自19世紀開始，風險管理隨著風險管理意識抬頭而逐漸發展各項技術，在各國陸續公布風險管理相關標準之際，國際間對於各種風險評估技術及工具之應用及選用原則亦亟需具影響力之相關標準加以整合，故在2009年國際標準組織與國際電工委員會共同編訂「ISO/IEC 31010，風險管理－風險評估技術」標準；此標準係依據ISO 31000：2009「風險管理－原則與指導綱要」之風險管理原則及目前已達到專業共識概念的風險評估相關技術進行編定，期提供風險評估技術選用概念供組織及各種系統應用。
是故，本研究先參考各標準中組織內涵風險評估相關活動之風險管理標準，加以整理比較風險評估之於其標準中風險及風險管理過程之關聯性。再針對ISO/IEC 31010標準進行標準內容初步探討及說明，藉此了解風險評估標準的實務引用概念，期能為國內提供風險管理評估方法的概念、過程及選擇，以利組織適切選用風險評估方法，有效掌控風險，達成組織目標。

Since the 19th century, risk management has developed progressively in various kind of technology due to the resurgence of risk awareness. As different Nations announced their Risk Management Standards, risk assessment techniques and tools for application and selection principle need to be integrated by Influential organization for standardization, thus, the International Organization for standardization and International Electrotechnical Commission joint preparation "ISO/IEC 31010:2009, risk management-risk assessment techniques" standard in 2009. This standard is based on the Risk Management Principles of ISO 31000: 2009 "Risk Management - Principles and Guidelines", and it is also scheduled by the consensus of professional risk assessment techniques, providing a selection concept for all types of organizations and system to applications.
Therefore, in this study, we reference to risk assessment activities of these standards in various standards organization at first, collate and compare the relativity between the risk assessment and the process of risk management standards. After that, We will focus on ISO / IEC 31010 standard and proceed preliminary study on the description of standard contents, and understand the concept of practical reference on risk assessment standards; We expect to provide the concepts, processes and options of a highest level of domestic to international standards of risk management assessment within the country, facilitate all organizations to control the risks effectively, achieve organizational goals by choosing their own methods of risk assessment appropriately.

1.AS/NZS 4360“Risk Management”, Standards Australia and Standards New
Zealand, 1995.
2.AS/NZS 4360, “Risk Management”, Standards Australia and Standards New
Zealand, 1999.
3.AS/NZS 4360, “Risk Management”, Standards Australia and Standards New
Zealand, 2004.
4.AS/NZS ISO 31000“Risk Management － Principles and guidelines”, Standards
Australia and Standards New Zealand ,2009.
5.CAN/CSA-Q850-97(R2009), “Risk Management: Guide for Decision Maker”,
Canadian Standards Association, 1997.
6.加拿大標準協會網站，http://www.csa.ca/cm/ca/en/home。
7.BS 31100,“Risk Management－Code of practice”, British Standards
Institution ,2008.
8.BS ISO 31000，“Risk management. Principles and guidelines” , British
Standards Institution ,2009
9.英國標準協會網站，http://shop.bsigroup.com。
10.IEC 60300-3-9-1997,“Dependability management－Part 3：Application guide－
Section 9：Risk analysis of technological systems”, International
Electrotechnical Commission, 1997.
11.JIS Q2001,“リスクマネジメントシステム構築のための指針”,日本規格協会,2001.
12.日本標準協會網站，http://www.jsa.or.jp。
13.ISO/IEC Guide 73, “Risk Management-Vocabulary-Guidelines for Use in
Standards”, International Organization for Standardization/ International
Eletrotechnical Commission, 2002.
14.ISO Guide 73, “Risk management–Vocabulary”, International Organization
for Standardization, 2009.
15.ISO 31000, “Risk management–Principles and guidelines”, International
Organization for Standardization, 2009.
16.IEC/ISO 31010, “Risk management–Risk assessment techniques”,
International Eletrotechnical Commission/ International Organization for
Standardization, 2009.
17.國際標準組織，http://www.iso.org。
18.「ISOとリスクマネジメント」,日本規格協會，平成21年3月23日。.
19.「風險管理及危機處理作業手冊」，行政院研究發展考核委員會，民國98 年1 月。