ISO/TC 292
ISO/TC 292 Security and resilience is a technical committee of the International Organization for Standardization formed in 2015 to develop standards in the area of security and resilience.
In June 2014 the Technical management Board of ISO (TMB) took the decision to create a new ISO Technical committee called ISO/TC 292 where three committees were merged into one. The official starting date for the work of TC 292 was 2015-01-01, when the three committees were disbanded and their work incorporated into ISO/TC 292. The committee was also assigned the responsibility for the area of supply chain security, including the ISO 28000 series previously developed by ISO/TC 8.
The creation of ISO/TC 292 clarifies ISO’s structural organization on security matters, and prepares ISO to tackle future topics in this field by creating a de facto coordination body within the TC central structure. This structure is optimized to limit and prevent conflict or duplication of work. It will assist public administrations/authorities with a general interest and protective mission to optimize their participation in ISO's work in this sector. Non-Profit organizations with limited resources will also benefit from this simplified structure.
The following committees were merged into ISO/TC 292.
- ISO/TC 223 Societal security (2001-2014)
- ISO/TC 247 Fraud countermeasures and controls (2009-2014)
- ISO/PC 284 Management system for quality of PSC operations (2013-2014)
Scope
ISO/TC 292 works under the following scope:
Standardization in the field of security to enhance the safety and resilience of society. Excluded: Sector specific security projects developed in other relevant ISO committees and projects developed in ISO/TC 262 and ISO/PC 278.
Leadership and organization
Chair 2015- Mrs Åsa Kyrk Gere
Secretary 2017----- Mr Bengt Rydstedt
Secretary 2017-2017 Ms Susanna Björk
Secretary 2015-2016 Mr Bengt Rydstedt
ISO/TC 292 currently has the following organisation.
- Working Group 1: Terminology
- Working Group 2: Continuity and organizational resilience
- Working Group 3: Emergency management
- Working Group 4: Authenticity, integrity and trust for products and documents
- Working Group 5: Community resilience
- Working Group 6: Protective security
- CG: Communication Group
- DCCG: Developing Country Coordination Group
- UNCG: United Nation Coordination Group
ISO/TC 292 is one of the larger committees in ISO with over 50 member countries.
Published standards
General
ISO 22300:2018 Security and resilience - Vocabulary
ISO 22397:2014 Societal security – Guidelines for establishing partnering arrangements
ISO 22398:2014 Societal security – Guidelines for exercises
Business continuity management
ISO 22301:2012 Societal security – Business continuity management systems – Requirements
ISO 22313:2013 Societal security – Business continuity management systems – Guidance
ISO/TS 22317:2015 Societal security – Business continuity management systems – Guidelines for business impact analysis
ISO/TS 22318:2015 Societal security – Business continuity management systems – Guidelines for supply chain continuity
ISO/IEC/TS 17021-6:2015 Conformity assessment – Requirements for bodies providing audit and certification of management systems – Part 6: Competence requirements for auditing and certification of business continuity management systems
Emergency management
ISO 22320:2011 Societal security – Emergency management – Requirements for incident response
ISO 22322:2015 Societal security – Emergency management – Guidelines for public warning
ISO 22324:2015 Societal security – Emergency management – Guidelines for colour coded alert
ISO 22325:2016 Security and resilience - Emergency management - Guidelines for capability assessment
ISO/TR 22351:2015 Societal security – Emergency management – Message structure for exchange of information
Authenticity, integrity and trust for products and documents
ISO 12931:2012 Performance criteria for authentication solutions used to combat counterfeiting of material goods
ISO 16678:2014 Guidelines for interoperable object identification and related authentication systems to deter counterfeiting and illicit trade
Supply chain security management
ISO 28000:2007 Specification for security management systems for the supply chain
ISO 28001:2007 Security management systems for the supply chain - Best practices for implementing supply chain security, assessments and plans - Requirements and guidance
ISO 28002:2011 Security management systems for the supply chain - Development of resilience in the supply chain - Requirements with guidance for use
ISO 28003:2007 Security management systems for the supply chain - Requirements for bodies providing audit and certification of supply chain security management systems
ISO 28004-1:2007 Security management systems for the supply chain - Guidelines for the implementation of ISO 28000 Part 1: General principles
ISO 28004-3:2014 Security management systems for the supply chain - Guidelines for the implementation of ISO 28000 Part 3: Additional specific guidance for adopting ISO 28000 for use by medium and small businesses (other than marine ports)
ISO 28004-4:2014 Security management systems for the supply chain - Guidelines for the implementation of ISO 28000 Part 4: Additional specific guidance on implementing ISO 28000 if compliance with ISO 28001 is a management objective
Community resilience
ISO 22315:2015 Societal security – Mass evacuation – Guidelines for planning
ISO 22319:2017 Security and resilience - Community resilience - Guidelines for planning the involvement of spontaneous volunteers
Organizational resilience
ISO 22316:2017 Security and resilience - Organizational resilience - Principles and attributes
Protective security
ISO 18788:2015 Management system for private security operations - Requirements with guidance for use
Revised, replaced or withdrawn
ISO 22300:2012 Societal security – Terminology
ISO/TR 22312:2012 Societal security – Technological capabilities
ISO/PAS 22399:2007 Societal security – Guideline for incident preparedness and operational continuity management [replaced by ISO 22301 and ISO 22313]