Iso 22301 Implementation Guide 2016 4e3j6b
This document was ed by and they confirmed that they have the permission to share it. If you are author or own the copyright of this book, please report to us by using this report form. Report 3b7i
Overview 3e4r5l
& View Iso 22301 Implementation Guide 2016 as PDF for free.
More details w3441
- Words: 745
- Pages: 2
ISO 22301:2012 Business Continuity Management Standards Azure | Azure Government | Intune | Power BI
Helpful information Audit cycle BSI audits Microsoft cloud services once a year for compliance. ISO 22301:2012 standard (for purchase) aka.ms/ISO-22301-standard Azure and Azure Government Certificate of Registration (also covers Intune and Power BI.) aka.ms/ISO22301cert Azure resiliency technical guidance Explains Azure’s shared responsibility model for business continuity. aka.ms/azure-resiliency-guide Microsoft Common Controls Hub Compliance Framework aka.ms/MCCH Microsoft Online Services aka.ms/Online-Services- Microsoft Trust Center www.microsoft.com/trustcenter
The International Organization for Standardization (ISO) is an independent nongovernmental organization and the world’s largest developer of voluntary international standards. The ISO formed the TC 223 Societal Security technical committee to develop standards for protecting society, including organizations, in the event of catastrophe such as a natural disaster, major terrorist attack, or shutdown of power grids. Published in 2012 by the technical committee, ISO 22301:2012 is the first international standard for management systems that help ensure business continuity. ISO 22301 is the standard for business continuity, and certification demonstrates conformance to rigorous practices to prevent, mitigate, respond to, and recover from disruptive incidents. Microsoft is the first hyperscale cloud service provider to receive the ISO 22301 certification for business continuity management. The British Standards Institute (BSI), an independent certification body, awarded this certification to Microsoft Azure, Microsoft Azure Government, Microsoft Intune, and Microsoft Power BI after a stringent audit covering all aspects of their business continuity processes. The audit covered the in-scope services listed below as well as Azure management features, the Azure Portal, and the systems used to monitor, operate, and update the in-scope services.
Frequently asked questions Why is Microsoft compliance with ISO 22301 important? ISO 22301 is a certification used by enterprises and governmental organization to show their commitment to serving their customers by achieving the highest available international standard for business continuity management. ISO 22301 is a comprehensive standard which demonstrates the highest level of commitment to business continuity and disaster preparedness. Where can I get the ISO 22301 audit reports and scope statements for Microsoft services? The Service Trust Portal (aka.ms/stphelp) provides independently audited compliance reports, so that your auditors can compare Microsoft’s cloud services results with your own legal and regulatory requirements.
Which Microsoft services are in scope for ISO 22301? Covered services include:
▪▪ Azure: ▪▪ Compute: Batch, Cloud Services, RemoteApp, Service Fabric, Virtual Machine. ▪▪ Networking: Application Gateway, Express Route, Load Balancer, Traffic Manager, Virtual Network, VPN Gateway.
▪▪ Storage: Backup, Site Recovery, Storage (blobs, queues, files, disks, tables, cool, and ), StorSimple.
▪▪ Web and mobile: App Services (API Apps, Mobile Apps, Web Apps), Media Services. ▪▪ Databases: Data Factory, DocumentDB, Redis Cache, SQL Database. ▪▪ Intelligence and analytics: Data Catalog, Data Factory, HDInsight, Machine Learning, Stream Analytics.
▪▪ Internet of Things: Event Hubs, IoT Hub, Machine Learning, Notification Hubs, Stream Analytics.
▪▪ Enterprise integration: API Management, BizTalk Services, Data Factory, Service Bus, StorSimple.
▪▪ Security and identity: Access Control Service, Active Directory Device Registration,
Active Directory Gateway and Evolved Secure Token Service, Azure Active Directory (including Microsoft Online Directory and Organizational Identity services), Azure Active Directory Connect Health, Identity and Access Management (including Sync Fabric, Cloud Single Sign-On, Self-Service Group Management, and Self-Service Reset), Key Vault, Multi-Factor Authentication, Rights Management Service.
▪▪ Management and security: Automation, Azure Portal (including Azure IaaS
Experience), Azure Resource Manager, Backup, Log Analytics (formerly Operational Insights), Microsoft Cloud App Security, Scheduler, Site Recovery, Traffic Manager.
▪▪ Azure Government: ▪▪ Compute: Cloud Services, Virtual Machines. ▪▪ Networking: Application Gateway, Express Route, Load Balancer, Traffic Manager, Virtual Network, VPN Gateway.
▪▪ Storage: Storage (blobs, queues, files, disks, tables, cool, and ). ▪▪ Web and mobile: App Service. ▪▪ Databases: SQL Database. ▪▪ Security and identity: Azure Active Directory, Key Vault.
▪▪ Intune: The cloud service portion of Microsoft Intune such as the Microsoft Intune Add-
on Product or a management service provided by Microsoft Intune such as Mobile Device Management for Office 365.
▪▪ Power BI cloud service, either as a standalone service or as included in an Office 365 branded plan or suite.
Can I leverage ISO 22301 compliance of Microsoft services in my organization’s certification? Yes. If your business requires ISO 22301 certification for implementations deployed on Microsoft services, you can use the Azure certification in your compliance assessment. You are responsible, however, for engaging an assessor to evaluate the controls, processes, and implementation for ISO 22301 compliance within your own organization and for your own applications.
January 2017
Helpful information Audit cycle BSI audits Microsoft cloud services once a year for compliance. ISO 22301:2012 standard (for purchase) aka.ms/ISO-22301-standard Azure and Azure Government Certificate of Registration (also covers Intune and Power BI.) aka.ms/ISO22301cert Azure resiliency technical guidance Explains Azure’s shared responsibility model for business continuity. aka.ms/azure-resiliency-guide Microsoft Common Controls Hub Compliance Framework aka.ms/MCCH Microsoft Online Services aka.ms/Online-Services- Microsoft Trust Center www.microsoft.com/trustcenter
The International Organization for Standardization (ISO) is an independent nongovernmental organization and the world’s largest developer of voluntary international standards. The ISO formed the TC 223 Societal Security technical committee to develop standards for protecting society, including organizations, in the event of catastrophe such as a natural disaster, major terrorist attack, or shutdown of power grids. Published in 2012 by the technical committee, ISO 22301:2012 is the first international standard for management systems that help ensure business continuity. ISO 22301 is the standard for business continuity, and certification demonstrates conformance to rigorous practices to prevent, mitigate, respond to, and recover from disruptive incidents. Microsoft is the first hyperscale cloud service provider to receive the ISO 22301 certification for business continuity management. The British Standards Institute (BSI), an independent certification body, awarded this certification to Microsoft Azure, Microsoft Azure Government, Microsoft Intune, and Microsoft Power BI after a stringent audit covering all aspects of their business continuity processes. The audit covered the in-scope services listed below as well as Azure management features, the Azure Portal, and the systems used to monitor, operate, and update the in-scope services.
Frequently asked questions Why is Microsoft compliance with ISO 22301 important? ISO 22301 is a certification used by enterprises and governmental organization to show their commitment to serving their customers by achieving the highest available international standard for business continuity management. ISO 22301 is a comprehensive standard which demonstrates the highest level of commitment to business continuity and disaster preparedness. Where can I get the ISO 22301 audit reports and scope statements for Microsoft services? The Service Trust Portal (aka.ms/stphelp) provides independently audited compliance reports, so that your auditors can compare Microsoft’s cloud services results with your own legal and regulatory requirements.
Which Microsoft services are in scope for ISO 22301? Covered services include:
▪▪ Azure: ▪▪ Compute: Batch, Cloud Services, RemoteApp, Service Fabric, Virtual Machine. ▪▪ Networking: Application Gateway, Express Route, Load Balancer, Traffic Manager, Virtual Network, VPN Gateway.
▪▪ Storage: Backup, Site Recovery, Storage (blobs, queues, files, disks, tables, cool, and ), StorSimple.
▪▪ Web and mobile: App Services (API Apps, Mobile Apps, Web Apps), Media Services. ▪▪ Databases: Data Factory, DocumentDB, Redis Cache, SQL Database. ▪▪ Intelligence and analytics: Data Catalog, Data Factory, HDInsight, Machine Learning, Stream Analytics.
▪▪ Internet of Things: Event Hubs, IoT Hub, Machine Learning, Notification Hubs, Stream Analytics.
▪▪ Enterprise integration: API Management, BizTalk Services, Data Factory, Service Bus, StorSimple.
▪▪ Security and identity: Access Control Service, Active Directory Device Registration,
Active Directory Gateway and Evolved Secure Token Service, Azure Active Directory (including Microsoft Online Directory and Organizational Identity services), Azure Active Directory Connect Health, Identity and Access Management (including Sync Fabric, Cloud Single Sign-On, Self-Service Group Management, and Self-Service Reset), Key Vault, Multi-Factor Authentication, Rights Management Service.
▪▪ Management and security: Automation, Azure Portal (including Azure IaaS
Experience), Azure Resource Manager, Backup, Log Analytics (formerly Operational Insights), Microsoft Cloud App Security, Scheduler, Site Recovery, Traffic Manager.
▪▪ Azure Government: ▪▪ Compute: Cloud Services, Virtual Machines. ▪▪ Networking: Application Gateway, Express Route, Load Balancer, Traffic Manager, Virtual Network, VPN Gateway.
▪▪ Storage: Storage (blobs, queues, files, disks, tables, cool, and ). ▪▪ Web and mobile: App Service. ▪▪ Databases: SQL Database. ▪▪ Security and identity: Azure Active Directory, Key Vault.
▪▪ Intune: The cloud service portion of Microsoft Intune such as the Microsoft Intune Add-
on Product or a management service provided by Microsoft Intune such as Mobile Device Management for Office 365.
▪▪ Power BI cloud service, either as a standalone service or as included in an Office 365 branded plan or suite.
Can I leverage ISO 22301 compliance of Microsoft services in my organization’s certification? Yes. If your business requires ISO 22301 certification for implementations deployed on Microsoft services, you can use the Azure certification in your compliance assessment. You are responsible, however, for engaging an assessor to evaluate the controls, processes, and implementation for ISO 22301 compliance within your own organization and for your own applications.
January 2017
Related Documents 3m3m1z
Iso 22301 Implementation Guide 2016 4e3j6b
November 2022 0
Iso-22301-2012iso-22301-2012 4o3271
December 2019 62
Iso 31000-31010-22301 2qg2o
January 2023 0
Iso-22301-2012-draft 6i5v6s
April 2022 0
Iso-22301 Portugues.pdf o6d2q
December 2019 73
Iso 22301:2012 1u1w2p
February 2022 0More Documents from "TarnaveanValeriuDan" 6o1k3v
Phillips Precision Qms Revc r5x3v
December 2021 0