Many of the ISO standards now include requirements related to risk and some reference ISO 31000 for further information. Some of the better known standards are:
ISO 9001 – Quality Management Systems
ISO 13485 – Medical Device Quality Management Systems
ISO 14001 – Environmental Management Systems
ISO 27001 – Information Security Management
Although none of these standards mandate the use of ISO 31000 or its methodologies, the 31000 standard is extremely useful for understanding and teaching general concepts, operational arrangements and processes needed for effective risk management. Organizations who are interested in the value added by Enterprise Risk Management, and who seek a ROI on their certification efforts will be well served to learn and use ISO 31000.