
Alcina Sena Portugal Dias (Instituto Politécnico do Porto, Portugal) and Madalena Maria Ribeiro Magalhaes (Instituto Politécnico do Porto, Portugal)
Copyright: © 2019
|Pages: 25
DOI: 10.4018/978-1-5225-7356-2.ch005
Abstract
Standards are applicable to any kind of activity and could be defined, in a general way, as an activity aiming to apply an ordered system to repetitive functions that take place in the context of industry, technology, science, and economy. Auditing is deeply connected to the implementation of any standard, and this chapter aims to do its connection. Standardization can stimulate international comparability eliminating obstacles arising from some different national practices in accounting and in auditing using IFRS and ISA, in risk analysis using ERM or ISO 31000, in people's safety, in the product or in the environment. A case study about ISO 31000 in a municipality where IFRS and ISA are followed and ISO 9001, 14001, 18000 are a reality will frame this issue. ISO 26000 about corporate social responsibility will be the new future challenge.