Meet ComplAIIntelligence: Your AI-powered teammate for risk & complianceLearn more
All framework guides

Help Center · Framework guide

ISO 31000:2018

ISO 31000 · Security · Global · v2018

Risk ManagementERMGovernanceGuidelines

Overview

ISO 31000:2018 (ISO 31000) — International guidelines for risk management principles, framework, and process — integrate ERM across the organization. ComplAI maps this framework’s controls so your team can track implementation, evidence, and audit readiness.

14 controls available in ComplAI for this framework.

Who it's for

  • Organizations that must demonstrate ISO 31000 compliance
  • Security and compliance teams operating in Global
  • Customers and partners that require ISO 31000 assurance

Why it matters

ISO 31000 is a recognized security framework. Activating it in ComplAI lets you manage controls, evidence, and readiness in one place.

Risk ManagementERMGovernanceGuidelines

How ComplAI helps

  • Activate ISO 31000 in the Framework Library to load its control catalog
  • Assign owners, track compliance status, and attach evidence per control
  • Use risk register and issues workflows when controls fail or deviate
  • Export readiness views for leadership and auditors

Sample controls

  • 4

    Risk management principles

    governance
  • 5.2

    Leadership and commitment

    governance
  • 5.3

    Integration

    governance
  • 5.4

    Design

    governance
  • 5.5

    Implementation

    governance
  • 6.2

    Communication and consultation

    governance

Getting started

  1. Open Framework Library and activate ISO 31000
  2. Review the control list and prioritize high-impact domains
  3. Attach policies, procedures, and technical evidence
  4. Mark controls audit-ready and monitor residual gaps