Getting Started


After having a clearer understanding on the basics of BCM, how well do you think your organisation fare when benchmarked against the Singapore Standard SS 540:2008? To have an understanding if there is a strong resilience framework being implemented within the organization, try out the Gap Analysis. It identifies enterprise’s current risk gaps and suggest areas for improvement. The assessment is key to enabling enterprises to think through critical areas that may affect their business operations and trigger subsequent investigation into adopting Business Continuity measures.

When you complete the assessment, your score will allow you to map yourself onto a BCM Maturity matrix. This will show you your strengths and areas to improve in your ongoing journey to business continuity competency.

Click here to try out the Gap Analysis now!


ISO 22301:2012 has replaced SS 540:2008 since September 2014, after it was published in October 2012 (i.e. Singapore Standard SS ISO 22301 - Societal Security - Business Continuity Management - Requirements).

The standard specifies requirements for setting up and managing an effective Business Continuity Management System (BCMS).

A BCMS emphasises

  • the importance of understanding organisation's needs and the intent for establishing business continuity management policy and objectives,
  • implementing and operating controls and measures for managing an organisation's overall capability to manage disruptions, monitoring and reviewing BCM's performance and effectiveness; and,
  • continual improvement based on objective measurement.

A BCMS, like any other management system, has the following key components:

  1. a policy;
  2. people with defined responsibilities;
  3. management processes relating to
    1. policy;
    2. planning;
    3. implementation and operation;
    4. performance assessment;
    5. management review; and,
    6. improvement.
  4. documentation providing auditable evidence; and
  5. any business continuity management processes relevant to the organization.

Business continuity contributes to a more resilient society. The wider community and the impact of the organisation's environment on the organisation and therefore other organisations may need to be involved in the recovery process


There are various ways companies can consider when implementing BCM, depending on the scale of implementation, risk appetite and nature of risks and impacts.

The typical approach for Singapore companies would be:

  1. Send staff for training
  2. Seek support from the senior management
  3. Engage a competent BCM consultant
  4. Appoint a third-party auditor to certify the BCMS, including business continuity plan
  5. Apply for Government Assistance if you are going for ISO 22301

For more information on how to implement BCM, please contact us at