ISO 9001 Quality Management Systems-Requirements has been revised in 2015. It has been updated four times since its publication in 1987. It is the most widely used International Standard in the world. There are over one million companies and organizations in over 170 countries certified to ISO 9001 from an ISO survey. Organizations are supposed to be certified to this new version by late 2018. The key changes in ISO 9001:2015 are to establish a High Level Structure (HLS) and focus on Risk-Based Thinking (RBT). Risk-Based Thinking means the process approach to decide how risk is addressed in establishing the processes to improve process outputs and prevent undesirable results. It pursues process planning and controls based on risks so that organizations can improve the effectiveness of the quality management system. It maintains and manages a Quality Management System that inherently addresses risks and meets objectives. In this article we firstly attempt to explain how to understand the fundamental concept of Risk-Based Thinking which is a systematic approach to consider risks rather than treating prevention as a separate component of a Quality Management System. We comment on the detailed requirements that contain risks in ISO 9001:2015 clauses. We also summarize recent advances on the risk assessment and management in line with ISO 31000:2009 Risk Management-Principles and Guidelines. We finally propose the practical risk management procedures for implementing ISO 9001:2015 with an emphasis on RBT. This article would contribute to help quality managers and practitioners convert to ISO 9001:2015.

• 김호균(동의대학교 생산정보기술공학과) | Ho Gyun Kim
• 강병환(LRQA, Korea Ltd.) | Byung Hwan Kang
• 박동준(부경대학교 통계학과) | Dong Joon Park Corresponding Author