This register is intended to assist with development of an overall Business Continuity Management System to the requirements of ISO 22301:2012 / ISO 22301:2019 but can also be used by any organisations wishing to complete formal review and analysis of Critical Functions, Impact Analysis and Monitoring and Testing arrangements.

Register includes formal review and consideration of context including details of any assumptions as required by the ISO 22301 standard.

Listing of Critical Functions with automatic scoring mechanism to calculate Continuity Priority based on importance of the activity and recovery priority - detail of all the critical functions that are necessary for the provision of services. Required resumption time for each activity can also be stated as well as details of any dependencies and supporting resources, legislation and interested parties.

Separate business impact analysis where each critical function can be further reviewed in terms of potential disruption including calculation of disruption potential risk rating and details of control measures  / continuity arrangements and a residual risk rating. Consideration given to proactive measures that; a) reduce the likelihood of disruption, b) shorten the period of any disruption, and c) limit the impact of disruption on the Critical Functions.

This combined review of critical-functions and linked impact-analysis makes use of conditional formatting to highlight areas with high risk or high continuity priority.

A summary of monitoring and testing activities can also be completed to ensure any continuity arrangements are detailed including any renewal dates and other testing and checks are detailed.