Guest
Documenting the control A.17.1.2
According to your page https://advisera.com/27001academy/knowledgebase/list-of-mandatory-documents-required-by-iso-27001-2013-revision/ Business continuity procedures (clause A.17.1.2) / Implementing information security continuity is mandatory. On what page(s)/text of the ISO 27001 standard can you find this reference?
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
Expert
Dejan Kosutic
Nov 07, 2016
Answer: ISO 27001:2013 in its Annex A has control A.17.1.2 which says "organization shall ... document ... procedures ... to ensure the required level of continuity".
By the way, in the article you're referring to we have said "Please note that documents from Annex A are mandatory only if there are risks which would require their implementation." - this means that control A.17.1.2 needs to be applied (and documented) only if it is applicable according to the results of the risk assessment.
These materials will also help you regarding business continuity and information security:
- article How to use ISO 22301 for the implementation of business continuity in ISO 27001 https://advisera.com/27001academy/blog/2015/06/15/how-to-use-iso-22301-for-the-implementation-of-business-continuity-in-iso-27001/
- webinar ISO 27001 & ISO 22301: Why is it better to implement them together? https://advisera.com/27001academy/es/webinar/iso-27001-iso-22301-why-is-it-better-to-implement-them-together-free-webinar-on-demand/
Comment as guest or Sign in
Nov 07, 2016
Nov 07, 2016
Nov 07, 2016