A BCP your team can actually follow.
Complete, written business continuity documentation covering every critical function. Plain English, realistic recovery strategies, and clear ownership. Reviewed, signed off, and kept current.
40%
of businesses without a BCP never reopen after a major disruption
4 wks
typical time to produce a complete, signed-off BCP
100%
of plans reviewed and signed off by client leadership
ISO 22301
aligned documentation structure throughout
BCP documentation that works under pressure.
Business Impact Analysis
Every critical business function assessed for disruption impact. Revenue loss, regulatory exposure, and reputational risk quantified so recovery priorities reflect actual business needs rather than IT assumptions.
Recovery Strategy Development
Practical recovery strategies developed for each critical function. Strategies are realistic, costed, and achievable with your existing resources rather than aspirational plans that fall apart under pressure.
Full BCP Documentation
Complete, written BCP covering all critical functions. Plain English, structured so any team member can follow it under pressure without needing specialist knowledge or external support.
Roles and Responsibilities
Every role in the BCP clearly defined with named individuals and deputies. No ambiguity about who does what when the plan is activated. Ownership is explicit and accepted.
Communication Templates
Pre-written communication templates for staff, clients, suppliers, and regulators. Approved in advance so communications go out quickly and consistently during a disruption.
ISO 22301 and Cyber Essentials Alignment
BCP structured to satisfy ISO 22301, ISO 27001 Annex A.17, and cyber insurance requirements. Auditors and insurers receive documentation that meets their specific requirements.
From scoping to signed-off BCP.
Scoping and Stakeholder Interviews
We meet with your leadership team to understand your business, your critical functions, and what a disruption would cost you. Scope and priorities agreed before any documentation begins.
Business Impact Analysis
Every critical function assessed for disruption impact. Maximum tolerable downtime and minimum acceptable service levels defined for each function with your input.
Risk Assessment and Scenario Planning
Key risk scenarios identified and assessed. Likelihood and impact scored. Recovery strategies developed for each scenario and reviewed with your leadership team.
BCP Drafting and Review
Full BCP drafted covering all critical functions, recovery procedures, communication plans, and roles. Reviewed by your team and revised until accurate, practical, and accepted.
Leadership Sign-Off
Complete BCP presented to your leadership team. Ownership confirmed, priorities validated, and plan formally signed off. Any gaps identified at this stage are resolved before finalisation.
Handover, Training, and Storage
Key staff briefed on the plan and their responsibilities. BCP stored in an accessible location that remains available during an IT outage. Review schedule established.
BCP delivered across the UK.
Challenge: A Manchester law firm had no written BCP. Their professional indemnity insurer required evidence of business continuity planning at renewal, threatening a significant premium increase.
Outcome: Complete BCP produced within four weeks. Insurer satisfied at renewal. Premium held and coverage terms improved. ISO 27001 certification subsequently achieved.
Challenge: A Leeds financial services firm needed a BCP to satisfy FCA requirements and pass enterprise client due diligence. Their existing document was five years out of date.
Outcome: Current-state BCP produced, tested, and signed off by the board. FCA requirements satisfied. Three enterprise client contracts won where BCP was a prerequisite.
Challenge: A Birmingham healthcare provider needed a documented BCP to satisfy NHS Digital data security requirements and demonstrate resilience to commissioners.
Outcome: BCP produced and reviewed by clinical leadership. NHS Digital requirements satisfied. Commissioner confidence in service resilience significantly improved.
A written BCP your business can rely on.
We scope your critical functions, develop realistic recovery strategies, and produce documentation that satisfies ISO 22301, cyber insurance, and enterprise due diligence requirements. Free scoping call, no obligation.