Certificate ISO 22301

What is ISO 22301:2012?
ISO 22301:2012 specifies requirements to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise.

The requirements specified in ISO 22301:2012 are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization’s operating environment and complexity.

What are the benefits of ISO 22301 business continuity management?

  • Identify and manage current and future threats to your business
  • Take a proactive approach to minimizing the impact of incidents
  • Keep critical functions up and running during times of crises
  • Minimize downtime during incidents and improve recovery time
  • Demonstrate resilience to customers, suppliers and for tender requests
  • Protects an organisation’s turnover, profits and reputation by ensuring its preparedness for unplanned disruption.

Who can implement this standard?
Any organization – large or small, for profit or non‐profit, private or public. The standard is conceived in
such a way that it is applicable to any size or type of organization

The ISO 22301 Specification is organized into the following main clauses:

Clause 4: Context of the organization
4.1 Understanding of the organization and its context
4.2 Understanding the needs and expectations of interested parties
4.3 Determining the scope of the management system
4.4 Business continuity management system

Clause 5: Leadership
5.1 General
5.2 Management commitment
5.3 Policy
5.4 Organizational roles, responsibilities and authorities

Clause 6: Planning
6.1 Actions to address risks and opportunities
6.2 Business continuity objectives and plans to achieve them

Clause 7: Support
7.1 Resources
7.2 Competence
7.3 Awareness
7.4 Communication
7.5 Documented information

Clause 8: Operation
8.1 Operational planning and control
8.2 Business impact analysis and risk assessment
8.3 Business continuity strategy
8.4 Establish and implement business continuity procedures
8.5 Exercising and testing

Clause 9: Performance evaluation
9.1 Monitoring, measurement, analysis and evaluation
9.2 Internal audit
9.3 Management review

Clause 10: Improvement
10.1 Nonconformity and corrective action
10.2 Continual improvement

Mandatory Documentation

If an organization wants to implement this standard, the following documentation is mandatory:

  • List of applicable legal, regulatory and other requirements
  • Scope of the BCMS
  • Business Continuity Policy
  • Business continuity objectives
  • Evidence of personnel competences
  • Records of communication with interested parties
  • Business impact analysis
  • Risk assessment, including risk appetite
  • Incident response structure
  • Business continuity plans
  • Recovery procedures
  • Results of preventive actions
  • Results of monitoring and measurement
  • Results of internal audit
  • Results of management review
  • Results of corrective actions

WQA – APAC
Worldwide Quality Assurance – Asia Pasific
An Agency of Worldwide Quality Assurance Limited – UK

INFORMASI & REGISTRASI
WQA APAC
Graha ISKA 5th Floor, Jl Pramuka Raya No. 165
Central Jakarta, 10570 Indonesia
Phone : +6221 – 4260769, Hotline +628111496821 (Whatsapp)
Email : jakarta@wqa-sea.com, administration@wqa-sea.co.id, training@wqa-sea.co.id

Share this

Related Posts