Assign topic to the user
ISO 27001/ISO 22301 BUSINESS CONTINUITY PLAN
Define the steps for recovering your business from disruption.
Get it now 
ISO 27001/ISO 22301 BUSINESS CONTINUITY PLAN
Define the steps for recovering your business from disruption.
Get it now
ISO 27001/ISO 22301 BUSINESS CONTINUITY PLAN
Define the steps for recovering your business from disruption.
Get it now
Answer:
Specifics of security requirements for BCPs will vary according to disruptive scenarios considered, as well as the continuity levels derived by an organization, but as general examples of security requirements to consider in a BCP you my have contractual clauses defining that access control to information, assets or premises must be ensured all time, even during disruptive events (so you have to consider redundant access controls), or that the results of risk assessment have identified as unacceptable a situation where you have a single point of failure (e.g., single communication link or database server).
For more information I suggest you these materials:
- Writing a business continuity plan according to ISO 22301 [free webinar on demand] https://advisera.com/27001academy/webinar/writing-a-business-continuity-plan-according-to-iso-22301-free-webinar-on-demand/
- ISO 22301 Case study in the travel industry: Business continuity as a necessity in customer care https://advisera.com/27001academy/blog/2016/11/07/iso-22301-case-study-in-the-travel-industry-business-continuity-as-a-necessity-in-customer-care/
- Book Becoming Resilient: The Definitive Guide to ISO 22301 Implementation https://advisera.com/books/becoming-resilient-the-definitive-guide-to-iso-22301-implementation/
Comment as guest or Sign in
Nov 07, 2018