ISO/IEC TS 30105-6:2021 PDF

This document provides guidance on risk management practices for the IT enabled services-business process outsourcing (ITES-BPO) service provider for the outsourced business processes. It provides guidance for planning, establishing, implementing, operating, monitoring, reviewing, maintaining and improving the risk management framework for the ITES-BPO services.

This document:

°°°° covers IT enabled business processes that are outsourced;

°°°° is applicable to the service provider;

°°°° is applicable to all lifecycle processes of ITES-BPO;

°°°° is not intended to cover IT services.

The guidelines in this document align to ISO 31000, elaborating the risk principles, risk management framework and risk management process from an ITES-BPO perspective.