SPRING DISCOUNT
Get 30% off on toolkits, course exams, and Conformio yearly plans.
Limited-time offer – ends April 25, 2024
Use promo code:
SPRING30

Expert Advice Community

Guest

Planning information security continuity

  Quote
Guest
Guest user Created:   May 22, 2018 Last commented:   May 22, 2018

Planning information security continuity

I am working through the ISO templates we purchased. In regards to this control (Planning information security continuity), I don’t understand what it means. Do you have any examples or more guidance on what we are to do here?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal May 22, 2018

Are you able to please help me?

Answer: This control requires an organization to determine its requirements for information security and ensure the continuity of information security management during a crisis or disaster.

A good example is the access control to a datacenter. Datacenters are generally classified as sensitive in the risk assessment, due to the volume or sensitivity of the information they store/process, and organizations implement controls such as electronic locks to prevent unauthorized access (the requirement). When planning information security continuity, an organization should consider how to maintain access control in case of an event that may disable the electronic locks (e.g., a long power outage). For example, the organization can implement a lock that can be also manually used.

This artic le will provide you further explanation about planning information security continuity:
- Business Continuity Management vs. Information Security vs. IT Disaster Recovery https://advisera.com/27001academy/blog/2017/02/27/business-continuity-management-vs-information-security-vs-it-disaster-recovery/

These materials will also help you regarding planning information security continuity:
- Book Becoming Resilient: The Definitive Guide to ISO 22301 Implementation https://advisera.com/books/becoming-resilient-the-definitive-guide-to-iso-22301-implementation/
- Book Secure & Simple: A Small-Business Guide to Implementing ISO 27001 On Your Own https://advisera.com/books/secure-and-simple-a-small-business-guide-to-implementing-iso-27001-on-your-own/
- Writing a business continuity plan according to ISO 22301 [free webinar on demand] https://advisera.com/27001academy/webinar/writing-a-business-continuity-plan-according-to-iso-22301-free-webinar-on-demand/

Quote
0 1

Comment as guest or Sign in

HTML tags are not allowed

May 22, 2018

May 22, 2018

Suggested Topics

Guest user Created:   Sep 24, 2021 ISO 27001 & 22301
Replies: 1
0 0

Documentation of requirements

Guest user Created:   Jan 13, 2016 ISO 27001 & 22301
Replies: 2
0 0

BIA and RA