Security and resilience - Vocabulary (ISO 22300:2021)

This document defines terms used in security and resilience standards.

Sicherheit und Resilienz - Vokabular (ISO 22300:2021)

Dieses Dokument legt Begriffe fest, die in den Normen zur Sicherheit und Resilienz verwendet werden.

Sécurité et résilience - Vocabulaire (ISO 22300:2021)

Le présent document définit les termes utilisés dans les normes relatives à la sécurité et à la résilience.

Varnost in vzdržljivost - Slovar (ISO 22300:2021)

General Information

Status
Published
Public Enquiry End Date
08-Jun-2020
Publication Date
24-Mar-2021
Technical Committee
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
18-Mar-2021
Due Date
23-May-2021
Completion Date
25-Mar-2021

Relations

Buy Standard

Standard
EN ISO 22300:2021
English language
61 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day
Draft
prEN ISO 22300:2020
English language
43 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST EN ISO 22300:2021
01-maj-2021
Nadomešča:
SIST EN ISO 22300:2018
Varnost in vzdržljivost - Slovar (ISO 22300:2021)
Security and resilience - Vocabulary (ISO 22300:2021)
Sicherheit und Resilienz - Vokabular (ISO 22300:2021)
Sécurité et résilience - Vocabulaire (ISO 22300:2021)
Ta slovenski standard je istoveten z: EN ISO 22300:2021
ICS:
01.040.03 Storitve. Organizacija Services. Company
podjetja, vodenje in kakovost. organization, management
Uprava. Transport. and quality. Administration.
Sociologija. (Slovarji) Transport. Sociology.
(Vocabularies)
03.100.01 Organizacija in vodenje Company organization and
podjetja na splošno management in general
SIST EN ISO 22300:2021 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN ISO 22300:2021

---------------------- Page: 2 ----------------------
SIST EN ISO 22300:2021


EN ISO 22300
EUROPEAN STANDARD

NORME EUROPÉENNE

March 2021
EUROPÄISCHE NORM
ICS 01.040.03; 03.100.01 Supersedes EN ISO 22300:2018
English Version

Security and resilience - Vocabulary (ISO 22300:2021)
Sécurité et résilience - Vocabulaire (ISO 22300:2021) Sicherheit und Resilienz - Vokabular (ISO 22300:2021)
This European Standard was approved by CEN on 23 February 2021.

CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this
European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references
concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to any CEN
member.

This European Standard exists in three official versions (English, French, German). A version in any other language made by
translation under the responsibility of a CEN member into its own language and notified to the CEN-CENELEC Management
Centre has the same status as the official versions.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway,
Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and
United Kingdom.





EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2021 CEN All rights of exploitation in any form and by any means reserved Ref. No. EN ISO 22300:2021 E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------
SIST EN ISO 22300:2021
EN ISO 22300:2021 (E)
Contents Page
European foreword . 3

2

---------------------- Page: 4 ----------------------
SIST EN ISO 22300:2021
EN ISO 22300:2021 (E)
European foreword
This document (EN ISO 22300:2021) has been prepared by Technical Committee ISO/TC 292 "Security
and resilience" in collaboration with Technical Committee CEN/TC 391 “Societal and Citizen Security”
the secretariat of which is held by AFNOR.
This European Standard shall be given the status of a national standard, either by publication of an
identical text or by endorsement, at the latest by September 2021, and conflicting national standards
shall be withdrawn at the latest by September 2021.
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CEN shall not be held responsible for identifying any or all such patent rights.
This document supersedes EN ISO 22300:2018.
According to the CEN-CENELEC Internal Regulations, the national standards organizations of the
following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria,
Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland,
Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Republic of
North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the
United Kingdom.
Endorsement notice
The text of ISO 22300:2021 has been approved by CEN as EN ISO 22300:2021 without any modification.

3

---------------------- Page: 5 ----------------------
SIST EN ISO 22300:2021

---------------------- Page: 6 ----------------------
SIST EN ISO 22300:2021
INTERNATIONAL ISO
STANDARD 22300
Third edition
2021-02
Security and resilience — Vocabulary
Sécurité et résilience — Vocabulaire
Reference number
ISO 22300:2021(E)
©
ISO 2021

---------------------- Page: 7 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

COPYRIGHT PROTECTED DOCUMENT
© ISO 2021
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO 2021 – All rights reserved

---------------------- Page: 8 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
3.1 Terms related to security and resilience . 1
3.2 Terms related to counterfeiting tax stamps .38
3.3 Terms related to supply chain .43
3.4 Terms related to CCTV .44
Bibliography .46
Index .47
© ISO 2021 – All rights reserved iii

---------------------- Page: 9 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards
bodies (ISO member bodies). The work of preparing International Standards is normally carried out
through ISO technical committees. Each member body interested in a subject for which a technical
committee has been established has the right to be represented on that committee. International
organizations, governmental and non-governmental, in liaison with ISO, also take part in the work.
ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of
electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular, the different approval criteria needed for the
different types of ISO documents should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see www .iso .org/ directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of
any patent rights identified during the development of the document will be in the Introduction and/or
on the ISO list of patent declarations received (see www .iso .org/ patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation of the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO’s adherence to the
World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT), see www .iso .org/
iso/ foreword .html.
This document was prepared by Technical Committee ISO/TC 292, Security and resilience, in
collaboration with the European Committee for Standardization (CEN) Technical Committee CEN/
TC 391, Societal and Citizen Security, in accordance with the Agreement on technical cooperation
between ISO and CEN (Vienna Agreement).
This third edition cancels and replaces the second edition (ISO 22300:2018), which has been technically
revised. The main changes compared with the previous edition are as follows:
— terms have been added from recent published documents and documents transferred to ISO/TC 292;
— the terminological entries have been separated into subclauses by subject matter.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www .iso .org/ members .html.
iv © ISO 2021 – All rights reserved

---------------------- Page: 10 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

Introduction
This document provides definitions of generic terms and subject-specific terms related to documents
produced by ISO/TC 292. It covers the ISO 22300 family of standards as well as some documents in the
ISO 28000 family of standards.
It aims to encourage a mutual and consistent understanding and use of uniform terms and definitions
in processes and frameworks in the field of security and resilience.
This document can be applied as a reference by competent authorities, as well as by specialists involved
in standardization systems, to better and more accurately understand relevant text, correspondences
and communications.
The terms and definitions in 3.2, 3.3, 3.4 apply only to counterfeiting tax stamps standards, to supply
chain standards or to CCTV standards, respectively, and do not apply generally.
© ISO 2021 – All rights reserved v

---------------------- Page: 11 ----------------------
SIST EN ISO 22300:2021

---------------------- Page: 12 ----------------------
SIST EN ISO 22300:2021
INTERNATIONAL STANDARD ISO 22300:2021(E)
Security and resilience — Vocabulary
1 Scope
This document defines terms used in security and resilience standards.
2 Normative references
There are no normative references in this document.
3 Terms and definitions
ISO and IEC maintain terminological databases for use in standardization at the following addresses:
— ISO Online browsing platform: available at https:// www .iso .org/ obp
— IEC Electropedia: available at http:// www .electropedia .org/
3.1 Terms related to security and resilience
3.1.1
access
ability of the rights holders (3.1.214) to use or benefit (3.1.17) from a certain service or product
Note 1 to entry: Restrictions can be caused by distance to the source (e.g. water supply network does not reach a
certain neighbourhood) or unaffordability (e.g. service is too costly for a certain household or group of people),
among other reasons.
3.1.2
activity
set of one or more tasks with a defined output
3.1.3
adhesive
glue
chemical mixture that bonds two materials together
Note 1 to entry: It can be enabled by heat, pressure or chemistry.
3.1.4
affected area
location that has been impacted by a disruptive event (3.1.76) (incident, accident, disaster)
Note 1 to entry: The term is more relevant to immediate evacuations (3.1.92).
3.1.5
after-action report
final exercise report
document (3.1.77) that records, describes and analyses the actual disruption (3.1.75) or exercise (3.1.97),
drawing on debriefs and reports from observers (3.1.163), and derives lessons from it
Note 1 to entry: The after-action report documents the results from the after-action review (3.1.211).
© ISO 2021 – All rights reserved 1

---------------------- Page: 13 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

3.1.6
alert
part of public warning (3.1.197) that captures attention of first responders and people at risk (3.1.176) in
a developing emergency (3.1.87) situation
3.1.7
all clear
message or signal that the danger is over
3.1.8
all-hazards
naturally occurring event (3.1.96), human induced event (both intentional and unintentional) and
technology caused event with potential impact (3.1.118) on an organization (3.1.165), community
(3.1.39) or society and the environment on which it depends
3.1.9
alternate worksite
work location, other than the primary location, to be used when the primary location is not accessible
3.1.10
analysis area
subject matter that has been selected to be peer reviewed (3.1.174)
EXAMPLE Governance of risk management (3.1.224), assessment of risk, financial capacity, urban
development, climate change adaptation and ecosystem protection, institutional capacity, community (3.1.39)
and societal capacity, economic and business continuity (3.1.19), infrastructure (3.1.128), public health, recovering
and rebuilding.
3.1.11
analysis system
set of interconnecting parts that work together to form and deliver an analysis area (3.1.10)
3.1.12
area at risk
location that could be affected by a disruptive event (3.1.76) (incident, accident, disaster)
Note 1 to entry: The term is more relevant to preventative evacuations (3.1.92).
3.1.13
asset
anything that has value to an organization (3.1.165)
Note 1 to entry: Assets include but are not limited to human, physical, information (3.1.127), intangible and
environmental resources (3.1.207).
3.1.14
audit
systematic, independent and documented process (3.1.190) for obtaining audit evidence and evaluating
it objectively to determine the extent to which the audit criteria are fulfilled
Note 1 to entry: An audit can be an internal audit (3.1.134) (first party) or an external audit (second party or third
party), and it can be a combined audit (combining two or more disciplines).
Note 2 to entry: An internal audit is conducted by the organization (3.1.165) itself, or by an external party on
its behalf.
Note 3 to entry: “Audit evidence” and “audit criteria” are defined in ISO 19011.
Note 4 to entry: The fundamental elements of an audit include the determination of the conformity (3.1.44) of an
object (3.1.161) according to a procedure (3.1.189) carried out by personnel (3.1.179) not being responsible for the
object audited.
2 © ISO 2021 – All rights reserved

---------------------- Page: 14 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

Note 5 to entry: An internal audit can be for management (3.1.144) review (3.1.211) and other internal purposes
and can form the basis for an organization’s declaration of conformity. Independence can be demonstrated
by the freedom from responsibility for the activity (3.1.2) being audited. External audits include second- and
third-party audits. Second-party audits are conducted by parties having an interest in the organization, such
as customers, or by other persons on their behalf. Third-party audits are conducted by external, independent
auditing organizations, such as those providing certification/registration of conformity or government agencies.
Note 6 to entry: This constitutes one of the common terms and core definitions of the high level structure for ISO
management system standards. The original definition has been modified by adding Notes 4 and 5 to entry.
3.1.15
auditor
person who conducts an audit (3.1.14)
[SOURCE: ISO 19011:2018, 3.15]
3.1.16
basic social services
set of services delivered in education, health and social areas, as a means to fulfil basic needs
3.1.17
benefit
measurable improvement resulting from the changes introduced as a result of a peer review (3.1.174)
Note 1 to entry: Benefits can be tangible or intangible, quantifiable or non-quantifiable, and financial or non-
financial.
3.1.18
biodiversity
variability among living organisms from all sources including land, marine and other aquatic ecosystems
(3.1.84) and the ecological complexes of which the organisms are part
Note 1 to entry: This includes diversity within species, between species and of ecosystems. Biodiversity is thus
not only the sum of all ecosystems, species and genetic material, but rather represents the variability within and
among them.
Note 2 to entry: Biodiversity can also be referred to as “biological diversity”.
3.1.19
business continuity
capability of an organization (3.1.165) to continue the delivery of products and services (3.1.192) within
acceptable time frames at predefined capacity during a disruption (3.1.75)
3.1.20
business continuity management
process (3.1.190) of implementing and maintaining business continuity (3.1.19)
3.1.21
business continuity management system
BCMS
part of the overall management system (3.1.146) that establishes, implements, operates, monitors,
reviews (3.1.211), maintains and improves business continuity (3.1.19)
Note 1 to entry: The management system includes organizational structure, policies, planning activities,
responsibilities, procedures (3.1.189), processes (3.1.190) and resources (3.1.207).
3.1.22
business continuity plan
documented information (3.1.78) that guides an organization (3.1.165) to respond to a disruption (3.1.75)
and resume, recover and restore the delivery of products and services (3.1.192) consistent with its
business continuity (3.1.19) objectives (3.1.162)
© ISO 2021 – All rights reserved 3

---------------------- Page: 15 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

3.1.23
business continuity programme
ongoing management (3.1.144) and governance process (3.1.190) supported by top management (3.1.279)
and appropriately resourced to implement and maintain business continuity management (3.1.20)
Note 1 to entry: In ISO 22301:2019, this term has been replaced by business continuity management system (3.1.21)
3.1.24
business impact analysis
process (3.1.190) of analysing the impact (3.1.118) over time of a disruption (3.1.75) on the organization
(3.1.165)
Note 1 to entry: The outcome is a statement and justification of business continuity (3.1.19) requirements (3.1.204).
3.1.25
capacity
combination of all the strengths and resources (3.1.207) available within an organization (3.1.165),
community (3.1.39) or society that can reduce the level of risk (3.1.215) or the effects of a crisis (3.1.60)
Note 1 to entry: Capacity can include physical, institutional, social, or economic means as well as skilled personnel
(3.1.179) or attributes such as leadership and management (3.1.144).
3.1.26
carer
individual who provides support to a vulnerable person (3.1.293)
Note 1 to entry: Carers can be paid or unpaid providers of care.
3.1.27
cargo transport unit
road freight vehicle, railway freight wagon, freight container, road tank vehicle, railway tank wagon or
portable tank
3.1.28
CCTV system
surveillance system comprised of cameras, recorders, interconnections and displays that is used to
monitor activities in a store, a company or more generally a specific infrastructure (3.1.128) and/or a
public place
3.1.29
challenge
contextual or environmental change that has the potential to impact (3.1.118) upon the ability and
capacity (3.1.25) of an urban system (3.1.285) to address emerging risks and opportunities
3.1.30
civil protection
measures taken and systems implemented to preserve the lives and health of citizens, their properties
and their environment from undesired events (3.1.96)
Note 1 to entry: Undesired events can include accidents, emergencies (3.1.85) and disasters (3.1.73).
3.1.31
civil society
wide range of individuals, groups of people, networks, movements, associations and organizations
(3.1.165) that manifest and advocate for the interests of their members and others
Note 1 to entry: It can be based on philanthropic, cultural, religious, environmental or political values and
convictions.
Note 2 to entry: This definition excludes for-profit companies and businesses, academia and all government-
dependent entities.
4 © ISO 2021 – All rights reserved

---------------------- Page: 16 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

3.1.32
civil society organization
CSO
formal association in which society voluntarily organizes around shared interests
Note 1 to entry: It includes political, cultural, environmental and faith-based organizations, as well as non-profit
and non-governmental organizations.
Note 2 to entry: CSOs are institutionalized organizations, bearing some form of legal status, that represent
particular groups of society and are involved in service delivery.
3.1.33
client
entity (3.1.91) that hires, has formerly hired, or intends to hire an organization (3.1.165) to perform
security operations (3.1.249) on its behalf, including, as appropriate, where such an organization
subcontracts (3.1.273) with another company or local forces
EXAMPLE Consumer, contractor, end-user, retailer, beneficiary, purchaser.
Note 1 to entry: A client can be internal (e.g. another division) or external to the organization.
3.1.34
colour blindness
total or partial inability of a person to differentiate between certain hues (3.1.113)
3.1.35
colour-code
set of colours used symbolically to represent particular meanings
3.1.36
command and control
activities (3.1.2) of target-orientated decision-making, including assessing the situation, planning
(3.1.180), implementing decisions and controlling the effects of implementation on the incident (3.1.122)
Note 1 to entry: This process (3.1.190) is continuously repeated.
3.1.37
command and control system
system that supports effective emergency management (3.1.88) of all available assets (3.1.13) in a
preparation, incident response (3.1.126), continuity (3.1.50) and/or recovery (3.1.201) process (3.1.190)
3.1.38
communication and consultation
continual and iterative processes (3.1.190) that an organization (3.1.165) conducts to provide, share
or obtain information (3.1.127), and to engage in dialogue with interested parties (3.1.132) and others
regarding the management (3.1.144) of risk (3.1.215)
Note 1 to entry: The information can relate to the existence, nature, form, likelihood (3.1.142), severity, evaluation
(3.1.95), acceptability, treatment or other aspects of the management of risk and security operations management
(3.1.250).
Note 2 to entry: Consultation is a two-way process of informed communication between an organization and
its interested parties or others on an issue prior to making a decision or determining a direction on that issue.
Consultation is:
— a process which impacts on a decision through influence rather than power; and
— an input to decision-making, not joint decision-making.
[SOURCE: ISO/Guide 73:2009, 3.2.1, modified — “interested parties and others” has replaced
“stakeholders” and Note 1 to entry has been modified.]
© ISO 2021 – All rights reserved 5

---------------------- Page: 17 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

3.1.39
community
group of associated organizations (3.1.165), individuals and groups sharing common interests
Note 1 to entry: Impacted communities are the groups of people and associated organizations affected by the
provision of security (3.1.239) services, projects or operations.
3.1.40
community-based early warning system
community-based warning system
method to communicate information (3.1.127) to the public through established networks
Note 1 to entry: The warning system can consist of risk knowledge, monitoring (3.1.155) and warning service,
dissemination and communication, and response capability to avoid, reduce risks (3.1.215) and prepare
responses against disaster (3.1.73).
3.1.41
community vulnerability
characteristics and conditions of individuals, groups or infrastructures (3.1.128) that put them at risk
(3.1.215) for the destructive effects of a hazard (3.1.110)
3.1.42
competence
ability to apply knowledge and skills to achieve intended results
Note 1 to entry: This constitutes one of the common terms and core definitions of the high level structure for ISO
management system standards.
3.1.43
complexity
condition of an organizational system with many diverse and autonomous but interrelated and
interdependent components or parts where those parts interact with each other and with external
elements in multiple end non-linear ways
Note 1 to entry: Complexity is the characteristic of a system where behaviour cannot be determined only as the
sum of individual variables behaviours.
3.1.44
conformity
fulfilment of a requirement (3.1.204)
Note 1 to entry: This constitutes one of the common terms and core definitions of the high level structure for ISO
management system standards.
3.1.45
consequence
outcome of an event (3.1.96) affecting objectives (3.1.162)
Note 1 to entry: A consequence can be certain or uncertain and can have positive or negative direct or indirect
effects on objectives.
Note 2 to entry: Consequences can be expressed qualitatively or quantitatively.
Note 3 to entry: Any consequence can escalate through cascading and cumulative effects.
[SOURCE: ISO 31000:2018, 3.6]
3.1.46
consequence
loss of life, damage to property or economic disruption, including disruption (3.1.75) to transport
systems, that can reasonably be expected as a result of an attack (3.2.4) on an organization in the supply
chain (3.3.9) or by the use of the supply chain (3.1.271) as a weapon
6 © ISO 2021 – All rights reserved

---------------------- Page: 18 ----------------------
SIST EN ISO 22300:2021
ISO 22300:2021(E)

3.1.47
context
external and internal factors to be taken into account when undertaking a capability assessment
Note 1 to entry: External context includes the following:
— the cultural, social, political, legal, regulatory, financial, technological, economic, natural and competitive
environment, whether international, national, regional or local;
— key drivers and trends having an impact (3.1.118) on the objectives (3.1.162) of the organization (3.1.165);
— relationships with, and perceptions and values of, external interested parties (3.1.132).
Note 2 to entry: Internal context includes:
— the organization’s mandate;
— business sensitivity;
— governance, organizational structure, roles and accountabilities;
— resources (3.1.207) and knowledge [e.g. capital, time, people, processes (3.1.190), systems and technologies];
— organizational culture (3.1.166).
3.1.48
contingency
possible future event (3.1.96), condition or eventuality
3.1.49
continual improvement
recurring activity (3.1.2) to enhance performance (3.1.177)
Note 1 to entry: This constitutes one of the common terms and core definitions of the high level structure for ISO
management system standards.
3.1.50
continuity
strategic and tactical capability, pre-approved by management (3.1.144), of an organization (3.1.165) to
plan for and respond to conditions, situations and events (3.1.96) in order to continue operations at an
acceptable predefined level
Note 1 to entry: Continuity is the more general term for operational and business continuity (3.1.19) to ensure
an organization’s ability to continue operating outside of normal operating conditions. It applies not only to for-
profit companies, but to organizations of all types, such as non-governmental, public interest and governmental.
3.1.51
control
measure that maintains and/or modifies risk (3.1.215)
Note 1 to entry: Controls include, but are not limited to, any process (3.1.190), policy (3.1.181), device, practice, or
other conditions and/or actions which maintain and/or modify risk.
Note 2 to entry: Controls cannot always exert the intended or assumed modifying effect.
[SOURCE: ISO 31000:2018, 3.8]
3.1.52
cooperation
process (3.1.190) of working or acting together for common interests and values based on agreement
Note 1 to entry: The organizations (3.1.165) agree by contra
...

SLOVENSKI STANDARD
oSIST prEN ISO 22300:2020
01-junij-2020
Varnost in vzdržljivost - Slovar (ISO/DIS 22300:2020)
Security and resilience - Vocabulary (ISO/DIS 22300:2020)
Sicherheit und Resilienz - Vokabular (ISO/DIS 22300:2020)
Sécurité et résilience - Vocabulaire (ISO/DIS 22300:2020)
Ta slovenski standard je istoveten z: prEN ISO 22300
ICS:
01.040.03 Storitve. Organizacija Services. Company
podjetja, vodenje in kakovost. organization, management
Uprava. Transport. and quality. Administration.
Sociologija. (Slovarji) Transport. Sociology.
(Vocabularies)
03.100.01 Organizacija in vodenje Company organization and
podjetja na splošno management in general
oSIST prEN ISO 22300:2020 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
oSIST prEN ISO 22300:2020

---------------------- Page: 2 ----------------------
oSIST prEN ISO 22300:2020
DRAFT INTERNATIONAL STANDARD
ISO/DIS 22300
ISO/TC 292 Secretariat: SIS
Voting begins on: Voting terminates on:
2020-03-17 2020-06-09
Security and resilience — Vocabulary
Sécurité et résilience — Vocabulaire
ICS: 01.040.03; 03.100.01
THIS DOCUMENT IS A DRAFT CIRCULATED
This document is circulated as received from the committee secretariat.
FOR COMMENT AND APPROVAL. IT IS
THEREFORE SUBJECT TO CHANGE AND MAY
NOT BE REFERRED TO AS AN INTERNATIONAL
STANDARD UNTIL PUBLISHED AS SUCH.
IN ADDITION TO THEIR EVALUATION AS
ISO/CEN PARALLEL PROCESSING
BEING ACCEPTABLE FOR INDUSTRIAL,
TECHNOLOGICAL, COMMERCIAL AND
USER PURPOSES, DRAFT INTERNATIONAL
STANDARDS MAY ON OCCASION HAVE TO
BE CONSIDERED IN THE LIGHT OF THEIR
POTENTIAL TO BECOME STANDARDS TO
WHICH REFERENCE MAY BE MADE IN
Reference number
NATIONAL REGULATIONS.
ISO/DIS 22300:2020(E)
RECIPIENTS OF THIS DRAFT ARE INVITED
TO SUBMIT, WITH THEIR COMMENTS,
NOTIFICATION OF ANY RELEVANT PATENT
RIGHTS OF WHICH THEY ARE AWARE AND TO
©
PROVIDE SUPPORTING DOCUMENTATION. ISO 2020

---------------------- Page: 3 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

COPYRIGHT PROTECTED DOCUMENT
© ISO 2020
All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may
be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting
on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address
below or ISO’s member body in the country of the requester.
ISO copyright office
CP 401 • Ch. de Blandonnet 8
CH-1214 Vernier, Geneva
Phone: +41 22 749 01 11
Fax: +41 22 749 09 47
Email: copyright@iso.org
Website: www.iso.org
Published in Switzerland
ii © ISO 2020 – All rights reserved

---------------------- Page: 4 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

Contents Page
Foreword .iv
Introduction .v
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
3.1 General terms . 1
3.2 Terms related to tax stamps .30
3.3 Terms related to supply chain .35
3.4 Other terms .37
Bibliography .38
© ISO 2020 – All rights reserved iii

---------------------- Page: 5 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards
bodies (ISO member bodies). The work of preparing International Standards is normally carried out
through ISO technical committees. Each member body interested in a subject for which a technical
committee has been established has the right to be represented on that committee. International
organizations, governmental and non-governmental, in liaison with ISO, also take part in the work.
ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of
electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the
different types of ISO documents should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see www .iso .org/ directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of
any patent rights identified during the development of the document will be in the Introduction and/or
on the ISO list of patent declarations received (see www .iso .org/ patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation on the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO’s adherence to the
World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see the following
URL: www .iso .org/ iso/ foreword .html.
This document was prepared by Technical Committee ISO/TC 292, Security and resilience.
This third edition cancels and replaces the second edition (ISO 22300:2018), which has been technically
revised.
The main changes compared to the previous edition are that terms have been added from recent
published documents and documents transferred to ISO/TC 292. The terms are also divided into
normative and informative listings.
Any feedback or questions on this document should be directed to the user’s national standards body. A
complete listing of these bodies can be found at www .iso .org/ members .html.
iv © ISO 2020 – All rights reserved

---------------------- Page: 6 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

Introduction
This document provides definitions of generic terms and subject specific terms related to documents
produced by ISO/TC 292 - Security and resilience. It aims to encourage a mutual and consistent
understanding and use of uniform terms and definitions in processes and frameworks developed by its
Working Groups.
This document can be applied as a reference by competent authorities, as well as specialists involved in
standardization systems, to better and more accurately understand relevant text, correspondences and
communications.
© ISO 2020 – All rights reserved v

---------------------- Page: 7 ----------------------
oSIST prEN ISO 22300:2020

---------------------- Page: 8 ----------------------
oSIST prEN ISO 22300:2020
DRAFT INTERNATIONAL STANDARD ISO/DIS 22300:2020(E)
Security and resilience — Vocabulary
1 Scope
This document defines terms used in security and resilience standards.
2 Normative references
There are no normative references in this document.
3 Terms and definitions
ISO and IEC maintain terminological databases for use in standardization at the following addresses:
— IEC Electropedia: available at http:// www .electropedia .org/
— ISO Online browsing platform: available at https:// www .iso .org/ obp
3.1 General terms
3.1.1
activity
process (3.1.160) or set of processes undertaken by an organization (3.1.139) (or on its behalf) that
produces or supports one or more products or services (3.1.162)
EXAMPLE Accounts, call centre, IT, manufacture, distribution.
3.1.2
affected area
location that has been impacted by a disaster (3.1.55)
Note 1 to entry: The term is more relevant to immediate evacuations (3.1.167).
3.1.3
after-action report
document (3.1.57) which records (3.1.169), describes and analyses the exercise (3.1.172), drawing on
debriefs and reports from observers (3.1.137), and derives lessons from it
Note 1 to entry: The after-action report documents the results from the after-action review (3.1.182).
Note 2 to entry: An after-action report is also called a final exercise report.
3.1.4
alert
part of public warning (3.1.167) that captures attention of first responders and people at risk (3.1.147) in
a developing emergency (3.1.63) situation
3.1.5
all clear
message or signal that the danger is over
© ISO 2020 – All rights reserved 1

---------------------- Page: 9 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.6
all-hazards
naturally occurring event (3.1.71), human induced event (both intentional and unintentional) and
technology caused event with potential impact (3.1.89) on an organization (3.1.139), community (3.1.26)
or society and the environment on which it depends
3.1.7
area at risk
location that could be affected by a disaster (3.1.55)
Note 1 to entry: The term is more relevant to preventative evacuations (3.1.167).
3.1.8
asset
anything that has value to an organization (3.1.139)
Note 1 to entry: Assets include but are not limited to human, physical, information (3.1.98), intangible and
environmental resources (3.1.176).
3.1.9
audit
systematic, independent and documented process (3.1.160) for obtaining audit evidence and evaluating
it objectively to determine the extent to which the audit criteria are fulfilled
Note 1 to entry: An audit can be an internal audit (first party) or an external audit (second party or third party),
and it can be a combined audit (combining two or more disciplines).
Note 2 to entry: An internal audit is conducted by the organization itself, or by an external party on its behalf.
Note 3 to entry: “Audit evidence” and “audit criteria” are defined in ISO 19011.
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.17, Tenth Edition 2019]
3.1.10
auditor
person who conducts an audit (3.1.9)
[SOURCE: ISO 19011:2011, 3.8]
3.1.11
business continuity
capability of an organization (3.1.139) to continue the delivery of products or services (3.1.162) at
acceptable predefined levels following a disruption (3.1.56)
3.1.12
business continuity plan
documented procedures (3.1.159) that guide an organization (3.1.139) to respond, recover, resume and
restore itself to a pre-defined level of operation following a disruption (3.1.56)
Note 1 to entry: Typically, this covers resources (3.1.176), services and activities (3.1.1) required to ensure the
continuity (3.1.35) of critical business functions.
3.1.13
business continuity programme
ongoing management (3.1.114) and governance process (3.1.160) supported by top management
(3.1.239) and appropriately resourced to implement and maintain business continuity management
3.1.14
business impact analysis
process (3.1.161) of analysing activity (3.1.1) and the effect that a business disruption (3.1.56) can have
upon them
2 © ISO 2020 – All rights reserved

---------------------- Page: 10 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.15
business partner
contractor, supplier or service provider with whom an organization (3.1.139) contracts to assist the
organization in its function as an organization in the supply chain (3.3.6)
3.1.16
capacity
combination of all the strengths and resources (3.1.176) available within an organization (3.1.139,
community (3.1.26) or society that can reduce the level of risk (3.1.182) or the effects of a crisis (3.1.44)
Note 1 to entry: Capacity can include physical, institutional, social, or economic means as well as skilled personnel
(3.1.150) or attributes (3.2.7) such as leadership and management (3.1.114).
3.1.17
Carer
individual who provides support to a vulnerable person (3.1.246)
Note 1 to entry: Carers can be paid or unpaid providers of care.
3.1.18
cargo transport unit
road freight vehicle, railway freight wagon, freight container, road tank vehicle, railway tank wagon or
portable tank
3.1.19
civil protection
measures taken and systems implemented to preserve the lives and health of citizens, their properties
and their environment from undesired events (3.1.71)
Note 1 to entry: Undesired events can include accidents, emergencies and disasters (3.1.55).
3.1.20
client
entity (3.1.66) that hires, has formerly hired, or intends to hire an organization (3.1.139) to perform
security operations (3.1.214) on its behalf, including, as appropriate, where such an organization
subcontracts with another company or local forces
EXAMPLE Consumer, contractor, end-user, retailer, beneficiary, purchaser.
Note 1 to entry: A client can be internal (e.g. another division) or external to the organization.
3.1.21
colour blindness
total or partial inability of a person to differentiate between certain hues (3.1.87)
3.1.22
colour-code
set of colours used symbolically to represent particular meanings
3.1.23
command and control
activities (3.1.1) of target-orientated decision making, including assessing the situation, planning
(3.1.151), implementing decisions and controlling the effects of implementation on the incident (3.1.93)
Note 1 to entry: This process (3.1.160) is continuously repeated.
3.1.24
command and control system
system that supports effective emergency management (3.1.64) of all available assets (3.1.8) in a
preparation, incident response (3.1.97), continuity (3.1.35) and/or recovery (3.1.70) process (3.1.160)
© ISO 2020 – All rights reserved 3

---------------------- Page: 11 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.25
communication and consultation
continual and iterative processes (3.1.160) that an organization (3.1.139 conducts to provide, share
or obtain information (3.1.98), and to engage in dialogue with interested parties (3.1.103) and others
regarding the management (3.1.114) of risk (3.1.182)
Note 1 to entry: The information can relate to the existence, nature, form, likelihood (3.1.112), severity, evaluation
(3.1.70), acceptability, treatment or other aspects of the management of risk and security operations management
( 3.1.215).
Note 2 to entry: Consultation is a two-way process of informed communication between an organization and
its interested parties or others on an issue, prior to making a decision or determining a direction on that issue.
Consultation is
— a process which impacts on a decision through influence rather than power, and
— an input to decision making, not joint decision making.
[SOURCE: ISO/Guide 73:2009, 3.2.1, modified — In the definition, “stakeholders” has been changed to
“interested parties and others” and Note 1 to entry has been modified.]
3.1.26
community
group of associated organizations (3.1.139), individuals and groups sharing common interests
Note 1 to entry: Impacted communities are the groups of people and associated organizations affected by the
provision of security (3.1.205) services, projects or operations.
3.1.27
community-based warning system
method to communicate information (3.1.98) to the public through established networks
Note 1 to entry: The warning system can consist of risk knowledge, monitoring (3.1.129) and warning service,
dissemination and communication, and response capability to avoid, reduce risks and prepare responses against
disaster (3.1.55).
3.1.28
community vulnerability
characteristics and conditions of individuals, groups or infrastructures (3.1.99) that put them at risk
(3.1.182) for the destructive effects of a hazard (3.1.85)
3.1.29
competence
ability to apply knowledge and skills to achieve intended results
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.10, Tenth Edition 2019]
3.1.30
complexity
condition of an organizational system with many diverse and autonomous but interrelated and
interdependent components or parts where those parts interact with each other and with external
elements in multiple end non-linear ways
Note 1 to entry: Complexity is the characteristic of a system where behavior cannot be determined only as the
sum of individual variables behaviors.
3.1.31
conformity
fulfilment of a requirement (3.1.173)
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.18, Tenth Edition 2019]
4 © ISO 2020 – All rights reserved

---------------------- Page: 12 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.32
consequence
outcome of an event (3.1.71) affecting objectives (3.1.135)
Note 1 to entry: A consequence can be certain or uncertain and can have positive or negative direct or indirect
effects on objectives.
Note 2 to entry: Consequences can be expressed qualitatively or quantitatively.
Note 3 to entry: Any consequence can escalate through cascading and cumulative effects.
[SOURCE: ISO 31000:2018, 3.6.]
3.1.33
contingency
possible future event (3.1.71), condition or eventuality
3.1.34
continual improvement
recurring activity to enhance performance (3.1.148)
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.21, Tenth Edition 2019]
3.1.35
continuity
strategic and tactical capability, pre-approved by management (3.1.114), of an organization (3.1.139) to
plan for and respond to conditions, situations and events (3.1.71) in order to continue operations at an
acceptable predefined level
Note 1 to entry: Continuity is the more general term for operational and business continuity (3.1.11) to ensure
an organization’s ability to continue operating outside of normal operating conditions. It applies not only to for-
profit companies, but to organizations of all types, such as non-governmental, public interest and governmental.
3.1.36
conveyance
physical instrument of international trade that transports goods (3.1.84) from one location to another
EXAMPLE Box, pallet, cargo transport unit (3.1.18), cargo handling equipment, truck, ship, aircraft, railcar.
3.1.37
cooperation
process (3.1.160) of working or acting together for common interests and values based on agreement
Note 1 to entry: The organizations (3.1.139) agree by contract or by other arrangements to contribute with their
resources (3.1.176) to the incident response (3.1.97) but keep independence concerning their internal hierarchical
structure.
3.1.38
coordination
way in which different organizations (3.1.139) (public or private) or parts of the same organization
work or act together in order to achieve a common objective (3.1.135)
Note 1 to entry: Coordination integrates the individual response activities (3.1.1) of involved parties (including,
for example, public or private organizations and government) to achieve synergy to the extent that the incident
response (3.1.97) has a unified objective and coordinates activities through transparent information (3.1.98)
sharing regarding their respective incident response activities.
Note 2 to entry: All organizations are involved in the process (3.1.160) to agree on a common incident response
objective and accept to implement the strategies by this consensus decision-making process.
© ISO 2020 – All rights reserved 5

---------------------- Page: 13 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.39
correction
action to eliminate a detected nonconformity (3.1.133)
[SOURCE: ISO 9000:2015, 3.12.3, modified —Notes 1 and 2 to entry have been deleted.]
3.1.40
corrective action
action to eliminate the cause(s) of a nonconformity (3.1.133) and to prevent recurrence
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.20, Tenth Edition 2019]
3.1.41
counterfeit
simulate, reproduce or modify a material good (3.1.118) or its packaging without authorization
3.1.42
counterfeit good
material good (3.1.118) imitating or copying an authentic material good (3.2.9)
3.1.43
countermeasure
action taken to lower the likelihood (3.1.112) of a security threat scenario (3.1.223) succeeding in its
objectives (3.1.135), or to reduce the likely consequences (3.1.32) of a security threat scenario
3.1.44
crisis
unstable condition involving an impending abrupt or significant change that requires urgent attention
and action to protect life, assets (3.1.8), property or the environment
3.1.45
crisis management
holistic management (3.1.114) process (3.1.160) that identifies potential impacts (3.1.89) that threaten
an organization (3.1.139) and provides a framework for building resilience (3.1.175), with the capability
for an effective response that safeguards the interests of the organization’s key interested parties
(3.1.103), reputation, brand and value-creating activities (3.1.1), as well as effectively restoring
operational capabilities
Note 1 to entry: Crisis management also involves the management of preparedness (3.1.153), mitigation (3.1.124)
response, and continuity (3.1.35) or recovery (3.1.70) in the event of an incident (3.1.93), as well as management of
the overall programme through training (3.1.240), rehearsals and reviews (3.1.182) to ensure the preparedness,
response and continuity plans stay current and up-to-date.
3.1.46
crisis management team
group of individuals functionally responsible for directing the development and execution of the
response and operational continuity (3.1.35) plan, declaring an operational disruption (3.1.56) or
emergency (3.1.63) /crisis (3.1.44) situation, and providing direction during the recovery (3.1.70) process
(3.1.160), both pre-and post-disruptive incident (3.1.93)
Note 1 to entry: The crisis management team (3.1.46) can include individuals from the organization (3.1.139) as
well as immediate and first responders, and interested parties (3.1.103).
3.1.47
critical control point
CCP
point, step or process (3.1.160) at which controls can be applied and a threat (3.1.327) or hazard (3.1.85)
can be prevented, eliminated or reduced to acceptable levels
6 © ISO 2020 – All rights reserved

---------------------- Page: 14 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.48
critical customer
entity (3.1.66), the loss of whose business would threaten the survival of an organization (3.1.139)
3.1.49
critical indicator
quantitative, qualitative or descriptive measure used to assess the hazard (3.1.85) being monitored to
identify the potential for the development of an incident (3.1.93), accident or emergency (3.1.63)
Note 1 to entry: Critical indicators provide information (3.1.98) about the most important integral characteristics
of the structural state of a facility (3.1.79).
3.1.50
critical product or service
resource (3.1.176) obtained from a supplier which, if unavailable, would disrupt an organization’s
(3.1.139) critical activities (3.1.1) and threaten its survival
Note 1 to entry: Critical products or services are essential resources to support an organization’s high priority
activities and processes (3.1.160) identified in its business impact analysis (3.1.14) (BIA).
3.1.51
critical supplier
provider of critical products or services (3.1.162)
Note 1 to entry: This includes an “internal supplier”, who is part of the same organization (3.1.139) as its customer.
3.1.52
criticality analysis
process (3.1.160) designed to systematically identify and evaluate an organization’s (3.1.139) assets
(3.1.8) based on the importance of its mission or function, the group of people at risk (3.1.147), or the
significance of an undesirable event (3.1.242) or disruption (3.1.56) on its ability to meet expectations
3.1.53
custody
period of time where an organization in the supply chain (3.3.6) is directly controlling the manufacturing,
handling, processing and transportation of goods (3.1.84) and their related shipping information
(3.1.98) within the supply chain (3.1.231)
3.1.54
data analysis
systematic investigation of relevant, evidence-based information (3.1.98) obtained in monitoring
(3.1.129) the process (3.1.160) and its flow in a real or planned system
3.1.55
disaster
situation where widespread human, material, economic or environmental losses have occurred which
exceeded the ability of the affected organization (3.1.139), community (3.1.26) or society to respond and
recover using its own resources (3.1.176)
3.1.56
disruption
incident (3.1.93), whether anticipated or unanticipated, that causes an unplanned, negative deviation
from the expected delivery of products and services (3.1.162) according to an organization’s (3.1.139)
objectives (3.1.135)
3.1.57
document
information (3.1.98) and the medium on which it is contained
Note 1 to entry: The medium can be paper, magnetic, electronic or optical computer disc, photograph or master
sample, or a combination thereof.
© ISO 2020 – All rights reserved 7

---------------------- Page: 15 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

Note 2 to entry: A set of documents, for example specifications and records (3.1.169), is frequently called
“documentation”.
[SOURCE: ISO 9000:2015, 3.8.5, modified — The example and Note 3 to entry has been deleted.]
3.1.58
documented information
information required to be controlled and maintained by an organization (3.1.139) and the medium on
which it is contained
Note 1 to entry: Documented information can be in any format and media, and from any source.
Note 2 to entry: Documented information can refer to:
— the management system (3.1.116), including related processes (3.1.160);
— information created in order for the organization to operate (documentation);
— evidence of results achieved (records).
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.11. Tenth Edition 2019]
3.1.59
drill
activity (3.1.1) which practises a particular skill and often involves repeating the same thing several times
EXAMPLE A fire drill to practise safely evacuating a building on fire.
3.1.60
duty of care
moral or legal obligation to ensure the safety, well-being or interests of others
3.1.61
early warning
provision of information (3.1.98) through local networks, allowing affected individuals to take action to
avoid or reduce risks (3.1.182) and to prepare responses
3.1.62
effectiveness
extent to which planned activities (3.1.1) are realized and planned results achieved
[SOURCE: ISO/IEC Directives, Part 1, Consolidated ISO Supplement, Procedures specific to ISO, Annex L,
Appendix 2, 3.6 Tenth Edition 2019]
3.1.63
emergency
sudden, urgent, usually unexpected occurrence or event (3.1.71) requiring immediate action
Note 1 to entry: An emergency is usually a disruption (3.1.56) or condition that can often be anticipated or
prepared for, but seldom exactly foreseen.
3.1.64
emergency management
overall approach for preventing emergencies (3.1.63) and managing those that occur
Note 1 to entry: In general, emergency management utilizes a risk management (3.1.191) approach to prevention
(3.1.154), preparedness (3.1.153), response and recovery (3.1.70) before, during and after potentially destabilizing
events (3.1.71) and/or disruptions (3.1.56).
8 © ISO 2020 – All rights reserved

---------------------- Page: 16 ----------------------
oSIST prEN ISO 22300:2020
ISO/DIS 22300:2020(E)

3.1.65
employee assistance programme
contracted support service provided to organizations to assist them in addressing productivity issues,
and to assist employees in identifying and resolving personal concerns, including health, marital,
family, financial, alcohol, drug, legal, emotional, stress or other personal issues that could affect job
performance (3.1.148)
Note 1 to entry: Adapted from the International Employee Assistance Professionals Association (EAPA).
3.1.66
entity
something that has a separate and distinct existence and that can be identified within context
Note 1 to entry: An entity can be a human, organization (3.1.139), physical object (3.1.135), class of objects or
intangible object.
3.1.67
evacuation
organized, phased and supervised movement of people from dangerous or potentially dangerous areas
to
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.