BS 31111:2018 provides guidance on cyber risk management and resilience for societal, regulatory, governance and behavioural risks that need to be understood, assessed, quantified, qualified and addressed, and overseen by the governing body and executive management of an organization.

This British Standard helps the governing body and executive management manage cyber risk and resilience, explaining the various approaches to making an organization cyber resilient. It is applicable to public, private and not-for-profit organizations of all sizes, and provides guidance on the essential features of cyber risk and resilience management to ensure that cyber resilience is built into decision making.

This is not a technical cyber security or risk management standard. It is intended for a non-technical audience, although some of the relevant standards with more technical content are listed in Annex A.


Cross References:
BS 65000
BS EN ISO/IEC 27000
PD ISO Guide 73
BS ISO 31000
BS ISO/IEC 27014
PAS 7000
PAS 555
BS 10012
BS 7799-3
BS EN ISO 22301
BS 16000
BS 11200
BS 13500
BS 31100
ISO 22316
BS ISO 31010
BS ISO/IEC 27032
BS EN ISO 22313
BS EN ISO/IEC 27001
BS EN ISO/IEC 27002
BS ISO/IEC 27031


All current amendments available at time of purchase are included with the purchase of this document.