4.5 Bribery risk assessment

Section 4.5 of ISO 37001:2016 requires organizations to perform a systematic bribery risk assessment, identifying potential sources of bribery, evaluating their likelihood and impact, and documenting the results. The assessment forms the basis for establishing, implementing and maintaining appropriate anti-bribery controls and for ongoing monitoring and review.