Biscon can assist with clients seeking certification to ISO 22301 (2019) for Business Continuity and/or to ISO/IEC 27001 (2017), the industry best practice information security standard. We can assist you in delivering all the documents needed and acting as an outsourced resource for managing the System.

For ISO 22301 this will include scoping the project, holding information gathering meetings, updating the Risk Assessment and Business Impact Analysis document, agreeing the BCM strategy, producing a Business Continuity Plan that covers Invocation, Incident Management, Business Continuity and Business Recovery, and writing a BCM Policy – so delivery of a full Business Continuity Management System.

For ISO 27001 Biscon can assist with a framework for implementing an information security management system (ISMS). The initial step required is a gap audit to assess the level of security in existence. The gap audit is a high level review of the current information security management system (ISMS) in place. There will be existing operational procedures, security policies and practices that can form the ISMS.

Biscon is a member of the British Standards Institute (BSI) Associate Consultant Programme (ACP).