BCP and DR: ISO 22301
Our company has different department like
1) HR
2) Finance
3) IT
4) Facility Management
5) Admin
6) Operation
7) legal
I am implementing ISO 22301 and I need to do the scoping of the BCMS. Can you please advise me on how I should perform these tasks? What are the things that I should consider while scoping and what departments should I include in the scope of BCMS?Assign topic to the user
The BCMS scope should include all departments that can affect your organization's capability to deliver your products and/or services. For example, in a beverage industry, the logistics department plays a crucial role in delivering the products, so it should be considered in a BCMS implementation. The same applies to air traffic control activities for airports. So, you should consider your business products and/or services nature, and how your departments impact them, to identify which departments should be included in the BCMS scope.
These articles are related to ISMS but can provide some tips about defining a BCMS scope:
- How to define the ISMS scope https://advisera.com/27001academy/knowledgebase/how-to-define-the-isms-scope/
- Problems with defining the scope in ISO 27001 https://advisera.com/27001academy/blog/2010/06/29/problems-with-defining-the-scope-in-iso-27001/
- How to define activities when implementing business continuity according to ISO 22301 https://advisera.com/27001academy/blog/2013/11/11/how-to-define-activities-when-implementing-business-continuity-according-to-iso-22301/
These materials will also help you regarding BCMS scope definition:
- Book Becoming Resilient, The Definitive Guide to ISO 22301 Implementation https://advisera.com/books/becoming-resilient-the-definitive-guide-to-iso-22301-implementation/
- Free online training ISO 22301: An overview of the BCM implementation process https://advisera.com/27001academy/webinar/iso-22301-overview-bcm-implementation-process-free-webinar-demand/
Comment as guest or Sign in
Mar 17, 2020