ABSTRACT

The economic, social, and global dimensions of business have made it imperative for business organizations to adopt global standards for ease of implementation and audit. Organizations follow many standards for information security and quality, and in the bargain, they are subjected to multiple audits in respect of certifications adopted, and for them compliance becomes an important function on its own. Business continuity management (BCM) standards are closely linked to standards for information security, risk, and quality. The standard follows a total program approach revolving around the business continuity phases of preparedness, response, recovery, prevention, and mitigation. The British Standards Institution (BSI) even has its own audit process in which organizations can submit their programs to be audited and certified for compliance with BS 25999. The British Standard also emphasizes the maintenance, review, and improvement of the core elements.