NF ISO 22301

NF ISO 22301

August 2013
Standard Cancelled

Societal security - Business continuity management systems - Requirements

ISO 22301:2012 specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise. The requirements specified in ISO 22301:2012 are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization's operating environment and complexity.

See more
View the extract
Main informations

Collections

National standards and national normative documents

Thematics

Management et performance, QSE, Sécurité, Développement durable et RSE

Publication date

August 2013

Number of pages

39 p.

Reference

NF ISO 22301

ICS Codes

03.100.01   Company organization and management in general
03.100.70   Management systems

Classification index

Z74-306

Print number

1 - 15/07/2013

International kinship

ISO 22301:2012
Sumary
Societal security - Business continuity management systems - Requirements

ISO 22301:2012 specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise.

The requirements specified in ISO 22301:2012 are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization's operating environment and complexity.

Standard replaced by (1)
NF EN ISO 22301
November 2014
Standard Cancelled
Societal security - Business continuity management systems - Requirements

<p>ISO 22301:2012 specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise.</p> <p>The requirements specified in ISO 22301:2012 are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization's operating environment and complexity.</p>

Table of contents
View the extract
  • Avant-propos
    iv
  • 0 Introduction
    v
  • 0.1 Généralités
    v
  • 0.2 Le modèle Planifier-Déployer-Contrôler-Agir (Plan -Do-Check-Act, PDCA)
    vi
  • 0.3 Éléments du modèle PDCA dans la présente Norme internationale
    vii
  • 1 Domaine d'application
    1
  • 2 Références normatives
    1
  • 3 Termes et définitions
    2
  • 4 Contexte de l'organisation
    9
  • 4.1 Compréhension de l'organisation et de son contexte
    9
  • 4.2 Compréhension des besoins et attentes des parties intéressées
    10
  • 4.3 Détermination du domaine d'application du système de management de la continuité d'activité
    10
  • 4.4 Système de management de la continuité d'activité
    11
  • 5 Leadership
    11
  • 5.1 Leadership et engagement
    11
  • 5.2 Engagement de la direction
    12
  • 5.3 Politique
    13
  • 5.4 Rôles, responsabilités et autorités au sein de l'organisation
    13
  • 6 Planification
    13
  • 6.1 Actions face aux risques et opportunités
    13
  • 6.2 Objectifs de continuité d'activité et plans pour les atteindre
    14
  • 7 Support
    14
  • 7.1 Ressources
    14
  • 7.2 Compétences
    15
  • 7.3 Sensibilisation
    15
  • 7.4 Communication
    15
  • 7.5 Informations documentées
    16
  • 8 Fonctionnement
    17
  • 8.1 Planification opérationnelle et maîtrise
    17
  • 8.2 Analyse des impacts sur l'activité et appréciation du risque
    18
  • 8.3 Stratégie de continuité d'activité
    19
  • 8.4 Établissement et mise en oeuvre de procédures de continuité d'activité
    20
  • 8.5 Exercices et tests
    23
  • 9 Évaluation des performances
    23
  • 9.1 Supervision, mesurage, analyse et évaluation
    23
  • 9.2 Audit interne
    24
  • 9.3 Revue de direction
    25
  • 10 Amélioration
    27
  • 10.1 Non-conformité et actions correctives
    27
  • 10.2 Amélioration continue
    28
  • Bibliographie
    29
ZOOM ON ... the Requirements department
To comply with a standard, you need to quickly understand its issues in order to determine its impact on your activity.

The Requirements department helps you quickly locate within the normative text:
- mandatory clauses to satisfy,
- non-essential but useful clauses to know, such as permissions and recommendations.

The identification of these types of clauses is based on the document “ISO / IEC Directives, Part 2 - Principles and rules of structure and drafting of ISO documents ”as well as on a constantly enriched list of verbal forms.

With Requirements, quickly access the main part of the normative text!

With Requirements, quickly access the main part of the normative text!
Need to identify, monitor and decipher standards?

COBAZ is the simple and effective solution to meet the normative needs related to your activity, in France and abroad.

Available by subscription, CObaz is THE modular solution to compose according to your needs today and tomorrow. Quickly discover CObaz!

Request your free, no-obligation live demo

I discover COBAZ