Business Continuity Policy
Assign topic to the user
Considering the explicitly stated missing parts, please note that ISO 22301 does not require policy statements, definitions, compliance, and consequences for Non-Compliance.
While we agree that such items could be considered, our templates are designed to fulfill the standard’s requirements with minimum overhead to minimize administrative effort to keep and maintain them.
In terms of policy, ISO 22301 clause 5.2.1 requires: alignment with the organization’s purpose, an approach to defining business continuity objectives, commitment to fulfilling legal requirements, and commitment to the continual improvement of the Business Continuity Management System.
In case you want to include such items in your own policy, you can schedule a meeting with one of our experts so he can help you develop them.
For further information, see:
- The purpose of Business continuity policy according to ISO 22301 https://advisera.com/27001academy/blog/2013/06/04/the-purpose-of-business-continuity-policy-according-to-iso-22301/
Comment as guest or Sign in
Feb 09, 2022