Business continuity forms a fundamental part of information security and risk management and achieving ISO 22301 certification can provide additional assurance to third parties that your organisation is prepared for the unforeseen events that can occur in business.
ISO 22301 establishes the process, principles and terminology of business continuity management and contains broad goals so that it applicable to all sizes of organisation in all market sectors. Its non-prescriptive nature, whilst providing organisations with flexibility can also sometimes make it difficult to determine the exact requirements for achieving certification.
In a similar manner to ISO 27001, ISO 22301 requires a Business Continuity Management System (BCMS) to be implemented and Taylor Baines can assist with the scoping, design, implementation, operation, review and improvement of a BCMS.
The Business Continuity Life-cycle is shown in the diagram below:
Taylor Baines can assist with all stages of an ISO 22301 project including:
- BCM programme management;
- Understanding the organisation;
- Determining BCM options;
- Developing & implementing a BCM response;
- Embedding BCM in the organisation's culture; and
- Exercising, maintaining and auditing BCM.