How to define activities when implementing business continuity according to ISO 22301
Dejan Kosutic
In several places in ISO 22301, it is required to define the activities within the company; not only this, activities...
In several places in ISO 22301, it is required to define the activities within the company; not only this, activities are a basic unit upon which the business impact analysis is made. So what are...
NFPA 1600 vs. ISO 22301 – Similarities and differences
If you are a business continuity practitioner in the U.S., you’re probably wondering which standard to apply – NFPA 1600...
If you are a business continuity practitioner in the U.S., you’re probably wondering which standard to apply – NFPA 1600 or ISO 22301. After all, they are both business continuity standards, and they both have...
The purpose of Business continuity policy according to ISO 22301
Why would you need a Policy once you have Business impact analysis, Business continuity strategy and Business continuity plan? This...
Why would you need a Policy once you have Business impact analysis, Business continuity strategy and Business continuity plan? This is probably a question many experienced business continuity/disaster recovery practitioners are asking themselves, so here’s...
ISO 22301 vs. ISO 22313
I was quite skeptical when I started to read ISO 22313, the guidance standard on business continuity management, but I...
I was quite skeptical when I started to read ISO 22313, the guidance standard on business continuity management, but I was proved to be wrong. It can be quite useful as a supplement to ISO...
Backup policy – How to determine backup frequency
Did you think that the frequency of backup is based on the IT manager’s whims? Or, perhaps, based on the...
Did you think that the frequency of backup is based on the IT manager’s whims? Or, perhaps, based on the least expensive solution? Well, you are wrong. Backup policy, or to be precise – the...
5 criteria for choosing an ISO 22301 / ISO 27001 consultant
If you’re implementing ISO 27001 or ISO 22301 for the first time, you’re probably considering hiring a consultant to help...
If you’re implementing ISO 27001 or ISO 22301 for the first time, you’re probably considering hiring a consultant to help you. But, which consultant should you hire, what are the potential problems, and how much...
ISO 22301 vs. BS 25999-2 – An Infographic
A new business continuity standard (ISO 22301) was published very recently, so I’ve decided to compare this new standard with...
A new business continuity standard (ISO 22301) was published very recently, so I’ve decided to compare this new standard with the old BS 25999-2 standard. Feel free to add comments below! __ Click here...
Who are interested parties, and how can you identify them according to ISO 27001 and ISO 22301?
Updated: November 17, 2022. One of the hot questions these days is related to clause 4.2 in both ISO 27001 and...
Updated: November 17, 2022. One of the hot questions these days is related to clause 4.2 in both ISO 27001 and ISO 22301 – Understanding the needs and expectations of interested parties. Actually, their identification is...
RTO and RPO: What is the difference between Recovery Time Objective and Recovery Point Objective?
Updated: December 13, 2023. When developing Business Continuity Plans (BCPS) or Disaster Recovery Plans (DRPs), two terms appear quite often:...
Updated: December 13, 2023. When developing Business Continuity Plans (BCPS) or Disaster Recovery Plans (DRPs), two terms appear quite often: Recovery Time Objective (RTO) and Recovery Point Objective (RPO). While paramount to the definition of...
