Management of Risk is an inherent, and often subconscious component of business management for any organisation. We manage risks every day and these vary from simple basic risks in some organisations, to technical and / or life threatening risks on others.

Risk is a component of all certifiable standards nowadays.

Quality Management Systems tend towards more informal base requirements of Risk Based Thinking, this of course increasing in technicality depending on the organisation in question and the sector they operate in.

Environmental Management Systems require us to manage the risks associated with Aspects and their Impacts.

Health & Safety Management Systems of course require us to manage risks associated with Hazards and implement appropriate Controls.

Information Security Management Systems require us to formally consider risks and implement controls at various levels, including policy, human, technical, and others as applicable.

To compliment all of these disciplines, there are additional standards for Risk Assessment and Management like ISO 31000 along with proven methodologies like the PPRR Model (Prevention, Preparedness, Response & Recovery). At other levels, you may use simple Brainstorming, perhaps employing the Delphi Technique, an RCA (Root Cause Analysis) or a SWIFT Analysis (Structured What-If Technique), an FMEA (Failure Mode & Effect Analysis), SWOT (Strengths, Weaknesses, Opportunities, Threats), PESTLE (Political, Economic, Social, Technological, Legal, Environmental). There are many more and their use is highly dependent on the specific needs at hand. 

We can help you choose the correct tools and implement these for your specific needs.