🔄
← Back to Standards
Certifiable
ISO 22301
Security and resilience - Business continuity management systems - Requirements
Organization: ISO • Category: Business Continuity
1
Related Articles
0
Articles with Obligations
7
Key Sections
8
Coverage Areas
Overview
Specifies requirements for a business continuity management system (BCMS) to protect against, prepare for, respond to, and recover from disruptive incidents. Essential for maintaining critical operations during cybersecurity incidents.
Applicability
Business continuity and resilience planning for all organizations
Relevance to Digital Services Act (DSA)
Key Coverage Areas
1
Business continuity planning
2
Business impact analysis
3
Risk assessment and treatment
4
Incident response procedures
5
Recovery time objectives (RTO)
6
Recovery point objectives (RPO)
7
Testing and exercising plans
8
Continuous improvement
Standard Sections & Chapters
4
Context of the organization
5
Leadership and commitment
6
Planning (risk assessment, BIA)
7
Support and resources
8
Operation (incident response, recovery)
9
Performance evaluation
10
Improvement
Related Digital Services Act (DSA) Articles
Article 35: Mitigation of risks
View Article →
Sections: 6, 8
Business continuity for resilience
Implementation Guidance:
Ensure business continuity as part of risk mitigation
Quick Information
- Organization
- ISO
- Category
- Business Continuity
- Certification
- ✓ Available