Browse Definitions :
Definition

ISO 22330

Contributor(s): Matthew Haughn

ISO 22330 is a set of standard guidelines for managing the personal side of business continuity/disaster recovery (BC/DR) in response to events that could be detrimental to employee safety and productivity. The standards publication is a creation of the International Organization for Standardization, who published the ISO 22330 guidelines in June 2018.

This collection of guidelines seeks to address the human aspect of managing crisis and stressful situations affecting BC/DR. The standards are made to create preparedness and structure in order to respond to events that might otherwise affect the productivity of the staff and thus affect the BC/DR abilities and sustainability of the organization as a whole.

Guidelines and phases for ISO 22330

The guidelines are divided into phases in relation to occurrences of disruptive events. These phases include:

  • Pre-event preparation – involves the prediction, awareness and analysis of requirements, learning and development.
  • Response – includes dealing with the immediate effects of a crisis, which is often prepared for through crisis simulations, BC/DR planning and training exercises.
  • Recovery – consists of managing people and assisting in crisis response, including addressing injuries or trauma.
  • Restoration – involves rebuilding following the crisis and implementing ongoing support for employees with lasting injuries, including offering counseling for problematic trauma.

The value of preparedness is usually not obvious until after a crisis. While traditional efforts for BC and DR focused on facilities and processes, organizations have learned from shared histories that this only addresses part of the possible problems. The ISO 22330 guidelines affirm people as the greatest asset to a business and support their safety and well-being as integral aspects of business continuity and disaster recovery.

This was last updated in September 2018

Continue Reading About ISO 22330

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • DMZ (networking)

    In computer networks, a DMZ (demilitarized zone), also sometimes known as a perimeter network or a screened subnetwork, is a ...

  • quantum supremacy

    Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classic computers by ...

  • Australian Assistance and Access Bill

    The Australian Assistance and Access Bill is legislation introduced and passed in 2018 by the Parliament of Australia to support ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

Close