Business continuity management and ISO22301

The 2013 Information Security Breaches Survey from the Department for Business, Innovation and Skills (BIS) reports that 93% of large organisations and 87% of small business suffered a breach last year. While these breaches can of course range in scale and impact, one thing is almost certain: you’re going to get hit. And if that hit is big and wipes out your computer systems, what are you going to do? Yes, you may be able to recover from an incident, but how long will that take you? And at what cost will that recovery come?

Obvious short-term financial loss is not the only thing to worry about. Gain a reputation for poor security and you’ve got a monumental challenge to claw back your previously loyal customers. A recent Harris Interactive study, for example, revealed that two thirds of US adults would take their business elsewhere if their personal information was stolen, and it’s no great stretch to suppose that that trend would apply on this side of the Atlantic as well. Lose your customers and where are you then? 90% of businesses which suffer a significant data loss are not in business two years later. You can’t just improvise an ad hoc solution and hope for the best; you need a proper business recovery plan. You need a BCMS.

What’s a BCMS?

A BCMS is a Business Continuity Management System (BCMS), as laid out in the International Standard ISO22301. A BCMS can be applied to organisations of any type or size, and can be used to protect those organisations’ profits and reputations by preparing them to keep trading and return to normal as quickly as possible. An exhortation to expect the unexpected may not seem particularly helpful, but with a BCMS you actually can prepare for disaster.

Implementing a ISO22301-compliant BCMS will demonstrate that your organisation is fully prepared for any disruptive incident, and will give you a competitive edge by reassuring your customers that you can continue to provide them the service they expect no matter what mishap befalls you. IT Governance can provide you with all you need to implement an effective BCMS, from ISO22301 guidebooks  and toolkits to ready you for any kind of business interruption, to training courses to prepare you for formal qualifications such as Certified BCMS Lead Implementer (CBC LI) and BCMS Lead Auditor (CBC LA).

Visit our website for more information on business continuity management and make sure you’re prepared for the worst.