{"id":1179,"date":"2025-12-15T18:32:21","date_gmt":"2025-12-15T15:32:21","guid":{"rendered":"https:\/\/isocerthub.com\/?p=1179"},"modified":"2025-12-15T18:45:57","modified_gmt":"2025-12-15T15:45:57","slug":"kak-standarty-iso-22301-i-27035-pomogayut-sootvetstvovat-trebovaniyam-dora","status":"publish","type":"post","link":"https:\/\/isocerthub.com\/uz\/kak-standarty-iso-22301-i-27035-pomogayut-sootvetstvovat-trebovaniyam-dora\/","title":{"rendered":"ISO 22301 va ISO 27035 standartlari DORA talablariga mos kelishga qanday yordam beradi"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"1179\" class=\"elementor elementor-1179\" data-elementor-post-type=\"post\">\n\t\t\t\t<div class=\"elementor-element elementor-element-659db77a e-flex e-con-boxed e-con e-parent\" data-id=\"659db77a\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-cc28ce4 elementor-widget elementor-widget-text-editor\" data-id=\"cc28ce4\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.21.0 - 15-04-2024 *\/\n.elementor-widget-text-editor.elementor-drop-cap-view-stacked .elementor-drop-cap{background-color:#69727d;color:#fff}.elementor-widget-text-editor.elementor-drop-cap-view-framed .elementor-drop-cap{color:#69727d;border:3px solid;background-color:transparent}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap{margin-top:8px}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap-letter{width:1em;height:1em}.elementor-widget-text-editor .elementor-drop-cap{float:left;text-align:center;line-height:1;font-size:50px}.elementor-widget-text-editor .elementor-drop-cap-letter{display:inline-block}<\/style>\t\t\t\t<!-- wp:paragraph -->\n<p>Qozog\u2018iston, O\u2018zbekiston, Gruziya va Qirg\u2018izistondagi kompaniyalar tobora ko\u2018proq Yevropa banklari, fintex hamkorlari va marketpleyslar bilan ishlamoqda \u2014 demak, raqamli barqarorlik bo\u2018yicha DORA talablariga ham duch kelmoqda. Yaxshi xabar: DORA bilan \u2018til topishish\u2019 uchun velosipedni qayta ixtiro qilish shart emas. Ikkita amaliy standart \u2014 ISO 22301 va ISO\/IEC 27035 \u2014 tushunarli jarayonlar va rollar orqali regulyator kutganlarining katta qismini qamrab oladi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:heading -->\n<h2 class=\"wp-block-heading\">DORA biznesdan oddiy qilib aytganda nimani kutadi<\/h2>\n<!-- \/wp:heading --><!-- wp:paragraph -->\n<p>DORA (Digital Operational Resilience Act) qog\u2018ozdagi xavfsizlikka emas, balki kompaniyaning IT nosozliklari va kiberhodisalarga bardosh berishiga, tez tiklanishiga hamda pudratchilar bilan bog\u2018liq xatarlarni boshqarishiga e\u2019tibor qaratadi. Amalda odatda quyidagilar tekshiriladi:<\/p>\n<!-- \/wp:paragraph --><!-- wp:list -->\n<ul class=\"wp-block-list\"><!-- wp:list-item -->\n<li>IKT xatarlari va uzluksizlik bo\u2018yicha boshqariladigan model bormi;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>hodisalarni aniqlash, tasniflash va tahlil qilishni bilasizmi;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>testlar va mashg\u2018ulotlar o\u2018tkazasizmi;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>muhim yetkazib beruvchilarni (bulut, autsors, data-markazlar) nazorat qilasizmi.<\/li>\n<!-- \/wp:list-item --><\/ul>\n<!-- \/wp:list --><!-- wp:paragraph -->\n<p>Agar biznesni aviakompaniya deb tasavvur qilsak, DORA faqat xavfsizlik kamarini (siyosatlar) emas, balki ekipaj mashg\u2018ulotlari, chek-listlar, \u201cqora quti\u201dlar va samolyotni muntazam tekshiruvlardan o\u2018tkazishni ham ko\u2018rishni xohlaydi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:heading -->\n<h2 class=\"wp-block-heading\">ISO 22301: DORA talablariga mos biznes uzluksizligining tayanch tizimi<\/h2>\n<!-- \/wp:heading --><!-- wp:paragraph -->\n<p><img fetchpriority=\"high\" decoding=\"async\" class=\"alignright wp-image-1183 size-medium\" src=\"http:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks-300x200.webp\" alt=\"DORA, \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u044b \u0438 \u0440\u0438\u0441\u043a\u0438\" width=\"300\" height=\"200\" srcset=\"https:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks-300x200.webp 300w, https:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks-1024x683.webp 1024w, https:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks-768x512.webp 768w, https:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks-18x12.webp 18w, https:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks-930x620.webp 930w, https:\/\/isocerthub.com\/wp-content\/uploads\/2025\/12\/dora-incidents-risks.webp 1536w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/>ISO 22301 biznes uzluksizligini boshqarish tizimini (BCMS) quradi: xatarlar tahlili va BIA\u2019dan tortib tiklash rejalari hamda muntazam mashg\u2018ulotlargacha. Bu xizmatlarning barqarorligi va tiklanishi bo\u2018yicha DORA kutganlarini bevosita qoplashga yordam beradi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:paragraph -->\n<p>Jarayonlarni joriy etishdan oldin nimalarni himoya qilayotganingiz va qancha to\u2018xtab turish (downtime) maqbul ekanini aniq belgilab olish muhim. ISO 22301\u2019da bu quyidagi asosiy artefaktlar orqali rasmiylashtiriladi:<\/p>\n<!-- \/wp:paragraph --><!-- wp:list -->\n<ul class=\"wp-block-list\"><!-- wp:list-item -->\n<li>BIA (Business Impact Analysis): qaysi jarayonlar kritik, qaysi bog\u2018liqliklar (odamlar, IT, yetkazib beruvchilar) borligi, to\u2018xtab qolish oqibatlari;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>RTO\/RPO: tiklash uchun maqsadli vaqt va ma\u2019lumot yo\u2018qotilishining ruxsat etilgan darajasi;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>uzluksizlik strategiyalari: zaxiralash, muqobil maydonchalar, qo\u2018lda bajariladigan protseduralar;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>javob qaytarish va tiklash rejalari: kim nima qiladi, qaysi ketma-ketlikda, mijozlar va hamkorlar bilan qanday kommunikatsiya qilish;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>mashg\u2018ulotlar va testlar: reja faqat prezentatsiyada emas, amalda ham ishlashi uchun.<\/li>\n<!-- \/wp:list-item --><\/ul>\n<!-- \/wp:list --><!-- wp:paragraph -->\n<p>Shundan so\u2018ng sizda biznes uzluksizligini boshqarish bo\u2018yicha treninglar uchun \u2014 va hamkorlar\/auditorlar oldida yetuklikni ko\u2018rsatish uchun \u2014 boshqariladigan asos paydo bo\u2018ladi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:paragraph -->\n<p>Standartning tuzilmasi va qo\u2018llanilishi haqida batafsil <a href=\"https:\/\/isocerthub.com\/uz\/iso-223012019\/\">bu yerda<\/a>.<\/p>\n<!-- \/wp:paragraph --><!-- wp:heading -->\n<h2 class=\"wp-block-heading\">ISO\/IEC 27035: kiberinsidentlarga javob berishda tartib<\/h2>\n<!-- \/wp:heading --><!-- wp:paragraph -->\n<p>Agar ISO 22301 \u201chammasi buzilganda qanday yashash\u201d savoliga javob bersa, ISO\/IEC 27035 \u2014 \u201cinsidentni to\u2018g\u2018ri boshqarish va xulosa chiqarish\u201d savoliga javob beradi. DORA uchun bu juda muhim, chunki regulyator intizomni kutadi: aniqlash \u2192 baholash \u2192 javob berish \u2192 tiklash \u2192 yaxshilash.<\/p>\n<!-- \/wp:paragraph --><!-- wp:paragraph -->\n<p>Standart axborot xavfsizligi insidentlarini boshqarish tizimini qurishga yordam beradi: chatlar va \u201cIT\u2019dan kimdirdan so\u2018rab qo\u2018yish\u201d qo\u2018ng\u2018iroqlari tartibsizligi o\u2018rniga rollar, mezonlar va metrikalar bo\u2018ladi. Bunday tizim odatda quyidagilarni o\u2018z ichiga oladi:<\/p>\n<!-- \/wp:paragraph --><!-- wp:list -->\n<ul class=\"wp-block-list\"><!-- wp:list-item -->\n<li>hodisalarni aniqlash va ro\u2018yxatga olish qoidalari (SOC\/loglash\/qo\u2018llab-quvvatlash xizmati);<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>tasniflash va ustuvorlashtirish (nimani jiddiy insident deb hisoblash);<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>javob berish ssenariylari (ransomware, ma\u2019lumot sizishi, akkauntlar komprometatsiyasi, DDoS);<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>kommunikatsiya va eskalatsiya (rahbariyat, yuristlar, PR, hamkorlar);<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>post-incident review: sabablar, o\u2018rganilgan saboqlar, tuzatish choralari.<\/li>\n<!-- \/wp:list-item --><\/ul>\n<!-- \/wp:list --><!-- wp:paragraph -->\n<p>Ha, bu aynan o\u2018sha AX insidentlarini boshqarish bo\u2018lib, pul va asabni tejaydi: muammoni qanchalik tez lokallashtirsangiz, shuncha kam to\u2018xtab qolish va reputatsion zarar bo\u2018ladi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:paragraph -->\n<p>ISO\/IEC 27035\u2019ni joriy etish amaliyoti:<a href=\"https:\/\/isocerthub.com\/uz\/iso-iec-27035-effektivnoye-upravleniye-intsidentami-informatsionnoy-bezopasnosti-s-too-sistem-menedzhment\/\"> batafsilroq.<\/a><\/p>\n<!-- \/wp:paragraph --><!-- wp:heading -->\n<h2 class=\"wp-block-heading\">ISO 22301 va ISO 27035 birgalikda operatsion barqarorlik bo\u2018yicha DORAning asosiy talablariga rioya etishni qanday ta\u2019minlaydi<\/h2>\n<!-- \/wp:heading --><!-- wp:paragraph -->\n<p>Alohida-alohida bu standartlar kuchli, birga esa \u201cbarqarorlik + javob berish\u201d bog\u2018lamini beradi:<\/p>\n<!-- \/wp:paragraph --><!-- wp:list -->\n<ul class=\"wp-block-list\"><!-- wp:list-item -->\n<li>ISO 22301 kritik servislarni, ruxsat etilgan to\u2018xtab turish vaqtini va tiklash ssenariylarini belgilaydi.<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>ISO\/IEC 27035 kiberinsidentlarga javob berish mexanizmini belgilaydi \u2014 ko\u2018pincha aynan shu uzluksizlik rejalarini ishga tushiradigan trigger bo\u2018ladi.<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>DORA tayyorgarlikni muntazam tekshirishni talab qiladi \u2014 ikkala standart ham mashg\u2018ulotlar, testlar va doimiy takomillashtirish sikliga tayanadi.<\/li>\n<!-- \/wp:list-item --><\/ul>\n<!-- \/wp:list --><!-- wp:paragraph -->\n<p>Joriy etilgandan so\u2018ng kompaniyada biznes, IT va xavfsizlik o\u2018rtasida \u201cyagona til\u201d paydo bo\u2018ladi \u2014 va bir bo\u2018lim insidentni \u201cmayda gap\u201d deb hisoblayotgan paytda, boshqasi allaqachon mijozlarni yo\u2018qotayotgan holatlar kamayadi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:heading -->\n<h2 class=\"wp-block-heading\">Mintaqa kompaniyalari uchun tezkor joriy etish rejasi<\/h2>\n<!-- \/wp:heading --><!-- wp:paragraph -->\n<p>Hujjatlarda \u201ccho\u2018kib ketmaslik\u201d uchun pragmatik yondashuvdan boshlang. System Management jamoasi odatda quyidagi yo\u2018l xaritasini tavsiya qiladi:<\/p>\n<!-- \/wp:paragraph --><!-- wp:list -->\n<ul class=\"wp-block-list\"><!-- wp:list-item -->\n<li>DORA va amaldagi amaliyotlar bo\u2018yicha qisqa gap-tahlil (gap analysis) o\u2018tkazish;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>kritik servislar va bog\u2018liqliklarni (BIA, RTO\/RPO) tavsiflash;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>insidentlarga javob berish jarayonini ishga tushirish: rollar, tasnif, ple\u00fdbuklar;<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>javob berishni tiklash rejalariga bog\u2018lash (kim va qachon BCP\/DR\u2019ni ishga tushiradi);<\/li>\n<!-- \/wp:list-item --><!-- wp:list-item -->\n<li>table-top mashg\u2018ulot o\u2018tkazib, yaxshilanishlarni qayd etish.<\/li>\n<!-- \/wp:list-item --><\/ul>\n<!-- \/wp:list --><!-- wp:paragraph -->\n<p>Bu tez natija beradi: hatto bitta sifatli mashg\u2018ulot ham ko\u2018pincha oylar davom etadigan muhokamalardan ko\u2018ra \u201ctor joylar\u201dni yaxshiroq ochib beradi.<\/p>\n<!-- \/wp:paragraph --><!-- wp:paragraph -->\n<p>Agar siz YEIdagi moliyaviy hamkorlar bilan ishlasangiz yoki mijozlar va auditorlar so\u2018rovlariga oldindan tayyorlanmoqchi bo\u2018lsangiz, System Management jarayonlarni yo\u2018lga qo\u2018yish, trening o\u2018tkazish va tekshiruv uchun daliliy bazani tayyorlashda yordam beradi.<\/p>\n<!-- \/wp:paragraph -->\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0438\u0437 \u041a\u0430\u0437\u0430\u0445\u0441\u0442\u0430\u043d\u0430, \u0423\u0437\u0431\u0435\u043a\u0438\u0441\u0442\u0430\u043d\u0430, \u0413\u0440\u0443\u0437\u0438\u0438 \u0438 \u041a\u044b\u0440\u0433\u044b\u0437\u0441\u0442\u0430\u043d\u0430 \u0432\u0441\u0451 \u0447\u0430\u0449\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0442 \u0441 \u0435\u0432\u0440\u043e\u043f\u0435\u0439\u0441\u043a\u0438\u043c\u0438 \u0431\u0430\u043d\u043a\u0430\u043c\u0438, \u0444\u0438\u043d\u0442\u0435\u0445-\u043f\u0430\u0440\u0442\u043d\u0451\u0440\u0430\u043c\u0438 \u0438 \u043c\u0430\u0440\u043a\u0435\u0442\u043f\u043b\u0435\u0439\u0441\u0430\u043c\u0438 \u2014 \u0430 \u0437\u043d\u0430\u0447\u0438\u0442, \u0441\u0442\u0430\u043b\u043a\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u0441 \u0442\u0440\u0435\u0431\u043e\u0432\u0430\u043d\u0438\u044f\u043c\u0438 DORA \u043a \u0446\u0438\u0444\u0440\u043e\u0432\u043e\u0439 \u0443\u0441\u0442\u043e\u0439\u0447\u0438\u0432\u043e\u0441\u0442\u0438. \u0425\u043e\u0440\u043e\u0448\u0430\u044f \u043d\u043e\u0432\u043e\u0441\u0442\u044c: \u0447\u0442\u043e\u0431\u044b \u043f\u043e\u0434\u0440\u0443\u0436\u0438\u0442\u044c\u0441\u044f \u0441 DORA, \u043d\u0435 \u043d\u0443\u0436\u043d\u043e \u0438\u0437\u043e\u0431\u0440\u0435\u0442\u0430\u0442\u044c \u0432\u0435\u043b\u043e\u0441\u0438\u043f\u0435\u0434. \u0414\u0432\u0430 \u043f\u0440\u0430\u043a\u0442\u0438\u0447\u043d\u044b\u0445 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u0430 \u2014 ISO 22301 \u0438 ISO\/IEC 27035 \u2014 \u0437\u0430\u043a\u0440\u044b\u0432\u0430\u044e\u0442 \u0431\u043e\u043b\u044c\u0448\u0443\u044e \u0447\u0430\u0441\u0442\u044c \u043e\u0436\u0438\u0434\u0430\u043d\u0438\u0439 \u0440\u0435\u0433\u0443\u043b\u044f\u0442\u043e\u0440\u0430 \u0447\u0435\u0440\u0435\u0437 \u043f\u043e\u043d\u044f\u0442\u043d\u044b\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u044b \u0438&hellip;&nbsp;<a href=\"https:\/\/isocerthub.com\/uz\/kak-standarty-iso-22301-i-27035-pomogayut-sootvetstvovat-trebovaniyam-dora\/\" class=\"\" rel=\"bookmark\">Read More &raquo;<span class=\"screen-reader-text\">ISO 22301 va ISO 27035 standartlari DORA talablariga mos kelishga qanday yordam beradi<\/span><\/a><\/p>","protected":false},"author":2,"featured_media":1182,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","footnotes":""},"categories":[12],"tags":[],"class_list":["post-1179","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-12"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/posts\/1179","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/comments?post=1179"}],"version-history":[{"count":4,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/posts\/1179\/revisions"}],"predecessor-version":[{"id":1187,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/posts\/1179\/revisions\/1187"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/media\/1182"}],"wp:attachment":[{"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/media?parent=1179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/categories?post=1179"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/isocerthub.com\/uz\/wp-json\/wp\/v2\/tags?post=1179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}