Asset management guidelines



Similar documents
BMC Remedyforce Asset Management. Frequently Asked Questions

Next-Generation IT Asset Management: Transform IT with Data-Driven ITAM

8 Tips for Winning the IT Asset Management Challenge START

5 CMDB GOOD PRACTICES

Commercial Software Licensing

Integration Technologies Group (ITG) ITIL V3 Service Asset and Configuration Management Assessment Robert R. Vespe Page 1 of 19

Cracking the Code on Software License Management

The CMDB: The Brain Behind IT Business Value

Software Asset Management High Risk, High Reward

Service Asset & Configuration Management PinkVERIFY

The World of IT Financial Management

IBM Tivoli Asset Management for IT

Service Catalog. it s Managed Plan Service Catalog

White Paper November BMC Best Practice Process Flows for Asset Management and ITIL Configuration Management

Deploying the CMDB for Change & Configuration Management

Validating Enterprise Systems: A Practical Guide

agility made possible

Improving Service Asset and Configuration Management with CA Process Maps

How To Manage It Asset Management On Peoplesoft.Com

Peregrine. AssetCenter. Product Documentation. Asset Tracking solution. Part No. DAC-441-EN38

SapphireIMS 4.0 Asset Management Feature Specification

WHITE PAPER. Extending the Reach of the Help Desk With Web-based Asset Management Will Significantly Improve Your Support Operations

Proven deployments across different Industry verticals; Being used by leading brands

8 Key Requirements of an IT Governance, Risk and Compliance Solution

The Value of ITAM To IT Service Management. Presented by Daryl Frost. Copyright Burswood Information Solutions Limited 2015

Tecknodreams Software Consulting Pvt. Ltd. Managing global IT operations using SapphireIMS

Title: Enterprise Information Technology Service Management (ITSM)

IT Asset Management. ProPath. Office of Information and Technology

Select the right configuration management database to establish a platform for effective service management.

1 Why should monitoring and measuring be used when trying to improve services?

Automated IT Asset Management Maximize organizational value using BMC Track-It! WHITE PAPER

Program Lifecycle Methodology Version 1.7

PEOPLESOFT IT ASSET MANAGEMENT

ICT Category Sub Category Description Architecture and Design

How to Deliver Measurable Business Value with the Enterprise CMDB

IAITAM s Certified Hardware Asset Management Professional Course Syllabus

Project Charter Updated

Critical Issues in IT Asset Management

KIFINTI. Kifinti White Paper. IT Asset Management Four Steps To Implementing an Effective IT Asset Management Strategy. Paul Kelsey 4/1/2012

IT ASSET MANAGEMENT SELECTED BEST PRACTICES. Sherry Irwin

Network Assessment Services

Unlock the code IT Asset Management

N e t w o r k E n g i n e e r Position Description

Configuration Management. Process Guide

Dynamic Service Desk. Unified IT Management. Solution Overview

Software Asset Management on System z

How IT Can Help Companies Make Better, Faster Decisions

SOLUTION BRIEF: CA IT ASSET MANAGER. How can I reduce IT asset costs to address my organization s budget pressures?

Service Transition. ITIL is a registered trade mark of AXELOS Limited.. The Swirl logo is a trade mark of AXELOS Limited.. 1

A Provance White Paper

WHITE PAPER. Automated IT Asset Management Maximize Organizational Value Using Numara Track-It! p: f:

Oakland County Department of Information Technology Project Scope and Approach

Accelerate your mission with GTSI Integration Services

PHASE 3: PLANNING PHASE

Infrastructure Configuration Management Techniques. Neal R. Firth VIZIM Worldwide, Inc.

IBM Maximo Asset Management for IT

SUMMIT ASSET MANAGEMENT DATASHEET

How To Protect A Publisher From Self Audit

How To Use Qqsguard At The University Of Minneapolis

Software Inventory Best Practices. Issued: April 26, Approved: Bruce F Gordon 04/26/2016 Chairperson Date

Oakland County Department of Information Technology Project Scope and Approach

SACM and CMDB Strategy and Roadmap. David Lowe ActionableITSM.com March 20, 2012

SOLUTION WHITE PAPER. Align Change and Incident Management with Business Priorities

Understanding ITIL Service Portfolio Management and the Service Catalog. An approach for implementing effective service lifecycle management

Software Asset Management: A view from two perspectives from the audit world

with Managing RSA the Lifecycle of Key Manager RSA Streamlining Security Operations Data Loss Prevention Solutions RSA Solution Brief

IT Security & Compliance. On Time. On Budget. On Demand.

7 Practical insights for IT Asset Management

CA IT Client Manager Asset Inventory and Discovery

Asentinel Telecom Expense Management (TEM)

Best Practices for Consolidation Projects

Software Asset Management (SAM) and ITIL Service Management - together driving efficiency

Mapping the Technical Dependencies of Information Assets

Innovation and Technology Department

Integrating Project Management and Service Management

Control Costs with a 4-Speed SACM Transmission

Best Practices for Implementing Software Asset Management

IIA Super Conference

The Power to Take Control of Software Assets

IBM Infrastructure Resource Management Services Offering Overview. IBM Global Services

Altiris Asset Management Suite 7.1 from Symantec

Minder. simplifying IT. All-in-one solution to monitor Network, Server, Application & Log Data

Configuration control ensures that any changes to CIs are authorized and implemented in a controlled manner.

Managing service delivery

Development, Acquisition, Implementation, and Maintenance of Application Systems

Software Licensing and Pricing Best Practices. Stewart Buchanan June 3, 2009 Gartner Webinar

Secrets to a Successful ITIL Implementation

ITIL Version 3.0 (V.3) Service Transition Guidelines By Braun Tacon

Project Management Plan for

PRESIDIO MANAGED SERVICES OVERVIEW JULY 2013

Service Catalogue. Creation Date

ITIL, the CMS, and You BEST PRACTICES WHITE PAPER

Information Technology Security Review April 16, 2012

Transcription:

Asset management guidelines 1

IT asset management (ITAM) overview Objective Provide a single, integrated view of agency assets in order to allow agencies to identify the asset location and assess the potential data risk if an asset is reported as compromised or lost. ITAM Defined Information Technology Infrastructure Library (ITIL) describes IT Asset Management (ITAM) as all of the infrastructure and processes necessary for the effective management, control and protection of the hardware & software IT assets within an organization, throughout all stages of their lifecycle. Scope Physical: Deals with the physical characteristics of hardware & software in support of planning, deployment, operation, support and service; installation/use data. Physical Inventory management Asset discovery Asset tracking Refresh Financial Procurement Budget Cost control Investment Strategy Contractual Asset compliance RFP preparation Contract maintenance Vendor management SLA management 2

Value of ITAM Compliance Audit License compliance audits by vendors are increasing, making it important to minimize the financial penalties associated with the oversubscription of licenses Audit & Accountability Incident Response Software Asset Management Monitoring and Detection A faster response time for identifying and locating assets with sensitive data that have been compromised Asset Control Standardization Standardized methodology for collecting and reporting on software and hardware assets Limit Risk Identify the number assets that contain sensitive data and validate that the appropriate security controls are in-place Risk Management Security Posture Security Understand what assets are in use and what rogue devices could potentially introduce security risks to the organization Asset Acquisition Cost Savings Reduces duplicate asset purchases by agency departments, and avoids needless overpayment of license fees Goal: Deploy an evolving asset inventory that will enable agencies to continually improve their informed decision-making, and risk mitigation capabilities. 3

Where to start Key Accomplishment Develop an approach for collecting and maintaining the agency's IT asset inventory and data Planning Data Collection Analysis Identify where IT assets are located Develop a process to collect IT assets Analyze the IT asset inventory Establish an IT asset management team Identify key stakeholders and asset repositories Define the ITAM scope Define asset management standards and data attributes Establish a centralized, single source asset repository for the collection of IT assets Establish access controls for the asset repository Define performance metrics, set targets and monitor progress Develop data collection methodology and process to expand the SCEIS asset inventory Refine the asset management standards to include additional data attributes Normalize data as it is entered into the asset repository Develop an asset management decision framework to assist in making clear investment choices in IT assets Ongoing IT Asset Management Define an IT asset management strategy and refresh period Automate the centralized, single source of truth for IT assets Perform internal compliance and enterprise architecture reviews Monitor hardware asset changes Provide IT asset management training for employees Please note that the following process is a suggested approach to asset management and may differ agency from agency 4

Phase 1: Define the key components of ITAM Planning Data Collection Analysis Step 1: Resources and scoping Step 2: Standardization Step 3: Metrics Identify roles and responsibilities Define asset categories and attributes Establish asset management metrics Establish project management structure Identify key contacts Conduct scoping meetings with key asset owners Gather an asset inventory list from the department that handles purchasing or deployment of IT assets (i.e. procurement department or help desk) Develop understanding of current IT environment and existing inventory reports Define an authoritative data source for IT assets in a structured and manageable manner Key points of contact Meeting schedule Asset management scope Establish an asset repository for physical information for each IT asset Establish standard asset category guidelines (e.g., servers, mobile devices) Conduct workshops to determine the current ITAM situation for each asset category (e.g. software, infrastructure, desktop, telecom, and telephony) Standardize the naming convention for each asset category and asset class. Key Outputs Centralized asset repository Standardized asset build guidelines Develop metrics to measure and demonstrate tangible benefits/results o Percentage of assets that contain sensitive information o Percentage of laptops under 3, 4, 5 years old o Percentage of assets with asset owners from x department o Percentage of assets discovered not in the State procurement system o Percentage of duplicate assets o Percentage of unknown assets Asset management metrics 5

Phase 1: Data standardization template Asset Inventory Template Use an MS-Excel template for the manual collection of asset data if no automated capability exists. Create an MS-Excel workbook and define individual worksheets for each asset category (e.g., Network, Desktop, Servers). If necessary, combine multiple data collection spreadsheets into one master spreadsheet that will represent the asset inventory. Category: LAN WAN Desktops Servers Printers Mobile Devices Network Appliances Network Sensors Wireless Other Class: Step 1: Define Categories Step 2: Define classes USB Devices Cell Phones Laptops PDAs Tablets Other Define all the asset classification-types needed to accurately and comprehensively describe the assets found within the category within the agency s environment. Data Attributes: Attribute Value: Step 3: Define Data Attributes Step 4: Define Attribute Value Manufacturer Model Serial Number Network Name Operating System IP Address Applications Data Type Owner Contact Info Location Asset Tag Checked out Checked in Yes/ No Select the data attributes required to accurately and uniquely describe the individual asset classification. Carefully define the data attribute s value. Use pull-down menus whenever possible to minimize inconstant responses. 6

Phase 2: Develop a process to collect IT assets Planning Data Collection Analysis Step 4: Data gathering Step 5: Refine and normalize Perform data collection All processes from asset data collection through final report generation/ distribution should be detailed and repeatable. Limit the initial asset management phase to testing processes (one asset category and asset type): o Use asset data that is well documented "so that the entire data collection, rationalization and reporting process can be verified for accuracy and inconsistencies eliminated o Increase the asset data category collection incrementally through each iteration Complete data rationalization to eliminate inconsistencies Improve sustainability, availability, and quality of asset information Normalize the collected asset data if multiple asset data sources are used Perform a data quality analysis to verify that: o Asset data collected is accurate and complete o Reports accurately reflect the asset data counts and metadata Key Outputs Asset collection plan Normalization and data rationalization procedures Quality analysis asset management procedures 7

Phase 3: Analyze the IT asset inventory data Planning Data Collection Analysis Step 6: Ongoing IT Asset Management Decision framework Integration Sustainment Develop a framework to improve the management of assets Track and trend metrics for stakeholder review o Where are assets located? o How does the asset provide value? o How to derive (and demonstrate) maximum value from IT investments? o How to manage risks and security across the asset base? o What are the total number of laptops in my environment that contain sensitive data and have encryption? Identify opportunities to integrate automated asset inventory solutions Integration an automated IT asset management tool with other IT solutions (e.g., patch management, SIEM, helpdesk) Define the data refresh cycle and ongoing asset management activities Provide ongoing capabilities to track and maintain an integrated IT asset inventory Define the data refresh cycle: o Industry typically refreshes asset data every 3 months Continually refresh the IT asset inventory data by updating the existing asset data and capturing new asset information Asset management decision framework Metric dashboard for the business Key Outputs Automated asset management tool implementation plan Periodic baseline reports 8

Lessons learned Why do ITAM Initiatives Fail? Lack of executive mandate to comply with ITAM processes Attempting to satisfy multiple constituents: fiscal versus operational interests Lack of authority or will to enforce asset management process and policy compliance Poor or nonexistent change management lead to a loss of ITAM database integrity Expecting a tool to solve a process problem Reports and data requirements poorly defined, often without data architect expertise Manual data entry, collection and integration processes are frequently incomplete, inaccurate and poor quality causing additional data reconciliation effort Key Learning Points ITAM must be a solution to a business problem ITAM is more process and organization than technology Implement in a staged approach Metrics are needed to measure and demonstrate benefits/results Tangible results are highly dependent on management of integrated asset, contract, vendor and financial portfolios data standards are a challenge Change management is critical to maintaining database integrity Automate ITAM data collection, normalization and rationalization processes as much as possible Lack of a mechanism for maintaining manually-entered data (e.g., metadata, warranty, contract) Little or no tracking and reporting of business benefits Lack of defined standards for server builds, configurations, and other infrastructure 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information