UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO - TS 22317

Security and resilience — Business continuity management systems — Guidelines for business impact analysis

active, Most Current
Organization: ISO
Publication Date: 1 November 2021
Status: active
Page Count: 46
ICS Code (Company organization and management in general): 03.100.01
scope:

This document gives guidelines for an organization to implement and maintain a formal and documented business impact analysis (BIA) process appropriate to its needs. It does not prescribe a uniform process for performing a BIA.

This document is applicable to all organizations regardless of type, size and nature, whether in the private, public or not-for-profit sectors. The guidance can be adapted to the needs, objectives, resources and constraints of the organization.

Document History

TS 22317
November 1, 2021
Security and resilience — Business continuity management systems — Guidelines for business impact analysis
This document gives guidelines for an organization to implement and maintain a formal and documented business impact analysis (BIA) process appropriate to its needs. It does not prescribe a uniform...
ISO TS 22317
September 15, 2015
Societal security - Business continuity management systems - Guidelines for business impact analysis (BIA)
This Technical Specification provides guidance for an organization to establish, implement, and maintain a formal and documented business impact analysis (BIA) process. This Technical Specification...

References

This document references:
ISO 22300 - Security and resilience — Vocabulary
Published by ISO on February 1, 2021
This document defines terms used in security and resilience standards.
This document references:
ISO 22301 - Security and resilience — Business continuity management systems — Requirements
Published by ISO on October 1, 2019
This document specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from...
This document references:
ISO 22313 - Security and resilience — Business continuity management systems — Guidance on the use of ISO 22301
Published by ISO on February 1, 2020
This document gives guidance and recommendations for applying the requirements of the business continuity management system (BCMS) given in ISO 22301. The guidance and recommendations are based on...
This document references:
ISO TS 22331 - Security and resilience - Business continuity management systems - Guidelines for business continuity strategy
Published by ISO on October 1, 2018
This document gives guidance for business continuity strategy determination and selection. It is applicable to all organizations regardless of type, size and nature, whether in the private, public or...
This document is referenced by:
ISO TS 22318 - Societal security - Business continuity management systems - Guidelines for supply chain continuity
Published by ISO on September 1, 2015
This Technical Specification gives guidance on methods for understanding and extending the principles of BCM embodied in ISO 22301 and ISO 22313 to the management of supplier relationships. This...
This document is referenced by:
ISO/IEC 27002 - Information technology - Security techniques - Code of practice for information security controls TECHNICAL CORRIGENDUM 2
Published by ISO on November 15, 2015
A description is not available for this item.
This document is referenced by:
CLC/TS 50600-2-10 - Information technology - Data centre facilities and infrastructures Part 2-10: Earthquake risk and impact analysis
Published by CEI on January 1, 2022
This document provides requirements and recommendations for the type of risk assessment to be employed concerning seismic activity and earthquakes in relation to data centres. In addition, it...
This document is referenced by:
ISO/IEC TS 22237-30 - Information technology — Data centre facilities and infrastructures — Part 30: Earthquake risk and impact analysis
Published by ISO on March 1, 2022
This document specifies requirements and recommendations for the type of risk assessment to be employed concerning seismic activity and earthquakes in relation to data centres. In addition, it...
This document is referenced by:
BS EN 50600-1 - TC - Tracked Changes (Redline) - Information technology - Data centre facilities and infrastructures Part 1: General concepts
Published by BSI on February 24, 2020
A description is not available for this item.
View Less
View All
Advertisement