1、BSI Standards PublicationBS EN ISO 22300:2014Societal security Terminology (ISO 22300:2012)BS EN ISO 22300:2014 BRITISH STANDARDNational forewordThis British Standard is the UK implementation of EN ISO22300:2014. It is identical to ISO 22300:2012. It supersedes BS ISO22300:2012 which is withdrawn.Th
2、e UK participation in its preparation was entrusted to TechnicalCommittee BCM/1, Business continuity management.A list of organizations represented on this committee can beobtained on request to its secretary.This publication does not purport to include all the necessaryprovisions of a contract. Use
3、rs are responsible for its correctapplication. The British Standards Institution 2014.Published by BSI Standards Limited 2014ISBN 978 0 580 84815 5 ICS 01.040.03; 03.100.01 Compliance with a British Standard cannot confer immunity from legal obligations.This British Standard was published under the
4、authority of theStandards Policy and Strategy Committee on 30 September 2014.Amendments issued since publicationDate Text affectedli r t e authority of theitt 30 November 2013./corrigenda iss ed since publicationDate Text affected30 September 2014 This corrigendum renumbers BS ISO 22300:2012as BS EN
5、 ISO 22300:2014EUROPEAN STANDARD NORME EUROPENNE EUROPISCHE NORM EN ISO 22300 July 2014 ICS 01.040.03; 03.100.01 English Version Societal security - Terminology (ISO 22300:2012) Scurit socitale - Terminologie (ISO 22300:2012) Sicherheit und Schutz des Gemeinwesens - Begriffe (ISO 22300:2012) This Eu
6、ropean Standard was approved by CEN on 17 July 2014. CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references co
7、ncerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to any CEN member. This European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CEN member
8、into its own language and notified to the CEN-CENELEC Management Centre has the same status as the official versions. CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France
9、, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United Kingdom. EUROPEAN COMMITTEE FOR STANDARDIZATION COMIT EUROPEN DE NORMALISATION EUROPISCHES KOMI
10、TEE FR NORMUNG CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels 2014 CEN All rights of exploitation in any form and by any means reserved worldwide for CEN national Members. Ref. No. EN ISO 22300:2014 EBS EN ISO 22300:2014EN ISO 22300:2014 (E) 3 Foreword The text of ISO 22300:2012 ha
11、s been prepared by Technical Committee ISO/TC 223 “Societal security” of the International Organization for Standardization (ISO) and has been taken over as EN ISO 22300:2014 by Technical Committee CEN/TC 391 “Societal and Citizen Security” the secretariat of which is held by NEN. This European Stan
12、dard shall be given the status of a national standard, either by publication of an identical text or by endorsement, at the latest by January 2015, and conflicting national standards shall be withdrawn at the latest by January 2015. Attention is drawn to the possibility that some of the elements of
13、this document may be the subject of patent rights. CEN and/or CENELEC shall not be held responsible for identifying any or all such patent rights. According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following countries are bound to implement this European S
14、tandard: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia,
15、 Spain, Sweden, Switzerland, Turkey and the United Kingdom. Endorsement notice The text of ISO 22300:2012 has been approved by CEN as EN ISO 22300:2014 without any modification. BS EN ISO 22300:2014EN ISO 22300:2014 (E) 3 Foreword The text of ISO 22300:2012 has been prepared by Technical Committee I
16、SO/TC 223 “Societal security” of the International Organization for Standardization (ISO) and has been taken over as EN ISO 22300:2014 by Technical Committee CEN/TC 391 “Societal and Citizen Security” the secretariat of which is held by NEN. This European Standard shall be given the status of a nati
17、onal standard, either by publication of an identical text or by endorsement, at the latest by January 2015, and conflicting national standards shall be ithdrawn at the latest by January 2015. Attention is drawn to the possibility that some of the elements of this document may be the subject of paten
18、t rights. CEN and/or CENELEC shall not be held responsible for identifying any or all such patent rights. According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria, Croa
19、tia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and t
20、he United Kingdom. Endorsement notice The text of ISO 22300:2012 has been approved by CEN as EN ISO 22300:2014 without any modification. BS EN ISO 22300:2014EN ISO 22300:2014 (E) 3 Foreword The text of ISO 22300:2012 has been prepared by Technical Committee ISO/TC 223 “Societal security” of the Inte
21、rnational Organization for Standardization (ISO) and has been taken over as EN ISO 22300:2014 by Technical Committee CEN/TC 391 “Societal and Citizen Security” the secretariat of which is held by NEN. This European Standard shall be given the status of a national standard, either by publication of a
22、n identical text or by endorsement, at the latest by January 2015, and conflicting national standards shall be withdrawn at the latest by January 2015. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. CEN and/or CENELEC shall not b
23、e held responsible for identifying any or all such patent rights. According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Es
24、tonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom. Endorsement notice The
25、 text of ISO 22300:2012 has been approved by CEN as EN ISO 22300:2014 without any modification. BS EN ISO 22300:2014ISO 22300:2012(E) ISO 2012 All rights reserved iiiContents Page 1 Scope 1 2 Terms and definitions . 1 2.1 Societal security 1 2.2 Management of societal security . 3 2.3 Operational Ri
26、sk reduction 6 2.4 Operational Exercise 7 2.5 Operational Recovery . 8 2.6 Technology . 9 Bibliography 11 Alphabetical index 12 BS EN ISO 22300:2014EN ISO 22300:2014 (E) 3 Foreword The text of ISO 22300:2012 has been prepared by Technical Committee ISO/TC 223 “Societal security” of the International
27、 Organization for Standardization (ISO) and has been taken over as EN ISO 22300:2014 by Technical Committee CEN/TC 391 “Societal and Citizen Security” the secretariat of which is held by NEN. This European Standard shall be given the status of a national standard, either by publication of an identic
28、al text or by endorsement, at the latest by January 2015, and conflicting national standards shall be withdrawn at the latest by January 2015. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. CEN and/or CENELEC shall not be held re
29、sponsible for identifying any or all such patent rights. According to the CEN-CENELEC Internal Regulations, the national standards organizations of the following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia, Fi
30、nland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom. Endorsement notice The text of
31、 ISO 22300:2012 has been approved by CEN as EN ISO 22300:2014 without any modification. BS EN ISO 22300:2014ISO 22300:2012(E) iv ISO 2012 All rights reservedForeword ISO (the International Organization for Standardization) is a worldwide federation of national standards bodies (ISO member bodies). T
32、he work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a technical committee has been established has the right to be represented on that committee. International organizations, governmental and non-go
33、vernmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2.
34、 The main task of technical committees is to prepare International Standards. Draft International Standards adopted by the technical committees are circulated to the member bodies for voting. Publication as an International Standard requires approval by at least 75 % of the member bodies casting a v
35、ote. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held responsible for identifying any or all such patent rights. ISO 22300 was prepared by Technical Committee ISO/TC 223, Societal security. This page deliberat
36、ely left blankBS EN ISO 22300:2014INTERNATIONAL STANDARD ISO 22300:2012(E) ISO 2012 All rights reserved 1Societal security Terminology 1 Scope This International Standard contains terms and definitions applicable to societal security to establish a common understanding so that consistent terms are u
37、sed. 2 Terms and definitions 2.1 Societal security 2.1.1 societal security protection of society from, and response to, incidents, emergencies and disasters caused by intentional and unintentional human acts, natural hazards, and technical failures 2.1.2 stakeholder person or group of people that ho
38、lds a view that can affect the organization (2.2.9) 2.1.3 societal security framework set of components that provide the foundations and organizational arrangements for designing, implementing, monitoring, reviewing and continually improving societal security (2.1.1) NOTE 1 The foundations include t
39、he policy, objectives, mandate and commitment to manage societal security. NOTE 2 Organizational arrangements include plans, relationships, accountabilities, resources, processes and activities. 2.1.4 civil protection measures taken and systems implemented to preserve the lives and health of citizen
40、s, their properties and their environment from undesired events NOTE Undesired events can include accidents, emergencies and disasters. 2.1.5 risk effect of uncertainty on objectives NOTE 1 An effect is a deviation from the expected: positive and/or negative. NOTE 2 Objectives can have different asp
41、ects (such as financial, health and safety, and environmental goals) and can apply at different levels (such as strategic, organization-wide, project, product and process). NOTE 3 Risk is often characterized by reference to potential events, and consequences, or a combination of these. NOTE 4 Risk i
42、s often expressed in terms of a combination of the consequences of an event (including changes in circumstances) and the associated likelihood of occurrence. BS EN ISO 22300:2014ISO 22300:2012(E) 2 ISO 2012 All rights reservedNOTE 5 Uncertainty is the state, even partial, of deficiency of informatio
43、n related to, understanding or knowledge of, an event, its consequence, or likelihood. SOURCE: ISO Guide 73 2.1.6 risk management coordinated activities to direct and control an organization (2.2.9) with regard to risk (2.1.5) SOURCE: ISO Guide 73 2.1.7 threat potential cause of an unwanted incident
44、, which can result in harm to individuals, a system or organization (2.2.9), the environment or the community 2.1.8 event occurrence or change of a particular set of circumstances NOTE 1 An event can be one or more occurrences, and can have several causes. NOTE 2 An event can consist of something no
45、t happening. NOTE 3 An event can sometimes be referred to as an “incident” or “accident”. NOTE 4 An event without consequences can also be referred to as a “near miss”, “incident”, “near hit” or “close call”. SOURCE: ISO Guide 73 2.1.9 consequence outcome of an event affecting objectives NOTE 1 An e
46、vent can lead to a range of consequences. NOTE 2 A consequence can be certain or uncertain and can have positive or negative effects on objectives. NOTE 3 Consequences can be expressed qualitatively or quantitatively. NOTE 4 Initial consequences can escalate through knock-on effects. SOURCE: ISO Gui
47、de 73 2.1.10 business continuity capability of the organization (2.2.9) to continue delivery of products or services at acceptable predefined levels following disruptive incident (2.1.15) 2.1.11 disaster situation where widespread human, material, economic or environmental losses have occurred which
48、 exceeded the ability of the affected organization (2.2.9), community or society to respond and recover using its own resources 2.1.12 crisis situation with high level of uncertainty that disrupts the core activities and/or credibility of an organization (2.2.9) and requires urgent action BS EN ISO
49、22300:2014ISO 22300:2012(E) ISO 2012 All rights reserved 32.1.13 all-hazards naturally occurring events, human induced events (both intentional and unintentional) and technology caused events with potential impact on an organization (2.2.9), community or society and the environment on which it depends 2.1.14 hazard source of potential harm NOTE Hazard can be a risk source. SOURCE: ISO Guide 73 2.1.15 incident situation that might be, or could lead to, a disruption, loss, emergency or crisis 2.1.16 mitigation measures taken to prevent,
