• There are no items in your cart

BS ISO/IEC 24762:2008

Withdrawn
Withdrawn

A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.

Information technology. Security techniques. Guidelines for information and communications technology disaster recovery services
Available format(s)

Hardcopy , PDF

Withdrawn date

04-26-2017

Language(s)

English

Published date

02-29-2008

Foreword
0 Introduction
  0.1 General
  0.2 Structure
  0.3 Framework
  0.4 Interpretation of clauses
1 Scope
  1.1 General
  1.2 Exclusions
  1.3 Audience
2 Normative references
3 Terms and definitions
4 Abbreviated terms
5 ICT disaster recovery
  5.1 General
  5.2 Environmental stability
  5.3 Asset management
  5.4 Proximity of site
  5.5 Vendor management
  5.6 Outsourcing arrangements
  5.7 Information security
  5.8 Activation and deactivation of disaster
       recovery plan
  5.9 Training and education
  5.10 Testing on ICT systems
  5.11 Business continuity planning for ICT DR
       service providers
  5.12 Documentation and periodic review
6 ICT disaster recovery facilities
  6.1 General
  6.2 Location of recovery sites
  6.3 Physical access controls
  6.4 Physical facility security
  6.5 Dedicated areas
  6.6 Environmental controls
  6.7 Telecommunications
  6.8 Power supply
  6.9 Cable management
  6.10 Fire protection
  6.11 Emergency operations center (EOC)
  6.12 Restricted facilities
  6.13 Non-recovery amenities
  6.14 Physical facilities and support equipment
       life cycle
  6.15 Testing
7 Outsourced service provider's capability
  7.1 General
  7.2 Review organization disaster recovery status
  7.3 Facilities requirements
  7.4 Expertise
  7.5 Logical access control
  7.6 ICT equipment and operation readiness
  7.7 Simultaneous recovery support
  7.8 Levels of service
  7.9 Types of service
  7.10 Proximity of services
  7.11 Subscription ratio for shared services
  7.12 Activation of subscribed services
  7.13 Organization testing
  7.14 Changes in capability
  7.15 Emergency response plan
  7.16 Self assessment
8 Selection of recovery sites
  8.1 General
  8.2 Infrastructure
  8.3 Skilled manpower and support
  8.4 Critical mass of vendors and suppliers
  8.5 Local service providers' track records
  8.6 Proactive local support
9 Continuous Improvement
  9.1 General
  9.2 ICT DR trends
  9.3 Performance measurement
  9.4 Scalability
  9.5 Risk mitigation
Annex A (informative) - Correspondence between ISO/IEC
                        27002:2005 and this International
                        Standard
Bibliography

Specifies the basic practices, which ICT DR service providers, both in-house and outsourced, should consider.

Committee
IST/33
DocumentType
Standard
Pages
80
PublisherName
British Standards Institution
Status
Withdrawn

Standards Relationship
ISO/IEC 24762:2008 Identical

ISO/IEC 27001:2013 Information technology — Security techniques — Information security management systems — Requirements
ISO/IEC 27002:2013 Information technology Security techniques Code of practice for information security controls
ISO/IEC TR 18044:2004 Information technology Security techniques Information security incident management
ISO/IEC 20000-1:2011 Information technology Service management Part 1: Service management system requirements
ISO/IEC 20000-2:2012 Information technology Service management Part 2: Guidance on the application of service management systems

View more information
US$356.96
Excluding Tax where applicable

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.