Extract from ‘The Route Map to Business Continuity Management: Meeting the british standard, BS and builds on the success and fundamentals of. It has been more than three years since BS part two was published and with a new International Standard (ISO) on the horizon; BSI’s scheme manager. BS • Code of practice for business continuity management. ▫ Establishes the BCM processes, principles and terminology. ▫ Provides a basis for.

Author: Zolokinos Nizragore
Country: South Africa
Language: English (Spanish)
Genre: Photos
Published (Last): 6 February 2009
Pages: 311
PDF File Size: 9.99 Mb
ePub File Size: 2.58 Mb
ISBN: 991-3-38830-166-8
Downloads: 10713
Price: Free* [*Free Regsitration Required]
Uploader: Kall

BS 25999 and its Contribution to Business Continuity Management

The transition period effectively lasts two years, with no BS certificates being issued after Maythough by continuify folks really should be certifying to ISO ! Have questions about any step? In this book Dejan Kosutic, an author and experienced ISO consultant, is giving away his practical know-how on managing documentation.

Human resources management Business impact analysis and risk assessment Defining business continuity strategy Business continuity plans Maintenance of plans and systems; improvement Human resources management The standard states that it is essential to determine the necessary knowledge and skills, to identify the necessary training sessions, to conduct such training sessions, to check whether the required knowledge and skills have been achieved, and to keep records.

The second part of BS BS Views Read View buusiness View history. What is ISO bss-25999 The point of these four phases is that the system is continually updated and improved in order to be usable when a disaster occurs.

ISO Gap Analysis Tool An ISO tool, like our free gap analysis tool, can help you see how much of ISO you have implemented so far — whether you are just getting started, or nearing the end of your journey. BCM has seen anacceleration in maturity since the publication of BS and I have no doubt that will continue in the future.

ISO Business Continuity Standard 22301 to replace BS 25999-2

The strategy is determined on the basis of the results of risk assessment and business impact analysis, and usually involves alternative locations, data recovery options, recovery of human resources, communications, equipment, management of suppliers and outsourcing partners, etc. In this book Dejan Kosutic, an author and experienced information security consultant, is giving away all his practical know-how on successful ISO implementation.


Looking backwards, BS was the vanguard; a brave step outside the closeted, cosy world of BCM and into the realm of management system standards. No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn more about certification audits.

Without any stress, hassle or headaches. Sustainability of international supply is such a key risk for those who have extended supply chains; the ISO will help bridge the understanding of BCM and promote global acceptance of terms and indeed of expectations.

A strategy refers to defining how an organization will recover in case of disaster. Retrieved from ” http: A practitioners guide to business continuity management HB The first part of BS BS Based on such assessment, the organization determines how to reduce the probability of risk, and how it will be mitigated if it should occur.

No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn on how to handle ISO documents. No prior knowledge in information security and ISO standards is needed. With the transition period agreed with UKAS, there is that time to enable a properly managed transfer to ISOperhaps including further reviews and updates to the planning and its scope.

An incident response plan must specify the manner of determining types of incidents, communication channels, types of response, responsibility, etc.

Just like ISOISOISO and other standards that define management systems, BS also defines a business continuity management system which contains the same four management phases: Articles Recognising threat – the importance of pre-incident surveillance.

Hosting services provided manatement Learning center What is ISO ? The assessor will then make a recommendation that the organization receive certification or not.

In addition, as part of the ISO framework of standards, the new format helps create opportunities to manage what have often been independent systems in a more integrated way through common terms and processes.

BS and its Contribution to Business Continuity Management | BSI Group Middle East and Africa

It also recognises that the detailed ISO Guidance Documents will not be available until early next year. Defining the business continuity strategy Conntinuity strategy refers to defining how an organization will recover in case of disaster.

If you would like to comment or if you require any more information please do get in touch with us directly here!


The following are some of the key procedures and documents required by BS Regular exercising and testing of plans to make staff more familiar with the plans and to check how up to date they are Conducting internal audits at regular intervals Management reviews to ensure that the BCMS is functioning and to make appropriate improvements Taking preventive and corrective actions to improve not only plans, but also other elements of the system Documentation BS requires the following documents: Both parts of the standard are likely to be revised and it may ultimately be incorporated into other national or international standards.

Business impact analysis and risk assessment Business impact analysis deals with important activities in an organization, defines the maximum tolerated period of disruption, describes the interdependence of individual actions, determines which activities are critical, explores the existing arrangements with suppliers and outsourcing partners, and finally, sets the recovery time objective. Already many organisations are wondering how this may affect their current Business Continuity Management programmes, especially if they either have, or are working towards what has proven to be the worlds most popular Standard BS It was the development of BSthat delivered both Guidance and Requirement aspects, that has laid the foundation of much of the development of wider adoption of Business Continuity.

Certification independent verification to this standard is available from certification bodies accredited by the United Kingdom Accreditation Service UKAS and is a multi stage process usually involving a number of assessment visits. Code of Practice”, takes the form of general guidance and seeks to establish processes, principles and terminology for Business Continuity Management.

Or you find it very difficult to explain to your management what the consequences could be if an incident occurs?. Other useful standards are ISOwhich places business continuity in a broader context of information security, and ISOwhich gives a detailed description of the risk assessment process.

Table of contents Introduction Key procedures Documentation Related standards. No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn and more about internal audits. What is BS ?