Benefits of ISO22301
How we can help you achieve ISO22301 certification
Our experienced consultants will help you establish what you need to do to achieve ISO22301 certification and put together a step-by-step plan to achieve compliance. This will include making sure that your staff are competent at assessing risk and making informed decisions and that your leadership team are providing the support needed to guarantee success. We will also help you develop business continuity plans tailored to the resources and needs of your business and put them to the test.
Our ISO certification process includes conducting a thorough internal audit and ensuring that you can provide the evidence required for a successful external audit.
Please note: this service, including ISO certification audits, can be delivered remotely.
Getting started with certification
Approaching audits with confidence
How we can help you maintain ISO23001 compliance
Making ISO22301 compliance part of your ‘business as usual’ will help to safeguard the future of your organisation. We can help you learn the skills needed to conduct effective internal audits and chair management review meetings or, if you prefer, we can manage these on your behalf.
You may also enjoy the peace of mind that our telephone and email support service, Compliance as a Service, brings. This fixed cost service includes support for ISO, GDPR, Cyber Essentials and H&S.
FAQs
ISO22301 is the internationally recognised standard for business continuity. Being certified to ISO22301 indicates that an organisation’s Business Continuity Management System (BCMS) complies with the requirements detailed by the International Organization for Standardization (ISO).
A Business Continuity Management System is a system that documents the policies, processes and procedures that ensure that your business can continue to operate in an emergency. It helps to ensure that you can carry out business as usual, no matter what happens.
Like many of the popular ISO standards, ISO22301 uses Plan-Do-Check-Act (PDCA) to drive continual improvement.
During the ‘plan’ stage, you will determine the scope of your business continuity management system and determine roles, objectives, resources and competencies. To do so, you will need to look at your organisation in its context and ensure you understand the needs of interested parties.
During the ‘do’ stage you will conduct business impact analysis and risk assessments and document strategies, solutions, plans and procedures to drive business continuity. In the ‘check’ stage, you will check how your plans worked and report the results. Finally, during the ‘act’ stage, you will take corrective action to remedy non-conformances and ensure continual improvement.
There are many threats to business continuity, including cyberattack, fire, internet outages, data breaches and H&S incidents. We may not know what is around the corner, but we can minimise disruptions and improve our resilience by anticipating, rehearsing and evaluating various scenarios.
Every business faces threats. ISO22301 has been designed to be relevant to businesses of all sizes, regardless of location or sector.
Scenario planning will help your employees to respond to crises more quickly and confidently, reducing the potential damage to turnover, profits and your reputation.
It will also help you prove to potential clients that you have taken steps to protect their supply chain.
If you already have ISO9001 (Quality), ISO14001 (Environmental), ISO27001 (Information Security) and/or ISO45001 (Occupational Health & Safety) you’ll be able to add ISO22301 as part of an integrated management system thanks to their common structure (Annex SL).
The cost depends on the size and complexity of your organisation and how much time you can devote to the project. We have a number of solutions available and offer flexible payments as we all know that cash flow is important.
A revision to the standard in 2019 aligned it more closely with other popular standards including ISO9001 and ISO27001.
If you certify with us, or subscribe to our newsletter, we’ll let you know when a new version is to be released. You will normally have three years to transition and we’ll provide whatever support you need to do so smoothly.
You’ll need to make sure that your systems meet the requirements detailed in the standards before having them audited by a third party.
Our team includes expert risk management consultants. They’ll help you develop a step-by-step plan to achieve compliance. Find out more about our four-step ISO certification process.
Once you have passed your external audit, your certification body will send you an ISO22301 logo and your certificate.
We’ll also make it easy for you to tell your existing and potential customers about your certification by providing you with a free ten step guide (our Promotion Power Pack). We can also ask your certification body to consider providing a testimonial for you to use in tenders.
You’ll need to pass an external audit every year to maintain your certification. We know time flies when you’re busy, so we’ll remind you before your audit is due. This will give you time to prepare and ensure that you don’t let your certification lapse by accident.
We can provide whatever help you need to feel in control of your compliance. This may include managing internal audits, chairing management reviews or providing telephone or email support as part of our Compliance as a Service.
If you’re interested in improving your resilience and reputation, please contact us today for a free no-obligation discussion.
What our clients say
Anonymous
Helen represents the small business community effectively and with vigour as the Cyber Crime Ambassador for FSB Coventry and Warwickshire, working alongside local and national government to ensure small businesses have a voice.
Anonymous
The internal audit and IASME application has been a positive experience for The Changing Education Group… made possible by the high quality support and guidance offered by the Risk Evolves team.
- Transcription City
- Sam Wood
- Director
It was more work than I’d expected. I soon realised I needed help to fully understand the requirements and embed the standards so they would work for my business. I approached British Assessment Bureau for help. They recommended Risk Evolves. Twelve weeks later, we passed our remote audit and achieved certification.
Anonymous
Very quietly thrilled to bits to get our accreditation under the new standard without any issues. Helps the business with proposals to blue chip clients.
Anonymous
ISO9001 was an achievement, an even bigger deal was to raise the health and safety culture of the organisation.
Anonymous
Customer feedback gained as part of our ISO9001 certification has led to the development of popular new services including GDPR Critical Friend.
Anonymous
GDPR compliance will increase our value to clients.
Anonymous
Our clients appreciate that we practice what we preach and can share real-life experience of running an ISO certified business. We’re certified to ISO9001 and were the first UK client of NQA to certify to both ISO27001 and ISO27701.
- Transcription City
- Sam Wood
- Director
It made a massive difference to have ISO explained in layman’s terms. It’s very easy to ask questions and you aren’t left understanding less! You just call or email and it’s in a way that’s simple to understand.
- SIS Systems (UK) Ltd
- Adam Middleton
- Managing Director
We do recommend Risk Evolves. Not only do they offer great service and value for money they have also imparted valuable knowledge, understanding and belief across the organisation. The net result is more business.
Anonymous
We are in a safer place now than we were 12 months ago. Starting with two factor authentication. The culture of the organisation is in a better place and we were in a better place for lockdown too.
Anonymous
Cyber security is scary! Helen gave me the confidence to know we could… minimise these types of risks. She has given me peace of mind.
Anonymous
Friendly and informative.
- Jay's Logistics (South West) Ltd
Anonymous
Our ISO9001 certification has enabled us to deliver logistics services to Hinckley Point and to its suppliers as well as operating at a more efficient and safe level. The power station isn’t due for completion until 2025 so this contract has provided stability at a time of great for the logistics industry.
