ISO 22301 Business Continuity Management System Certification Process

Our certification process is simple. After we have received your request for quote, we appoint an experienced staff member to guide you and your business through the following steps:

Enquiry & Free Estimate

Following your enquiry and completion of our application, we review  the application and provide you with a free quote. There are no fees until you accept the quote and return the signed quote and contract that includes the conditions for certification. We will contact you to start the certification process and agree dates for the Stage 1 Audit, assign an auditor who contacts you to finalize arrangements.


Gap analysis (optional)

This is an optional service where we take a close look at your existing or newly established business continuity management system and compare it with requirements of the ISO 22301 standard. The gap analysis helps identify areas that need more work before we could carry of a formal assessment.

Stage 1 Audit

The stage 1 audit ( part of which is on generally on site) provides a focus for planning the main or stage 2 audit, reviews documentation specific to your business, and to work with your staff to quickly resolve any problems.

Stage 2 Audit

The stage 2 Audit measures the effectiveness of the business continuity management system. In this audit, we assess the implementation of the procedures and controls within your organization to make sure that they are working effectively as required for certification of ISO 22301.

The audit is carried out alongside your own people, with results openly discussed and reviewed. At the end of the audit, a report is prepared for acknowledgement and acceptance by your company representative. Any corrective actions arising from the audit are discussed and any forward plan of agreed-upon work, including a follow-up visit if needed.

Certification Approval & Surveillance Program

When your business continuity management system complies with ISO 22301, a certificate of approval is issued, which is valid for three years, subject to satisfactory on-going maintenance of your business continuity management system. Verification is through an audit surveillance program that is carried out through yearly surveillance visits organized to fit in with your business requirements.