Autres normes
BS 25999 / BCM
Le BSI - British Standard a publié
la norme BS 25999, Business Continuity Management, qui se compose de
deux documents :
BS
25999-1:2006 : BCM - Partie 1 : Code de bonne pratique
BS
25999-2:2007 : BCM - Partie 2 : Spécifications.
BS 25999-1:2006
Selon le BSI :"is a code of
practice that takes the form of guidance and recommendations. It
establishes the process, principles and terminology of business continuity
management (BCM), providing a basis for understanding, developing and implementing
business continuity within an organization and to provide confidence in
business-to-business and business-to-customer dealings. In addition, it
provides a comprehensive set of controls based on BCM best practice and
covers the whole BCM lifecycle. "
Il contient 10 chapitres:
BS 25999-2:2007
Selon le BSI : "specifies requirements
for establishing, implementing,
operating, monitoring, reviewing, exercising, maintaining and improving
a documented Business Continuity Management System (BCMS) within the
context of managing an organization’s overall business risks."
"BS 25999-2 can be used by internal and external parties, including
certification bodies, to assess an organization’s ability to meet its
own business continuity needs, as well as any customer, legal or
regulatory needs."
Ainsi, un organisme peut se faire
certifier conforme BS 25999-2:2007.
Comme d'autres standards de système
de management, ce standard applique le modèle Plan - Do - Check - Act
(PDCA) pour développer, installer et améliorer l'efficacité d'un système BCM d'une entreprise.
--------------------------------------------------------------------------------
Copyright © 2009 Aud-IT Sàrl Geneva All rights reserved