Scribd
Upload
35 views6 pages

Project Checklist For 22301 Implementation EN

This document provides a checklist of tasks involved in implementing an ISO 22301 business continuity management system. It outlines the key implementation phases including obtaining management support, identifying requirements, defining the scope and policy, performing risk assessments, developing continuity plans and procedures, training, internal auditing, and operating the implemented system.

Uploaded by

ochedikwujonah
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
35 views6 pages

Project Checklist For 22301 Implementation EN

This document provides a checklist of tasks involved in implementing an ISO 22301 business continuity management system. It outlines the key implementation phases including obtaining management support, identifying requirements, defining the scope and policy, performing risk assessments, developing continuity plans and procedures, training, internal auditing, and operating the implemented system.

Uploaded by

ochedikwujonah
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 6

[organization name]

Project Checklist for ISO 22301 Implementation


Implementation Tasks Documents from toolkit to Done
phases be used

Obtain Research which benefits of -


management ISO 22301 would be
support applicable to your company.

Present the benefits to the -


management and get their
commitment.

Get formal approval for -


starting the project planning.

Prepare for your Write Procedure for 00 – Procedure for


project Document Control. Document and Record
Control

Educate your project team. -

Write the Project Plan 01 – Project Plan


including the definitions of
project manager, project
team, project sponsor,
required resources, and
milestones.

Define which stakeholders -


need to be informed about
each step in the project.

Organize kick-off meeting. -

Identify Define procedures for 02 – Procedure for


requirements identifying interested parties. Identification of
Requirements

Identify the requirements of 02.1 – List of Legal,


interested parties. Regulatory, Contractual
and Other Requirements

Project Checklist for ISO 22301 ver [version] from [date] Page 1 of 6
Implementation

© 2020 Advisera Expert Solutions Ltd. https://advisera.com/27001academy/


[organization name]

Define the scope, Write the Business Continuity 03 – Business Continuity


management Policy. Policy
intention, and
responsibilities Decide on the business 03 – Business Continuity
continuity objectives. Policy

Identify risks of Develop the risk assessment 04 – Risk Assessment and


disruptive incidents methodology. Risk Treatment
Methodology

Perform risk assessment. 04.1 – Risk Assessment


Table

Perform risk treatment. 04.2 – Risk Treatment


Table

Write the Risk Assessment & 04.3 – Risk Assessment and


Treatment Report. Risk Treatment Report

Identify continuity Develop business impact 05 – Business Impact


priorities and analysis methodology. Analysis Methodology
objectives 22301

Perform business impact 05.1 – Business Impact


analysis questionnaires. Analysis Questionnaire

Determine Business continuity strategy 06 – Business Continuity


priorities, required Strategy
resources, and
mitigation 06.1 – Appendix 1
Recovery Time Objectives
for Activities

06.4 – Appendix 4 Activity


Recovery Strategy for xy

Preparation Plan 06.3 – Appendix 3


Preparation Plan for
Business Continuity

Project Checklist for ISO 22301 ver [version] from [date] Page 2 of 6
Implementation

© 2020 Advisera Expert Solutions Ltd. https://advisera.com/27001academy/


[organization name]

Define business Business Continuity Plan(s) 07 – Business Continuity


continuity Plan
procedures
07.7 – Appendix 7 Activity
Recovery Plan for xy

Incident Response Plan(s) 07.1 – Appendix 1 Incident


Response Plan

07.2 – Appendix 2 Incident


Log

Recovery plan(s) 07.6 – Appendix 6 Disaster


Recovery Plan

07.3 – Appendix 3 List of


Business Continuity Sites

Transportation Plan(s) 07.4 – Appendix 4


Transportation Plan

Communication procedure(s) 07.5 – Appendix 5 Key


Contacts

Perform training Training and Awareness Plan 09 – Training and


and awareness Awareness Plan
programs
Perform training for all 09 – Training and
employees who lack required Awareness Plan
skills.

Perform awareness programs 09 – Training and


for all employees and third Awareness Plan
parties that have a role in
your BCMS.

Implement Write procedure for internal 10 – Internal Audit


management audit. Procedure
procedures
Develop the audit program. 10.1 – Annual Internal
Audit Program

Project Checklist for ISO 22301 ver [version] from [date] Page 3 of 6
Implementation

© 2020 Advisera Expert Solutions Ltd. https://advisera.com/27001academy/


[organization name]

Define which measurements 11.1 – Measurement


are to be performed related Report
to the objectives for the
BCMS and for controls.

Identify information sources 11.2 – Management


to be used in the Review Minutes
management review.

Write Procedure for 12 – Procedure for


Corrective Action Corrective Action

Operate the BCMS Maintain all the records Various records and logs
required by your own policies that are created because
and procedures. of BCMS documents – e.g.,
backup log (from the
backup software), filled out
List of Legal, Regulatory
and Contractual
Requirements, etc.

Perform corrective actions as 12.1 – Corrective Action


needed as a consequence of Form
improvements needed in the
operation of the BCMS.

Exercising and Exercising and Testing Plan 08.1 – Exercising and


testing Testing Plan

Exercising and Testing Report 08.2 – Appendix 1


Exercising and Testing
Report

Corrective actions 12.1 – Appendix 1


Corrective Action Form

In case of disruptive Incident Log 07.2 – Appendix 2 Incident


incidents Log

Post incident review 08.4 – Post Incident


Review Form

Project Checklist for ISO 22301 ver [version] from [date] Page 4 of 6
Implementation

© 2020 Advisera Expert Solutions Ltd. https://advisera.com/27001academy/


[organization name]

Corrective actions 12.1 – Appendix 1


Corrective Action Form

Regular review of Maintenance and Review 08.3 – BCMS Maintenance


plans and business Plan and Review Plan
continuity
arrangements Corrective actions 12.1 – Appendix 1
Corrective Action Form

Monitor & measure Make sure you monitor all Monitoring records
the BCMS required elements. defined in each
implemented document,
e.g., number of incidents,
number of errors in a
particular system, etc.

Measure if you have achieved 11.1 – Measurement


the objectives set for your Report
BCMS.

Perform internal Perform internal audit(s). 10.3 – Internal Audit


audit Checklist

Write an Internal Audit 10.2 – Internal Audit


Report. Report

Perform corrective actions as 12.1 – Corrective Action


a consequence of Form
nonconformities found
during the internal audit.

Perform Perform management -


management review.
review
Maintain records from 11.2 – Management
management review. Review Minutes

Perform corrective actions as 12.1 – Corrective Action


a consequence of Form
improvements identified

Project Checklist for ISO 22301 ver [version] from [date] Page 5 of 6
Implementation

© 2020 Advisera Expert Solutions Ltd. https://advisera.com/27001academy/


[organization name]

during the management


review.

Certification audit Obtain proposals from -


several certification bodies.

Select the certification body. -

Stage 1 certification audit -

Stage 2 certification audit -

Surveillance visits -

Project Checklist for ISO 22301 ver [version] from [date] Page 6 of 6
Implementation

© 2020 Advisera Expert Solutions Ltd. https://advisera.com/27001academy/

You might also like