What is ISO 22301?
The full name of this standard is ISO 22301:2012 Societal security – Business continuity management systems – Requirements. This standard is written by leading business continuity experts and provides the best framework for managing business continuity in an organization.
One of the features that differentiates this standard from other business continuity frameworks/standards is that an organization can become certified by an accredited certification body, and will therefore be able to prove its compliance to its customers, partners, owners and other stakeholders .
Relationship with BS 25999-2
ISO 22301 has replaced 25999-2 – these two standards are rather similar, but ISO 22301 could be considered an upgrade from BS 25999-2. For differences between these two standards see ISO 22301 vs. BS 25999-2 infographic
What are the benefits of business continuity?
When implemented properly, business continuity management will decrease the possibility of a disruptive incident, and if such incident does occur, an organization will be ready to respond in an appropriate way, thus drastically decreasing the potential damage of such incident.
Who can implement this standard?
Any organization – large or small, for profit or non-profit, private or public. The standard is conceived in such a way that it is applicable to any size or type of organization.
How does business continuity fit into overall management?
Business continuity is part of overall risk management in a company, with areas that overlap with information security management and IT management.
Note: Risk management is part of overall corporate management.