It is difficult to give a definition of business continuity. Although many definitions are made on this issue, each of them highlights a certain point of the process. However, if we try to give a general definition, in the event that a work is done in an organization in predetermined principles and rules, if this process is interrupted in some way, business continuity It may be called. From this point of view, the process, rules or decisions that can interfere with the interruptions in an organization can be called business continuity.
Interruptions in these definitions generally refer to events that occur outside the control of the organization. But sometimes an event under the knowledge or control of the organization may also create an interruption. For example, an arrangement to improve the organization's activities may lead to an unexpected outcome. Such events should also be considered in the context of business continuity.
An organization has identified a number of processes to carry out its activities without disrupting its operations, whether it be small or large. The basis of the business continuity studies is how much interruption of these processes can be removed, what will be done in order to eliminate the situation that causes disruption, and to restart the process, and how long it takes for the work to be done. If these identified issues are identified from the beginning and the application methods are explained, business continuity is ensured and the damages resulting therefrom are eliminated as soon as possible.
The first standard work on business continuity was initiated by the British Standards Institution (BSI) in 2003. However, these standards were then withdrawn and 2006-25999: 1 Business Continuity Management: Implementation Rules were published in 2006. These standards demonstrate the policies, procedures and conditions of business continuity management. BS 2007-25999: 2 Business Continuity Management: Requirements in 2007 address the critical points of business continuity. In 2012 these standards are ISO 22301: 2012 Business Continuity Management System standard and published by more than 150 countries.
After 2012, organizations with BS 25999 standard have converted this system into new standards.
One of the most effective systems in an organization ISO 22301 Business Continuity Management System'Dr. Generally, unless there is an interruption, its importance is not understood, but if it is interrupted and not managed well, it can cause serious losses in the organization.
In general, emergency plans that regulate the work to be carried out in the event of a disaster and business continuity are mixed together. However, while emergency plans only regulate a catastrophic situation, business continuity studies are carried out in every situation that prevents activities to be carried out properly outside of disaster situations. Therefore, while business continuity studies mainly involve strategies to prevent disruptions, contingency plans regulate post-disaster work. In other words, a sub-process of the Business Continuity Management System is considered to make an emergency clearance plan. In general, emergency clearance plans cover information technology studies.
Organizations operating in all sectors of ISO 22301 standards can be established regardless of whether they are large or small. Regardless of the transaction volumes or the number of employees they operate, each organization may install this system and ISO 22301 Business Continuity Management System Certificate You can get. Even large organizations can set up this system for a particular unit of their organization.
Thanks to this system, necessary plans are made and implemented in order to ensure the continuity of the work done and the organizations are prepared for what to do in case of an interruption. In this way, the effect of events that create disruptions is mitigated, critical functions are maintained during the interruption and reputation is gained against the organization rivals. In today's heavy competition environment, gaining image is a serious situation. The brand values of organizations increase and trust is created by customers.
Briefly ISO 22301 Business Continuity Management Systemensures that the organization is prepared when an event occurs that interrupts the activities of the organization. It is a documented management system to eliminate the effects of the event and to keep the process from where it left off.
These system standards, as in all quality systems in general, include the recognition of the organization, commitment of senior management, planning, determination of needs and expectations, allocation of resources, operation of the process, performance measurement, analysis and evaluation and regulatory and preventive activities.