International Standard
ISO/IEC 27031:2025
Cybersecurity — Information and communication technology readiness for business continuity
Reference number
ISO/IEC 27031:2025
Edition 2
2025-05
© ISO 2025
Preview
Indisponible en français
Publiée (Edition 2, 2025)

ISO/IEC 27031:2025

Langue
Format
CHF 155
Convertir les francs suisses (CHF) dans une autre devise

What is ISO/IEC 27031?

ISO/IEC 27031 provides guidance on ensuring that information and communication technology (ICT) is prepared to support business continuity. It outlines a framework for ICT readiness that aligns with broader business continuity objectives, helping organisations to prevent, respond to and recover from ICT-related disruptions that could impact critical operations.

Why is ISO/IEC 27031 important?

In today’s digital world, organisations rely heavily on ICT systems to operate, deliver services and maintain trust with stakeholders. Disruptions to these systems—from cyberattacks to system failures—can have severe consequences. ISO/IEC 27031 helps organisations build ICT resilience by integrating readiness planning into business continuity and information security practices. It ensures that ICT services can be restored within agreed timeframes, protecting operations, reputation and customer trust. This readiness is not only about internal systems but also extends to dependencies on third-party services such as cloud providers.

Benefits

  • Supports uninterrupted business operations during ICT disruptions
  • Strengthens alignment between ICT, security and continuity strategies
  • Reduces recovery time and data loss after incidents
  • Enhances organisational resilience and stakeholder confidence
  • Integrates smoothly with ISO/IEC 27001 and ISO 22301 practices

 

FAQ

Any organisation that relies on ICT systems and wants to ensure those systems can support business continuity during and after disruptions.

It complements ISO/IEC 27001 by addressing ICT continuity in the context of information security, and supports ISO 22301 by aligning ICT readiness with broader business continuity objectives.

Yes, the standard considers modern ICT environments, including reliance on external services such as cloud platforms, and encourages organisations to assess and integrate these into their readiness plans.

Informations générales

  • État actuel
     : Publiée
    Date de publication
     : 2025-05
    Stade
    : Norme internationale publiée [60.60]
  • Edition
     : 2
  • Comité technique :
    ISO/IEC JTC 1/SC 27
    ICS :
    35.030 
  • RSS mises à jour

Cycle de vie

Objectifs de développement durable

Cette norme contribue aux Objectifs de développement durable suivants

8
Travail décent et croissance économique
9
Industrie, innovation et infrastructure
11
Villes et communautés durables

Vous avez une question?

Consulter notre Aide et assistance

  2. Store
  3. Store
  4. TC
  5. ISO/IEC JTC 1/SC 27
  6. ISO/IEC 27031:2025