July 28, 2014

BSI ISO 22301 Now Available for Purchase

iso_logo_landscape

In response to several requests from our readers, our staff would like to announce that business continuity managers and planning teams can now purchase the new international standard for business continuity management (ISO 22301:2012 "Societal Security, Business Continuity Management Systems Requirements") from BSI.  Click here to do so…. The BSI group references the standard as BS ISO 22301 and points out that this new standard identifies the fundamentals of business continuity management and provides a basis for understanding, developing and implementing a business continuity management … [Read more...]

Regulatory Compliance Requires Solid Understanding of Standards, Policies and Procedures

Photo courtesy of ugraphic.net

Compliance and regulatory requirements facing today’s enterprise organizations seems to be growing and putting more pressure on both information and physical security practices than they can keep up with – both in time and the money needed to mitigate these ongoing potential risks. In an article written by Ericka Chickowski, she states that the key to bringing equilibrium to this challenge is by having unified policies that can guide security standards and procedures to both minimize risk and comply with regulations now and in the future. Chickowski’s article does a nice job in listing … [Read more...]

Business Continuity: Legislations, Regulations, Standards and Guidelines

This website is often asked about finding a single source listing or documentation about current legislation, regulation and standards that exist nationally and internationally for and about Business Continuity and the management of the same.  While we realize that because there are regular changes and amendments at a country level and often inconsistent terminology between countries, sectors and legislators, it is difficult if not impossible to provide a definitive list of those regulations and standards.  However, our staff would like to present for consideration a document organized and … [Read more...]

PS-Prep Update – Possible Next Step: Auditor Training?

Lisa DuBrock, Contributing Editor Now that the comment period on the three DHS proposed standards has closed, focus likely turns to the ANSI National Accreditation Board (ANAB) and the development of an accreditation rule.  As a subset of that accreditation rule, qualifications are also most likely to be developed regarding the requirements for an individual to become a PS-Prep auditor.    Early indications are that ANAB, on behalf of the PS-Prep Program, will require auditors to have knowledge of at least one, two or all of the three proposed standards as well as ISO (International … [Read more...]

PS-Prep, Capability Maturity Models and Standards

Contributing Writer, Donald Byrne, CBCP, CDCP, CBRO-M, Lead Auditor As part of the PS-Prep posting in the October 16 issue of the Federal Register (Vol. 74, No 199 Page 53288) the Department of Homeland Security posted seven questions for which they are seeking public feedback. The sixth question dealt with the feasibility of using a capability maturity model (CMM) as part of the certification process. This article addresses this question and provides my perspective as a UKAS approved auditor on this topic. Some History The concept of a capability maturity model was developed in the late … [Read more...]