ISO/AWI 22301

Security and resilience — Business continuity management systems — Requirements

General information

Current stage: 10.99 Effective date: Dec 5, 2025

Originator: ISO

Owner: ISO/TC 292

Type: International Standard

Scope

This document specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions when they arise.
The requirements specified in this document are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization's operating environment and complexity.
This document is applicable to all types and sizes of organizations that:
a) implement, maintain and improve a BCMS;
b) seek to ensure conformity with stated business continuity policy;
c) need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption;
d) seek to enhance their resilience through the effective application of the BCMS.
This document can be used to assess an organization's ability to meet its own business continuity needs and obligations.

Life cycle

PREVIOUSLY

PUBLISHED
ISO 22301:2019

PUBLISHED
ISO 22301:2019/Amd 1:2024

NOW

PROJECT
ISO/AWI 22301
10.99 New project approved
Dec 5, 2025