ISO 22300:2021 Security and resilience — Vocabulary.
holistic management (3.L144) process (3.1.190) that identifies potential impacts (11.118) that threaten an organization (3.LThS) and provides a framework for building resilience (3.1.206), with the capability for an effective response that safeguards the interests of the organization’s key interested parties (3.1.132), reputation, brand and value-creating activities (112), as well as effectively restoring operational capabilities
Note 1 to entry: Crisis management also involves the management of preparedness (3.1.182), mitigation (3.1.154) response, and continuity (3.1.50) or recovery (3.1.201) in the event of an incident (3.1.122), as well as management of the overall programme through training (3.1.280), rehearsals and reviews (3.1.211) to ensure the preparedness, response and continuity plans stay current and up to date.
crisis management team
group of individuals functionally responsible for directing the development and execution of the response and operational continuity (3.1.50) plan, declaring an operational disruption (3.1.75) or emergency (3.1.87)/crisis (3.1.60) situation, and providing direction during the recovery (3.1.201) process (3.1.190), both pre-and post-disruptive incident (3.1.122)
Note 1 to entry: The crisis management team can include individuals from the organization (3.1.165) as well as immediate and first responders and interested parties (3.1.132).
critical control point
point, step or process (3.1.190) at which controls (3.1.51) can be applied and a threat (3.1.277) or hazard (3.1.110) can be prevented, eliminated or reduced to acceptable levels
entity (3.1.91), the loss of whose business would threaten the survival of an organization (3.1.165)
physical structure, network or other asset (3.1.13) that provide services that are essential to the social and economic functioning of a community (3.1.39) or society
quantitative, qualitative or descriptive measure used to assess the hazard (3.1.110) being monitored to identify the potential for the development of an incident (3.1.122), accident or emergency (3.1.87)
Note I to entry; Critical indicators provide information (3.1.127) about the most important integral characteristics of the structural state of a facility (3.1.105).
critical product and service
resource (3.1.207) obtained from a supplier, which, if unavailable, would disrupt an organization.c (3.1,165) critical activities (11.2) and threaten its survival
Note 1 to entry: Critical products or services are essential resources to suppol’t an organization’s high priority activities and processes (3.1.190) identified in its business impact analysis (3.1.24).
provider of critical products or services (3.1.50)
Note 1 to entry: This includes an “internal supplier, who is part of the same organization (3.1.165) as its customer.ISO 22300 pdf download.