ISO 22301, the much awaited international version of BS 25999 is called “societal security – business continuity management systems – requirements”. It is quite clearly a form of specification for a management system that delivers business continuity arrangements for organisations. Organisation is the key word; it appears many times in ISO 22301 and is defined as a “person or group of people that has its own functions……”
A person, or group of people with its own functions, is not a society.
Societal security is defined as “The ability of a society to persist in its essential character under changing conditions and possible or actual threats”. One can see why ISO seized on this definition, but it is about societies, not organisations.
In the name of keeping things simple and using appropriate terminology, this standard’s name should have the “Societal security –“ part removed.
To understand more, read ISO22300 Societal Security Terminology, which is a standard that clarifies and defines the language for societal security.