Looking for ISO 22313:2020 Security and resilience?

ISO 22313:2020 Security and resilience

ISO 18788:2015-Management system for private security operations

What is ISO 22313:2020 Security and resilience-Business continuity management systems -Guidance on the use of ISO 22301?

ISO 22313:2020 Security and resilience designed to complement ISO 22301, which is the international standard for Business Continuity Management Systems (BCMS). While ISO 22301 provides the requirements for a BCMS to ensure an organization’s resilience against disruptions, ISO 22313 provides detailed guidance on how to effectively implement, maintain, and continually improve a BCMS in accordance with the requirements of ISO 22301.

Key Aspects of ISO 22313:2020:
  • Contextual Understanding: The guidance document helps organizations understand the context in which they operate, including identifying stakeholders, legal requirements, and strategic objectives.
  • Risk Assessment: ISO 22313 elaborates on how to conduct risk assessments to identify potential disruptions and vulnerabilities that the organization might face.
  • Resource Management: It offers advice on how to allocate appropriate resources, including human, technological, and financial assets, to effectively manage and mitigate business continuity risks.
  • Communication Plan: This document provides guidelines on developing a structured communication plan, ensuring that all stakeholders are well-informed before, during, and after an incident.
  • Training and Awareness: Guidance is provided on how to develop training programs to ensure staff members understand their roles and responsibilities concerning business continuity.
  • Testing and Exercising: ISO 22313 gives insight into how to design and carry out tests and exercises to evaluate the effectiveness of the BCMS, including scenario planning and post-exercise reviews.
  • Performance Monitoring and Improvement: The standard addresses the ways to monitor, measure, and improve the performance of the BCMS through periodic reviews, audits, and feedback mechanisms.
  • Documentation: One of the most critical aspects covered is how to document the various processes, policies, and procedures so that they can be reviewed and audited for compliance.
  • Management Commitment: Emphasizes the need for executive-level engagement and commitment for the effective implementation and continual improvement of the BCMS.
Pacific Certifications is a certification body accredited by ABIS to issue management system certifications such as ISO 22301, you may find that many organizations seeking ISO 22301 certification would also benefit from familiarizing themselves with ISO 22313:2020. It can serve as an invaluable resource for organizations to achieve a more robust and effective BCMS, which is in line with the international best practices outlined in ISO 22301.

Overall, by following the guidelines in ISO 22313:2020, organizations can have greater confidence that they are in alignment with recognized best practices for business continuity management, thereby enhancing their operational resilience and readiness for unexpected disruptions.

What are the requirements for ISO 22313:2020 Security and resilience?

ISO 22313:2020 Security and resilience serves as a guidance document designed to help organizations better implement, maintain, and improve a Business Continuity Management System (BCMS) as per ISO 22301 standards. As such, ISO 22313:2020 does not have specific “requirements” in the way that ISO 22301 does. Instead, it provides recommendations and best practices aimed at helping organizations meet the requirements of ISO 22301 more effectively.

Key Guidelines from ISO 22313:2020:
  • Understanding the Organization: The document provides guidance on establishing the internal and external context in which the organization operates. This includes understanding legal, regulatory, and other requirements.
  • Leadership Commitment: ISO 22313 emphasizes the need for top management to demonstrate commitment to the BCMS by allocating appropriate resources, establishing policies, and integrating the BCMS into other business processes.
  • Planning: It gives direction on setting objectives for the BCMS, which should be aligned with the business objectives and the identified risks and opportunities.
  • Support: Guidance is provided on areas such as resource allocation, competence, awareness, and communication, both internal and external to the organization.
  • Operational Planning and Control: Detailed recommendations are offered on risk assessment, business impact analysis, and the development of business continuity strategies and solutions.
  • Performance Evaluation: This includes recommendations for monitoring, measurement, analysis, and performance evaluation of the BCMS to ensure its effectiveness and suitability.
  • Improvement: ISO 22313 guides on identifying opportunities for continual improvement and implementing actions to achieve it.
  • Documentation: While ISO 22301 requires the organization to keep documented information, ISO 22313 provides advice on how best to document these elements in a manner that is most effective for the organization’s specific needs.
  • Communication and Training: Recommendations are provided on the most effective ways to communicate the policies, plans, and procedures of the BCMS to relevant stakeholders. It also outlines suggestions for training programs to improve competence and awareness.
  • Audit and Review: While ISO 22301 sets the requirement for regular internal audits and management reviews, ISO 22313 offers best practices on how to conduct these activities effectively.
Overall, organizations, which are involved in issuing management system certifications, understanding the guidance provided by ISO 22313:2020 can enhance the value you bring to your clients. It can help you advise organizations on best practices and methodologies for achieving a robust and effective BCMS that is in full compliance with the requirements of ISO 22301.

What are the benefits of ISO 22313:2020?

The benefits of ISO 22313:2020 are manifold and cater to various dimensions of business continuity management. Utilizing this guidance document can significantly enhance an organization’s ability to implement a robust Business Continuity Management System (BCMS) in accordance with ISO 22301. Below are some key benefits:

Comprehensive Understanding

  • ISO 22313:2020 provides in-depth guidance and clarification on the clauses and requirements specified in ISO 22301. This can offer organizations a better understanding of what is expected in a fully compliant BCMS.

Operational Resilience

  • By adhering to the best practices outlined in ISO 22313, organizations can fortify their operational resilience. This allows for quicker recovery from disruptions, thereby minimizing downtime and financial losses also.

Resource Optimization

  • The standard offers practical advice on how to allocate resources efficiently. Whether it’s human capital, technological assets, or financial investment, following ISO 22313 helps ensure that resources are optimally utilized for business continuity.
Improved Risk Management
  • ISO 22313 elaborates on the risk assessment and management processes, which is crucial for proactively identifying potential threats and vulnerabilities. Organizations can better prepare for and manage these risks, thereby protecting stakeholder interests.

Enhanced Communication

  • The guidance provided on developing a structured communication plan is invaluable. Effective communication ensures that employees, stakeholders, and third parties are well-informed, which is crucial before, during, and after a disruptive event.

Documentation Best Practices

  • Detailed advice on documentation ensures that all processes, policies, and procedures are well-recorded. This aids in both compliance checks and internal audits, making it easier for organizations to identify gaps and areas for improvement.

Regulatory Compliance

  • Following ISO 22313 can aid in demonstrating due diligence and compliance with legal and regulatory requirements related to business continuity, which is often a competitive advantage and may be obligatory in some sectors.

Stakeholder Confidence

  • An organization that follows best practices in business continuity is likely to instill greater confidence among its stakeholders, including clients, investors, as well as regulatory bodies.

Continuous Improvement

  • The guidelines include mechanisms for ongoing evaluation and improvement of the BCMS, thereby ensuring that the system remains effective and relevant in a changing business environment.

For certification bodies, understanding the intricacies of ISO 22313:2020 can be highly beneficial when assisting clients with ISO 22301 certifications. Your expertise in interpreting and applying the guidance from ISO 22313 can provide added value to the certification process, helping organizations not just achieve compliance but excel in their business continuity endeavors.

Who needs ISO 22313:2020?

ISO 22313:2020 Security and resilience is designed to assist a wide range of entities in implementing, maintaining, and improving a Business Continuity Management System (BCMS) in alignment with ISO 22301. Here are some categories of organizations and individuals who find it beneficial:

Organizations Implementing BCMS

  • Companies that are in the process of implementing a BCMS as per ISO 22301 will find ISO 22313:2020 valuable for understanding best practices, setting up processes, and ensuring operational resilience.

Organizations with Existing BCMS

  • Even organizations that already have a certified or established BCMS might use ISO 22313:2020 as a tool for continuous improvement, benchmarking, and refinement of their existing systems.

Consultants and Advisers

  • Professionals specializing in business continuity, risk management, and organizational resilience will find this guidance document useful for advising their clients effectively.
Certification Bodies
  • Entities that provide certification for ISO 22301 can use ISO 22313:2020 as a complementary tool to offer value-added services to clients. This guidance can help clarify and elaborate on the requirements of ISO 22301, thereby facilitating the certification process.

Internal Auditors

  • Those responsible for auditing the BCMS within an organization can use ISO 22313 to understand what to look for and how to evaluate the effectiveness of the system.

Regulatory Bodies

  • Authorities overseeing compliance in industries where business continuity is crucial may use ISO 22313:2020 to set guidelines or assess compliance during inspections.

Supply Chain Partners

  • Suppliers, vendors, and other entities that are part of an organization’s ecosystem can also be encouraged or required to align their own BCMS practices with those of the organization. Familiarity with ISO 22313 can help these partners meet expectations more effectively.

Educational Institutions

  • Universities and training centers offering courses in business management, risk management, or related fields might integrate insights from ISO 22313 into their curriculum.
Senior Management and Stakeholders
  • Executives, board members, and other decision-makers can use ISO 22313:2020 to understand what is involved in a BCMS and how to support it effectively through leadership and allocation of resources.

In summary, ISO 22313:2020 is not just for organizations looking to be certified under ISO 22301; it’s a comprehensive resource for any entity that aims to bolster its resilience and business continuity preparedness. The document offers useful guidelines that can be adapted to various organizational needs and contexts, thereby making it a versatile tool in the arsenal of business continuity as well as risk management.

At last, Pacific Certifications is accredited by ABIS, you need more support with ISO 22313:2020 Security and resilience, please contact us at +91-8595603096 or support@pacificcert.com

Also read: ISO 22316:2017 Security and resilience

Contact us to know more about ISO 22313:2020 Security and resilience

Related Certifications

Get in Touch

Email Address


Call Us