Back to AIM Matrix

Business Continuity

Download PDF

ISO/IEC 27031

Title / definition

ISO/IEC 27031:2011 — Information technology — Security techniques — Guidelines for information and communication technology readiness for business continuity




ISO/IEC 27031:2011 is owned by the International Standards Organization (ISO) and the International Electro technical Commission (IEC).

The International Organization for Standardization (ISO) is the world’s largest developer and publisher of International Standards.ISO is a network of the national standards institutes of 163 countries, one member per country, with a Central Secretariat in Geneva, Switzerland, that coordinates the system.ISO is a non-governmental organization that forms a bridge between the public and private sectors.


Brief history and description

ISO/IEC 27031:2011 describes the concepts and principles of information and communication technology (ICT) readiness for business continuity. It provides a framework of methods and processes to identify and specify all aspects for improving an organization’s ICT readiness to ensure business continuity.

The scope of ISO/IEC 27031:2011 encompasses all events and incidents (including security related) that could have an impact on ICT infrastructure and systems.

Related standards:

ISO/IEC 24762:2008 Information technology — Security techniques — Guidelines for information and communications technology disaster recovery services. Offers guidance on the information and communications technologies and services necessary for disaster recovery (ICT DR) as part of business continuity management.

ISO/IEC 27001:2005, Information technology – Security techniques – Information security management systems – Requirements, and

ISO/IEC 27002:2005, Information technology – Security techniques – Code of practice for information security management.

Target Audience

Managers and members of staff involved in Business continuity and IT Service Continuity processes.

User communities and groups


Official publisher

The International Organization for Standardization (ISO). Standards and all other related and supporting documentation can be purchased from the official ISO site.

Accreditations and qualifications

Although certification is not a requirement of any of ISO’s management system standards, different types of conformity assessments exist in the market. ISO refers to the ISO document ISO/IEC 17000:2004 for more guidance..




Official Sites ISO standards home page
User groups and communities n/a
Publications ISO store
Accreditations and Qualifications n/a
Tooling n/a
Other useful links IBPI home page