November 2025: New Standards Shape Facility Management and Community Resilience

In November 2025, the international standards community released a suite of five seminal standards for facility management, infrastructure resilience, supply chain trustworthiness, and organizational terminology. These updates from ISO and the European Committee for Standardization (CEN) are pivotal for professionals involved in company organization, quality and administration, transport, and the social aspects of service delivery. This is the first part of a comprehensive review of all standards published this month in this dynamic sector, covering critical changes and their practical impact on organizations worldwide.

Overview / Introduction

Facility management, infrastructure planning, and the resilience of essential services are at the heart of today’s fast-evolving economic landscape. Standards in these areas provide organizations with the tools to maintain operational continuity, foster trust in supply chains, and speak a unified language around risk, safety, and quality.

In this article, you will discover:

• The key features of each new standard
• Their strategic and operational implications
• How they drive resilience, efficiency, and compliance
• Essential steps for integration, administration, and quality management

For executives, compliance professionals, facility managers, engineers, and researchers, these updates are indispensable for aligning with international best practices while future-proofing your operations.

Detailed Standards Coverage

ISO 22372:2025 – Guidelines for Infrastructure Resilience

Security and resilience — Community resilience — Guidelines for infrastructure resilience

This new ISO standard provides a comprehensive framework for assessing, maintaining, and improving the resilience of community infrastructures. It supports multi-stakeholder decision-making, ensuring the continuity and robustness of critical services—whether they be energy, transport, water, or social infrastructure.

• Scope: Guidance for engaging stakeholders at all organizational levels—public and private—in decisions affecting infrastructure resilience.
• Key Requirements:
  • Assigning clear accountabilities and shared responsibilities
  • Proactive protection and environmental integration
  • Social engagement and adaptive transformation
  • Continuous improvement and learning cycles
  • Operational processes for planning, implementation, monitoring, and improvement (based on the PDCA cycle: Plan, Do, Check, Act)
• Who Should Comply: Any organization—municipalities, utility operators, private infrastructure companies, facility managers—involved in designing, maintaining, or governing infrastructure systems.
• Practical Implications: Supports strategic investment in resilient infrastructure, embeds emergency management practices, and encourages public engagement and environmental stewardship.

Key highlights:

• Comprehensive stakeholder governance framework
• Integration of resilience into lifecycle management and investment
• Emphasizes adaptive, proactive, and socially engaged approaches

Access the full standard:View ISO 22372:2025 on iTeh Standards

ISO 22373:2025 – Trust Framework for Supply and Value Chains

Security and resilience — Authenticity, integrity and trust for products and documents — Framework for establishing trustworthy supply and value chains

In response to increasing complexity and digital transformation in global supply chains, ISO 22373 establishes a technology-agnostic, structured framework for ensuring the authenticity, integrity, and trustworthiness of both products and documents across the entire supply and value chain.

• Scope: Generic framework and interoperable data structure for verifying trustworthiness in any supply or value chain, applicable to all organization types and products.
• Key Requirements:
  • Identification of relevant trustworthiness information and attributes
  • Use of trust domains and trust interaction points (TIPs)
  • Defining and verifying trustworthiness profiles (expectations and capabilities)
  • Chain of trustworthiness topologies for digital and physical supply chains
• Who Should Comply: Manufacturers, suppliers, logistics operators, retailers, regulatory authorities, certification bodies, and integrators managing supply or value chains.
• Practical Implications: Automates and systematizes trust verification using applicable technologies (e.g., PKI, verifiable credentials), supports objective evidence exchange, and ensures agility in responding to risks and compliance requirements.

Key highlights:

• Unified, interoperable approach for multi-stakeholder trust
• Supports digital transformation and security resilience
• Agility in risk management and regulatory adaptation

Access the full standard:View ISO 22373:2025 on iTeh Standards

EN ISO 22300:2025 – Security and Resilience Vocabulary (EU Edition)

Security and resilience – Vocabulary (ISO 22300:2025)

Published as a European standard, EN ISO 22300:2025 delivers the essential terminology for professionals working on security, resilience, risk, and business continuity within the EU regulatory context.

• Scope: Defines the core terms and concepts for all security and resilience initiatives, supporting common understanding in regulatory compliance and risk management.
• Key Requirements:
  • Harmonized definitions for resilience, risk, incident management, infrastructure, safety, and more
  • European foreword aligning ISO and CEN priorities
  • Guidance on supplementing vocabulary for sector-specific contexts
• Who Should Comply: All organizations aligning with European directives or operating cross-border—public administrations, multinational corporations, standardization professionals.
• Practical Implications: Facilitates common language in contracts, policies, reports, and standards referencing, reducing misinterpretation and improving legal clarity.

Key highlights:

• Authoritative reference for EU-compliant security and resilience vocabulary
• Supports legal and regulatory harmonization
• Reduces risk of translation and interpretation errors in multinational contexts

Access the full standard:View EN ISO 22300:2025 on iTeh Standards

ISO 22300:2025 – Security and Resilience Vocabulary

Security and resilience — Vocabulary

Complementing the EN version, ISO 22300:2025 presents the latest international definitions shaping the foundational language for security, resilience, risk, management systems, and supply chain continuity.

• Scope: Sets out the terms, definitions, and references central to the rapidly evolving security and resilience domains at the global level.
• Key Requirements:
  • Revised, user-friendly structure with expanded content for modern threats and resilience strategies
  • Inclusion of new terms from recent standards
  • Aligned with other ISO/TC 292 documents
• Who Should Comply: Global organizations, risk and business continuity managers, policy makers, auditors working within international governance or multinational operations.
• Practical Implications: Empowers professionals to interpret, draft, and audit documents with shared terminology, critical for cross-industry and cross-border collaboration.

Key highlights:

• Fourth edition, superseding the 2021 release with significant updates
• Intuitive, concise definitions for current and emerging resilience concepts
• Reference point for new ISO/CEN standards and technical documentation

Access the full standard:View ISO 22300:2025 on iTeh Standards

EN 15221-8:2025 – Facility Management: Principles and Processes

Facility Management – Part 8: Principles and processes

The latest expansion in the prominent EN 15221 series, this part delivers the principles, criteria, and proven methods for facility management (FM), with a strong focus on process improvement, sustainability, digitalization, and the roles and competencies required for modern FM organizations.

• Scope: Applies universal FM principles across organizations of any sector, size, or structure—covering both in-house and outsourced facility services.
• Key Requirements:
  • Principles for FM process development and improvement
  • Methods for aligning FM with strategic objectives, sustainability, and organizational resilience
  • Guidance on translating needs into requirements, benchmarking, and quality management
  • Digitalization, Building Information Modelling (BIM), and sustainability metrics
• Who Should Comply: Facility and asset managers, real estate professionals, organizational leaders responsible for maintenance, sustainability, or support services.
• Practical Implications: Optimizes FM performance, embeds continuous improvement, extends best practices in sustainability and digital transformation, and clarifies FM’s integration into business operations.

Key highlights:

• New content on digitalization and sustainability aligned with ISO 41000
• Holistic approach—strategic, tactical, operational excellence
• Emphasis on benchmarking, competence, and continuous process optimization

Access the full standard:View EN 15221-8:2025 on iTeh Standards

Industry Impact & Compliance

Adopting these new standards is not just a regulatory obligation—it’s a strategic imperative for organizations aiming for operational excellence, risk mitigation, and competitive advantage.

• Business Impact:
  • Improved resilience and continuity for critical operations
  • Reliable, transparent, and digital-ready supply chains
  • Unified communication and reduced legal ambiguity
  • Enhanced facility management supporting organizational performance
  • Regulatory alignment across jurisdictions
• Compliance and Timelines:
  • Immediate benefits for early adopters
  • Often required for contracts, certifications, or government procurement
  • Transition periods may apply for organizations holding previous editions (especially vocabulary and FM standards)
• Benefits:
  • Stronger stakeholder trust
  • Reduced downtime and risk
  • Better procurement and quality assurance
  • Support for sustainability and digital transformation initiatives
• Risks of Non-Compliance:
  • Regulatory penalties or exclusion from procurement
  • Increased operational vulnerabilities and business interruption
  • Reduced market access or reputation loss

Technical Insights

Common Requirements

• Clarity of terms and definitions (ISO 22300/EN ISO 22300) enable accurate implementation and auditing
• Shared PDCA (Plan, Do, Check, Act) methodology appears across FM and infrastructure standards, facilitating integration
• Explicit roles and responsibilities, stakeholder engagement, and documentation underpin all management system elements

Best Practices for Implementation

1. Gap Analysis: Benchmark current policies, processes, and vocabularies against new standards.
2. Training: Roll out structured training programs on new definitions, processes, and digital tools.
3. Stakeholder Engagement: Include stakeholders at all organizational levels for holistic adoption.
4. Continuous Improvement: Implement regular reviews, drills, and feedback to ensure sustained resilience.
5. Documentation: Update all relevant documents (policies, contractual language, SOPs) using harmonized vocabulary.

Certification and Verification

• Leverage interoperable digital tools for supply chain trust management (ISO 22373)
• Pursue relevant certifications where available (e.g., for FM or resilience frameworks)
• Periodic internal/external audits to confirm alignment with latest technical requirements

Conclusion / Next Steps

The November 2025 standards represent a leap forward in aligning facility management, infrastructure resilience, and supply chain trust to current and future organizational requirements.

• Key Takeaways:
  • Emphasize cross-functional and multi-stakeholder approaches
  • Digitalization and sustainability are central pillars
  • Core terminology and process frameworks streamline implementation and audit

Recommendations for Organizations:

• Start with cross-departmental assessments and targeted training on new standards
• Align procurement, contracts, and operating procedures with updated requirements
• Regularly monitor for updates and best practices in subsequent standards releases

Stay ahead of emerging risks and regulatory demands. Explore the full texts of each standard via iTeh Standards, and integrate these advances into your organizational DNA to sustain success in an increasingly complex service and operational landscape.