TU Graz/ TU Graz/ Organisational Structure/ Service Departments and Staff Units/

Risk Management

Risk Management

According to ISO 31000, ONR 49000 Series

Every business activity involves opportunities and risks. Risk management enables these risks to be recognized as early as possible. Based on its results, organizations can work out how to manage problems or to prevent them arising in the first place.


Consulting and support of the university management in identifying, analyzing, scoring, monitoring, reporting, documenting and handling risks.

Systematic Integration

Risk management is understood as an integrated management system, in order to create and exploit synergies with already existing control elements.


The goal of risk management is to identify and deal with risks that can have a significant effect on the economic situation of the university. Risks can arise in all areas of the organization.

Risk Management Process

We understand the risk management process as the systematic application of management principles, procedures and processes for communication and consultation, for definition of causal relationships, and for identification, analysis, evaluation, management, monitoring and investigation of risks (see ÖNORM ISO 31000:2010). To achieve an efficient risk management process, it is essential to treat risk management as a continuous process and to integrate it as a control loop into the corporate processes.


Shareholdings and Risk Management
Mandellstraße 5, ground floor
8010 Graz
Area Map