The document discusses risk control methods in ISO 9001:2015, including monitoring employees, workplaces, equipment, processes, and work methods. It also discusses upgrading from ISO 9001:2008 to the 2015 version by revising policies, goals, training, procedures, quality manuals, and preparing new risk management procedures and documents depending on the organization's size. Finally, it notes that ISO certificates are not strictly necessary but can help communicate an organization's systems to customers.