This article relies largely or entirely on a single source. (November 2017)
This article relies too much on references to primary sources. (November 2017) (Learn how and when to remove this template message)
ISO 22301:2012, Societal security – Business continuity management systems – Requirements, is a management system standard that specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise. It is intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. This standard was originally developed by ISO technical committee ISO/TC 223 on societal security and published for the first time in May 2012. It is currently under review in ISO/TC 292 Security and resilience who took over the responsibility of the work when ISO/TC 223 was dissolved.
Scope and contents
ISO 22301:2012 was the first published ISO standard that had fully adopted the new format for writing management system standards described in Annex SL and it includes the following ten main clauses:
- Normative references
- Terms and definitions
- Performance evaluation