The purpose of this paper is to ease the ISO 31000 standard understanding and provide mechanisms that allow organizations to adopt and adapt this standard to their reality.,The research methodology adopted in this research was the design science research methodology.,Key finding is that enterprise architecture (EA) models and EA tools can help reduce the complexity of the ISO 31000 standard and improve the communication between stakeholders.,The research proposal serves the purpose of supporting the evidence collection for an enterprise risk management (ERM) initiative in an as-was, as-is, or to-be perspective.,Traditional ERM efforts operate on silos, limiting the sharing of risk information and the achievement of an organization-wide view of risks. EA can provide a common way to model complex business systems, from the strategic level to implementation details. This paper proposes the use of an EA model and an EA tool (Atlas) to represent ISO 31000, allowing a better understanding on the value of assets that can be affected from the manifestation of some risks over time.

中文翻译：

---

企业风险管理的概念模型

本文的目的是减轻对ISO 31000标准的理解，并提供允许组织采用和适应该标准以适应其实际情况的机制。本研究采用的研究方法是设计科学研究方法。关键发现是企业架构（EA）模型和EA工具可以帮助降低ISO 31000标准的复杂性并改善利益相关者之间的沟通。研究提案的目的是在以下方面为企业风险管理（ERM）计划提供证据支持：传统的ERM工作是孤岛运作，限制了风险信息的共享和组织范围内风险视图的实现。EA可以提供建模复杂业务系统的通用方法，从战略层面到实施细节。本文提出使用EA模型和​​EA工具（Atlas）来表示ISO 31000，以便更好地了解随时间推移某些风险表现可能会影响的资产价值。