ABSTRACT
This chapter applies ISO 31000 risk management processes to user service quality of cloud-based application services. To facilitate smooth integration of ISO 31000 into service strategy for cloud-based applications, this chapter offers the following: risk management in a nutshell, risk assessment report overview, and integrating risk management with service management. Best practice is for the risk assessment activity to conclude a risk assessment report to openly communicate the identified, analyzed, and evaluated risks facing the organization, as well as recommended treatment options. As cloud service customer (CSC) organizations focus on delivering new services and value fast with improved operational efficiency, the risk assessment report is likely to be a lightweight document that can be easily revised as the organization pivots from one market opportunity to another. Individuals who design, integrate, or operate cloud-based services should be familiar with their organization's quality management system (QMS).
