BCM Standards: ISO 22301 & ISO 22313

Two international standards for Business Continuity Management were published in 2012.

ISO 22301 and ISO 22313 are part of a suite of standards being developed by ISO designed to achieve greater societal security.

With the arrival of these internationally recognised BCM standards, organisations will be able to adopt them to implement business continuity management systems (BCMS) at operating sites across different geographical regions and be assured that all are aligned to the same standard.

All BCM systems and programmes developed and implemented by Teed are fully aligned with current good practice and standards.

ISO 22301

Societal Security – Business continuity management systems – Requirements
This standard specifies requirements for setting up and managing an effective BCMS.

What is ISO 22301 used for?

The standard is used by internal and external parties to assess the organisation’s ability to meet regulatory and customer requirements as well as its own. It contains those requirements that can be objectively audited and can therefore be used to provide assurance to interested parties that an appropriate BCMS is in place to manage the recovery of business critical activities, following a disruptive incident.

It is possible for organisations to be certified to ISO 22301 and for those who are already certified to BS 25999-2, a transition period will allow them to update their BCMS to meet the requirements of ISO 22301.

Certification provides an additional level of assurance to clients and customers that business continuity is placed in high regard by the organisation and is managed effectively.

ISO 22313

Societal Security – Business continuity management systems – Guidance
This standard is the guidance document which supports the requirements of ISO 22301. It describes good practice guidelines and recommendations which organisations may adopt to ensure their BCM programme aligns with internationally recognised practices. The guidance is not a specification for BCM and an organisation can choose whether they wish to follow it in full or in part.

Teed’s Independent BCMS Review

Teed’s consultants can conduct an independent review of an organisation’s Business Continuity Management System (BCMS) in order to identify whether the necessary components are in place to satisfy the requirements of ISO 22301. This is in effect a ‘gap analysis’ aimed at providing the client with an accurate indication of their state of readiness for ISO 22301.

The analysis will highlight areas of the client’s BCMS that would need to be improved upon or developed in order to meet with the requirements and will be presented to the client in a Review Output Report.

Teed can assist the client with ‘filling the gaps’ of their BCMS and, irrespective of whether the client wishes to pursue a formal BSI assessment, the client can be assured that their BCMS will be in line with best practice.

We have successfully assisted clients in achieving certification to ISO 22301.

ISO 22301 & ISO 22313 are available to purchase from the BSI

  • Date: 6th July 2016
Back to Resources & FAQs