Build or upgrade your ISMS on our platform

ISO 22301 Clause 2: Normative references

What will Requirement 2 of ISO 22301 help you achieve?

The standard refers to one other document, “ISO 22300, Security and resilience – Vocabulary”. It lists and defines terms used in security and resilience standards. We recommend downloading a copy of ISO 22300. If you already have one, make sure it’s the most up-to-date edition.

The standard refers to ISO 22300 in two different ways. Sometimes it makes dated references, which looks like this:

[SOURCE: ISO 22300:2018…]

That means that only that specific edition of ISO 22300 applies. At other times, it makes undated references, which look like this:

[SOURCE: ISO 22300…]

They refer to the latest edition of ISO 22300, including any changes released after its publication.

Of course, as part of our process we’ll help you stay up to date with all of these definitions, wherever they come from.

ISO 22301:2019 Requirements

ISO 22301:2019 implements the framework, fundamental text and definitions of Annex L, formerly Annex SL. Annex L establishes a high-level framework for ISO management system standards. The Annex was drawn up to incorporate a similar core text and common terminology and concepts.

Except for Clause 8, the Annex L requirements address many of the same areas as the core requirements of ISO 27001, covered in Section 4.1 through to 10.2.