BCM policy gap analysis
I am intending to perform a BCM policy gap analysis - which of the documents would be best suited for this purpose. I have the GPG 2018 an ISO 22301 and have referenced the aforementioned.
Assign topic to the user
ISO 22301 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 22301 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 22301 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
If you have referenced both GPG 2018 an ISO 22301 in your BCM policy, then you have to perform the gap analysis considering both documents. Additionally, you also have to consider the legal requirements (e.g., laws, regulations, contracts, etc.) your organization must fulfill.
Regarding content, GPG 2018 and ISO 22301 are quite similar, but ISO 22301 is a worldwide recognized standard, while GPG is a Good Practice Guideline, so using ISO 22301 would be a better option to provide more assurance that your policy is aligned with the worldwide approach for business continuity management.
Comment as guest or Sign in
Sep 25, 2019