office@rigcert.org
ISO 22301 - Business continuity management
ISO 22301 is the international standard for business continuity management.
This standard is intended to help organizations prepare for, respond to, and recover from disruptive incidents that could impact critical operations, ensuring that they can continue to deliver products and services during unexpected events.
The standard is built on internationally recognized principles of risk management, resilience, and organizational preparedness. It emphasizes leadership commitment, risk assessment, business impact analysis, continuity planning, compliance with applicable requirements, and continual improvement in operational resilience.
ISO 22301 is applicable to all types of organizations, regardless of size, sector, or geographical location. It is widely used by manufacturers, service providers, financial institutions, public authorities, and NGOs aiming to strengthen their ability to operate under pressure, minimize downtime, and protect stakeholders' trust.
RIGCERT provides accredited certification services for business continuity management systems in accordance with ISO 22301. Our certification process is impartial, transparent, and carried out by experienced professionals who understand the practical challenges of continuity planning and crisis response in your industry.
Whether the objective is to maintain critical operations, meet regulatory requirements, or enhance customer and partner confidence, certification to ISO 22301 with RIGCERT supports your organization’s commitment to resilience and long-term stability.
ISO 22301 is the international standard that establishes requirements for a Business Continuity Management System (BCMS).
Such a management system can be implemented by any organization, regardless of its sector or size. Its main purpose is to help organizations protect against, reduce the likelihood of, and recover from disruptive incidents.
ISO 22301 supports organizations in their efforts to enhance resilience and ensure the continuity of critical operations during and after unexpected events.
Among other requirements, ISO 22301 calls for conducting business impact analyses and risk assessments, identifying and implementing strategies and solutions to maintain operations during disruptions, developing business continuity plans and procedures, and regularly exercising and reviewing them to ensure effectiveness and identify areas for improvement.
ISO 22301 can be integrated with other management system standards, such as ISO/IEC 27001 (for information security management) or ISO/IEC 20000-1 (for service management), which also include requirements related to business continuity.
RIGCERT provides accredited certification services to ISO 22301 for Business Continuity Management Systems, supporting your organization's journey toward resilience and operational stability. A credible, accredited ISO 22301 certification serves as evidence of the organization's preparedness, commitment to risk management, and ability to continue delivering essential services in the face of disruptions.
Certification for the Business Continuity Management System (BCMS) according to ISO 22301 can be obtained following a two-stage initial certification audit conducted by competent and impartial auditors.
This certification helps your organization demonstrate to clients, partners, regulators, and other stakeholders that appropriate and effective measures are in place to manage disruptions and to ensure the continuity of critical operations. It also supports a culture of organizational resilience and proactive risk management.
Just like other management system certifications, ISO 22301 certification is valid for a period of three years. During this cycle, annual surveillance audits are conducted to verify that the Business Continuity Management System remains effectively implemented and compliant with the standard’s requirements.
Failure to undergo surveillance audits as scheduled, or failure to address major nonconformities identified during these audits, may result in the suspension or withdrawal of the certification.
At the end of the three-year certification cycle, organizations may undergo a recertification audit to maintain their certification and continue demonstrating their commitment to operational resilience and business continuity.
RIGCERT provides accredited certification services for Business Continuity Management Systems (BCMS) in accordance with ISO 22301, under the accreditation of IAS – International Accreditation Service.
IAS is a member of the International Accreditation Forum (IAF), which means that the certification issued by RIGCERT is internationally recognized and accepted by relevant stakeholders such as business partners, clients, and regulatory authorities.
Our auditors have extensive experience in evaluating business continuity management systems and a deep understanding of operational risks, offering your organization valuable support in building real capabilities for response and recovery in the face of disruptions.
Regardless of the industry, an accredited and credible ISO 22301 certification demonstrates your organization’s commitment to resilience, continuity, and the protection of stakeholder interests in times of crisis.
