Business Continuity Planning (BCP) Community

Official Blog for Dr Goh Moh Heng

ISO 22313: Table of Content of ISO/DIS 22313

| 0 comments

The table of content for the ISO 22313:2012 – Societal Security – Business Continuity Management Systems – Guidance apended as follows:

Section

Description

Page

0 Introduction

vi

0.2 The Plan-Do-Check-Act cycle vii
0.3 Business Continuity Management vii
1 Scope 1
2 Normative references 1
3 Terms and definitions 2
4 Context of the organization 8
4.1 Understanding of the organization and its context 8
4.2 Understanding the needs and expectations of interested parties 9
4.2.1 General 9
4.2.2 Legal and regulatory requirements 10
4.3 Determining the scope of the management system 11
4.3.1 General 11
4.3.2 Scope of the BCMS 11
4.4 Business Continuity Management System 11
5 Leadership 12
5.1 General 12
5.2 Management Commitment 12
5.3 Policy 12
5.4 Organizational roles, responsibilities and authorities 13
6 Planning 14
6.1 Actions to address risks and opportunities 14
6.2 Business continuity objectives and plans to achieve them 14
7 Support 15
7.1 Resources 15
7.1.1 General 15
7.1.2 BCMS resources 16
7.1.3 Incident response personnel 16
7.2 Competence 17
7.3 Awareness 18
7.4 Communication 20
7.5 Documented information 20
7.5.1 General 20
7.5.2 Create and update 22
7.5.3 Control of documented information 22
8 Operation 23
8.1 Operational planning and control 23
8.1.1 Elements of the business continuity programme 23
8.1.2 Managing the BCM environment 25
8.1.3 Managing the business continuity capability 26
8.1.4 Measuring effectiveness 26
8.1.5 Outcomes 26
8.2 Business impact analysis and risk assessment 26
8.2.1 General 26
8.2.2 Business impact analysis 28
8.2.3 Risk assessment 29
8.3 Business continuity strategy 30
8.3.1 Determination and selection 30
8.3.2 Establishing resource requirements 32
8.3.3 Protection and mitigation 37
8.4 Establish and implement business continuity procedures 37
8.4.1 General 37
8.4.2 Incident response structure 38
8.4.3 Warning and communication 38

8.4.4

Business continuity plans 40
8.4.5 Recovery 47
8.5 Exercising and testing 48
8.5.1 Exercise programme 48
8.5.2 Exercising business continuity plans 48
9 Performance evaluation 50
9.1 Monitoring, measurement, analysis and evaluation 50
9.1.1 General

50

9.1.2 Evaluation of continuity procedures 51
9.2 Internal audit 52
9.3 Management review 53
10 Improvement 54
10.1 Nonconformity and corrective action 54

10.2

Continual improvement 55

Bibliography

57

 
Reference: ISO/DIS 22313:2012 – Societal Security – Business Continuity Management Systems – Guidance, Content.

Author: moh_heng

Dr Goh Moh Heng is the Managing Director of GMH Continuity Architects and President of Business Continuity Management (BCM) Institute.

Leave a Reply

Required fields are marked *.