Business Continuity Management in ISO 27002:2022
In February 2022, ISO 27002 "Information security, cybersecurity and privacy protection - Information security controls" was updated and replaces its predecessor from 2013 with the 2022 version. ISO 27002 is the guidance for implementing the requirements from ISO 27001 and consequently is not itself a certification standard. Certification continues to [...]
High availability and disaster recovery: What lies ahead for IT in 2022
In 2021, IT teams had to cope with enormous changes and protect their critical operations against unprecedented threats from Covid, natural disasters, supply chain disruptions and staff shortages. Many moved mission-critical systems to the cloud and hybrid cloud and implemented advanced, application-specific high-availability clustering and disaster recovery solutions. The impact [...]
The growing importance of Business Continuity Management in the context of a TISAX certification
TISAX requires business continuity management through the requirements for exceptional situations, where the focus there is on information security related scenarios. This includes the requirement for a functioning crisis team as well as regular emergency exercises. Fulfilling this requirement through a structured, consistent BCMS gives the greatest assurance that the required business continuity and crisis management measures are in place and effective.
Critical Infrastructures
Definition of critical infrastructures and their sectors Critical infrastructures (CRITIS) are, according to the German Federal Ministry of the Interior, for Construction and Homeland, "organizations and facilities of major importance to the state community, the failure or impairment of which would cause lasting supply bottlenecks, significant disruptions to public safety [...]
Leading – differences between bcm and administrative crisis management
Business continuity management can also mean "emergency and crisis management". We also find this term in the administrative sector, as in the work of civil protection. But is leadership in the event of crises really the same? This short article is intended to highlight individual differences and similarities between these [...]
The crises team
A crisis team is a group of people with decision-making authority who plan and implement the management of a crisis. Other names are a staff for extraordinary events or a task force. No matter what such a group is called, it must have decision-making capability and be responsible for managing [...]