The course helps you to:

• Identify, monitor and, where possible control, the risks from threats an organisation faces from any unplanned business interruptions.

• Prepare and plan how to effectively put in place measures to address those risks.

 

This course provides delegates with the knowledge, tools, and techniques to:

• Carry out internal audits of the processes within the BCMS in ways which verify compliance but also identify significant opportunities for improvement.

• Assess and report on the conformance of a Business Continuity Management Systems (BCMS) from an audit perspective.

• Effectively implement the processes and support the continual improvement of the BCMS based on the ISO 22301 standard.

 

The training is compatible with ISO/IEC 27031: 2011: Guidelines for Information and Communication Technology (ICT) Readiness for Business Continuity.

 

N.B It is not the intent of ISO 22301 to imply uniformity in the structure of a MS, but for an organization to design a MS that is appropriate to its needs, and meets the requirements of its interested parties.

 

Course Purpose

 

To ensure that delegates have a clear and practical understanding of how to plan and undertake BCMS internal audits in line with ISO 22301 requirements.

​

Who Should Attend

 

• Newly appointed BCMS Managers who need core skills and knowledge for this important role.

• Employees who will be carrying internal audits.

• Business continuity consultants

• Management system auditors who wish to audit BCMS to ISO 22301

• Those who want to: achieve and maintain ISO 22301 certification; improve business continuity in their organization.

​

Learning Objectives

 

On completion of training, you will be able to:

• Explain the purpose and content of ISO 22301 

• Describe the purpose of a BCMS, including the principles, processes, and techniques used for the management and assessment of a BCM system

• Interpret the scope and requirements of ISO 22301, in the context of a BCMS audit

• Describe the responsibilities of an internal auditor

• Describe the role of internal audit in the maintenance and improvement of BCMS, in accordance with ISO 22301

• Plan, prepare for, and conduct an internal audit

• Gather objective evidence through observation, interviewing and sampling of documents and records

• Complete each stage of the internal audit process, by understanding the requirements of ISO 22301 within the context of an audit

• Prepare the audit report

• Identify areas that need improvement, and make recommendations for same, to maintain an effective BCMS in line with international best practice.

​

Business Benefits from Implementation of ISO 22301-compliant BCMS

​

Having a business continuity management systems (BCMS) in place helps you to understand critical business processes and the impact of unplanned disruption.

 

By developing and maintaining a BCMS you:

• Improve your risk profile, so you will benefit from reduced insurance premiums and comply with the expectations of regulators, business partners and other key stakeholders

• Reduce the financial impact of incidents and/or disruptions

• Increase the survival chances of your organization and its employees when a disruption occurs.

 

By training internal resources, such as internal auditors, to support and maintain your BCMS, you improve your organization’s resilience, maintain strong recovery capability processes, and ensure your continued growth and sustainability.

​

Customer Benefits of Implementing an Effective ISO 22301-Compliant BCMS

​

Increased confidence in:

• How your business manages business continuity risks

• Knowing that minimum acceptable levels of product and service delivery will be maintained in case the supplier, adopting the standard, deals with a business continuity incident.

​

Key topics

 

• A Business Continuity Management System and the role of audit

• Overview of ISO 22301 from an internal audit perspective

• Establishing an audit programme appropriate to ISO 22301

• Selecting and training internal auditors

• Planning an audit

• Performing an audit

• Reporting audit findings

• Verifying corrective actions

• Dealing with difficult audit situations

• Auditing for compliance with ISO 22301

• Auditing for continual improvement

​

Prerequisites

 

To derive maximum benefit from this course, it is recommended that participants receive prior training by attending the ISO 22301 Foundation Training Course.

​

Training Approach

​

The course covers both theory and practice:​

• Training comprises presentations, workshops and role-play exercises.

• Slide-based training sessions are supported by examples

• Preparation for the Foundation exam

• Practice test (mock exam) simulating the certification exam.

​

Examination

​

Following are details of the ISO 22301 Internal Auditor exam:

• Duration              45 min.

• Format                Closed book

• Questions           30 multiple choice

• Pass mark           70% (21 correct answers).

​

Competence Domains

 

The exam covers the following domains:​

• Fundamental principles and concepts of business continuity

• Business Continuity Management System (BCMS)

• Fundamental Audit Concepts and Principles

• Preparation of an internal ISO 22301 audit

• Conducting an internal ISO 22301 audit

• Closing an internal ISO 22301 audit

• Managing an internal ISO 22301 audit programme.

​

Certification

​

An ISO 22301 Internal Auditor certificate will be issued to delegates who successfully pass the exam.

​​

General Course Information

​

For general course information please click on the link here.

​

N.B. Please read our Terms & Conditions (T&Cs) and ask for clarifications, if any, before booking your training event.

​

Book now to reserve an on-site or online instructor-led training event of your choice.

​

For more details about our:

• List of training courses please click here.

• Consulting services please click here

• Workshops please click here.

​

For queries, including non-obligation quotes, please contact us.

​