ISO/IEC 27031 Released - Guidelines for ICT Readiness for Business Continuity

The newly released international ICT Business Continuity Readiness standard, ISO 27031, is now available to the international community of business continuity and information security practitioners

ISO/IEC 27031:2011 has been written to sit within the ISO27001 series of information security management standards. It describes the concepts and principles of information and communication technology (ICT) readiness for business continuity.

The scope of ISO/IEC 27031:2011 encompasses all events and incidents (including security-related) that could have an impact on ICT infrastructure and systems. It includes and extends the practices of information security incident handling and management and ICT readiness planning and services.

Effectively, it is BS25999 and BS25777 brought into an ISO27001 environment, plus ISO/IEC 24762 for disaster recovery - all pulled together to help an organisation develop best practice ICT business continuity readiness in the context of its information security management system.

"Business continuity planning is an essential step in ensuring information availability," commented IT Governance CEO, Alan Calder, "and the publication of ISO 27031 brings BS25777 Best Practice firmly into the world of ISO27001."

IT Governance Ltd, an international distribution partner for IEC, is making ISO/IEC 27031 available from all its main websites and the standard, ISO 27031 ICT Readiness for Business Continuity, can be downloaded today from
ISO27031 can also be purchased directly from the friendly, helpful IT Governance service centre team on telephone number +44 (0)845 070 1750. Larger organisations can make bookings or purchases with a Purchase Order either by telephone or by email to

- Ends -


Desi Aleksandrova Marketing Executive
+44 (0) 845 070 1750


IT Governance Ltd is the one-stop shop for books, tools, training and consultancy for Governance, Risk Management and Compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is 'non-geek', approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at