Standard

UPDATE AVAILABLE

AS ISO 22301:2017

[Superseded]

Societal security — Business continuity management systems — Requirements

Adopts ISO 22301:2012 to specify requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise.

Published: 28/08/2017

Pages: 24

Table of contents

Cited references

Content history

Table of contents

Header

About this publication

Preface

Foreword

Introduction

1 Scope

2 Normative references

3 Terms and definitions

4 Context of the organization

4.1 Understanding of the organization and its context

4.2 Understanding the needs and expectations of interested parties

4.2.1 General

4.2.2 Legal and regulatory requirements

4.3 Determining the scope of the business continuity management system

4.3.1 General

4.3.2 Scope of the BCMS

4.4 Business continuity management system

5 Leadership

5.1 Leadership and commitment

5.2 Management commitment

5.3 Policy

5.4 Organizational roles, responsibilities and authorities

6 Planning

6.1 Actions to address risks and opportunities

6.2 Business continuity objectives and plans to achieve them

7 Support

7.1 Resources

7.2 Competence

7.3 Awareness

7.4 Communication

7.5 Documented information

7.5.1 General

7.5.2 Creating and updating

7.5.3 Control of documented information

8 Operation

8.1 Operational planning and control

8.2 Business impact analysis and risk assessment

8.2.1 General

8.2.2 Business impact analysis

8.2.3 Risk assessment

8.3 Business continuity strategy

8.3.1 Determination and selection

8.3.2 Establishing resource requirements

8.3.3 Protection and mitigation

8.4 Establish and implement business continuity procedures

8.4.1 General

8.4.2 Incident response structure

8.4.3 Warning and communication

8.4.4 Business continuity plans

8.4.5 Recovery

8.5 Exercising and testing

9 Performance evaluation

9.1 Monitoring, measurement, analysis and evaluation

9.1.1 General

9.1.2 Evaluation of business continuity procedures

9.2 Internal audit

9.3 Management review

10 Improvement

10.1 Nonconformity and corrective action

10.2 Continual improvement

Bibliography

Cited references in this standard

Content history

AS ISO 22301:2020

[Current]

ISO 22301:2012

[Superseded]

DR AS ISO 22301:2017

One-time Purchase

Access via web browser on any device

One-time purchase

Single publication

Offline access via PDF^

$90.82 AUD

Inclusive of GST

Format *

Web Reader

Licenses *

1 user

Total$90.82 AUD

Add to Cart

IMPORTANT