ISO 31000 provides generic best practice for risk assessment.

The Standard is for guidance only and is not for certification. 
Further details can be found on the NSAI Risk Management Standards page.

RH Rev.2.0