{"id":3783,"date":"2013-05-31T13:25:47","date_gmt":"2013-05-31T12:25:47","guid":{"rendered":"http:\/\/www.solucominsight.fr\/?p=3783"},"modified":"2019-12-31T11:38:17","modified_gmt":"2019-12-31T10:38:17","slug":"de-la-27001-a-la-22301-juste-un-pas-a-franchir","status":"publish","type":"post","link":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/","title":{"rendered":"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?"},"content":{"rendered":"<p><em>La publication de la norme ISO 22301 \u00ab\u00a0S\u00e9curit\u00e9 soci\u00e9tale &#8211; \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 &#8211; Exigences\u00a0\u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001\u00a0: y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information\u00a0?<\/em><\/p>\n<p>Si de prime abord les deux sujets peuvent para\u00eetre disjoints, ces interrogations semblent justifi\u00e9es au regard des certifications relatives \u00e0 la norme BS 25999\u00a0: plusieurs d\u2019entre elles avaient combin\u00e9 les deux r\u00e9f\u00e9rentiels. Et pour cause, il existe plusieurs points communs entre les deux normes\u2026<\/p>\n<h2>D\u2019ind\u00e9niables axes de mutualisation<\/h2>\n<p>Les bases de tout syst\u00e8me de management, qu\u2019il concerne la qualit\u00e9 (9001), les services IT (20000) ou d\u2019autres,\u00a0sont communes &#8211; les normes \u00a027001 et 22301 ne d\u00e9rogent pas \u00e0 la r\u00e8gle. On y retrouve ainsi les notions de construction par processus, d\u2019am\u00e9lioration continue, d\u2019implication du management, \u2026<\/p>\n<p>En outre, elles concourent toutes deux \u00e0 un m\u00eame objectif\u00a0: g\u00e9rer les risques d\u2019une organisation. Les risques li\u00e9s, respectivement \u00e0 la s\u00e9curit\u00e9 ou \u00e0 la continuit\u00e9, doivent \u00eatre identifi\u00e9s et prioris\u00e9s, les traitements d\u00e9finis, \u2026 Elles se rejoignent donc sur une \u00e9tape importante de la phase \u00ab\u00a0Plan\u00a0\u00bb : l\u2019analyse de risques.<\/p>\n<p>Par ailleurs, la continuit\u00e9 ou la disponibilit\u00e9 en tant que crit\u00e8re de s\u00e9curit\u00e9 est clairement abord\u00e9e dans l\u2019annexe de la 27001. En effet, cette derni\u00e8re exige que l\u2019organisme mette en place un Plan de Continuit\u00e9 d\u2019Activit\u00e9 (PCA) et qu\u2019il soit test\u00e9.<\/p>\n<p>Pour autant, passer d\u2019un SMSI \u00e0 un Syst\u00e8me de Management int\u00e9grant l\u2019ISO 22301 n\u2019est pas imm\u00e9diat.<\/p>\n<h2>Des diff\u00e9rences majeures \u00e0 ne pas perdre de vue<\/h2>\n<p>L\u2019ISO 22301 est une norme qui s\u2019inscrit dans les r\u00e9flexions autour de la s\u00e9curit\u00e9 soci\u00e9tale. Elle traite de cas de sinistres majeurs\u00a0: la probl\u00e9matique de la gestion de crise y est pr\u00e9gnante. Au vu de la dimension des sinistres envisag\u00e9s, les exigences en termes de communication font l\u2019objet d\u2019un chapitre sp\u00e9cifique. Il s\u2019agit aussi bien de la communication interne qu\u2019externe envers les autorit\u00e9s, les m\u00e9dias, les familles des collaborateurs\u2026<\/p>\n<p>S\u2019agissant de Syst\u00e8me de Management de Continuit\u00e9 d\u2019Activit\u00e9, la notion de besoin de continuit\u00e9 est plus d\u00e9velopp\u00e9e dans la norme ISO 22301. Un BIA (Bilan d\u2019Impacts sur Activit\u00e9 ou Business Impact Analysis) doit \u00eatre conduit. Ce BIA est \u00e0 r\u00e9aliser lors des premi\u00e8res \u00e9tapes de mise en \u0153uvre, identifiant,<em> a minima<\/em>, les activit\u00e9s critiques, et exprimant pour chacune d\u2019entre elles les d\u00e9lais d\u2019interruption maximale admissible, le \u00ab\u00a0calendrier\u00a0\u00bb de reprise progressive de l\u2019activit\u00e9, \u2026 Par ailleurs, la norme exige clairement que les d\u00e9pendances soient identifi\u00e9es, notamment avec les fournisseurs de services, lesquels doivent pr\u00e9ciser leurs PCA existants. Cette pr\u00e9cision vient directement faire \u00e9cho \u00e0 la notion de prestataires de services essentiels externalis\u00e9s (ou PSEE).<\/p>\n<p>Passer d\u2019un SMSI \u00e0 Syst\u00e8me de management int\u00e9grant les exigences de la 22301 n\u00e9cessite donc d\u2019inscrire ces points dans les processus du Syst\u00e8me de Management Int\u00e9gr\u00e9.<\/p>\n<h2>Un pas int\u00e9ressant \u00e0 franchir\u00a0?<\/h2>\n<p>Int\u00e9grer les exigences de l\u2019ISO 22301 peut clairement donner un nouveau souffle \u00e0 son syst\u00e8me de management en effectuant un focus particulier sur la continuit\u00e9 d\u2019activit\u00e9. Mais redonner un nouveau souffle ne peut pas \u00eatre une fin en soi, l\u2019objectif est bien de r\u00e9pondre \u00e0 un r\u00e9el enjeu de s\u00e9curit\u00e9 de l\u2019information et de continuit\u00e9\u00a0\u00e0 la fois, avec une rationalisation de l\u2019effort consacr\u00e9 \u00e0 la gestion de deux risques\u00a0!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>La publication de la norme ISO 22301 \u00ab\u00a0S\u00e9curit\u00e9 soci\u00e9tale &#8211; \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 &#8211; Exigences\u00a0\u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001\u00a0: y&#8230;<\/p>\n","protected":false},"author":18,"featured_media":6269,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"page-templates\/tmpl-one.php","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3222,36],"tags":[391,244,133,62,1156,131,3304],"coauthors":[796],"class_list":["post-3783","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyberrisk-management-strategy","category-cybersecurity-digital-trust","tag-continuite-dactivite","tag-crise","tag-iso-22301","tag-iso-27001","tag-normes","tag-pca","tag-risk-management-strategy-governance"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?<\/title>\n<meta name=\"description\" content=\"La publication de la norme ISO 22301 \u00ab S\u00e9curit\u00e9 soci\u00e9tale - \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 - Exigences \u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001 : y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information ?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?\" \/>\n<meta property=\"og:description\" content=\"La publication de la norme ISO 22301 \u00ab S\u00e9curit\u00e9 soci\u00e9tale - \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 - Exigences \u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001 : y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information ?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\" \/>\n<meta property=\"og:site_name\" content=\"RiskInsight\" \/>\n<meta property=\"article:published_time\" content=\"2013-05-31T12:25:47+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-12-31T10:38:17+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1378\" \/>\n\t<meta property=\"og:image:height\" content=\"1378\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Amal Boutayeb\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Amal Boutayeb\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\"},\"author\":{\"name\":\"Amal Boutayeb\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/1c0cc88b368516b40d1429589130f940\"},\"headline\":\"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?\",\"datePublished\":\"2013-05-31T12:25:47+00:00\",\"dateModified\":\"2019-12-31T10:38:17+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\"},\"wordCount\":630,\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg\",\"keywords\":[\"continuit\u00e9 d'activit\u00e9\",\"crise\",\"ISO 22301\",\"ISO 27001\",\"normes\",\"PCA\",\"Risk management\"],\"articleSection\":[\"Cyberrisk Management &amp; Strategy\",\"Cybersecurity &amp; Digital Trust\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\",\"name\":\"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?\",\"isPartOf\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg\",\"datePublished\":\"2013-05-31T12:25:47+00:00\",\"dateModified\":\"2019-12-31T10:38:17+00:00\",\"description\":\"La publication de la norme ISO 22301 \u00ab S\u00e9curit\u00e9 soci\u00e9tale - \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 - Exigences \u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001 : y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information ?\",\"breadcrumb\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg\",\"width\":1378,\"height\":1378},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#website\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"name\":\"RiskInsight\",\"description\":\"The cybersecurity &amp; digital trust blog by Wavestone&#039;s consultants\",\"publisher\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#organization\",\"name\":\"Wavestone\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"contentUrl\":\"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png\",\"width\":50,\"height\":50,\"caption\":\"Wavestone\"},\"image\":{\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/1c0cc88b368516b40d1429589130f940\",\"name\":\"Amal Boutayeb\",\"url\":\"https:\/\/www.riskinsight-wavestone.com\/en\/author\/amal-boutayeb\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?","description":"La publication de la norme ISO 22301 \u00ab S\u00e9curit\u00e9 soci\u00e9tale - \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 - Exigences \u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001 : y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information ?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/","og_locale":"en_US","og_type":"article","og_title":"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?","og_description":"La publication de la norme ISO 22301 \u00ab S\u00e9curit\u00e9 soci\u00e9tale - \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 - Exigences \u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001 : y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information ?","og_url":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/","og_site_name":"RiskInsight","article_published_time":"2013-05-31T12:25:47+00:00","article_modified_time":"2019-12-31T10:38:17+00:00","og_image":[{"width":1378,"height":1378,"url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg","type":"image\/jpeg"}],"author":"Amal Boutayeb","twitter_misc":{"Written by":"Amal Boutayeb","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#article","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/"},"author":{"name":"Amal Boutayeb","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/1c0cc88b368516b40d1429589130f940"},"headline":"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?","datePublished":"2013-05-31T12:25:47+00:00","dateModified":"2019-12-31T10:38:17+00:00","mainEntityOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/"},"wordCount":630,"publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage"},"thumbnailUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg","keywords":["continuit\u00e9 d'activit\u00e9","crise","ISO 22301","ISO 27001","normes","PCA","Risk management"],"articleSection":["Cyberrisk Management &amp; Strategy","Cybersecurity &amp; Digital Trust"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/","url":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/","name":"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?","isPartOf":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage"},"thumbnailUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg","datePublished":"2013-05-31T12:25:47+00:00","dateModified":"2019-12-31T10:38:17+00:00","description":"La publication de la norme ISO 22301 \u00ab S\u00e9curit\u00e9 soci\u00e9tale - \u00c9tat de pr\u00e9paration et syst\u00e8mes de gestion de la continuit\u00e9 - Exigences \u00bb suscite des interrogations aupr\u00e8s de ceux qui sont d\u2019ores et d\u00e9j\u00e0 certifi\u00e9s ou align\u00e9s \u00e0 la 27001 : y a-t-il un sens \u00e0 int\u00e9grer les exigences de la 22301 \u00e0 un Syst\u00e8me de Management de la S\u00e9curit\u00e9 de l\u2019Information ?","breadcrumb":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#primaryimage","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2014\/11\/matrice-bleue-security-fotolia42290836m-voyager624-fotolia.com_.jpg","width":1378,"height":1378},{"@type":"BreadcrumbList","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/2013\/05\/de-la-27001-a-la-22301-juste-un-pas-a-franchir\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.riskinsight-wavestone.com\/en\/"},{"@type":"ListItem","position":2,"name":"De la 27001 \u00e0 la 22301, juste un pas \u00e0 franchir ?"}]},{"@type":"WebSite","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#website","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","name":"RiskInsight","description":"The cybersecurity &amp; digital trust blog by Wavestone&#039;s consultants","publisher":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.riskinsight-wavestone.com\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#organization","name":"Wavestone","url":"https:\/\/www.riskinsight-wavestone.com\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","contentUrl":"https:\/\/www.riskinsight-wavestone.com\/wp-content\/uploads\/2021\/08\/Monogramme\u2013W\u2013NEGA-RGB-50x50-1.png","width":50,"height":50,"caption":"Wavestone"},"image":{"@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.riskinsight-wavestone.com\/en\/#\/schema\/person\/1c0cc88b368516b40d1429589130f940","name":"Amal Boutayeb","url":"https:\/\/www.riskinsight-wavestone.com\/en\/author\/amal-boutayeb\/"}]}},"_links":{"self":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/3783","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/users\/18"}],"replies":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/comments?post=3783"}],"version-history":[{"count":6,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/3783\/revisions"}],"predecessor-version":[{"id":6281,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/posts\/3783\/revisions\/6281"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media\/6269"}],"wp:attachment":[{"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/media?parent=3783"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/categories?post=3783"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/tags?post=3783"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/www.riskinsight-wavestone.com\/en\/wp-json\/wp\/v2\/coauthors?post=3783"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}