ISO 24762 PDF

Information Technology – Security Techniques – Guidelines for Information and Communications Technology Disaster Recovery Services. ISO/IEC. First edition. Information technology — Security techniques — Guidelines for information and communications technology disaster. ISO defines requirements for implementing, operating, monitoring and maintaining ICT disaster recovery services for ICT disaster recovery and ICT.

Author: Milkis Tygok
Country: Malta
Language: English (Spanish)
Genre: Photos
Published (Last): 23 May 2009
Pages: 169
PDF File Size: 7.71 Mb
ePub File Size: 8.10 Mb
ISBN: 231-9-84092-791-7
Downloads: 56795
Price: Free* [*Free Regsitration Required]
Uploader: Nikorisar

Examples of such organization requirements may include special encryption software and secured operation procedures, equipment, knowledgeable personnel and application documentation.

ISO 24762 for IT Disaster Recovery

Worldwide Standards We can source any standard from anywhere in the world. Guidelines for information and communications technology disaster recovery services. Search all products by. It also allows organizations make an informed selection of employees or services based on the competencies that are represented by the iao designation. Besides covering basic physical facility requirements, requirements for environmental controls, telecommunications, continuous power supply and non-recovery amenities such as parking and accessibility to food and drinks also need to be considered.

ICT DR service provision, irrespective of whether it is provided in-house or outsourced, should follow best practice guidelines as outlined in this clause. Take the smart route to manage medical device compliance. A new standard, ISOwill help businesses deal with the unexpected and safeguard their reputation, brand, and value-creating activities. Personal comments It is unclear how valuable this standard is, given that ISO does such a good job in this area.

ISO focuses on recovering operations during and after the loss, meanwhile ISO on processes in preparation for handling a disaster.

Lignes directrices pour les services de scours en cas de catastrophe dans les technologies de l’information et des communications. Guidelines for information and communications technology disaster recovery services Status: You may find similar items within these categories by selecting from the choices below:. Information security risk management BS Information security management is the process by which management aims to achieve effective confidentiality, integrity and availability of information and service.

Selection of recovery sites.

ISO for IT Disaster Recovery – Whittington & Associates

It specifies the requirements for implementing, operating, monitoring and maintaining ICT DR services and facilities, the capabilities which outsourced ICT DR service providers should possess and the practices they should follow. It therefore extends the practices of information security incident handling and management, ICT readiness planning and services.


This will complement their Business Continuity Management initiative to better manage relevant isl possibly interrupting their business activities and their Information Security Management initiative to effectively protect the confidentiality, integrity, and availability of information. Scope and purpose The standard encompasses all events and incidents not just information security related that could have an impact on ICT infrastructure and systems. Creative security awareness materials for your ISMS.

Six Sigma Green Belt PECB is ready to help you. For more information, see the other standards page. ICT DR service providers should interpret the intent of these guidelines within the context of the services 2462 offer. With this guidance, ISO supports the operation of an information security management system by addressing the information security and availability aspects of business continuity management in time of crisis.

Shell Georgia – ISO Service providers should continuously improve their service through the following: Jso adaption of an effective Disaster Recovery plan within an organization will have benefits in a number of areas, examples of which include: It helps define the supporting infrastructure and services capability. When an organization implements an ISMS the risks of interruptions to business activities for any reason should always be identified.

Governance, Risk and Compliance. As with all major undertakings within an organization, it is essential to gain the backing and sponsorship of the executive management.

The standard serves as a framework 24672 companies like hot site firms, cold site firms, managed services firms, collocation service providers, and alternate work space providers. ICT is prevalent and many organizations are highly 247762 on ICT supporting critical business processes; ICT also supports incident, business continuity, disaster and emergency response, and related management processes; Business continuity planning is incomplete without adequately considering and protecting ICT availability and isoo.

It covers a broad range of issues that vendors should address to ensure their service offerings are protected. By far the best way to achieve this is to illustrate the positive gains of having an effective Disaster Recovery plan in place, rather than through highlighting the negative aspects of the contrary.


The standard is especially suited to internal and outsourced ICT DR service providers of physical facilities and services as it describes the basic practices that ICT DR service providers should consider. According to ISObusiness continuity management is an integral part of any holistic risk management process and involves:. Visit our Help Center. The standard incorporates the cyclical PDCA approach, extending the conventional business continuity planning process to take greater account of ICT.

That control objective is supported by controls to be selected and implemented as part of the ISMS process. Fires, earthquakes, and pandemics, as well as, terrorism and piracy, may cause organizations to become disaster victims at ios time.

Accept and continue Learn more about the cookies we use and how to change your settings. Such additional organization specific requirements, if necessary, are isso negotiated on a 24726 basis and are 247762 subject of detailed contract negotiations between organizations and their ICT DR service providers and are not within the scope of this International Standard.

ICT Disaster Recovery facilities. Health, Safety and Environment. In planning for business continuity, the fallback arrangements for information processing and communication facilities become beneficial during periods of minor outages and essential for ensuring information and service availability during a disaster or failure for the complete recovery of activities over a period of time. Please download Chrome or Firefox or view our browser tips.

Safety measures, Data processing, Data security, Information exchange, Management operations, Risk assessment, Business continuity, Business facilities, Communication technology, Data transmission, Information.

ISO is complemented by two other standards providing control objectives for information security aspects of business continuity management to further reduce risk:. These include building construction, security measures, provision of infrastructure services such as power, water and telecommunications, and environmental controls.