Call us on 03450 21 21 51

SRM Solutions
Consultancy & Compliance

Business Continuity Planning

SRM’s consultants use their experience to develop a planned programme of actions to protect a business’s critical functions and enable it to continue or re-start with minimal disruption.

What is the challenge?

All businesses face threats. While few will ever have to deal with the potentially catastrophic impact of natural disasters and terrorist attacks (covered under Disaster Recovery Planning), every business does face the very real threat of software or hardware failure, sometimes as the result of deliberate and malicious attacks. Such incidents could disrupt everyday business function and, in a worst-case scenario, could bring an organisation to a complete standstill.

The general definition of BCP failure would be the loss of services, software, hardware failure, communications and/or the unavailability of critical personnel. The BCP is a considered strategic plan which details the specific processes and procedures that need to be put in place in the event of an unforeseen isolated incident.

What solution does SRM’s Business Continuity Planning service provide?

SRM can provide support and assistance at a variety of levels, based on the requirements of ISO22301. Every BCP is bespoke to an individual organisation. First of all, we get to know our clients’ business systems and key personnel. Next, we work with them to formulate a plan that will be activated by IT professionals and business managers in the event of a major failing of any or all of an organisation’s systems.

From providing a checklist that represents a baseline set of measures, through guiding our clients in strategic risk assessment workshops, we ultimately support, drive and manage the BCP process. Not only will this ensure that recovery time is minimal, but it also provides valuable reassurance to prospective customers and business partners by demonstrating a strong commitment to ensuring a safe and secure business environment.

Who is the service for?

All businesses need to have a BCP in place which anticipates the possibility of a breach being successful. While it is important to have a plan, however, it is equally vital to test and challenge it on an ongoing basis. This is best done by experts with breadth of experience across a wide range of businesses and sectors.

There are several variables, but an enhanced security management system, which provides a clear plan of action in the event of a breach, is a vital aspect of business security for all organisations. The ability to maintain the availability and integrity of a business in the event of a system interruption is fundamental to its growth and continued success.

Why SRM?

Our BCP service offers an unrivalled level of personal service and expertise combined with extensive experience of all sizes of business and levels of complexity. With the resource to help our clients build the best defences, we are also able to use a business-focused strategic overview to imagine the worst, ensuring that our clients are in a position to respond swiftly and appropriately in any given scenario.

Associated services

Disaster Recovery Planning

As experienced providers of DR planning services, SRM works with clients to prioritise the survival of the business and the resumption of normal working practices as soon as possible.

Retained Forensic & Incident Response (IR)

Ensuring you have access to Forensic Incident Response expertise is a proactive approach your organisation can take to information security.


At SRM we have developed VirtualCISO™ and VirtualISM™, which are totally bespoke services, providing as much or as little as required depending on the individual company.

Related articles

The Industrial Revolution v4.1: with increased opportunity comes increased vulnerability

If history teaches us one thing it is that there is no going back. It started with the First Industrial Revolution which used water and steam power to mechanise..

The A to E of cyber maturity

In a recent report, the Philippine government’s Department of Information and Communications Technology (created in 2016) outlined a scale of cyber resilience based on an A to E grading..

What we can all learn from the NHS response to WannaCry

To be truly resilient against potential attacks, it is not enough to simply look at patching the last one, but to anticipate the next. When commenting on the news..