Expert Advice Community

Home / ISO 27001 & 22301 / Adoption of ISO 27031

Guest

Adoption of ISO 27031

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Feb 10, 2019 Last commented:   Feb 10, 2019

Adoption of ISO 27031

ISO 27001 & 22301
If we wanted to just get 27031 created, where should we start? Would you recommend creating 27031 without 22301 in place?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Rhand Leal Feb 10, 2019

Answer:

ISO 27031 is a supporting standard to help implement controls from ISO 27001 Annex A section 17, which basically covers continuity of information security and Information and Communication Technologies. Considering that, ISO 22301 covers the continuity of business as a whole, while ISO 27031 can be seen as a tool to implement the technical part of ISO 22301, so implementing it without ISO 22301 wouldn't be a good approach, because you wouldn't take advantage of the business impact analysis process, which helps optimize resources application.

This article will provide you further explanation about Iso 27031:
- Understanding IT disaster recovery according to ISO 27031 https://advisera.com/27001academy/blog/2015/09/21/understanding-it-disaster-recovery-according-to-iso-27031/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Feb 10, 2019

Feb 10, 2019

Suggested Topics
Ash Created:   Jan 21, 2024 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 Internal Audits
Garry Created:   Dec 10, 2023 ISO 27001 & 22301
Replies: 3
0 0

Understanding the core concepts of RPO & RTO - ISO 22301