ISO 27001 & 22301 - Expert Advice Community



Create New Topic As guest or Sign in

HTML tags are not allowed

Assign topic to the user


    My company are in the transitition period moving from BS25999 to ISO22301. I've read through 22301 and 22313 and it explicitly mentions the MTPD. However, I've been advised recently that ISO22301 differs from BS25999 in how the MBCO, RTO and MPTD/MAO are determined in comparison to BS25999.

    Do you have any diagrams  with text that explain the MBCO, RTO and MTPD/MAO relationship?


  • Políticas de desarrollo

  • iso 27001 lead auditor

    I want to become lead auditor. How it work the exam?
  • ISO 31000

  • Questions about ISO 27001

  • Information Security Aspects of Business Continuity

  • Applicability of ISO 27001 procedures in scope with multiple departments

    1. If there are, say, 2 business units A & B in the isms scope. On risk assessment it was found that A requires a specific control to mitigate a specific risk (e.g. backup of its systems to maintain business operations in the event of a disaster). So a standard or policy has been written up that states that requirement. But, the standard or policy states the scope is the scope defined in the scope document. And scope document says both A & B are included. So the question is, does that control requirement apply to only A or all units?
  • ISO 9001 and ISO 27001Requerimientos ISO 27001

  • Accept the risk