ISO-PAS-22399-2007.pdf
《ISO-PAS-22399-2007.pdf》由会员分享,可在线阅读,更多相关《ISO-PAS-22399-2007.pdf(40页珍藏版)》请在三一文库上搜索。
1、 Reference number ISO 22399:2007(E) ISO 2007 PUBLICLY AVAILABLE SPECIFICATION ISO/PAS 22399 First edition 2007-12-01 Societal security Guideline for incident preparedness and operational continuity management Scurit socitale Lignes directrices pour tre prpar un incident et gestion de continuit oprat
2、ionnelle Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=IHS Employees/1111111001, User=Japan, IHS Not for Resale, 12/17/2007 19:43:12 MSTNo reproduction or networking permitted without license from IHS -,-,- ISO 22399:2007(E) PDF disclaimer T
3、his PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept t
4、herein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file;
5、 the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. COPYRIGHT PROTECTED DO
6、CUMENT ISO 2007 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member bo
7、dy in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO 2007 All rights reserved Copyright International Organization for Standardization Provided b
8、y IHS under license with ISO Licensee=IHS Employees/1111111001, User=Japan, IHS Not for Resale, 12/17/2007 19:43:12 MSTNo reproduction or networking permitted without license from IHS -,-,- ISO 22399:2007(E) ISO 2007 All rights reserved iii Contents Page Foreword iv Introduction v 1 Scope . 1 2 Norm
9、ative references. 2 3 Terms and definitions. 2 4 General. 8 5 Policy . 9 5.1 Establishing the program 9 5.2 Defining program scope 9 5.3 Management leadership and commitment. 10 5.4 Policy development 10 5.5 Policy review . 10 5.6 Organizational structure for implementation. 11 6 Planning. 11 6.1 Ge
10、neral. 11 6.2 Legal and other requirements . 11 6.3 Risk assessment and impact analysis . 12 6.4 Hazard, risk, and threat identification. 12 6.5 Risk assessment. 12 6.6 Impact analysis. 12 6.7 Incident preparedness and operational continuity management programs 13 7 Implementation and operation 17 7
11、.1 Resources, roles, responsibility and authority . 17 7.2 Building and embedding IPOCM in the organizations culture 17 7.3 Competence, training and awareness 18 7.4 Communications and warning 18 7.5 Operational control. 19 7.6 Finance and administration. 20 8 Performance assessment 20 8.1 System ev
12、aluation 20 8.2 Performance measurement and monitoring 20 8.3 Testing and exercises 21 8.4 Corrective and preventive action 21 8.5 Maintenance 22 8.6 Internal audits and self assessment. 22 9 Management review 23 Annex A (informative) Impact analysis procedure 24 Annex B (informative) Emergency resp
13、onse management program 26 Annex C (informative) Continuity management program 28 Annex D (informative) Building an incident preparedness and operational continuity culture. 30 Bibliography. 31 Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=I
14、HS Employees/1111111001, User=Japan, IHS Not for Resale, 12/17/2007 19:43:12 MSTNo reproduction or networking permitted without license from IHS -,-,- ISO 22399:2007(E) iv ISO 2007 All rights reserved Foreword ISO (the International Organization for Standardization) is a worldwide federation of nati
15、onal standards bodies (ISO member bodies). The work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a technical committee has been established has the right to be represented on that committee. Internat
16、ional organizations, governmental and non-governmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization. International Standards are drafted in accordance with the ru
17、les given in the ISO/IEC Directives, Part 2. The main task of technical committees is to prepare International Standards. Draft International Standards adopted by the technical committees are circulated to the member bodies for voting. Publication as an International Standard requires approval by at
18、 least 75 % of the member bodies casting a vote. In other circumstances, particularly when there is an urgent market requirement for such documents, a technical committee may decide to publish other types of normative document: an ISO Publicly Available Specification (ISO/PAS) represents an agreemen
19、t between technical experts in an ISO working group and is accepted for publication if it is approved by more than 50 % of the members of the parent committee casting a vote; an ISO Technical Specification (ISO/TS) represents an agreement between the members of a technical committee and is accepted
20、for publication if it is approved by 2/3 of the members of the committee casting a vote. An ISO/PAS or ISO/TS is reviewed after three years in order to decide whether it will be confirmed for a further three years, revised to become an International Standard, or withdrawn. If the ISO/PAS or ISO/TS i
21、s confirmed, it is reviewed again after a further three years, at which time it must either be transformed into an International Standard or be withdrawn. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held respo
22、nsible for identifying any or all such patent rights. ISO/PAS 22399 was prepared by Technical Committee ISO/TC 223, Societal security. It includes parts of NFPA 1600:2004, BS 25999-1:2006, HB 221:2004, INS 24001:2007 and the compiled work of the Japanese Industrial Standards Committee. Copyright Int
23、ernational Organization for Standardization Provided by IHS under license with ISO Licensee=IHS Employees/1111111001, User=Japan, IHS Not for Resale, 12/17/2007 19:43:12 MSTNo reproduction or networking permitted without license from IHS -,-,- ISO 22399:2007(E) ISO 2007 All rights reserved v Introdu
24、ction This incident preparedness and operational continuity guideline establishes the process, principles and terminology of incident preparedness and operational (business) continuity management (IPOCM) within the context of societal security. The purpose of this guideline is to provide a basis for
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- ISO PAS 22399 2007
链接地址:https://www.31doc.com/p-3780363.html