Standards referenced in DR planning
Each article in the series has referenced an important international standard – the ISO/IEC 27031:2011, Information technology – Security techniques – Guidelines for information and communication technology readiness for business continuity. This is considered the global standard for IT disaster recovery as applicable to users.
Another ISO standard, ISO/IEC 24762:2008, addresses IT disaster recovery from a service provider perspective and should be carefully reviewed when cloud services are being considered. Both standards can help develop and implement DR programmes.
Sections 8 (Monitor and Review) and 9 (IRBC Improvement) in ISO 27031 address the issues described in this article. Among the key points are the following: