ISO 22301

What is ISO 22301?
The full name of this standard is ISO 22301:2019 Security and resilience – Business continuity management systems – Requirements. It is an international standard published by the International Organization for Standardization (ISO), and it describes how to manage business continuity in an organization. This standard is written by leading business continuity experts and provides the best framework for managing business continuity in an organization. One of the features that differentiates this standard from other business continuity frameworks/standards is that an organization can become certified by an accredited certification body, and will therefore be able to prove its compliance to its customers, partners, owners, and other stakeholders.

How to implement ISO 22301
To implement ISO 22301 in your company, you have to follow these 17 steps:
  1. Management support
  2. Identification of requirements
  3. Business continuity policy and objectives
  4. Support documents for management system
  5. Risk assessment and treatment
  6. Business impact analysis
  7. Business continuity strategy
  8. Business continuity plan
  9. Training and awareness
  10. Documentation maintenance
  11. Exercising & testing
  12. Post-incident reviews
  13. Communication with interested parties
  14. Measurement and evaluation
  15. Internal audit
  16. Corrective actions
  17. Management review
The anticipated benefits of the updated ISO 22301 standard include:
  • Inspire trust in your ability to continue operations throughout a disruption
  • Protect your reputation
  • Respond to legislative requirements
  • Reduce cost of disruption
  • Create a competitive advantage
  • Contribute to Organizational Resilience
ISO 22301 Process

Audit request