ISO27031 (ISO/IEC 27031) Guidelines for ICT Readiness for Business Continuity
Guidelines for information and communication technology readiness for business continuity
ISO27031 encompasses information and communication technology (ICT) preparedness for business continuity, and provides a framework of methods and processes (including performance criteria, design and implementation) for developing an organisation’s ICT Readiness for Business Continuity (IRBC) programme.
ISO27031 is applicable to any organisation requiring its ICT services and infrastructures to be ready to support business operations in the event of disruption. It also allows an organisation to assess if performance parameters correlate to its IRBC in a consistent and recognised manner.
The scope of ISO27031 encompasses all events and incidents that could have an impact on ICT infrastructure and systems in organisations of all kinds (whether private, governmental or non-governmental) and regardless of size. It includes and extends the practices of information security incident handling and management and ICT readiness planning and services.
ISO27031 at a glance:
- ISO27031 provides a framework of methods and processes to identify and specify all aspects for improving an organisation’s ICT readiness to ensure business continuity.
- ISO27031 provides a bridge between general business continuity management and information technology, tying together BS25999, ISO/IEC 27001 and ISO/IEC 24762 to information and communications technology (ICT) business continuity preparedness.
- ISO27031 will help you and your organisation understand the threats to, and vulnerabilities of, ICT services, enabling you to ensure that your organisation is guarded against such threats and vulnerabilities, and ensuring your safety in the event of an unplanned incident.