ISO 22301 Certification

ISO 22301 Certification

Business Continuity Management System

Business Continuity Management System

Develop A BUSIness Continuity Plan

ISO 22301:2019 (Security and resilience — Business continuity management systems — Requirements) is an international framework that has been developed to help businesses identify potential threats to critical business functions and design a business continuity management plan. The standard helps companies build effective backup systems and processes to safeguard against theft, natural disasters, disease outbreaks, terrorist attacks and other extraordinary incidents. It also specifies the requirements to plan, implement, monitor, review and improve a company’s business continuity management system, thereby minimizing the impact of disruptions.

Why Certification is Important

ISO 22301 certification provides formal business continuity guidelines that will keep your organization operational during and following a disruption. It seeks to minimize the impact to critical business functions, ensuring they are still capable of being delivered or recovered promptly. The standard applies to companies of all sizes across any industry, particularly those operating in high risk or complex environments where the ability to function without delay is of paramount importance. Certification also helps avoid loss of revenue and customers should a major problem occur.

How to Get Certified

ISO 22301 - Business Continuity Certification

Your Business Continuity Certification Partner

TÜV SÜD provides activities for assessment and gap identification to provide an independent point of view of the performance of your business continuity management. We offer auditing and certification services of business continuity systems, ensuring that clients are able to respond and recover from potential disruptive incidents.

We offer business continuity training according to international standards and benchmarks. Our services also cover periodical annual surveillance of business continuity management systems.

Our ISO 22301 certification mark demonstrates your company's commitment to safe safeguarding critical business processes. The mark indicates that your backup systems and processes have been evaluated by one of the most recognized names in quality, security, and safety.


  • Who needs ISO 22301?

    In general, ISO 22301 is a standard which can be implemented by any business. Businesses that are looking to set up a business continuity management system to ensure conformity and wish to document this conformity for third parties should consider certifying to ISO 22301.


  • What is the benefit of ISO 22301?

    ISO 22301 BCM certification is essential for any enterprise. You can ensure stability and preparedness in the event of any threats to the functioning of your business. By using this standard for your business processes, you can limit your losses and emerge unaffected from disruptions.

  • How long does it take to get ISO 22301 certification?

    For a small- to mid-sized well-prepared organization, a three to six month period should be sufficient.

  • What will be assessed during the ISO 22301 certification?

    The below are some examples of the areas that will be assessed:

    • Business continuity management scope
    • Business continuity management policy
    • Business continuity management objectives
    • Resource and competency
    • Communication
    • Specifications
    • Management commitment
    • Business impact analysis performance
    • Business continuity planning (BCP)
  • How does the certification of ISO 22301 work?

    To be certified for ISO 22301, the process is as follows:

    1. Documentation review – Assesses if your business continuity management system complies with the requirements of the ISO 22301 standard.
    2. Conduct pre-certification audit (optional) - It aims to help SMEs to (i) validate their system implementation against the standards requirements; (ii) gaps identified from the online gap analysis; (iii) identify areas of improvement. Any gaps identified at this stage will have to be rectified before the actual certification audit commences.
    3. Audit plan preparation
    4. Conduct certification audit – Verifies the implementation and compliance of your business continuity management system to the standard
    5. Certificate issuance
    6. Surveillance and certification audits – Ensure continuous improvement


Ensuring Business Resiliency and Continuity in an Unsure World
White paper

How to Implement Business Continuity & Impact Analysis

Build resiliency at your manufacturing operations and supply chains

Learn More


Next Steps

Site Selector