Business continuity management standard ISO 22301 revision

The ability of an organization to continue operating during a disruption has never been more important. So it’s no surprise that ISO 22301, the internationally recognized standard for a business continuity management system (BCMS), is being updated to make sure it remains relevant to today’s business environment.

As the first ISO standard based on the High Level Structure (HLS), it has a strong foundation that now aligns with many other internationally recognized management system standards such as ISO 9001 quality management and ISO/IEC 27001 information security management. However there are areas of improvement highlighted by users, particularly around less prescriptive procedures and updated terms and definitions, that need considering to ensure it remains relevant in a changing business landscape.

Upgrade to ISO 22301:2019

If your organization’s currently certified to ISO 22301:2012 we anticipate you will have three years to transition to ISO 22301:2019 and after 30 October 2022 certificate for ISO 22301:2012 will no longer be valid*.

Please note, BSI will continue to deliver audits against ISO 22301:2012 until 30 April 2021 to allow you time to get your system updated and aligned to ISO 22301:2019.

To get started, buy a copy of the latest standard and consider a BSI transition course to help you understand the changes and how they impact your current business continuity management system.

Buy ISO 22301:2019 >

Key changes to ISO/DIS 22301

  • Content in clause 8 has been reordered, duplication removed and terminology is simplified and more consistent
  • References to risk appetite have been removed
  • Introductory guidance information has been removed and placed in ISO 22313 the BCMS guidance document
  • More specific focus on planning for changes to the BCMS
  • Less prescriptive procedures and documentation requirements
  • Business continuity strategy is more clearly expressed as “Business continuity strategy and solutions”
  • Business continuity plans now clearly link to supporting the teams and people that will respond to a disruption

Benefits

The anticipated benefits of the updated ISO 22301 standard include:

  • Inspire trust in your ability to continue operations throughout a disruption
  • Protect your reputation
  • Respond to legislative requirements
  • Reduce cost of disruption
  • Create a competitive advantage
  • Contribute to Organizational Resilience