ISO 22301

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

ISO 22301:2012, Societal security – Business continuity management systems – Requirements, is a management system standard that specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise. It is intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. This standard was originally developed by ISO technical committee ISO/TC 223 on societal security and published for the first time in May 2012. It is currently under review in ISO/TC 292 Security and resilience who took over the responsibility of the work when ISO/TC 223 was dissolved.

Scope and contents[edit]

ISO 22301:2012 was the first published ISO standard that had fully adopted the new format for writing management system standards described in Annex SL and it includes the following ten main clauses:

  1. Scope
  2. Normative references
  3. Terms and definitions
  4. Context
  5. Leadership
  6. Planning
  7. Support
  8. Operation
  9. Performance evaluation
  10. Improvement

See also[edit]


External links[edit]

  • ISO 22301—Societal security -- Business continuity management systems --- Requirements
  • ISO TC 292—Security and resilience
  • ISO 22301 at