ISO/IEC 27031:2011 is the new (March 2011) International Standard that describes the concepts and principles of information and comunication technology (ICT) readiness for business continuity.
The scope of ISO/IEC 27031:2011 encompasses all events and incidents (including security-related) that could have an impact on ICT infrastructure and systems. It includes and extends the practices of information security incident handling and management and ICT readiness planning and services.
Effectively, it is BS25999 and BS25777 brought into an ISO27001 environment, plus ISO/IEC 24762 for disaster recovery – plus more to ensure that it is a genuinely ICT-readiness related standard.
Key Features & Benefits
- Provides a bridge between general business continuity management and information technology. ISO/IEC 27031 ties BS25999, ISO/IEC 27001 and ISO/IEC 24762 to information and communications technology (ICT) business continuity prepardness. Sharing essential guidance.
- Will help you and your organisation understand the threats to, and vulnerabilities of, ICT services, enabling you to ensure your organisation is guarded against such threats and vulnerabilities.
- Provides a framework of methods and processes to identify and specify all aspects for improving an organisation’s ICT readiness to ensure business continuity. This will help you to ensure your organisation is ready should disaster strike.