Business Continuity and BS25999: A Combined Glossary

  • 1h 11m
  • Alan Calder
  • IT Governance
  • 2008

BS25999 is the formal standard for business continuity management. This invaluable pocket guide will help you to understand the language of business continuity. It contains definitions both of the key words in BS25999 and of the relevant terms found in the information security standard, ISO27001.

Other definitions provided in the glossary have been taken from the earlier glossaries published by the Business Continuity Institute and the DRI (Institute for Continuity Management), from the IT service management standard, ISO20000, and from the IT Infrastructure Library (ITIL® v3).

Created to facilitate the adoption of BS25999, the combined glossary sets out the most common business continuity terms and offers an authoritative explanation of what they mean. It will therefore enable business continuity to be discussed clearly and consistently throughout the English-speaking world.

Benefits to business include:

  • Improve communication and cooperation: Business continuity management requires commitment at boardroom level, and involves many different people within a given organisation. The purpose of this glossary is to facilitate communication and thereby make it easier for IT managers, business continuity professionals and senior executives to cooperate
  • Find a glossary that is comprehensive: Just as business continuity affects many different functions within the organisation, so it also touches upon other standards besides BS25999. This glossary combines definitions of words from BS25999 with terms both from other information security standards and from the IT Infrastructure Library. As the first truly comprehensive glossary of business continuity terms, this pocket guide is the only book where you can find an explanation of all the relevant business continuity terms in one place
  • Stay in the loop: If your organisation is setting up a business continuity management plan, you have a choice. Either you get involved in the process, or the key decisions will be taken without your input. If you want to be kept in the loop on business continuity planning, this guide can help you to understand what people are talking about and how it relates to your area of responsibility
  • Help your staff to plan for an emergency: Business continuity planning is a vital imperative for those public sector organisations that are responsible for frontline services. Under the UK Civil Contingencies Act 2006, local authorities and the emergency services are obliged to put in place business continuity management arrangements. This combined glossary will support the work of those public sector information professionals who are working towards compliance with BS25999 so as to meet the requirements of the Act.

The pocket guide is an essential resource both for business continuity professionals and for organisations seeking to implement a business continuity management system (BCMS) in line with BS25999.

About the Author

Alan Calder is a founder director of IT Governance Ltd. Before that he was the CEO of Wide-Learning, a supplier of e-learning, and of Business Link London City Partners (BLLCP). Alan Calder also served as a member of the Department of Trade and Industry’s Information Age Competitiveness Working Group. For many years he was a member of the DNV Certification Services Certification Committee, which certifies compliance with international standards including ISO27001. He works with a wide range of clients on IT governance and information security projects.

In this Book

  • Business Continuity and BS25999—A Combined Glossary
  • Introduction
  • A: Access Denial—Availability
  • B: Backlog—Business Service
  • C: Call Tree—CSA
  • D: Damage Assessment—DRP
  • E: ECC—EZ
  • F: Facilities Management (FM)—Full Rehearsal
  • G: Gain—Gradual Recovery
  • H: Hardening—Human Threats
  • I: ICS—IT Service Continuity Plan
  • J: Journaling—Journalling
  • K: Key Task(s)—Key Tasks
  • L: LBC—Lost Transaction Recovery
  • M: Major Incident—MTD
  • N: N + 1—Nonconformity
  • O: Offsite Location—Outsourcing
  • P: Pain Value Analysis—PTSD
  • Q: Qualitative Assessment—Quick Ship
  • R: Reception Centre—RTO
  • S: Salvage—Systemic Risk
  • T: Tabletop Exercise—Trauma Management
  • U: Unexpected Loss—Utilities
  • V: Validation Script—Vulnerability
  • W: Warm Site—Workaround Procedures
  • Z: Zone