Compliance

What is Risk Treatment?

Risk treatment is the action taken to address an identified risk — by reducing, avoiding, transferring, or accepting it. In ISO 27001, the risk treatment plan records the controls chosen to manage each risk.

Related terms

Risk Assessment
Statement of Applicability

← Back to the ISO certification glossary

See SWC CRM for yourself

Run leads, projects, audits, invoicing, and renewals in one customizable platform built for ISO certification teams.

Book a demo Explore the platform