Guest user Created: Feb 12, 2018 Last commented: Feb 12, 2018

ISO 22301 implementation

1 - We finished our ISO/IEC 27001:2013 audits and are waiting for our certificates. We are wondering how much effort compared to ISO/IEC 27001:2013 (we got your ISO 22301:2012 documentation) is required to implement ISO 22301 when an ISMS is already implemented.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Feb 12, 2018

Answer: You can save up to 75% in terms of time and effort to implement ISO 22301 when compared to your previous ISO 27001 implementation, because these standards have a lot of requirements in common (e.g., control of documents, internal audit, management review, etc.).

2 - Also I’ve seen that ISO 22301:2012 will be replaced (https://www.iso.org/standard/50038.html) with ‘ISO/NP 22301’ and we were wondering how much will change.

Answer: The ISO/NP 22301 is on its early stage of development, so there are not much information about what will be changed until its final version, but for now we can expect the inclusion of the concept of resilience, which is far more embracing than business continuity to ensure business survival. The following article will provide you more information :
- Organizational Resilience – Positioning Against ISO 22301-Based Business Continuity https://advisera.com/27001academy/blog/2017/11/08/organizational-resilience-positioning-against-iso-22301-based-business-continuity/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Feb 12, 2018

Expert Advice Community