ISO 22301:2019 Certification

BUSINESS CONTINUITY MANAGEMENT SYSTEMS

What is the ISO 22301:2019 standard?

Preventing interruptions and having a good emergency plan in place is therefore essential to maintain Business Continuity under the most adverse conditions. An organization today must be ready to face interruptions caused by internal technical events (plant shutdowns), external events (unreliable suppliers, customers moving production abroad), natural events (earthquakes, floods) and health-related issues. There are also important technological events that today can bring a productive activity to its knees due to the high digitalization of companies themselves: hacker attacks.

The ISO 22301 standard establishes the requirements for an efficient Business Continuity Management System. It is a certifiable methodology consisting of a set of practices aimed at maintaining Business Continuity under adverse conditions, minimizing the impact of potential incidents on customers, stakeholders and the entire "business ecosystem". It is an efficient method to maintain security, ensuring a good level of Business Management and compliance, protecting the image and reputation, and creating a climate of trust for suppliers, stakeholders and customers.

Contact us

How to obtain the certification according to the ISO 22301:2019 guideline?

The ISO 22301 standard works on broad objectives, so as to be applicable to all organizations, whether they are small, medium, large, local, national or global, public or private. The certification process proposed by Bureau Veritas involves several fundamental steps:

  • Definition of the certification scope
  • Pre-audit (optional)
    Initial gap analysis of the current situation and diagnosis against standards
  • Certification audit divided into two phases:
    1. Initial verification of the organization and its actual readiness for certification
    2. Verification of the implementation of the basic structure of the Business Continuity Management System (e.g., company policy, impact analysis on management, risk management, Business Continuity strategy and incident management plan, laws and regulations)
  • Issuance of the certificate, valid for 3 years
  • Surveillance audit
    Monitoring of continuous improvement
  • Renewal
    Complete audit or continuous assessment after three years.

FAQ - Frequently asked questions about the ISO 22301:2019 standard

  • What are the main benefits of ISO 22301 certification?

    • Improvement of performance, even in case of events or situations that limit operations
    • Reduction of legal and financial exposure
    • Protection of the company's image and stakeholders' interests.

  • Does ISO 22301 - Business Continuity Management System certification integrate with other certifications?

    The Business Continuity Management System can be considered an evolution of the ISO 9001 Quality Management System. Indeed, while ISO 9001 helps manage activities in 'ordinary administration', Business Continuity Management helps to maintain, recover, and restore processes after interruption events of varying severity.