Business Continuity Management

Business Continuity Management in ISO 27002:2022

By |2022-03-07T15:52:25+01:00 7 March, 2022|News, Norms & Standards|

In February 2022, ISO 27002 "Information security, cybersecurity and privacy protection - Information security controls" was updated and replaces its predecessor from 2013 with the 2022 version. ISO 27002 is the guidance for implementing the requirements from ISO 27001 and consequently is not itself a certification standard. Certification continues to be based on the ISO 27001 standard. The title of the standard has been changed (formerly: "Information technology - Security techniques - Code of practice for information security controls"), the structure of the controls has been changed, for example by assigning attributes to the individual controls and controls have been merged, the descriptions updated and controls deleted. These changes will be included in the ISO 27001 update and will be mandatory for future ISO 27001 certifications. The following controls were added: Threat intelligence Information security for use of cloud services ICT readiness for business continuity Physical security monitoring [...]

Read More
 0

Integration of ISO standards and business continuity management under the umbrella of KTQ

By |2021-09-27T10:49:45+02:00 24 September, 2021|Norms & Standards|

The "Cooperation for Transparency and Quality in Healthcare", (german: Kooperation für Transparenz und Qualität im Gesundheitswesen, KTQ), offers a voluntary certification system, according to which hospitals and other companies in the healthcare sector can be certified. Here, certification according to KTQ offers multiple advantages, as it is specifically tailored to hospitals. The standard is based on a PDCA approach with the patient at its center. This is also where the great strengths of certification according to KTQ lie: employees and patients are at the center and are core areas of KTQ. Both documentation and practice audits are conducted by medical, nursing and economic assessors. This strength also acts as a serious disadvantage for partial aspects of certification, because technical aspects remain in the background. For the inspection within the scope of the certification, about 1.5 hours are planned in the sample inspection plan for the following topics: Overview [...]

Read More
Comments Off on Integration of ISO standards and business continuity management under the umbrella of KTQ

I think I´m having a crisis

By |2021-09-08T10:19:33+02:00 8 September, 2021|Interest|

The concept of crisis in everyday language use and the actual definition. Crisis is a frequently used term, but it has different meanings. Similarly, emergency and disaster are often used in different contexts. The map of terms shows the escalation of an event to a disaster. An event can be evaluated both positively and negatively. This means that the occurrence of an event does not generally cause damage, but can also be an impetus or an opportunity that moves the company forward. For example, a phone call can contain both good and bad news and is evaluated as an event in both cases. An incident, on the other hand, is the negative escalation of an event. It is a deviation from the normal state, but without causing massive damage. In a company, both an incident and a negative event can be handled with the general organizational structure (line [...]

Read More
 0

Totally normal? The BCM standards at a glance

By |2021-09-06T12:36:29+02:00 6 September, 2021|Interest|

What is actually normal? - Normal" is the term used to describe what is usual or what corresponds to the expectation. Something is also called "normal" if it conforms to a norm. A norm is generally seen as something very rigid, but a crisis is anything but. Above all, it is dynamic, constantly evolving, and does not seem to be manageable with a rigid solution. So how can a norm be used in a crisis? And why should a functioning business continuity management (BCM) standard be used as a foundation? A standard can help manage a crisis, especially if it is designed to be very flexible, like DIN EN ISO 22301. It provides a framework for building resilient structures that are necessary for crisis management. In addition, preparedness is also an essential contribution that DIN EN ISO 22301 provides for BCM, so that crises can even be prevented [...]

Read More
 0
Copyright IUGITAS GmbH | Alle Rechte vorbehalten | Impressum | Datenschutz
Go to Top