standards

ISO 22301 Certification – Business Continuity Consultancy (BCMS)

Protect operations, build resilience, and recover faster from disruption with ISO 22301

ISO 22301 is the international standard for Business Continuity Management Systems (BCMS). It helps organisations identify potential threats, safeguard critical operations, and maintain service delivery during unexpected disruption.

AvISO supports you in developing and maintaining an ISO 22301 system tailored to your business, with guidance from experienced consultants and practical tools via the ISOvA platform.

Business man ISO Consultancy London
Business man ISO Consultancy London
What our clients say

“We didn’t realise how many gaps we had in our continuity planning until AvISO mapped it all out. Their consultants were focused, fast, and practical. When our audit came, the system stood up to real scrutiny.”

Managing Director, National Logistics Provider

No items found.

How AvISO supports ISO 22301 implementation

We guide you through the full certification process with a tailored approach that fits your operations, risks, and stakeholder needs:

  • Gap analysis and continuity maturity review
  • BCMS design, policy development, and business impact analysis
  • Risk assessment, recovery strategy development, and documentation
  • Internal audits and certification preparation
  • Post-certification support and system maintenance

With 1,000+ client audits supported annually, we know how to deliver systems that auditors respect and your team can manage.

Common ISO 22301 challenges — and how we solve them

Organisations often struggle with:

  • Unclear recovery priorities or dependencies
  • Generic or outdated continuity plans
  • Lack of ownership across departments
  • Stress or confusion around audit evidence

We solve these by clarifying roles, mapping critical operations, and delivering systems that work in practice — not just on paper. ISOvA supports evidence control, version management, and testing schedules to make business continuity live and active.

Whether you're building a BCMS from scratch or upgrading a current plan, AvISO helps you implement a system that protects your business and builds trust.

ISO 22301 services from AvISO

Our services cover the full lifecycle of ISO 22301 — from implementation through to continual improvement. Whether you’re starting from scratch or updating an existing system, we deliver strategic and operational support.

Expert guidance and project delivery

  • A dedicated consultant to lead your project with continuity expertise
  • Flexible delivery aligned to your resources, risks, and audit timeline
  • Clear timelines and responsibilities to keep things moving
  • Help with selecting or switching UKAS-accredited certification bodies

System design and documentation

  • Bespoke BCMS frameworks tailored to your organisation’s critical operations
  • Business impact assessments and risk analysis linked to real threats
  • Recovery strategies, response plans, and continuity objectives
  • Legal Register to track regulatory and contractual continuity obligations
  • Documented communication protocols and testing procedures
  • Full ISO 22301 clause coverage mapped through ISOvA

Training and team engagement

  • Practical training on business continuity concepts, roles, and testing
  • Leadership engagement workshops to align top management with the standard
  • Support in building a continuity culture and testing schedule
  • ISOvA system training to give staff visibility and control over key activities

Internal audits and certification support

  • Internal audits and reviews of continuity plans, risks, and controls
  • Mock audits to identify weak points before external certification
  • Evidence review and gap closure planning
  • Retained support after certification to maintain system maturity
  • Fixed-cost model with no charge for unused consultancy days

ISOvA for digital BCMS management

  • Free access to ISOvA Toolbox for your first project
  • Centralised tracking of BIA outputs, recovery plans, and reviews
  • Schedule-driven updates for document review, test exercises, and audits
  • Visibility of roles, response actions, and improvement records

ISOvA ensures your continuity system is operational, traceable, and always up to date.

Integrated ISO 22301 systems for long-term value

ISO 22301 often works best as part of a broader risk and resilience strategy. We help you integrate business continuity with related standards to create a joined-up management system.

Typical integrations include:

  • ISO 27001 – Information security management
    Align continuity and cybersecurity planning to protect digital operations and ensure data recovery processes are tested and secure.
  • ISO 9001 – Quality management
    Link product or service quality with continuity planning to protect delivery promises, particularly in regulated or contractual environments.
  • ISO 45001 – Occupational health and safety
    Ensure continuity strategies account for safe evacuations, emergency response, and workforce wellbeing during disruption.
  • ISO 14001 – Environmental management
    Embed resilience into sustainability plans by identifying environmental risks that may disrupt operations.
  • ISO 31000 – Risk management
    Build a shared understanding of threats and responses across the organisation, using common registers and control tracking.

AvISO ensures each standard reinforces the others — and with ISOvA, you can manage and monitor them all in one place.

ISOvA: your digital BCMS

ISOvA is AvISO’s Microsoft 365-based compliance platform. It provides a secure, auditable environment for your ISO 22301 system.

With ISOvA, you can:

  • Centralise and version-control your continuity documents and plans
  • Track scheduled exercises, recovery time objectives, and test outcomes
  • Monitor corrective actions and audit readiness
  • Maintain a live Legal Register and system dashboard
  • Simplify updates and responsibilities across all roles

Business continuity systems are living frameworks. Paper files and spreadsheets quickly become outdated or fragmented. ISOvA keeps your BCMS aligned, visible, and ready — even under pressure.

Why choose AvISO for ISO 22301?

  • Approved by and working closely with all major UKAS-accredited certification bodies
  • Over 1,000 client audits supported every year
  • Consultants with real-world crisis and continuity planning experience
  • Trusted by critical infrastructure providers, public sector organisations, and national suppliers
  • ISOvA platform included free with your first project (worth £240/month)
  • Practical, jargon-free support focused on outcomes
  • Flexible, fixed-cost pricing model
Talk to us about ISO 22301 certification

Let’s explore how we can help your team — from gap analysis to digital integration.
Kent: 01892 800476 | London: 02037 458 476 | info@avisoconsultancy.co.uk

By filling out this form, you agree to the terms laid out in our privacy policy
Thank you!
Your submission has been received, one of our team members will be in touch soon.
Oops! Something went wrong while submitting the form.
ISO consultants kent

ISO 22301 FAQs

Most frequently asked questions

What is ISO 22301?

It’s the international standard for Business Continuity Management Systems. It helps organisations prepare for, respond to, and recover from disruption.

Who needs ISO 22301 certification?

Organisations that provide critical services, face regulatory pressure, or need to demonstrate resilience to clients — including logistics, healthcare, energy, and finance.

What does a BCMS cover?

It includes impact assessments, risk evaluations, response plans, recovery strategies, testing, reviews, and communication processes.

How long does ISO 22301 certification take?

Typically 3–6 months depending on your existing systems and the complexity of your operations.

Can ISO 22301 be integrated with other ISO standards?

Yes. It follows the Annex SL structure, which means it’s designed to align with ISO 27001, ISO 9001, and others.

Do we need to test our continuity plan before certification?

Yes. Evidence of testing and review is required. We support you with scenario planning, exercises, and result documentation.

Do we need to hire a business continuity manager?

Not necessarily. We can help upskill existing staff or provide ongoing support post-certification.

Will you support us during the certification audit?

Yes. We provide audit prep, documentation review, and attendance — remotely or onsite.

Can ISO 22301 help with contracts or tenders?

Definitely. Many supply chains and frameworks now require evidence of business continuity planning and certification.

What if we already have a plan but it’s outdated?

We’ll review what you have, identify gaps, and help bring your system up to ISO 22301 standards.

What’s the difference between ISO 22301 and ISO 27001?

ISO 22301 focuses on operational resilience. ISO 27001 focuses on information security. They often work together to protect both systems and data.

choose a standard

What Standard are you looking to obtain:

ISO 9001 – Quality Management System Standard
ISO 14001 – Environmental Management System Standard
ISO 27001 – Information Security Management System Standard
ISO 20001 - Information Technology Service Management Part 1
ISO27701:2019 – Privacy Management System Standard
ISO 30071-1 - Digital Accessibility Standard
ISO 37001 – Anti-Bribery Management System Standard
ISO 45001 – Health and Safety Management Standard
ISO 50001 – Energy Management System Standard
ISO 14064:1 - Quantification And Reporting Of Greenhouse Gas Emissions And Removals
ISO 14067 - Carbon Calculator
PAS 2060 - Carbon Neutrality
ISO 17024 - Conformity Assessment of the Certification of Persons
ISO 17025 – The competence of testing and calibration laboratories
ISO 20121 – Event Sustainability Management System Standard
ISO 37301:2021 – Legal Compliance Management System 
ISO 31000 - Risk Management
ISO 37002 - Whistleblowing
The Digital Operational Resilience Act (DORA)
ISO 13485 Certification – Medical Device Quality Management Consultancy (QMS)
ISO 22000 – Food Safety Management System Standard
BES 6001 - Responsible Sourcing of Construction Products
ISO 22301 – Business Continuity Management System Standard
IATF 16949 – Automotive Quality Management System Standard
ISO 44001- Collaborative business relationships
BS 8900 - Guidance for managing sustainable development
CYBER ESSENTIALS – Cyber Security
SOC2 Compliance
ESOS – Energy Savings Opportunity Scheme
FIAS – Fertiliser, Security & Traceability
Lexcel – Legal Management System
MOD Standards
SECR - Streamlined Energy and Carbon Reporting
TISAX® – Information Security for the Automotive Industry
AS 9100 - Aerospace Quality Management System | Aqms
esos Energy Audits
B CORP CERTIFICATION
ISO 45003 - Occupational Health and Safety Management
ISO 42001:2023 - Artificial Intelligence 
FIA Environmental Accreditation
Need more info? Let us know how we can help
get in touch
ISO 9001 Quality Management System Kent and London
Ask a Question
By clicking “Continue To Site”, you agree to the storing of cookies on your device to enhance site navigation, analyse site usage, and assist in our marketing efforts. View our Privacy Policy for more information.