ISO 22301

ISO 22301 is the international standard that sets the requirements for the establishment and management of effective business continuity management system (BCMS) in any organization, regardless of size and type of business.


Establishment of ISO 22301 is a response to interest of British Standard BS 25999-2, which has been recognized not only in the UK but all over the world.


Business continuity contributes to the development of a more robust society. ISO 22301 provides organizations with access to the requirements that will allow to prepare for incidents that may prevent the achievement of business objectives. The Standard can be used to assess the ability of organizations to meet their own needs and obligations associated with business continuity and to establish a business continuity management policy that will provide the structure to implement an effective business continuity management system.


ISO 22301 addresses the requirements for:

  • identify key risk factors that already affect your organization,
  • understanding of the needs and obligations of the organization,
  • the establishment, implementation and maintenance of business continuity management system,
  • measure the overall ability of your organization to manage the incident,
  • ensure compliance with the defined business continuity policy.


In many cases, the incidents are unacceptable, and the implementation of ISO 22301 will help your organization in establishing best approach to manage them. The Standard has been specifically designed to ensure business continuity even in the most unexpected circumstances.

ISO 22301 certification

When all requirements of the ISO 22301 standard are met, and it can be so proven by internal audits, the organization may proceed to an external audit. This external audit should be carried out by a third party – accredited certification body.


Certification will be carried out in 2 Stages. Stage 1 covers document review and Stage 2 checks the functioning of management system within the company.



During the ISO 22301  certification the auditor firstly will review the system documentation. This will include: business continuity management policy, scope of system. Auditor will review the business continuity assessment and check if it has established management goals and objectives that are measureable and achievable.



Secondly in separate term full audit will be carried out in order to check if the work methods that are employed are in accordance with procedures and the established goals and appropriate records are kept.



After positively completing the certification  the Auditor shall recommend that  a certificate for ISO 22301 is issued and  registered.
The next steps are surveillance audits which are aimed to assure that the management system continuous to be effective, is being improved and still in compliance with ISO 22301 standard.

What is the cost of ISO 22301 certification?

ISOQAR has an individual pricing approach for each Client. We take into consideration many factors before we make a proposal.


To get a proposal please complete the on-line form or call our office.

Contact us

Wyrażam zgodę na przetwarzanie moich danych osobowych zgodnie z polityką prywatności.

Regulamin plików cookies