Business Continuity Management System

The ISO 22301:2019 standard specifies requirements for the establishment, implementation, maintenance and continual improvement of a globally recognized standard for Business Continuity Management Systems (BCMS) to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions as and when they arise.

ISO 22301 certification provides organizations a formal business continuity guideline that will allow organizations to operate during and following a disruption. With ISO 22301, organizations are able to minimize the impact to critical business functions, ensuring that they are still able to deliver their services or recover promptly.

The 2019 revision of ISO 22301 improves accessibility for businesses, making it easier for the Standard to be utilised to improve organisational resilience.

ISO 22301 – Business Continuity Management Systems – Requirements, brings together international best practice to help organisations respond to, and recover from, disruptions effectively.

The Standard has been a powerful tool for building resilience and supporting business continuity since its inception in 2012, and these – their first amends – will mean more businesses can benefit from them, regardless of where they are on their business continuity planning journey.

ISO 22301 certification is applicable to all companies across any industry, particularly for those organizations operating in critical sectors where the ability to operate without any delay is important.

Benefits of ISO 22301 certification

  • BCMS enables organizations to assess the potential impacts of an operational disruption and to deploy effective BCPs and minimize the overall impact to the organization
  • Provides organizations with a robust framework for developing effective incident response and recovery procedures to ensure quick recovery in the event of a disruption
  • Effective BCM ensures continuity of critical services and reduce the risk of losses due to an incident or disaster
  • Provides evidence that the organization has taken the necessary steps to comply with certain regulatory requirements
  • Enable organizations to test, update, control and deploy effective BCPs
  • Increase competitive advantage and corporate reputation
  • With BCMS, organizations can identify potential inefficiencies that can be improved and helps the organization to reorganize to focus on its objectives

Transition from ISO 22301:2012 to ISO 22301:2019

The International Organization for Standardization (ISO) has officially published ISO 22301:2019 Business Continuity Management Systems – Requirements on 31 Oct 2019. The stipulated transition period for ISO 22301:2019 is three (3) years and, ISO 22301:2012 certifications shall cease by 31 Oct 2022.

Kindly note the transition to ISO 22301:2019 could take place during the routine audits (e.g. surveillance/ recertification) or non-routine audits. As per the International Accreditation Forum (IAF) requirements, from 31 April 2021 onwards, only ISO 22301:2019 initial and recertification audits will be accepted. Therefore, we would advise you to make the necessary preparation to migrate to ISO 22301:2019 as soon as possible, and to coincide with your upcoming surveillance or recertification audit.