ISO/TR 18128:2014 et

Information and documentation — Risk assessment for records processes and systems

General information
Valid from 04.02.2015
Base Documents
ISO/TR 18128:2014
Directives or regulations
Standard history
This Technical Report intends to assist organizations in assessing risks to records processes and systems so they can ensure records continue to meet identified business needs as long as required. The report a) establishes a method of analysis for identifying risks related to records processes and systems, b) provides a method of analysing the potential effects of adverse events on records processes and systems, c) provides guidelines for conducting an assessment of risks related to records processes and systems, and d) provides guidelines for documenting identified and assessed risks in preparation for mitigation. This Technical Report does not address the general risks to an organization’s operations which can be mitigated by creating records. This Technical Report can be used by all organizations regardless of size, nature of their activities, or complexity of their functions and structure. These factors, and the regulatory regime in which the organization operates which prescribes the creation and control of its records, are taken into account when identifying and assessing risk related to records and records systems. Defining an organization or identifying its boundaries should take into account the complex structures and partnerships and contractual arrangements for outsourcing services and supply chains which are a common feature of contemporary government and corporate entities. Identifying the boundaries of the organization is the initial step in defining the scope of the project of risk assessment related to records. This Technical Report does not address directly the mitigation of risks as methods for these will vary from organization to organization. The Technical Report can be used by records professionals or people who have responsibility for records in their organizations and by auditors or managers who have responsibility for risk management programs in their organizations.
18.48 € incl tax
18.48 € incl tax
Price: 2.40 € incl tax
Standard monitoring
Customers who bought this item also bought

EVS-ISO 30302:2016

Information and documentation -- Management systems for records -- Guidelines for implementation
Newest version Valid from 03.08.2016

EVS-ISO 15489-1:2017

Information and documentation - Records management - Part 1: Concepts and principles (ISO 15489-1:2016)
Newest version Valid from 02.03.2017

ISO/TR 21946:2018 et

Information and documentation -- Appraisal for managing records (ISO/TR 21946:2018)
Newest version Valid from 16.09.2019

EVS-ISO 16175-1:2013

Information and documentation - Principles and functional requirements for records in electronic office environments - Part 1: Overview and statement of principles
Newest version Withdrawn from 15.02.2021