In these days, there are increasing business risks and at the same time, organizations are expected to compete with faster and reliable services. Any operational disruption that affects services to customers can result in losing business and also damage to reputation. That is why business continuity has become important for B2B buyers who now include business continuity management ("BCM") system as one of their vendor approval system.
The International Standard ISO 22301-2012 provides the requirements of the BCM system. Unless one is expert on BCM, interpreting and implementing the requirements as a practice in the organization can be a challenge. We often see that the implemented system is only an academic representation of the ISO 22301 requirement. When audited by the customer or when there is a real incident, the academic BCM system will fail.
The International Standard ISO 22301-2012 provides the requirements of the BCM system. Unless one is expert on BCM, interpreting and implementing the requirements as a practice in the organization can be a challenge. We often see that the implemented system is only an academic representation of the ISO 22301 requirement. When audited by the customer or when there is a real incident, the academic BCM system will fail.
It is thus highly recommended for the implemented system to be audited by a recognized BCM auditor against the requirements of ISO 22301. With the certification issued, one is better assured that the BCM system that has been put in place is up to standard.
Jacob Business Armour, in Singapore helps clients to obtain the ISO 22301 certification.
Some have enquired about Enterprise Risk Management ("ERM") certification against the ISO 31000. ISO 31000 was not intended as a certifiable standard, because the ISO considers that risk management can be different for companies and industries. On the other hand, it is possible to get a "Certificate of Compliance" letter from an audit company if one so wishes.
Jacob Business Armour, in Singapore helps clients to obtain the ISO 22301 certification.
Some have enquired about Enterprise Risk Management ("ERM") certification against the ISO 31000. ISO 31000 was not intended as a certifiable standard, because the ISO considers that risk management can be different for companies and industries. On the other hand, it is possible to get a "Certificate of Compliance" letter from an audit company if one so wishes.
