What is the difference between organizational resilience and business continuity?
The International Standard ISO 22316* defines Organizational resilience as the ability of an organization to absorb and adapt in a changing environment to enable it to deliver its objectives and to survive and prosper.
More resilient organizations can anticipate and respond to threats and opportunities, arising from sudden or gradual changes in their internal and external context. Enhancing resilience can be a strategic organizational goal, and is the outcome of good business practice and effectively managing risk.
* ISO22316 — Security and resilience — Organizational resilience — Principles and attributes
ISO 22301:2012 specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise
** ISO 22301:2012 Societal security — Business continuity management systems — Requirements.