Training Module
Business Impact Analysis (BIA) & Critical Activities
Understand ISO 22301-aligned business impact analysis, critical activity identification, and time-based recovery requirements
Training Module
Business Impact Analysis (BIA) & Critical Activities
Understand ISO 22301-aligned business impact analysis, critical activity identification, and time-based recovery requirements
Training Module
Business Impact Analysis (BIA) & Critical Activities
Understand ISO 22301-aligned business impact analysis, critical activity identification, and time-based recovery requirements
Does your business impact analysis fail to guide effective business continuity design?
This training module teaches how to conduct ISO 22301‑aligned BIA, define critical activities and derive time‑based recovery requirements for decisions.
Does your business impact analysis fail to guide effective business continuity design?
This training module teaches how to conduct ISO 22301‑aligned BIA, define critical activities and derive time‑based recovery requirements for decisions.
Does your business impact analysis fail to guide effective business continuity design?
This training module teaches how to conduct ISO 22301‑aligned BIA, define critical activities and derive time‑based recovery requirements for decisions.
Training module overview
Training module overview
Training module overview
Many organisations treat BIA as a spreadsheet exercise: inconsistent criteria, unclear definitions of “critical”, and outputs that don’t translate into design choices or audit-ready justification. The result is friction between business and IT, continuity strategies that are disconnected from real impacts, and plans that are hard to maintain or defend.
This training module focuses on the continuity-specific logic of BIA: defining impact criteria and evaluation scales, identifying critical activities and dependencies, and deriving time-based requirements (e.g., MTPD/MAO, RTO, RPO and resource needs) that can be handed over cleanly to continuity strategies and continuity plans. It stays within BIA scope: it does not teach continuity strategy design or plan/exercise development; those are handled in the dedicated ISO 22301 modules.
Many organisations treat BIA as a spreadsheet exercise: inconsistent criteria, unclear definitions of “critical”, and outputs that don’t translate into design choices or audit-ready justification. The result is friction between business and IT, continuity strategies that are disconnected from real impacts, and plans that are hard to maintain or defend.
This training module focuses on the continuity-specific logic of BIA: defining impact criteria and evaluation scales, identifying critical activities and dependencies, and deriving time-based requirements (e.g., MTPD/MAO, RTO, RPO and resource needs) that can be handed over cleanly to continuity strategies and continuity plans. It stays within BIA scope: it does not teach continuity strategy design or plan/exercise development; those are handled in the dedicated ISO 22301 modules.
Applicable environments
This module applies to organisations implementing or operating a Business Continuity Management System (BCMS) in line with ISO 22301. It focuses on how the standard’s requirements are interpreted and applied in practice within real organisational contexts.
The content is relevant for organisations seeking certification as well as for those using ISO 22301 as a reference framework to structure responsibilities, processes, and controls in the BCM domain.
Target audience
Target audience
Target audience
People involved in designing, building, operating, or improving a BCMS aligned with ISO 22301
Executives and department heads accountable for BCMS effectiveness and performance
Those responsible for processes, policies, assets, risks, and controls related to business continuity management
Auditors of ISO 22301 who want to deepen their understanding of management-side best practices (not audit technique)
People involved in designing, building, operating, or improving a BCMS aligned with ISO 22301
Executives and department heads accountable for BCMS effectiveness and performance
Those responsible for processes, policies, assets, risks, and controls related to business continuity management
Auditors of ISO 22301 who want to deepen their understanding of management-side best practices (not audit technique)
Decision support
Is this module for you?
It is a good fit if you…
need clear, time-based continuity requirements instead of vague “criticality”.
want consistent criteria to identify critical activities and dependencies.
translate business impact into MTPD, RTO, and RPO decisions.
align business, IT, and continuity planning on shared assumptions.
need BIA outputs that stand up in audits and management review.
need clear, time-based continuity requirements instead of vague “criticality”.
want consistent criteria to identify critical activities and dependencies.
translate business impact into MTPD, RTO, and RPO decisions.
align business, IT, and continuity planning on shared assumptions.
need BIA outputs that stand up in audits and management review.
If most of the points above apply, this module is likely a good fit.
It may not be the best fit if you…
are looking for continuity strategy or recovery plan design.
want to run exercises, simulations, or crisis response training.
need tool-based BIA templates or spreadsheet walkthroughs.
already operate a stable, well-embedded ISO 22301 BIA practice.
are looking for continuity strategy or recovery plan design.
want to run exercises, simulations, or crisis response training.
need tool-based BIA templates or spreadsheet walkthroughs.
already operate a stable, well-embedded ISO 22301 BIA practice.
Agenda
Agenda
Agenda
Role of BIA within ISO 22301 continuity design
Defining impact criteria and evaluation logic
Identifying activities and determining “critical”
Dependencies and resource requirements
Time-based requirements and recovery parameters
Documented outputs and traceability
Technology as an enabler
Case-based workshop
Show detailed agenda...
Role of BIA within ISO 22301 continuity design
Defining impact criteria and evaluation logic
Identifying activities and determining “critical”
Dependencies and resource requirements
Time-based requirements and recovery parameters
Documented outputs and traceability
Technology as an enabler
Case-based workshop
Show detailed agenda...
Role of BIA within ISO 22301 continuity design
Defining impact criteria and evaluation logic
Identifying activities and determining “critical”
Dependencies and resource requirements
Time-based requirements and recovery parameters
Documented outputs and traceability
Technology as an enabler
Case-based workshop
Show detailed agenda...
Learning outcomes
Learning outcomes
Learning outcomes
Key outcomes
Define impact criteria that reflect organisational objectives and stakeholder needs
Structure activities and determine which are critical based on impact and time sensitivity
Map dependencies and resource needs to support recovery requirement derivation
Define impact criteria that reflect organisational objectives and stakeholder needs
Structure activities and determine which are critical based on impact and time sensitivity
Map dependencies and resource needs to support recovery requirement derivation
Additional capabilities
Derive time‑based recovery requirements (RTOs, RPOs) that drive continuity design
Produce maintainable BIA outputs that can be reviewed and updated over time
Communicate BIA results to stakeholders to inform decision‑making and assurance
Derive time‑based recovery requirements (RTOs, RPOs) that drive continuity design
Produce maintainable BIA outputs that can be reviewed and updated over time
Communicate BIA results to stakeholders to inform decision‑making and assurance
Additional benefits
Additional benefits
Additional benefits
Learning materials
Slide deck
Participant workbook
Templates & tools
Practical, reusable artefacts to apply the module directly to your organisation.
Impact criteria library
BIA worksheet template
Critical activities register template
Dependency mapping canvas template
Interview and validation guide
AI prompt set for BIA
Impact criteria library
BIA worksheet template
Critical activities register template
Dependency mapping canvas template
Interview and validation guide
AI prompt set for BIA
Confirmation
Certificate of completion
Module ID
HAM-BC-S-01
Domain
Audience
Manager
Language
English
Delivery
Live virtual
Duration
7 h
List price
CHF 550
Excl. VAT. VAT may apply depending on customer location and status.
Delivery & learning format
Delivery & learning format
Delivery & learning format
Virtual live teaching
This module is delivered live, with a strong focus on discussion, practical application, and direct interaction with the instructor.
Sessions work through realistic examples, clarify concepts in context, and apply methods directly to participants’ organisational realities.
Custom delivery options
For organisations with specific constraints or learning objectives, the module can be adapted in format or scope, including in-house delivery and contextualised case material.
Not sure if this module is right for you?
Not sure if this module is right for you?
Not sure if this module is right for you?
For an optimal learning experience
Preparation guidance
This module is designed as part of a modular training approach. Topics are deliberately distributed across modules and are not repeated in full, in order to avoid unnecessary redundancy. Each module is self-contained and can be taken on its own. Where prior knowledge or experience is helpful, this is indicated below so you can decide whether any preparation is useful for you.
For an optimal learning experience
Preparation guidance
This module is designed as part of a modular training approach. Topics are deliberately distributed across modules and are not repeated in full, in order to avoid unnecessary redundancy. Each module is self-contained and can be taken on its own. Where prior knowledge or experience is helpful, this is indicated below so you can decide whether any preparation is useful for you.
For an optimal learning experience
Preparation guidance
This module is designed as part of a modular training approach. Topics are deliberately distributed across modules and are not repeated in full, in order to avoid unnecessary redundancy. Each module is self-contained and can be taken on its own. Where prior knowledge or experience is helpful, this is indicated below so you can decide whether any preparation is useful for you.
Assumed background
This module assumes participants can work with management-system concepts and organisational process thinking. ISO 22301 clause knowledge is not required, but participants should be comfortable discussing service impacts, dependencies, and time constraints.
Helpful background includes:
Basic familiarity with process/service descriptions and ownership
Ability to discuss operational consequences of disruption (not risk methodology)
This module assumes participants can work with management-system concepts and organisational process thinking. ISO 22301 clause knowledge is not required, but participants should be comfortable discussing service impacts, dependencies, and time constraints.
Helpful background includes:
Basic familiarity with process/service descriptions and ownership
Ability to discuss operational consequences of disruption (not risk methodology)
Preparatory modules
Foundational modules (depending on background)
Useful if you are new to the underlying concepts or want a shared baseline before attending this module.
Risk Management Foundations
Learn the fundamentals of identifying, evaluating, treating, and monitoring risks and opportunities across management systems
7 h
Risk Management Foundations
Learn the fundamentals of identifying, evaluating, treating, and monitoring risks and opportunities across management systems
7 h
Risk Management Foundations
Learn the fundamentals of identifying, evaluating, treating, and monitoring risks and opportunities across management systems
7 h
Supporting modules (optional)
Helpful if you want to deepen related skills, but not required to participate effectively.
System Foundations
Understand organisational context, stakeholders, and system boundaries to build and operate effective management systems
7 h
System Foundations
Understand organisational context, stakeholders, and system boundaries to build and operate effective management systems
7 h
System Foundations
Understand organisational context, stakeholders, and system boundaries to build and operate effective management systems
7 h
Continuous learning
Follow-up modules
Continuous learning
Follow-up modules
Continuous learning
Follow-up modules
After completion of this module, the following modules are ideal to further deepen your competence. If you are looking for a structured learning path, modules can also be taken as part of a professional track.
Risk Management Foundations
Learn the fundamentals of identifying, evaluating, treating, and monitoring risks and opportunities across management systems
Duration
7 h
List price
CHF 550
View module
Risk Management Foundations
Learn the fundamentals of identifying, evaluating, treating, and monitoring risks and opportunities across management systems
Duration
7 h
List price
CHF 550
View module
Risk Management Foundations
Learn the fundamentals of identifying, evaluating, treating, and monitoring risks and opportunities across management systems
Duration
7 h
List price
CHF 550
View module
Monitoring & Measurement Foundations
Learn the fundamentals of measurement methods, data quality checks, and measurement registers for consistent performance data
Duration
7 h
List price
CHF 550
View module
Monitoring & Measurement Foundations
Learn the fundamentals of measurement methods, data quality checks, and measurement registers for consistent performance data
Duration
7 h
List price
CHF 550
View module
Monitoring & Measurement Foundations
Learn the fundamentals of measurement methods, data quality checks, and measurement registers for consistent performance data
Duration
7 h
List price
CHF 550
View module
Performance Evaluation Foundations
Learn the fundamentals of analysing performance results, interpreting trends and deviations, and summarising evaluation outputs for management decisions
Duration
7 h
List price
CHF 550
View module
Performance Evaluation Foundations
Learn the fundamentals of analysing performance results, interpreting trends and deviations, and summarising evaluation outputs for management decisions
Duration
7 h
List price
CHF 550
View module
Performance Evaluation Foundations
Learn the fundamentals of analysing performance results, interpreting trends and deviations, and summarising evaluation outputs for management decisions
Duration
7 h
List price
CHF 550
View module
Management Review
Learn the fundamentals of planning, conducting, and documenting management reviews using integrated inputs and decision-focused outputs
Duration
7 h
List price
CHF 550
View module
Management Review
Learn the fundamentals of planning, conducting, and documenting management reviews using integrated inputs and decision-focused outputs
Duration
7 h
List price
CHF 550
View module
Management Review
Learn the fundamentals of planning, conducting, and documenting management reviews using integrated inputs and decision-focused outputs
Duration
7 h
List price
CHF 550
View module
Improvement Management
Understand corrective actions, root cause analysis, action tracking, and effectiveness verification in management systems
Duration
7 h
List price
CHF 550
View module
Improvement Management
Understand corrective actions, root cause analysis, action tracking, and effectiveness verification in management systems
Duration
7 h
List price
CHF 550
View module
Improvement Management
Understand corrective actions, root cause analysis, action tracking, and effectiveness verification in management systems
Duration
7 h
List price
CHF 550
View module
Ready to improve your management systems?
We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.
Ready to improve your management systems?
We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.
Ready to improve your management systems?
We support continuous improvement by embedding ISO requirements into everyday practice and daily operations.