Risk, as defined by ISO 31000 standard, is the impact of uncertainty on objectives. It is associated with an event that can occur as a result of any decision being made and, due to its specific sources, cause both negative and positive consequences.
Risk is an integral part of every business, and its complete elimination is impossible and undesirable. Uncertainty of the results of actions and the need to prevent the negative effects of threats and maximize opportunities, increase the importance of risk management processes in modern organizations. Risk management processes allow for more efficient and effective implementation of business tasks and goals. Their implementation is associated with the introduction of a comprehensive solution based on a systematic approach to the identification and description, objectification and analysis of data, as well as evaluation and optimization of all risk groups to which the organization is exposed in order to build its value.