BS ISO/IEC 24762:2008
Withdrawn
A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
Information technology. Security techniques. Guidelines for information and communications technology disaster recovery services
Hardcopy , PDF
26-04-2017
English
29-02-2008
Important note : All end users must be registered with an Account prior to user licenses being assigned.
Foreword
0 Introduction
0.1 General
0.2 Structure
0.3 Framework
0.4 Interpretation of clauses
1 Scope
1.1 General
1.2 Exclusions
1.3 Audience
2 Normative references
3 Terms and definitions
4 Abbreviated terms
5 ICT disaster recovery
5.1 General
5.2 Environmental stability
5.3 Asset management
5.4 Proximity of site
5.5 Vendor management
5.6 Outsourcing arrangements
5.7 Information security
5.8 Activation and deactivation of disaster
recovery plan
5.9 Training and education
5.10 Testing on ICT systems
5.11 Business continuity planning for ICT DR
service providers
5.12 Documentation and periodic review
6 ICT disaster recovery facilities
6.1 General
6.2 Location of recovery sites
6.3 Physical access controls
6.4 Physical facility security
6.5 Dedicated areas
6.6 Environmental controls
6.7 Telecommunications
6.8 Power supply
6.9 Cable management
6.10 Fire protection
6.11 Emergency operations center (EOC)
6.12 Restricted facilities
6.13 Non-recovery amenities
6.14 Physical facilities and support equipment
life cycle
6.15 Testing
7 Outsourced service provider's capability
7.1 General
7.2 Review organization disaster recovery status
7.3 Facilities requirements
7.4 Expertise
7.5 Logical access control
7.6 ICT equipment and operation readiness
7.7 Simultaneous recovery support
7.8 Levels of service
7.9 Types of service
7.10 Proximity of services
7.11 Subscription ratio for shared services
7.12 Activation of subscribed services
7.13 Organization testing
7.14 Changes in capability
7.15 Emergency response plan
7.16 Self assessment
8 Selection of recovery sites
8.1 General
8.2 Infrastructure
8.3 Skilled manpower and support
8.4 Critical mass of vendors and suppliers
8.5 Local service providers' track records
8.6 Proactive local support
9 Continuous Improvement
9.1 General
9.2 ICT DR trends
9.3 Performance measurement
9.4 Scalability
9.5 Risk mitigation
Annex A (informative) - Correspondence between ISO/IEC
27002:2005 and this International
Standard
Bibliography
Specifies the basic practices, which ICT DR service providers, both in-house and outsourced, should consider.
| Committee |
IST/33
|
| DocumentType |
Standard
|
| Pages |
80
|
| PublisherName |
British Standards Institution
|
| Status |
Withdrawn
|
| Standards | Relationship |
| ISO/IEC 24762:2008 | Identical |
| ISO/IEC 27001:2013 | Information technology — Security techniques — Information security management systems — Requirements |
| ISO/IEC 27002:2013 | Information technology Security techniques Code of practice for information security controls |
| ISO/IEC TR 18044:2004 | Information technology Security techniques Information security incident management |
| ISO/IEC 20000-1:2011 | Information technology Service management Part 1: Service management system requirements |
| ISO/IEC 20000-2:2012 | Information technology Service management Part 2: Guidance on the application of service management systems |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.