Skip to content
Please enter a keyword to search
  • Preview

    ISO/PAS 22399:2007

    Withdrawn A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.

    Societal security - Guideline for incident preparedness and operational continuity management

    Available format(s):  Hardcopy, PDF, PDF 3 Users, PDF 5 Users, PDF 9 Users

    Withdrawn date:  13-03-2019

    Language(s):  English

    Published date:  15-11-2007

    Publisher:  International Organization for Standardization

    Add To Cart

    Abstract - (Show below) - (Hide below)

    ISO/PAS 22399:2007 provides general guidance for an organization private, governmental, and nongovernmental organizations to develop its own specific performance criteria for incident preparedness and operational continuity, and design an appropriate management system. It provides a basis for understanding, developing, and implementing continuity of operations and services within an organization and to provide confidence in business, community, customer, first responder, and organizational interactions. It also enables the organization to measure its resilience in a consistent and recognized manner.

    ISO/PAS 22399:2007 is applicable to all sizes of public or private organizations engaged in providing products, processes, or services that wishes to:

    • understand the overall context within which the organization operates;
    • identify critical objectives;
    • understand barriers, risks, and disruptions that may impede critical objectives;
    • evaluate residual risk and risk tolerance to understand outcomes of controls and mitigation strategies;
    • plan how an organization can continue to achieve its objectives should a disruptive incident occur;
    • develop incident and emergency response, continuity response and recovery response procedures;
    • define roles and responsibilities, and resources to respond to an incident;
    • meet compliance with applicable legal, regulatory, and other requirements;
    • provide mutual and community assistance;
    • interface with first responders and the media;
    • promote a cultural change within the organization that recognizes that risk is inherent in every decision and activity and must be effectively managed.

    ISO/PAS 22399:2007 presents the general principles and elements for incident preparedness and operational continuity of an organization. The extent of the application will depend on factors such as the policy of the organization, the nature of its activities, products and services, and the location where and the conditions under which it functions.

    ISO/PAS 22399:2007, however, excludes specific emergency response activities following an incident, such as disaster relief and social infrastructure recovery that are primarily to be performed by the public sector in accordance with relevant legislation. It is important, however, that coordination with these activities be maintained and documented.

    General Product Information - (Show below) - (Hide below)

    Document Type Standard
    Publisher International Organization for Standardization
    Status Withdrawn

    Standards Referenced By This Book - (Show below) - (Hide below)

    BS ISO 22313 : 2012 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE
    BS ISO/IEC 27033-1:2015 Information technology. Security techniques. Network security Overview and concepts
    CAN/CSA-ISO/IEC 27033-1:16 Information technology - Security techniques - Network security - Part 1: Overview and concepts (Adopted ISO/IEC 27033-1:2015, second edition, 2015-08-15)
    CSA ISO/IEC 27035 : 2013 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT
    CSA ISO/IEC 27035 : 2013 : R2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT
    DIN EN ISO 22301 E : 2014 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - REQUIREMENTS (ISO 22301:2012)
    I.S. EN ISO/IEC 27040:2016 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY (ISO/IEC 27040:2015)
    DIN EN ISO/IEC 27040:2016-04 (Draft) INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY (ISO/IEC 27040:2015)
    DIN EN ISO 22300 E : 2014 SOCIETAL SECURITY - TERMINOLOGY (ISO 22300:2012)
    I.S. EN ISO 22313:2014 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE (ISO 22313:2012)
    UNE-ISO 22320:2013 Societal security. Emergency management. Requirements for incident response
    14/30249803 DC : 0 BS ISO/IEC 27040 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY
    UNE-ISO 22301:2013 Societal security. Business continuity management systems. Requirements
    BS ISO/IEC 27035:2011 Information technology. Security techniques. Information security incident management
    UNE-ISO 22300:2013 Societal security — Terminology
    BS ISO 22301 : 2012 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - REQUIREMENTS
    12/30247740 DC : 0 BS ISO 22313 - SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE
    DIN EN ISO 22301:2014-12 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - REQUIREMENTS (ISO 22301:2012)
    BS EN ISO 22313:2014 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE
    I.S. EN ISO 22301:2014 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - REQUIREMENTS
    BS EN ISO 22301:2014 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENTSYSTEMS - REQUIREMENTS (ISO 22301:2012)
    ISO 22320:2011 Societal security Emergency management Requirements for incident response
    14/30278505 DC : 0 BS ISO/IEC 27033-1 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - NETWORK SECURITY PART 1: OVERVIEW AND CONCEPTS
    UNI EN ISO 22300 : 2014 SOCIETAL SECURITY - TERMINOLOGY
    10/30184432 DC : 0 BS ISO/IEC 27035 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT
    10/30228037 DC : 0 ISO/DIS 22320 - SOCIETAL SECURITY - EMERGENCY MANAGEMENT - REQUIREMENTS FOR COMMAND AND CONTROL
    ISO/IEC 27035:2011 Information technology Security techniques Information security incident management
    DIN EN ISO/IEC 27040 E : 2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY (ISO/IEC 27040:2015)
    UNE-EN ISO 22300:2015 Societal security - Terminology (ISO 22300:2012)
    DIN EN ISO 22313:2016-05 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE (ISO 22313:2012)
    DIN EN ISO 22313 E : 2016 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE (ISO 22313:2012)
    ISO 28002:2011 Security management systems for the supply chain — Development of resilience in the supply chain — Requirements with guidance for use
    PD 25666:2010 Business continuity management. Guidance on exercising and testing for continuity and contingency programmes
    BS ISO 22300 : 2012 SOCIETAL SECURITY - TERMINOLOGY
    UNI ISO 22300 : 2013 SOCIETAL SECURITY - TERMINOLOGY
    15/30267674 DC : 0 BS ISO/IEC 27035-1 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT - PART 1: PRINCIPLES OF INCIDENT MANAGEMENT
    DIN EN ISO 22300:2014-12 SOCIETAL SECURITY - TERMINOLOGY (ISO 22300:2012)
    IWA 6:2008 Guidelines for the management of drinking water utilities under crisis conditions
    UNI EN ISO 22301 : 2014 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - REQUIREMENTS
    ISO/IEC 27033-1:2015 Information technology Security techniques Network security Part 1: Overview and concepts
    ISO 22301:2012 Societal security Business continuity management systems Requirements
    BS ISO/IEC 27040 : 2015 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY
    EN ISO 22313:2014 Societal security - Business continuity management systems - Guidance (ISO 22313:2012)
    BS EN ISO/IEC 27040:2016 Information technology. Security techniques. Storage security
    UNE-EN ISO 22301:2015 Societal security - Business continuity management systems - Requirements (ISO 22301:2012)
    ISO/IEC 27040:2015 Information technology — Security techniques — Storage security
    UNI EN ISO 22313 : 2015 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE
    UNE-EN ISO 22313:2015 Societal security - Business continuity management systems - Guidance (ISO 22313:2012)
    EN ISO/IEC 27040:2016 Information technology - Security techniques - Storage security (ISO/IEC 27040:2015)
    EN ISO 22301:2014 Societal security - Business continuity management systems - Requirements (ISO 22301:2012)
    NFPA 1600 : 2016 DISASTER/EMERGENCY MANAGEMENT AND BUSINESS CONTINUITY/CONTINUITY OF OPERATIONS PROGRAMS
    09/30168526 DC : 0 BS ISO/IEC 27033-1 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - NETWORK SECURITY - PART 1: GUIDELINES FOR NETWORK SECURITY
    BS ISO 28002:2011 Security management systems for the supply chain. Development of resilience in the supply chain. Requirements with guidance for use
    INCITS/ISO/IEC 27040 : 2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - STORAGE SECURITY
    10/30217464 DC : 0 BS ISO 28002 - SECURITY MANAGEMENT SYSTEMS FOR THE SUPPLY CHAIN - DEVELOPMENT OF RESILIENCY IN THE SUPPLY CHAIN - REQUIREMENTS WITH GUIDANCE FOR USE
    BIP 2151 : 2012 AUDITING BUSINESS CONTINUITY MANAGEMENT PLANS - ASSESS AND IMPROVE YOUR PERFORMANCE AGAINST ISO 22301
    EA 0031:2013 Risk management system.
    BS EN ISO 22300:2014 Societal security. Terminology
    ISO/PAS 28002:2010 Security management systems for the supply chain - Development of resilience in the supply chain - Requirements with guidance for use
    ISO 22313:2012 Societal security Business continuity management systems Guidance
    UNE-ISO 22313:2013 Societal security.Business continuity management systems. Guidance

    Standards Referencing This Book - (Show below) - (Hide below)

    BS 25999-1:2006 BUSINESS CONTINUITY MANAGEMENT - PART 1: CODE OF PRACTICE
    NFPA 1600 : 2016 DISASTER/EMERGENCY MANAGEMENT AND BUSINESS CONTINUITY/CONTINUITY OF OPERATIONS PROGRAMS
    ISO/IEC Guide 73:2002 Risk management Vocabulary Guidelines for use in standards
    View more information

    • Access your standards online with a subscription

      Features

      • Simple online access to standards, technical information and regulations
      • Critical updates of standards and customisable alerts and notifications
      • Multi - user online standards collection: secure, flexibile and cost effective