As one of only a few Danish outsourcing partners, we have just achieved ISO 22301 certification – the international standard for Business Continuity Management. This is a milestone we are proud of. But more importantly, it is a step that makes a real difference for our customers and their ability to run a secure and stable business.Why does ISO 22301 matter in 2026?
“Because the world has changed,” explains Thomas Lyngkær Boe, CISO at Unit IT, and elaborates:
Today, IT is not just about avoiding failures – it is about being able to handle them when they occur. That is exactly what ISO 22301 delivers: resilience. The ability to act quickly and restore operations as fast as possible, even when the unexpected happens.
We have worked with security and compliance for many years with a strong focus on prevention. ISO 22301 adds another layer: What do we do if something still goes wrong? How quickly can we respond? And how little will it impact our customers’ business?
In high-pressure situations, having a plan is everything
Technology is integrated into nearly every business process, and protecting that technology has become essential to running a business. That is why it is critical to be able to identify and declare a crisis quickly. To establish a clear leadership structure immediately. To communicate in a controlled way – both internally and externally. And to restore critical services within defined targets.
“It may sound simple. But when the pressure is at its highest, that is exactly what makes the difference. With ISO 22301, we demonstrate that we can make the complex manageable.
Because when a company faces a crisis, technology is rarely the hardest part. It is the decisions, accountability, coordination, and speed. With our setup, we can quickly gain an overview, activate the right people, and follow a plan that has already been tested – and we keep training, again and again,” explains Thomas Lyngkær Boe.
Why is ISO 22301 particularly relevant for Danish companies right now?
“Because the requirements have intensified significantly. More companies are subject to regulations such as Executive Order 260, DORA, CER, and NIS2. This means they must not only document their own resilience but also ensure that their suppliers can do the same.
For our customers, this simplifies some very complex tasks. When they need to go through audits, document compliance, or participate in tenders, they can rely on the fact that we already have the structures and documentation in place. That significantly reduces their own complexity,” says Thomas Lyngkær Boe.
Compliance is ultimately about resilience – not just regulation
Sometimes, the value of compliance gets lost in paragraphs and regulations. But in reality, compliance is about something entirely different from legal texts. It is about anticipating challenges and having a plan that makes it possible to respond effectively.
“ISO 22301 is fundamentally about one thing: Trust.
Our customers outsource critical functions to us. That comes with responsibility. They need to trust that we are not only stable in day-to-day operations but also strong when things become difficult. And that is exactly what this certification proves: we have documented that we can handle crises in a structured, fast, and professional way.
This does not just protect our operations it protects our customers’ businesses, their reputation, and their customers.
We are proud of the certification. There are not many in Denmark who have it. But the most important thing is not the certificate itself. The most important thing is that we can create peace of mind. That we enable our customers to run their business with greater security and less complexity – and at the same time give them a stronger position in a world that is only becoming more unpredictable. That is what we are truly proud of,” explains Thomas Lyngkær Boe.