The business benefits of complying with ISO 22301 are substantial. Compliance with the standard ensures that your Business Continuity risks are managed cost-effectively communicates an important message to your customers and stakeholders.

ISO 22301 can play an important role in developing monitoring, review, maintenance and continuous improvement of your Business Continuity Management System. It will give other organisations and customers greater confidence in your ability to maintain business operations.

SHCO’s approach to ISO 22301 implementation engagements in the majority of cases is to first carry out a Gap Analysis of the organisation against the clauses and controls of the standard. This will provide a clear picture to you, where you conform to the standard, where there are some controls in place but there is room for improvement and where controls are missing and need to be implemented.

This may be the extent of the assistance required. Alternatively, you may require additional assistance by way of advice and guidance and implementation management of suitable controls and documentation required to meet the standard.

Before carrying out an ISO 22301 implementation, it is common for organisations to have inadequate policy and planning documentation and, in some cases, no written policies at all. Where documentation gaps are identified, we can help you speed up the process of creating policy documents.

We can provide both template and bespoke documentation. SHCO’s aim is to help you produce policy documents that are practical and brief enough to be usable but robust enough to provide effective information security controls.