(ISO/IEC: Geneva, Switzerland) -- From fires to earthquakes to pandemics, businesses and other organizations may become the victims of disaster at any time. To deal with the unexpected and safeguard the interests of their stakeholders, as well as their reputation, brand and value-creating activities, a new ISO/IEC international standard will help them mitigate risks and be prepared to respond to crises.

ISO/IEC 24762:2008, “Information technology—Security techniques—Guidelines for information and communications technology disaster recovery services” aims to offer guidance on the information and communications technologies and services necessary for information and communications technology disaster recovery (ICT DR) as part of business continuity management. With this guidance, the standard supports the operation of an information security management system (ISMS) by addressing the information security and availability aspects of business continuity management in times of crisis.

A business continuity plan comprises an organization’s strategies to prepare for future national, regional or local crises that could jeopardize its capacity to continue with its core mission, as well as its long term stability.

According to ISO/IEC 24762:2008, business continuity management is an integral part of any holistic risk management process and involves:

 …