A gap analysis is a vital part of evaluating an organisation's Business Continuity capabilities and preparedness as it identifies any areas of weakness (or gaps) within the Business Continuity Management System (BCMS). These weaknesses may increase the likelihood or impact of disruptive incidents. By carrying out regular gap analyses, the BCMS is more robust and the resilience of the organisation will be improved as a result, ensuring Business Continuity arrangements keep pace with the ever-changing business environment.
A gap analysis can be carried out on its own or as part of an audit depending on the maturity of the organisation's BCMS.
PlanB Consulting are proud to have a Director, Kim Maclean-Bristol, who is not only a lead auditor for ISO 22301 but also sits on the British Standards Institute’s BCM/1, the BSI Committee responsible for Business Continuity and developing the UK’s input for the standard. Our other Director, Charlie, is a Fellow of the BCI and often contributes to the development of the Good Practice Guidelines, this ensures that when we carry out an audit on any organisation’s BCMS, we can not only ensure that it is aligned with the ISO and the BCI Good Practice Guidelines (GPG), but we can also advise on the latest changes to the ISO and GPG, thus ensuring that your organisation is up to date after the audit.
During an audit, we will identify the existing level of Business Continuity within the organisation compare this against pre-agreed standards; PlanB Consulting has developed a Business Continuity Maturity Model, which compares the capabilities of our clients against industry standards and best practice, showing clear steps for improvement. The results are collated and presented in to a report which gives an overall score and a list of recommendations that should be carried out. This provides a useful comparison against international standards and sets a clear programme for improvement; if carried out, this will in turn improve Business Continuity arrangements within your organisation and enhance the overall resilience and robustness.
At PlanB Consulting we can audit the full BCMS of the entire organisation or we can focus on a particular aspect or area. Our clients have found this to be very helpful as sometimes only a certain area has experienced a large change or may be getting brought into the scope of the BCMS. For whatever your reason to audit a single area or the entire organisation, PlanB Consulting are able to provide specialist services ensuring that each organisation benefits from the work we carry out.
ISO22301 Internal Audit
At PlanB Consulting, we carry out an internal audit that is aligned to the ISO22301 standard. This means that if you choose to go for certification, your organisation will be able to use the internal audit as a guide to the steps that need to be taken to meet the certification criteria.
For organisations that have a mature BCMS in place and may already have both Stage 1 and 2 ISO22301 certification, an internal audit carried out by PlanB can offer recommendations on how to improve your BCMS and ensure that any future survellience or a re-certification will pass without any non-conformities, as well as improving your overall organisational resilience.