ISO/TC 292 explained

ISO/TC 292 Security and resilience is a technical committee of the International Organization for Standardization formed in 2015 to develop standards in the area of security and resilience.

When ISO/TC 292 was created the following three committees were merged.

• ISO/TC 223 Societal security (2001–2014)
• ISO/TC 247 Fraud countermeasures and controls (2009–2014)
• ISO/PC 284 Management system for quality of PSC operations (2013–2014)

Scope

ISO/TC 292 works under the following scope^{[1] [2] [3] [4]}

Standardization in the field of security to enhance the safety and resilience of society.
Excluded: Sector specific security projects developed in other relevant ISO committees and projects developed in ISO/TC 262 and ISO/PC 278.

Leadership and organization

• Chair 2024– Mr Karl Torring
• Chair 2015–2023 Mrs Åsa Kyrk Gere
• Secretary 2020- Ms Susanna Björk
• Secretary 2017–2020 Mr Bengt Rydstedt
• Secretary 2017-2017 Ms Susanna Björk
• Secretary 2015–2016 Mr Bengt Rydstedt

ISO/TC 292 currently has the following organisation.^{[5] [6]}

• Sub Committee 1: Emergency management
• Working Group 1: Terminology
• Working Group 2: Continuity and organizational resilience
• Working Group 4: Authenticity, integrity and trust for products and documents
• Working Group 5: Community resilience
• Working Group 6: Protective security
• Working Group 7: Guidelines for events
• Working Group 8: Supply chain security
• Working Group 9: Crisis management
• Working Group 10: Preparedness
• CG: Communication Group

ISO/TC 292 is one of the larger committees in ISO with almost 70 member countries.^[7]

It has a wide range of experts participating in the work of ISO/TC 292, from large corporations such as Thales to start-ups such as Cypheme.^[8]

Published standards

General

• ISO 22300:2021 Security and resilience – Vocabulary^[9]
• ISO 22359:2024 Security and resilience – Guidelines for hardened protective shelters
• ISO/TS 22375:2018 Security and resilience – Guidelines for complexity assessment process^[10]
• ISO 22379:2022 Security and resilience – Guidelines for hosting and organizing large citywide and regional events
• ISO 22397:2014 Societal security – Guidelines for establishing partnering arrangements^[11]
• ISO 22398:2014 Societal security – Guidelines for exercises^[12]

Business continuity management

• ISO 22301:2019 Security and resilience – Business continuity management systems – Requirements^[13]
• ISO 22313:2020 Security and resilience – Business continuity management systems – Guidance on the use of ISO 22301^[14]
• ISO/TS 22317:2021 Security and resilience – Business continuity management systems – Guidelines for business impact analysis^[15]
• ISO/TS 22318:2021 Security and resilience – Business continuity management systems – Guidelines for supply chain continuity^[16]
• ISO/TS 22330:2018 Security and resilience – Business continuity management systems – Guidelines for people aspects on business continuity^[17]
• ISO/TS 22331:2018 Security and resilience – Business continuity management systems – Guidelines for business continuity strategy^[18]
• ISO/TS 22332:2021 Security and resilience – Business continuity management systems – Guidelines for developing business continuity plans and procedures^[19]
• ISO/IEC/TS 17021-6:2015 Conformity assessment – Requirements for bodies providing audit and certification of management systems – Part 6: Competence requirements for auditing and certification of business continuity management systems^[20]

Emergency management

• ISO 22320:2018 Security and resilience – Emergency management – Guidelines for incident management^[21]
• ISO 22322:2022 Security and resilience – Emergency management – Guidelines for public warning^[22]
• ISO 22324:2022 Security and resilience – Emergency management – Guidelines for colour coded alert^[23]
• ISO 22325:2016 Security and resilience – Emergency management – Guidelines for capability assessment^[24]
• ISO 22326:2018 Security and resilience – Emergency management – Guidelines for monitoring facilities with identified hazards^[25]
• ISO 22328-1:2020 Security and resilience – Emergency management – Part 1: General guidelines for implementation of a community-based natural disasters early warning system
• ISO 22328-2:2024 Security and resilience – Emergency management – Part 2: Guidelines for implementation of a community-based landslide early warning system
• ISO 22328-3:2022 Security and resilience – Emergency management – Part 3: Guidelines for implementation of a community-based tsunami early warning system
• ISO 22329:2021 Security and resilience – Emergency management – Guidelines for the use of social media in emergencies^[26]
• ISO/TR 22351:2015 Societal security – Emergency management – Message structure for exchange of information^[27]

Authenticity, integrity and trust for products and documents

• ISO 22376:2023 Security and resilience – Authenticity, integrity and trust for products and documents – Specification and usage of visible digital seal (VDS) data format for authentication, verification and acquisition of data carried by a document or object ^[28]
• ISO 22378:2022 Security and resilience – Authenticity, integrity and trust for products and documents – Guidelines for interoperable object identification and related authentication systems to deter counterfeiting and illicit trade ^[29]
• ISO 22380:2018 Security and resilience – Authenticity, integrity and trust for products and documents – General principles for product fraud risk^[30]
• ISO 22381:2018 Security and resilience – Authenticity, integrity and trust for products and documents – Guidelines for interoperability of product identification and authentication systems^[31]
• ISO 22382:2018 Security and resilience – Authenticity, integrity and trust for products and documents – Guidelines for the content, security and issuance of excise tax stamps^[32]
• ISO 22383:2020 Security and resilience – Authenticity, integrity and trust for products and documents – Guidelines and performance criteria for authentication solutions for material goods
• ISO 22384:2020 Security and resilience – Authenticity, integrity and trust for products and documents - Guidelines to establish and monitor a protection plan and its implementation
• ISO 22385:2023 Security and resilience – Authenticity, integrity and trust for products and documents - Guidelines to establish a framework for trust and interoperability
• ISO/TS 22386:2024 Security and resilience – Authenticity, integrity and trust for products and documents - Guidelines for brand protection and enforcement procedures
• ISO 22387:2022 Security and resilience – Authenticity, integrity and trust for products and documents - Validation procedures for the application of artefact metrics
• ISO 22388:2023 Security and resilience – Authenticity, integrity and trust for products and documents - Guidelines for securing physical documents

Security management systems

• ISO 28000:2022 Security and resilience – Security management systems – Requirements
• ISO 28001:2007 Security management systems for the supply chain – Best practices for implementing supply chain security, assessments and plans – Requirements and guidance^[33]
• ISO 28003:2007 Security management systems for the supply chain – Requirements for bodies providing audit and certification of supply chain security management systems^[34]
• ISO 28004-1:2007 Security management systems for the supply chain – Guidelines for the implementation of ISO 28000 Part 1: General principles^[35]
• ISO 28004-3:2014 Security management systems for the supply chain – Guidelines for the implementation of ISO 28000 Part 3: Additional specific guidance for adopting ISO 28000 for use by medium and small businesses (other than marine ports)^[36]
• ISO 28004-4:2014 Security management systems for the supply chain – Guidelines for the implementation of ISO 28000 Part 4: Additional specific guidance on implementing ISO 28000 if compliance with ISO 28001 is a management objective^[37]
• ISO 18788:2015 Management system for private security operations – Requirements with guidance for use^[38]

Community resilience

• ISO 22315:2015 Societal security – Mass evacuation – Guidelines for planning^[39]
• ISO 22319:2017 Security and resilience – Community resilience – Guidelines for planning the involvement of spontaneous volunteers^[40]
• ISO 22392:2020 Security and resilience – Community resilience – Guidelines for conducting peer reviews^[41]
• ISO 22393:2023 Security and resilience – Community resilience – Guidelines for planning recovery and renewal^[42]
• ISO 22395:2018 Security and resilience – Community resilience – Guidelines for supporting vulnerable persons in an emergency^[43]
• ISO 22396:2020 Security and resilience – Community resilience – Guidelines for information exchange between organisations^[44]

Urban resilience

• ISO/TR 22370:2020 Security and resilience – Urban resilience – Framework and principles

Organizational resilience

• ISO 22316:2017 Security and resilience – Organizational resilience – Principles and attributes^[45]
• ISO 22336:2024 Security and resilience – Organizational resilience – Guidelines for resilience policy and strategy

Protective security

• ISO 22341:2021 Security and resilience – Protective security – Guidelines for crime prevention through environmental design
• ISO 22342:2023 Security and resilience – Protective security – Guidelines for the development of a security plan for an organization^[46]

Vehicle security barriers

• ISO 22343-1:2023 Security and resilience – Vehicle security barriers — Part 1: Performance requirement, vehicle impact test method and performance rating
• ISO 22343-2:2023 Security and resilience – Vehicle security barriers — Part 2: Application

Crisis management

• ISO/TS 22360:2024 Security and resilience – Crisis management – Concepts, principles and framework
• ISO 22361:2024 Security and resilience – Crisis management – Guidelines

Replaced or withdrawn

• ISO 22300:2012 Societal security – Terminology (replaced by 2018 edition)^[47]
• ISO 22300:2018 Security and resilience – Vocabulary (replaced by 2021 edition)^[48]
• ISO 22301:2012 Societal security – Business continuity management systems – Requirements ^[49] (replaced by 2019 edition)
• ISO/TR 22312:2012 Societal security – Technological capabilities^[50]
• ISO 22313:2012 Societal security – Business continuity management systems – Guidance (replaced by 2020 edition)
• ISO 22317:2015 Societal security – Business continuity management systems – Guidelines for business impact analysis (replaced by 2021 edition)
• ISO 22318:2015 Societal security – Business continuity management systems – Guidelines for supply chain continuity (replaced by 2021 edition)
• ISO 22320:2011 Societal security – Emergency management – Requirements for incident response (replaced by 2018 edition)^[51]
• ISO 22322:2015 Societal security – Emergency management – Guidelines for public warning (replaced by 2022 edition)^[52]
• ISO 22324:2015 Societal security – Emergency management – Guidelines for colour coded alert (replaced by 2022 edition)^[23]
• ISO 22327:2018 Security and resilience – Emergency management – Guidelines for implementation of a community-based landslide early warning system^[53]
• ISO/TS 22393:2021 Security and resilience – Community resilience – Guidelines for planning recovery and renewal^[54]
• ISO/PAS 22399:2007 Societal security – Guideline for incident preparedness and operational continuity management (replaced by ISO 22301 and ISO 22313)^[55]
• ISO 12931:2012 Performance criteria for authentication solutions used to combat counterfeiting of material goods^[56]
• ISO 16678:2014 Guidelines for interoperable object identification and related authentication systems to deter counterfeiting and illicit trade^[57]
• ISO 28000:2007 Specification for security management systems for the supply chain^[58]
• ISO 28002:2011 Security management systems for the supply chain – Development of resilience in the supply chain – Requirements with guidance for use^[59]

External links

• www.iso.org
• www.isotc292online.org

Notes and References

1. Web site: ISO/TC 292 - Security and resilience. ISO. 19 January 2022 .
2. Web site: ISO/TC 292 Security and resilience. www.scc.ca. 17 September 2015. 2020-08-01.
3. Web site: What is standardisation? | resistand. resistand.eu.
4. Web site: Standards Increasing Security. Security. Solutions. September 3, 2018.
5. Web site: ISOTC292. www.isotc292online.org.
6. Web site: International Standards Development. www.asisonline.org.
7. Web site: ISO - ISO/TC 292 - Security and resilience. www.iso.org.
8. Web site: fr . Structure AFNOR/SÉCURITÉ&RÉSILIENCE Norm'Info . norminfo.afnor.org . 2020-10-03.
9. Web site: ISO 22300:2018. ISO. 12 July 2019 .
10. Web site: ISO/TS 22375:2018. ISO.
11. Web site: ISO 22397:2014. ISO.
12. Web site: ISO 22398:2013. ISO.
13. Web site: ISO 22301:2019. ISO. 5 June 2023 .
14. Web site: ISO 22313:2020. ISO.
15. Web site: Iso/Ts 22317:2021.
16. Web site: Iso/Ts 22318:2021.
17. Web site: ISO/TS 22330:2018. ISO. 12 July 2019 .
18. Web site: ISO/TS 22331:2018. ISO.
19. Web site: Iso/Ts 22332:2021.
20. Web site: ISO/IEC TS 17021-6:2014. ISO.
21. Web site: ISO 22320:2018. ISO. 12 July 2019 .
22. Web site: ISO 22322:2015. ISO. 13 November 2015 .
23. Web site: ISO 22324:2015. ISO. 13 November 2015 . live . https://web.archive.org/web/20181215075207/https://www.iso.org/standard/50061.html . Dec 15, 2018 .
24. Web site: ISO 22325:2016. ISO . live . https://web.archive.org/web/20181215075134/https://www.iso.org/standard/50062.html . Dec 15, 2018 .
25. Web site: ISO 22326:2018. ISO . live . https://web.archive.org/web/20181215074809/https://www.iso.org/standard/67159.html . Dec 15, 2018 .
26. Web site: ISO 22329:2021 . ISO . live . https://web.archive.org/web/20231002111308/https://www.iso.org/standard/50066.html?browse=tc . Oct 2, 2023 .
27. Web site: ISO/TR 22351:2015. ISO . live . https://web.archive.org/web/20181215075159/https://www.iso.org/standard/57384.html . Dec 15, 2018 .
28. https://www.iso.org/standard/50278
29. https://www.iso.org/standard/81754
30. Web site: ISO 22380:2018. ISO.
31. Web site: ISO 22381:2018. ISO.
32. Web site: ISO 22382:2018. ISO. 5 December 2018 .
33. Web site: ISO 28001:2007. ISO.
34. Web site: ISO 28003:2007. ISO.
35. Web site: ISO 28004-1:2007. ISO.
36. Web site: ISO 28004-3:2014. ISO.
37. Web site: ISO 28004-4:2014. ISO.
38. Web site: ISO 18788:2015. ISO.
39. Web site: ISO 22315:2014. ISO.
40. Web site: Iso 22319:2017. 30 October 2020 .
41. Web site: ISO 22392:2020. ISO.
42. Web site: Iso/Ts 22393:2021. 6 September 2021 .
43. Web site: ISO 22395:2018. ISO. 30 October 2020 .
44. Web site: ISO 22396:2020. ISO.
45. Web site: ISO 22316:2017. ISO. 15 September 2020 .
46. https://www.iso.org/standard/50079.
47. Web site: ISO 22300:2012. ISO.
48. Web site: ISO 22300:2018. ISO. 12 July 2019 .
49. Web site: ISO 22301:2012. ISO. 8 November 2017 .
50. Web site: ISO/TR 22312:2011. ISO. 18 June 2012 .
51. Web site: ISO 22320:2011. ISO. 18 June 2012 .
52. Web site: ISO 22322:2015. ISO. 13 November 2015 .
53. Web site: ISO 22327:2018. ISO . live . https://web.archive.org/web/20181215074728/https://www.iso.org/standard/50064.html . Dec 15, 2018 .
54. Web site: Iso/Ts 22393:2021. 6 September 2021 .
55. Web site: ISO/PAS 22399:2007. ISO. 18 June 2012 .
56. Web site: ISO 12931:2012. ISO. 8 January 2014 .
57. Web site: ISO 16678:2014. ISO.
58. Web site: ISO 28000:2007. ISO. 7 June 2019 .
59. Web site: ISO 28002:2011. ISO.