Social security - Business continuity management system

ISO 22301

ISO 22301 is a standard related to business continuity management (Business Continuity Management), applying a "holistic" management process that identifies potential threats to the organization, including their consequences. This standard specifies the requirements for planning, establishing, implementing, operating, monitoring, reviewing, maintaining and continuously improving a documented management system, which aims to protect the organization from threats, reduce the likelihood of occurrence, prepare to respond and recover from disruptive incidents should they occur.

Assessment, planning and control of plans for overcoming emergency situations reduces the negative impact of a possible interruption of the organization's activities (eg interruption of delivery of products / services to customers). In "extreme" emergency situations, a well-organized and efficient business continuity management system will help and support business recovery, while protecting the name and reputation of the company, as well as the market share that the company owns.

The ISO 22301 standard provides a framework for the development and achievement of operational resilience of enterprises, the implementation of which contributes to:
  • Protect against incidents
  • Reducing the probability of occurrence of incidents
  • Prepare and respond to incidents
  • Recovery from incidents should they occur

Various natural disasters, environmental threats, technological accidents and man-made crises have proven that they can cause serious incidents and that if they happen, they affect both the public and private sectors equally. In such situations, the real challenge is the implementation of an emergency response plan or the implementation of crisis management strategies.

Today's threats require process management in a way that ensures the survival and sustainability of the organization's core activities before, during and after a disruption. An organization's ability to recover from a disruption is directly related to the degree of business continuity planning it had prior to the disruption. Studies show that two out of five companies that experience severe incidents go out of business within five years of the adverse event.