ISO/IEC/IEEE 16085:2021 系统和软件工程 生命周期过程 风险管理

标准编号：ISO/IEC/IEEE 16085:2021

中文名称：系统和软件工程 生命周期过程 风险管理

英文名称：Systems and software engineering — Life cycle processes — Risk management

发布日期：2021-01

标准范围

本文件:-为ISO/IEC/IEEE 15288和ISO/IEC/IEEE 12207中描述的流程提供风险管理阐述，-为ISO/IEC/IEEE 15288、ISO/IEC/IEEE 12207及其相关阐述标准的用户提供通用术语和专门指南，用于在系统和软件工程项目的背景下执行风险管理，-规定通过实施风险管理流程来声明符合性所需的信息项，以及-指定信息项的所需内容。本文件为负责管理系统和软件生命周期相关风险的从业者提供了一个普遍适用的标准。本文件适用于管理系统或软件项目的任何组织或项目中遇到的所有风险，无论环境、行业类型、使用的技术或组织结构如何参与。本文档不提供其他出版物中广泛提供的风险管理实践、技术或工具的详细信息。相反，本文档侧重于提供一个全面的参考，将系统和软件工程项目以及其他生命周期活动中遇到的各种各样的过程、实践、技术和工具集成到一个统一的风险管理方法中，目的是提供有效和高效的风险管理，同时满足组织和项目利益相关者的期望和要求。

This document:
- provides risk management elaborations for the processes described in ISO/IEC/IEEE 15288 and ISO/IEC/IEEE 12207,
- provides the users of ISO/IEC/IEEE 15288, ISO/IEC/IEEE 12207 and their associated elaboration standards with common terminology and specialized guidance for performing risk management within the context of systems and software engineering projects,
- specifies the required information items that are to be produced through the implementation of risk management process for claiming conformance, and
- specifies the required contents of the information items.
This document provides a universally applicable standard for practitioners responsible for managing risks associated with systems and software over their life cycle. This document is suitable for the management of all risks encountered in any organization or project appropriate to the systems or software projects regardless of context, type of industry, technologies utilized, or organizational structures involved.
This document does not provide detailed information about risk management practices, techniques, or tools which are widely available in other publications. Instead this document focuses on providing a comprehensive reference for integrating the large and wide variety of processes, practices, techniques, and tools encountered in systems and software engineering projects and other lifecycle activities into a unified approach for risk management, with the purpose of providing effective and efficient risk management while meeting the expectations and requirements of organization and project stakeholders.

标准预览图