BS EN ISO 22301:2014
Superseded
A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.
View Superseded by
Societal security. Business continuity management systems. Requirements
Hardcopy , PDF
06-11-2019
English
30-09-2014
Important note : Users cannot be edited or removed once added to your Multi user PDF.
Foreword
0 Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Context of the organization
5 Leadership
6 Planning
7 Support
8 Operation
9 Performance evaluation
10 Improvement
Bibliography
Describes requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise.
| Committee |
CAR/1
|
| DevelopmentNote |
Renumbers and supersedes BS ISO 22301. 2014 Version incorporates corrigendum to BS ISO 22301. Supersedes BS 25999-2(2007). (09/2014)
|
| DocumentType |
Standard
|
| Pages |
38
|
| PublisherName |
British Standards Institution
|
| Status |
Superseded
|
| SupersededBy | |
| Supersedes |
This International Standard for business continuity management specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise. The requirements specified in this International Standard are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization’s operating environment and complexity. It is not the intent of this International Standard to imply uniformity in the structure of a Business Continuity Management System (BCMS), but for an organization to design a BCMS that is appropriate to its needs and that meets its interested parties’ requirements. These needs are shaped by legal, regulatory, organizational and industry requirements, the products and services, the processes employed, the size and structure of the organization, and the requirements of its interested parties. This International Standard is applicable to all types and sizes of organizations that wish to establish, implement, maintain and improve a BCMS, ensure conformity with stated business continuity policy, demonstrate conformity to others, seek certification/registration of its BCMS by an accredited third party certification body, or make a self-determination and self-declaration of conformity with this International Standard. This International Standard can be used to assess an organization’s ability to meet its own continuity needs and obligations.
| Standards | Relationship |
| ISO 22301:2012 | Identical |
| EN ISO 22301:2014 | Identical |
| 17/30354571 DC : 0 | BS 7799-3 - INFORMATION SECURITY MANAGEMENT SYSTEMS - PART 3: GUIDELINES FOR INFORMATION SECURITY RISK MANAGEMENT |
| 15/30296351 DC : 0 | BS 12999 - DAMAGE MANAGEMENT - STABILIZATION, MITIGATION AND RESTORATION OF PROPERTIES, CONTENTS, FACILITIES AND ASSETS FOLLOWING INCIDENT DAMAGE |
| 17/30351843 DC : 0 | BS 10754-1 - INFORMATION TECHNOLOGY - SOFTWARE TRUSTWORTHINESS - PART 1 - GOVERNANCE AND MANAGEMENT SPECIFICATION |
| BS 8484:2016 | Provision of lone worker services. Code of Practice |
| BS 10008:2014 | Evidential weight and legal admissibility of electronic information. Specification |
| 16/30342526 DC : 0 | BS 31111 - CYBER RISK AND RESILIENCE - GUIDE |
| BS 7799-3:2017 | Information security management systems Guidelines for information security risk management |
| 16/30322701 DC : 0 | BS 8484 - PROVISION OF LONE WORKER SERVICES - CODE OF PRACTICE |
| BS 12999:2015 | Damage management. Code of practice for the organization and management of the stabilization, mitigation and restoration of properties, contents, facilities and assets following incident damage |
| ISO 19011:2011 | Guidelines for auditing management systems |
| ISO/IEC 27001:2013 | Information technology — Security techniques — Information security management systems — Requirements |
| BS 25999-1:2006 | BUSINESS CONTINUITY MANAGEMENT - PART 1: CODE OF PRACTICE |
| ISO 31000:2009 | Risk management Principles and guidelines |
| ISO 22300:2012 | Societal security Terminology |
| ISO/IEC 27031:2011 | Information technology — Security techniques — Guidelines for information and communication technology readiness for business continuity |
| NFPA 1600 : 2016 | DISASTER/EMERGENCY MANAGEMENT AND BUSINESS CONTINUITY/CONTINUITY OF OPERATIONS PROGRAMS |
| ISO/IEC 20000-1:2011 | Information technology Service management Part 1: Service management system requirements |
| ISO/IEC Guide 73:2002 | Risk management Vocabulary Guidelines for use in standards |
| ISO 14001:2015 | Environmental management systems — Requirements with guidance for use |
| ISO 9001:2015 | Quality management systems — Requirements |
| ISO/PAS 22399:2007 | Societal security - Guideline for incident preparedness and operational continuity management |
| ISO/IEC 24762:2008 | Information technology Security techniques Guidelines for information and communications technology disaster recovery services |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.