Implementation and operation of a BCMS according to ISO 22301 at an IT company

Implementation BCMS | ISO 22301


A pandemic, fires in data centers and floods have shown many companies that a business continuity management system is a sensible investment. Strong competition and customer requirements from the KRITIS industry motivated our client to decide to implement a BCMS according to ISO 22301.


Together with the management, the scope and objectives of the BCMS were defined. On this basis, a BC program was created to support project management. As a basic document, a guideline was first written that included the objectives of the BCMS.

Interviews were conducted together with the departments, which formed the basis of the business impact analysis (BIA) and the GAP analysis.
After performing the risk analysis, the appropriate BC strategies were described, and business continuity plans and other guidelines along the BC lifecycle were created. Together with the client’s staff, these business continuity plans were reviewed and tested for effectiveness.Finally, the results were presented to management.


With the BCMS implemented, the company can react correctly to crises and emergencies and take appropriate steps for emergency operations.Thus, agreed SLAs and further contractual conditions can be safely met.
Our client was able to increase its image compared to competitors, as well as gain partnerships and additional customers.