GB/T 31595-2015 English PDFUS$874.00 · In stock
Delivery: <= 5 days. True-PDF full-copy in English will be manually translated and delivered via email. GB/T 31595-2015: Societal security -- Business continuity management systems -- Guidance Status: Valid
Basic dataStandard ID: GB/T 31595-2015 (GB/T31595-2015)Description (Translated English): Societal security -- Business continuity management systems -- Guidance Sector / Industry: National Standard (Recommended) Classification of Chinese Standard: A90 Classification of International Standard: 13.200 Word Count Estimation: 44,490 Date of Issue: 2015-06-02 Date of Implementation: 2016-01-01 Quoted Standard: ISO 19011; ISO 22300; ISO 22301; ISO 22398 Adopted Standard: ISO 22313-2012, IDT Regulation (derived from): National Standard Announcement 2015 No.19 Issuing agency(ies): General Administration of Quality Supervision, Inspection and Quarantine of the People's Republic of China, Standardization Administration of the People's Republic of China Summary: This Standard specifies: a) establish, implement, maintain and improve the BCMS; b) to ensure consistency with the business continuity policy of the organization; c) make a self-declaration of compliance with this standard; d) of this standard can not be used to assess the organization GB/T 31595-2015: Societal security -- Business continuity management systems -- Guidance---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.Societal security. Business continuity management systems. Guidance ICS 13.200 A90 National Standards of People's Republic of China Public Safety Business Continuity Management System Guide (ISO 22313.2012, IDT) Issued on. 2015-06-02 2016-01-01 implementation Administration of Quality Supervision, Inspection and Quarantine of People's Republic of China Standardization Administration of China released Table of ContentsIntroduction Ⅲ Introduction Ⅳ 1 Scope 1 2 Normative references 1 3 Terms and definitions 4 organizational environment 1 4.1 understand the organization and the organizational environment 1 4.2 understand the needs and expectations of stakeholders 2 4.3 determine the scope of the management system 3 4.4 Business Continuity Management System 3 5 Leadership 4 5.1 Leadership and Commitment 4 5.2 Management commitment 4 5.3 Approach 4 5.4 Role of the Organization, responsibilities and powers 5 6 5 Planning 6.1 measures to deal with risks and opportunities 5 6.2 Business Continuity objectives and implementation plan 5 7 Support 6 7.1 Resources 6 7.2 Ability 7 7.3 Awareness 8 7.4 Communication 9 7.5 archiving information 9 8 Example 11 8.1 implementation of the planning and control 11 8.2 business impact analysis and risk assessment 13 8.3 Business Continuity Strategy 15 8.4 to establish and implement business continuity program 21 Drills and tests 29 8.5 9 Performance Evaluation 30 9.1 monitoring, measurement, analysis and evaluation of 30 9.2 Internal Audit 32 9.3 Management Review 33 Improved 10 33 10.1 and corrective measures do not meet the 33 34 10.2 Continuous Improvement References 35ForewordThis standard was drafted in accordance with GB/T 1.1-2009 given rules. This standard uses the translation method identical with ISO 22313.2012 "Public Safety Business Continuity Management System Guide" (English Version), only editorial changes. Consistency in the relationship between this standard international documents and normative references of our files are as follows. --- GB/T 30146-2013 Public Safety business continuity management system requirements (ISO 22301.2012, IDT) This standard by the National Public Security Standardization Technical Committee (SAC/TC351) and focal points. This standard drafting units. China National Institute of Standardization, China Information Security Certification Center, Guangdong Development Bank, China Merchants Bank. The main drafters of this standard. Accrued Ting Qin Xin, Wei, Lin Deming, Dong Xiaoyuan, Gao Xu Lei, Xing Liqiang, Yang Branch, in particular.IntroductionGeneral This standard is appropriate, ISO 22301.2012 provides the requirements of guidelines and requirements and provide related recommendation (should) and allow (can) build Meeting. It provides general guidance is not the intent of this standard to all aspects of business continuity. The ISO 22301 standard and although the title is not the same but repeat business continuity management system requirements, terminology and definitions. organization Want to know the above, refer to ISO 22301 and ISO 22300. Illustration used in this standard is to further clarify and explain the key points. These diagrams are for illustrative purposes, with reference to the content of priority Standard text. Business Continuity Management System (BCMS) stressed the importance of the following. --- Understand the needs of the organization and the need for business continuity policy and objectives of the establishment; --- Implementation and operation of controls and the implementation of measures to manage and run the organization shall interrupt events overall capacity; --- BCMS monitor and review performance and effectiveness; --- Based on continuous improvement objective measurement. Business continuity management system is similar to other management systems, including the following key elements. a) guidelines; b) there is a clear duty personnel; c) management and process-related. 1) policy; 2) planning; 3) implementation and operation; 4) Performance Evaluation; 5) management review; 6) improvements. d) a set of documents provides audit evidence; e) any organization associated with business continuity management system processes. Business continuity for an organization is given, but in the implementation process may involve other groups and third parties. One His organization is likely to have dependent and dependent on his external organizations, business continuity, help build a more resilient society. Plan - Do - Check - PDCA model This standard uses the "plan (Plan) - implementation (Do) - Check (Check) - improvement (Act)" (PDCA) model to plan, establish, implement, transport OK, monitor, review, maintain and continually improve the effectiveness of the organization's BCMS. Figure 1 illustrates how interested parties BCMS business continuity management requirements as input and adopt the necessary measures and procedures to produce Continuous output to meet these requirements (such as controlled business continuity). Applied to the BCMS process PDCA 1 Table 1 PDCA model interpretation plan (set up) Establish and improve business continuity management related to business continuity policy, objectives, controls, processes and procedures, and to provide Organization and general policy objectives consistent results Implement (Implementation and operation) Implementation and operation of business continuity policy, controls, processes and procedures an examination (Monitoring and evaluation) Control business continuity policy and objectives, monitor and review the performance of business continuity, and report the results management for review, Identifying and authorizing the rectification and improvement measures Improve (Maintaining and improving) Based on the results of management review and re-review the scope of business continuity management system policy and objectives and take corrective measures Shi to continually improve BCMS This standard part of PDCA The standard content between chapters 1 and FIG correspondence relationship shown in the following table. Correspondence between Table 2 PDCA model and Chapter 4 to Chapter 10 PDCA part of the section that corresponds to part with PDCA composition plan (set up) Chapter 4 (environmental organization) describes what organizations do to ensure that BCMS requirements and consider All relevant external and internal factors, including. --- Stakeholder needs and expectations; --- Legal liability; --- Range BCMS required Chapter 5 (Leadership) describes managers demonstrate commitment to determine the policy, establish roles, responsibilities And powers of the critical role Chapter 6 (Planning) describe the measures needed to establish the overall strategic objectives and guiding principles of the BCMS. As business impact analysis, risk assessment (8.2) and business continuity strategy (8.3) build environment Chapter 7 (support) to identify the key elements BCMS support required, namely resources, ability, awareness, Communication and archiving information Implement (Implementation and operation) Chapter 8 (embodiment) to identify business continuity required for business continuity management (BCM) Elements an examination (Monitoring and evaluation) Chapter 9 (Performance Evaluation) provides the basis BCMS improved through performance measurement and evaluation Improve (Maintaining and improving) Chapter 10 (improvements) including corrective measures adopted for the performance assessment does not comply with the identification taken Business Continuity Business continuity is interrupted after the incident, the organization continuously deliver products at an acceptable level of pre-determined or providing services ability. BCM is the process of achieving business continuity and organizational preparation processing may hamper achieving its objectives interrupt event. The BCM management framework and principles set down to establish BCMS, so BCM controllable, measurable and sustainable improvements. This standard, the term refers to the business organization to achieve its goals, objectives or mission to carry out operations and services. The term applies to itself Large, medium and small industrial, commercial, public and non-profit organizations. In any event, regardless of size capability, natural, accidental or deliberate, may cause tissue operations and the delivery of products and services Serious disruption. Therefore, only before and after the occurrence of an interrupt event occurs rather than the implementation of business continuity, in order to ensure that the organization suffered Movies Not to sound serious unacceptable to resume operations before the operation. BCM include. a) clear key products and services of the organization, and the activities to deliver these products and services; b) understand the priority and resources required for rehabilitation activities; c) a clear understanding of the activities of threats, including dependencies between these activities, but also know that if these activities did not resume Will move the impact; d) When an interrupt event occurs, tested and ready to have a solid plan to restart activities; e) to ensure that these plans are regularly reviewed and updated, making it effective in all cases. Business continuity in dealing with unexpected interrupt events (such as the explosive) and progressive interrupt events (for example, influenza pandemic) When are valid. It can cause very much active interrupt events, many of which are difficult to predict and analyze. Because business continuity attention interrupt event The impact rather than its causes, so that business continuity is to identify which organization survival activities and organizations identified as Fulfillment of its responsibilities continuity which activities need to ensure. Through business continuity, organizations can realize that before the interrupt event occurs what to do Ready to protect its resources (for example. people, buildings, and information technology), supply chain, stakeholders and reputation. Based on this understanding, the organization can interrupt You may need to be taken in response to the time of the incident and pragmatically, it is possible to confidently manage the results and avoid unacceptable impacts. Well organize appropriate business continuity preparation also high risks into opportunities. The following two graphs (Figures 2 and 3) attempts to conceptually illustrated in some cases business continuity is how to effectively mitigate impacts. Both figures the relative distances between the various stages shown does not indicate a specific time scale. Through effective business continuity management to reduce the impact of sudden interruption interrupt event --- Figure 2 sudden interruption of business continuity and effective graphic Through effective business continuity management to mitigate the effects of progressive interrupt interrupt event --- Figure 3 on the progressive interruption of business continuity and effective graphic Public Safety Business Continuity Management System Guide1 ScopeThis standard is based on good practice for business continuity management system planning, establishing, implementing, operating, monitoring, reviewing, maintaining and continuous improvement Into the document management system to provide guidance to enable organizations to when an interrupt event occurs, preparedness, response and recovery. This standard is not intended to formulate a unified BCMS structure, but for the organization to design a suitable organization to meet its own needs and related BCMS party claims. The demand by the laws, regulations, organizations and industry requirements, products and services used in the process, operating environment, organizations The size and structure as well as the requirements of the relevant parties, etc. composition. This standard is generic and applicable to include large, medium and small in the industrial, commercial, and other public and non-profit groups of all sizes and types Organizations, to. a) establish, implement, maintain and improve the BCMS; b) to ensure business continuity policy and align with the organization; c) make a self-declaration of compliance with this standard; d) the capacity of the standard can not be used to assess whether the organization meets its business continuity requirements, can not be used to assess whether meet Its clients, legal or regulatory requirements. Organizations can use ISO 22301 requirements demonstrate compliance to other organizations, or Who make BCMS certified by accredited third party certification body.2 Normative referencesThe following documents for the application of this document is essential. For dated references, only the dated version suitable for use herein Member. For undated references, the latest edition (including any amendments) applies to this document. ISO 19011 management systems auditing ISO 22300 Public Safety Terms ISO 22301 Public Safety business continuity management system requirements ISO 22398 Public safety drills and testing guidelines3 Terms and DefinitionsTerms and definitions ISO 22300 and ISO 22301, as defined in applicable to this document.4 organizational environment4.1 understand the organization and its environment This section is about understanding establishing and managing BCMS related organizational environment. Establishment and management of BCM is 8.1 content. The organization should evaluate and understand its intent and operation of the internal and external factors related. Organizations establish, implement, maintain and improve its BCMS when considering such information and should prioritize. Where appropriate, should assess the external environment organizations, including the following factors. --- International, national, regional or local political, legal and regulatory environment; --- International, national, regional or local social, cultural, financial, technological, economic, natural and competitive environment; --- Commitment and relationships of the supply chain; ......Tips & Frequently Asked Questions:Question 1: How long will the true-PDF of GB/T 31595-2015_English be delivered?Answer: Upon your order, we will start to translate GB/T 31595-2015_English as soon as possible, and keep you informed of the progress. The lead time is typically 3 ~ 5 working days. The lengthier the document the longer the lead time.Question 2: Can I share the purchased PDF of GB/T 31595-2015_English with my colleagues?Answer: Yes. The purchased PDF of GB/T 31595-2015_English will be deemed to be sold to your employer/organization who actually pays for it, including your colleagues and your employer's intranet.Question 3: Does the price include tax/VAT?Answer: Yes. Our tax invoice, downloaded/delivered in 9 seconds, includes all tax/VAT and complies with 100+ countries' tax regulations (tax exempted in 100+ countries) -- See Avoidance of Double Taxation Agreements (DTAs): List of DTAs signed between Singapore and 100+ countriesQuestion 4: Do you accept my currency other than USD?Answer: Yes. If you need your currency to be printed on the invoice, please write an email to Sales@ChineseStandard.net. In 2 working-hours, we will create a special link for you to pay in any currencies. Otherwise, follow the normal steps: Add to Cart -- Checkout -- Select your currency to pay. |
