ISO 22316 organizational resilience standard now available
- Published: Tuesday, 04 April 2017 07:46
ISO’s Technical Committee ISO/TC 292 has published its latest security and resilience international standard, ISO 22316:2017, ‘Organizational resilience. Principles and attributes’. This short standard, with just ten pages of content, establishes the principles for organizational resilience and identifies the attributes and activities that support an organization in enhancing its resilience.
ISO 22316 defines organizational resilience as ‘the ability of an organization to absorb and adapt in a changing environment’; and states that organizational resilience enables an organization to deliver its objectives and to survive and prosper. ‘More resilient organizations cananticipate and respond to threats and opportunities, arising from sudden or gradual changes in theirinternal and external context’ says the standard.
Organizational resilience ‘is the outcome of good business practice and effectively managing risk’ according to ISO 22316 and an organization’s resilience:
- Is enhanced when behaviour is aligned with a shared vision and purpose;
- Relies upon an up-to-date understanding of an organization’s context;
- Relies upon an ability to absorb, adapt and effectively respond to change;
- Relies upon good governance and management;
- Is supported by a diversity of skills, leadership, knowledge and experience;
- Is enhanced by coordination across management disciplines and contributions from technical and scientific areas of expertise;
- Relies upon effectively managing risk.
Key sections of ISO 22316 are:
- Principles: the foundation upon which a framework and strategy can be developed, implemented and evaluated;
- Attributes for organizational resilience: what a resilience organization will have in place;
- Evaluating the factors that contribute to resilience: the intelligence and management information that will be needed to assess and measure resilience.