ISO/IEC 27031:2011 - Information Technology - Security Techniques - Guidelines for information and communication technology readiness for business continuity Standard.
Best-practice guidelines to make sure your IT services are ready to support the wider Business Continuity plan in the event of organisational disruption
ISO/IEC 27031 encompasses information and communication technology (ICT) preparedness for business continuity, and provides a framework of methods and processes (including performance criteria, design and implementation) for developing an organisation's ICT Readiness for Business Continuity (IRBC) programme.
ISO/IEC 27031 is applicable to any organisation requiring its ICT services and infrastructures to be ready to support business operations in the event of disruption. It also allows an organisation to assess if performance parameters correlate to its IRBC in a consistent and recognised manner.
The scope of ISO/IEC 27031 encompasses all events and incidents that could have an impact on ICT infrastructure and systems in organisations of all kinds (whether private, governmental or non-governmental) and regardless of size. It includes and extends the practices of information security incident handling and management and ICT readiness planning and services.