I am making a start on the documents, and I have started with 01 Procedure for Document and Record Control.
In the “purpose and scope and users” section
We are doing both ISO 27001 and ISO 22301 together so do we:
- Take our Business Continuity Management System and leave ISMS to cover the two, or
- Put an “and” in between ISMS and BCMS so we include the two?
I hope this makes sense.
Look forward to your expert opinion