ISO 22301 2019 Business Continuity Audit Tool

ISO 22301 2019 is a business continuity management standard. Use it to ensure
that operations continue and that products and services are delivered at predefined
levels, that brands and value creating activities are protected, and that the reputations
and interests of stakeholders are safeguarded whenever business disruptions occur
.

This page will introduce and describe our new ISO 22301 2019 Internal Audit Tool.
However, it will not present the entire product. Instead, it will explain our approach
and it will show you a detailed sample of our work (see PDF). Once you've studied
our audit approach, we hope you'll purchase our complete internal audit process.


ISO 22301 2019 BUSINESS CONTINUITY AUDIT TOOL

TABLE OF CONTENTS (TITLE 41)

1

Introduction to business continuity audit tool

3

2

Mini business continuity audit tool

JPG

3

Audit profile and summary

10

4

Assess how well you conform to context requirements

12

5

Assess how well you conform to leadership requirements

19

6

Assess how well you conform to planning requirements

22

7

Assess how well you conform to support requirements

PDF

8

Assess how well you conform to operational requirements

36

9

Assess how well you conform to evaluation requirements

57

10

Assess how well you conform to improvement requirements

66

 


 

Purpose of audit
ISO 22301 2019 section 9.2.1 expects you to “conduct internal audits at planned
intervals to provide information on whether the BCMS conforms to the requirements
of this document”
(i.e., the ISO 22301 standard). Our audit tool will help you meet this
requirement. It will show you how to determine whether or not your BCMS conforms
to the requirements of the ISO 22301 2019 standard.
Audit approach
Our audit tool will pinpoint the gaps that exist between ISO's business continuity
standard and your organization's practices and processes. Once you've filled all the
gaps, you can be sure that you conform to (or comply with) ISO 22301 2019 and that
you've done everything you can to enhance the effectiveness of your organization's
business continuity practices and processes.
Audit questions
Since ISO 22301 has seven main sections, our audit tool uses
seven questionnaires. These questionnaires will allow you to:
  4.  Assess how well you conform to context requirements.
  5.  Assess how well you conform to leadership requirements.
  6.  Assess how well you conform to planning requirements.
  7.  Assess how well you conform to support requirements.
  8.  Assess how well you conform to operational requirements.
  9.  Assess how well you conform to evaluation requirements.
 10. Assess how well you conform to improvement requirements.
Audit structure
Our audit tool starts with section 4 because the ISO 22301 business continuity
requirements start in section 4. We've preserved this numbering system in order
to make it easy to cross-reference the original ISO 22301 standard with our material.
However, at the detailed level we have added a numbering system that you won’t find
in the original standard. We have sequentially numbered all questions within each of
the 7 sections (4 to 10) that make up the core of the standard. We have done this in
order to make it easier for you to work with our questionnaires.

In addition, we use paragraph indents to distinguish between general questions
and specific questions. This approach makes it easy to see how our questionnaires
are structured. In most cases, a general question is immediately followed by several
specific questions which help clarify what the general question means. If you’re not
sure what a general question is asking, just keep reading. In most cases, the more
detailed questions will clarify what the general questions are trying to ask.
Audit method
For each question, two answers are possible: YES or NO, (to save space we use Y, N).
A YES answer means you’re in compliance with the standard and a NO answer means
you’re not in compliance. NO answers identify gaps that exist between the standard
and your business continuity practices and processes.

Once you’ve completed all seven questionnaires, study our questions, your NO
answers, and your observations and conclusions and then use this information to
formulate actions or steps that need to be taken in order to bring your organization's
business continuity practices and processes into compliance with the standard. Use
this information to develop your own unique ISO 22301 2019 Business Continuity
Compliance Plan
.

Before you start your audit, please fill out the form entitled Profile of ISO 22301
Audit Project
(section 3). First record the name of the organization being audited,
its address, and a brief description of the actual scope or focus of the audit. Also
record the names of your audit team members and your start date. Once you’ve
completed the audit, use the same form to record when the audit was finished,
who reviewed the audit and when, and any review comments (if any).

You can also summarize your audit results quantitatively if you wish using
a form entitled Summary of ISO 22301 Audit Results (see section 3). The idea
here is to measure how compliant your business continuity practices and
processes actually are. And if you carry out regular audits, you can also
use our approach to measure whether or not your business continuity
practices and processes are improving over time.
Mini audit
We’ve also provided a mini audit questionnaire (section 2) that you can use
to carry out a quick business continuity audit or to decide what general areas
need more detailed attention. If you’re not clear about what one of these general
questions is talking about, simply go to our more detailed audit tool and study
the relevant section.

Attention

Now that you understand our approach, please consider
purchasing Title 41: ISO 22301 2019 Business Continuity Audit Tool.

If you purchase our ISO 22301 Business Continuity Audit Tool, you'll
find that it's integrated, detailed, exhaustive, and easy to understand.
You'll find that we've worked hard to create a high quality product.
In fact, we
guarantee the quality of our business continuity audit tool.
Title 41 is 70 pages long and comes in pdf and MS doc file formats.

See our ISO 22301 2019 Business Continuity Audit Sample (PDF)

Place an Order 

Check our Prices

See our License


MORE ISO 22301 PAGES

Introduction to Business Continuity Management

Plain English Business Continuity Management Definitions

How to Establish a Business Continuity Management System

Brief Overview of ISO 22301 2019 Business Continuity Standard

The Structure of ISO’s Business Continuity Management Standard

ISO 22301 2019 Business Continuity Management in Plain English

ISO 22301 2012 Business Continuity Management in Plain English

How to do ISO 22301 2019 Business Continuity Gap Analysis

Plain English Business Continuity Management Checklist

Topics that Business Continuity Plans Should Address

Mini ISO 22301 2019 Business Continuity Audit Tool

Knowledge and Skill Auditors Should Have

Our Plain English Approach to ISO 22301


Home Page

Our Library

A to Z Index

Customers

How to Order

Our Products

Our Prices

Guarantee

Praxiom Research Group Limited            help@praxiom.com           780-461-4514

Updated on October 5, 2020. First published on November 8, 2007.

Legal Restrictions on the Use of this Page
Thank you for visiting this web page. You are, of course, welcome to view our material as often
as you wish, free of charge. And as long as you keep intact all copyright notices, you are also
welcome to print or make one copy of this page for your own personal, noncommercial,
home use. But you are not legally authorized to print or produce additional copies or to
copy and paste any of our material onto another web site or to republish it in any way.

Copyright © 2007-2020 by Praxiom Research Group Limited. All Rights Reserved.

Praxiom Research