ITIL V3 and ISO/IEC 20000



Similar documents
ITIL V3 and ASL Sound Guidance for Application Management and Application Development

ITIL 2011 Summary of Updates

White Paper September 2011

ISO/IEC Part 1 the next edition

Knowledge Management 101 Better Support Decisions, Faster

Service Transition. ITIL is a registered trade mark of AXELOS Limited.. The Swirl logo is a trade mark of AXELOS Limited.. 1

IT service management

EXIN IT Service Management Foundation based on ISO/IEC 20000

How To Understand The Differences Between The 2005 And 2011 Editions Of Itil 20000

Domenico Raguseo. IT Governance e Business Technology (approfondimenti su ITIL)

Applying ITIL v3 Best Practices

The ITIL Foundation Examination

Introduction to the ISO/IEC Series

The ITIL Foundation Examination

The ITIL v.3. Foundation Examination

IRCA Briefing note ISO/IEC : 2011

This is a sample chapter from A Manager's Guide to Service Management. To read more and buy, visit BSI British

ITIL V3 Service Lifecycle Key Inputs and Outputs

The ITIL Foundation Examination

The ITIL v.3 Foundation Examination

1 Why should monitoring and measuring be used when trying to improve services?

John Kacmarynski TLG Learning. ITIL History Benefits of Implementing ITIL Integrated Service Lifecycle Approach and Processes

ITIL Managing Digital Information Assets

The ITIL Foundation Examination

Tutorial: Towards better managed Grids. IT Service Management best practices based on ITIL

ITIL and BiSL : sound guidance for business-it alignment from a business perspective

Introduction to ITIL. Author : George Ritchie, Serio Ltd george dot- ritchie at- seriosoft.com

ISO/IEC Part 1 the next edition. Lynda Cooper project editor for ISO20000 part 1

ITIL V3 AND THE SERVICE LIFECYCLE PART I THE MISSING COMPONENT

ITIL Service Lifecycle Stream

The ITIL Foundation Examination

CA Service Desk Manager

Introduction: ITIL Version 3 and the ITIL Process Map V3

1. Which of the following best means Combination of Internal & External Sourcing? 3. Which of the following CANNOT be stored and managed by a tool?

Sample Exam. IT Service Management Foundation based on ISO/IEC 20000

ITIL Intermediate Capability Stream:

Understanding ITIL Service Portfolio Management and the Service Catalog. An approach for implementing effective service lifecycle management

iso20000templates.com

How To Manage A Service Transition

ITIL & CIM Benefits of a dialog

The ITIL Foundation Examination

ITIL V3 - Managing Application and Infrastructure Changes

Free ITIL v.3. Foundation. Exam Sample Paper 3. You have 1 hour to complete all 40 Questions. You must get 26 or more correct to pass

ISO20000: What it is and how it relates to ITIL v3

I.T. Service Management

Building a Service Catalog: A Practical Approach to get to an Actionable State with your Service Catalog - Part 1 15 October 2008

Frameworks for IT Management

Benefits to the Quality Management System in implementing an IT Service Management Standard ISO/IEC

Gateway review guidebook. for project owners and review teams

The ITIL Foundation Examination

Service Support Kasse Initiatives, LLC. ITIL Configuration Management - 1. version 2.0

ISO/IEC ITIL Service Management V.2 V s V.3 Project ACE Andy Evans Programme Director and Strategic Programme Advisor

OGC s Official Accreditor

HP Service Manager software

Understanding the difference between Configuration Management, Asset Management, Inventory Management, Service Management and the CMDB

Roles within ITIL V3. Contents

Service Management. A framework for providing worlds class IT services

ITIL by Test-king. Exam code: ITIL-F. Exam name: ITIL Foundation. Version 15.0

The ITIL Foundation Examination Sample Paper A, version 5.1

ITIL Capacity Management:

ITIL : the basics. Valerie Arraj, Compliance Process Partners LLC. White Paper July 2013

Information for Schools and Colleges. So you want to. Know more about the BS EN ISO 9000:2000 family of quality management system standards

Preparation Guide. EXIN IT Service Management Associate Bridge based on ISO/IEC 20000

How To Compare Itil To Togaf

Managing successful change: IT service transformation at HMRC. AXELOS.com. The Stationery Office 2012

ITIL: What is it? How does ITIL link to COBIT and ISO 17799?

The ITIL v.3 Foundation Examination

Which statement about Emergency Change Advisory Board (ECAB) is CORRECT?

EXIN.Passguide.EX0-001.v by.SAM.424q. Exam Code: EX Exam Name: ITIL Foundation (syllabus 2011) Exam

Availability Management: A CA Service Management Process Map

Select the right configuration management database to establish a platform for effective service management.

ISO 27001: Information Security and the Road to Certification

White Paper: AlfaPeople ITSM This whitepaper discusses how ITIL 3.0 can benefit your business.

The Altiris CMDB BECAUSE YOU HAVE A BUSINESS TO RUN, NOT JUST AN OPERATING SYSTEM

Copyright 11/1/2010 BMC Software, Inc 1

Service Delivery Processes. Control Processes Configuration Management Change Management. Resolution Processes

ITIL V3 - The Future Is Here

Improving Service Asset and Configuration Management with CA Process Maps

Preparation Guide. EXIN IT Service Management Associate based on ISO/IEC 20000

Information Technology Infrastructure Library (ITIL) Relative to CMII (Rev B)

IT Service Management

Implement a unified approach to service quality management.

Extend the value of your service desk and integrate ITIL processes with IBM Tivoli Change and Configuration Management Database.

WHITE PAPER IT SERVICE MANAGEMENT IT SERVICE DESIGN 101

IT Organisation in Change

ITIL A guide to service asset and configuration management

ISO/IEC 27001:2013 webinar

WHITE PAPER. iet ITSM Enables Enhanced Service Management

become a member (It's Free. Visit

Moving from BS to ISO The new international standard for business continuity management systems. Transition Guide

Business Process Management The Key to ITIL Success

September 16, 2008 Why IT Service Management Should Matter To You

Control Costs with a 4-Speed SACM Transmission

International Workshop Agreement 2 Quality Management Systems Guidelines for the application of ISO 9001:2000 on education.

The CMDB: The Brain Behind IT Business Value

Tutorial on Service Level Management in e- Infrastructures State of the Art and Future Challenges. The FedSMProject Thomas Schaaf & Owen Appleton

An ITIL-based Solution to Record and Retrieve Tacit and Explicit Knowledge based on Giga Knowledge Management Framework in the SME Companies

Transcription:

For IT Service Management ITIL V3 and ISO/IEC 20000 Jenny Dugmore and Sharon Taylor Alignment White Paper March 2008

ITIL V3 and ISO/IEC 20000 Background For some years the close relationship between ITIL V2 and BS 15000, then ISO/IEC 20000 has benefited both sets of documents and those that relied on them. Rules on the development of UK standards meant that the alignment between BS 15000 and ITIL was one of spirit and intent and not of direct control by either OGC (owners of ITIL) or BSI (owners of BS 15000). Editorial rules also meant that BS 15000 was also written so that best practices other than ITIL could be used to achieve the requirements of BS 15000. Very similar editorial rules apply to international standards so that the standards cannot include references to ITIL. There were documented differences between ITIL V2 and ISO/IEC 20000. 1 However, the most common route to achieving the requirements of ISO/ IEC 20000 is still via the use of ITIL advice, to the extent that ISO/IEC 20000 is frequently referred to as the ITIL standard and ISO/IEC 20000 is often adopted by service providers that wish to demonstrate they have adopted ITIL advice in an effective manner. Support for closer alignment between ISO/IEC 20000 and ITIL was expressed during the fast tracking of BS 15000 and during subsequent discussions by the international standards committee responsible for the development of ISO/IEC 20000. ITIL V3 was published in May 2007 and over time will replace ITIL V2. One of the objectives for the ITIL V3 project was to retain, and where appropriate, improve alignment. There are less differences between ISO/IEC 20000 and ITIL V3 than with ITIL V2. Changes from ITIL V2 to ITIL V3 include the service lifecycle approach in ITIL V3, which is a closer alignment to the service lifecycle approach of ISO/IEC 20000 (ITIL V2 was rooted in separate processes, grouped according to how they may be found in an organisation). This document This document outlines the differences between ITIL V3 and ISO/IEC 20000, from the perspective of each clause in the standard where the core 5 ITIL books either do not cover it or cover it differently. It does not cover changes that mean ITIL V3 is closer aligned to ISO/IEC 20000 than was ITIL V2. The table included within this white paper is an ISO/IEC 20000-1 centric document. It identifies clauses where there are notable differences between ISO/IEC 20000 and ITIL V3 that are not simply due to the different purposes of the two sets of documents. Few differences in terminology 2 are referenced, as there is no requirement in ISO/IEC 20000-1 for a service provider to use a specific set of terms, even though some are defined in clause 2 of the standard. For example, a service provider aiming to achieve ISO/IEC 20000 may use completely different names for processes, roles and responsibilities than used in ISO/IEC 20000. It does not cover topics in ITIL V3 that are out of the current scope of ISO/ IEC 20000:2005. 1 BIP 0030 Edition 2, Achieving ISO/IEC 20000: Management decisions and documentation, Pub BSI. 2 ISO/ WG25 has agreement in principle for the use of ITIL terms in ISO/IEC 20000, without reference to the terms being UK Crown copyright.

ITIL V3 and ISO/IEC 20000 3 ITIL V3 and the differences ISO/IEC 20000: 2005 clause number and text 2 Terms and definitions Activity: Not defined in the standard Asset: Not defined in the standard 2.5 configuration management database (CMDB) database containing all the relevant details of each configuration item and details of the important relationships between them 2.7 incident: any event which is not part of the standard operation of a service and which causes or may cause an interruption to, or a reduction in, the quality of that service NOTE This may include request questions such as How do I...? calls. 6.1 Service level management The full range of services to be provided together with the corresponding service level targets and workload characteristics shall be agreed by the parties and recorded. 6.3 Service continuity and availability management ITIL V3 and the differences Activity: In ITIL V3 the meaning is: a set of actions designed to achieve a particular result. Activities are usually defined as part of processes and plans and are documented in procedures. NOTE: The term activity does not have a special meaning in ISO/IEC 20000. However, as this term is used in international standards such as ISO/IEC 12207/15288/15504 there may be changes to ISO/ IEC 20000 Ed. 2, which is currently in early draft. Asset: In ITIL V3 assets is used as either capabilities, resources or both, depending on the context. Assets include anything that could contribute to the delivery of a service. Assets can be one of: management, organization, process, knowledge, people, information, applications, infrastructure and financial capital. This does not match the current use of the term asset in ISO/IEC 20000, where the word is used as for financial asset, but only for assets used in delivery of the service. NOTE: See comments on service asset against clause 9. In ITIL V3 a CMDB is used to store configuration records throughout their lifecycle. ITIL V3 also uses the term configuration management system (CMS) as a set of databases, tools used to manage configuration data and data such as incident, problem employee data locations users. CMS is therefore not simply a new name for a CMDB, as a CMS may contain several CMDBs as well as tools and a wide range of data types collected for many different purposes. From the perspective of the standard CMS is most easily envisioned as a logical grouping of service management data and tools. It is very unlikely to be a single physical data store or even a single logical data store or a single tool. ISO/IEC 20000 does not specify where all the data used in service management should be stored or what name should be given to the (logical) store, so use of the term CMS is not a barrier to achieving 20K s requirements. NOTE: Although the use of CMS does not present a barrier to achieving the requirements of ISO/ IEC 20000, when reading the standard a service provider who has adopted the use of CMS could interpret all requirements that refer to configuration management data base (or CMDB) as referring to CMS. It will be advisable when doing this to also consider what type of data store, tool or type of data is appropriate as CMS may be wider than CMDB. This term is used differently in ITIL V3. NOTE 1: See comments on event management against clause 6.3. NOTE 2: See comments on incidents against clause 8.2. Part 1 refers to the need for a definitive source of information on the services etc, and does not require that this is given a special name. That ITIL V2 generally referred to this as Catalogue and ITIL V3 uses Portfolio is not significant in achieving the requirements in Part 1 as the service provider may use any appropriate term, as long it refers to a definitive source of information. ITIL V3 describes the subject of clause 6.3 in separate processes. Both are referenced in several books but are covered in more detail in the Service Design book. ITIL V2 also described them as separate processes. The requirements are both in clause 6.3 because there was strong similarity between the two sets of requirements. As ISO/IEC 20000 does not require the two processes to be combined, even though they are in a single clause. This was not a barrier to achieving the requirements with ITIL V2 and is not with ITIL V3. Event management in ITIL V3 is partly covered in clause 6.3, as part of availability management and partly in clause 8.2 a part of incident management. NOTE: As previously, a single process or activity in ITIL V3 mapping to more than one clause in ISO/IEC 20000 is not a barrier to achieving the requirements. The reverse is also the case.

ITIL V3 and ISO/IEC 20000 ITIL V3 and the differences ISO/IEC 20000: 2005 clause number and text ITIL V3 and the differences 8 Resolution processes Many international standards refer to a broad-based category of defects or similar terms. However, ITIL V3 draws a more detailed distinction: Events: Neither defects nor requests, but actions that are monitored in order to detect deviations from normal behaviour referred to as exceptions. Incidents: Defects that have degraded or disrupted services, that are managed so that there is the minimum of business impact. This may not actually resolve the underlying defect. Problems: Root cause analysis to identify and resolve incidents that have occurred and the prevention of potential defects. Requests: These are typically small, low risk changes that can be dealt with in timescales similar to problems and incidents. 8.2 Incident management 8.3 Problem management Many organisations currently treat requests as a form of incident. The approach in ITIL V3 differs from ISO/IEC 20000, in which service requests may be managed by the incident management process. For the purpose of achieving the requirements of ISO/IEC 20000 requests of any type, such as requests for access, may be managed by: a) the incident management process, as in ITIL V2 (clause 8.2) b) by separate processes such as request fulfilment and access management (clause 8.2) c) or even as part of change management (clause 9.2). NOTE: Different types of event may be managed in different ITIL processes and contribute to different clauses in the standard. For example, incident management, capacity management, security management. Although adopting the ITIL V3 approach would not prevent a service provider achieving the requirements of ISO/IEC 20000-1, this is one of the differences that may cause some confusion. In ISO/IEC 20000 both of the words known and error are used in their normal sense as found in commonly used English language dictionaries, (i.e. defect that is recognised to exist). ITIL defines known error as: Problem that has a documented root cause and a workaround Known errors are created and managed throughout their lifecycle by [the] problem management [process]. NOTE: Because the standard does not use known error with a special meaning, a service provider may choose to ignore both the ITIL definition and the advice linked to that definition, i.e. a known error is simply a defect that is recognised to exist, without reference to whether there root cause has been established or not. Event management in ITIL V3 is partly covered in availability management (clause 6.3) and incident management (clause 8.2). Request fulfilment in ITIL V3 is partly covered by incident management (clause 8.2).

ITIL V3 and ISO/IEC 20000 ITIL V3 and the differences ISO/IEC 20000: 2005 clause number and text 9.1 Configuration management NOTE: Financial asset accounting falls outside the scope of this section. 9.1 Continued (penultimate para of clause) All configuration items shall be uniquely identifiable and recorded in a CMDB to which update access shall be strictly controlled. The CMDB shall be actively managed and verified to ensure its reliability and accuracy. The status of configuration items, their versions, location, related changes and problems and associated documentation shall be visible to those who require it. ITIL V3 and the differences ITL V3 refers to service asset and configuration management (also referred to as service asset management including configuration management ). In this context the term asset is used in a very broad sense as either capabilities, resources or both, depending on the context. This subject is mainly covered in the service transition book. Configuration management manages service assets from acquisition to disposal and provides a configuration model of services, assets and infrastructure, and their relationships The differences in terminology and what is meant by service asset and configuration management requires a brief explanation of how the changes in ITIL still provides a route to clause 9.1. CMDB, CIs and assets are all referred to in ISO/IEC20000: Clause 2: Configuration management database (CMDB): database containing all the relevant details of each configuration item and details of the important relationships between them Clause 2: Request for change: form or screen used to record details of a request for a change to any configuration item within a service or infrastructure Clause 6.3: Service continuity plans, contact lists and the configuration management database shall be available when normal office access is prevented. Clause 6.4: There shall be clear policies and processes for: budgeting, and accounting for all components including IT assets Clause 9.1: There shall be a policy on what is defined as a configuration item and its constituent components. The service provider shall define the interface to financial asset accounting processes. NOTE: Financial asset accounting falls outside the scope of this section. In ITIL V3 service assets are typically shared by more than one customer. These may be a conventional asset with a financial book value (or an inventory item without a financial book value). However, it may be something intangible like a skill set, knowledge or process. These may have a value, as intellectual property or good will has a value, but it will normally be shown in financial accounts separately from tangible assets. To quote ITIL V3: Services are provided by the deployment of service assets and service management acts as an operating system for service assets by deploying them to provide a service. NOTE The terminology and grouping in ITIL V3 is different to both ITIL V2 and ISO/IEC 20000 (neither use the term service asset ). This is likely to be seen as one of the big differences and may need to be described in more detail. The difference may cause some concerns on the interpretation of the standard but does not present an actual barrier to achieving the requirements of either clause 6.4 or clause 9.1. The use of the term service asset and how the role of service assets in service management is compatible with a focus on service as well as process that is a characteristic of the standard. The standard requires that information is held and managed in a logical and secure way, with ease of access to those that need the information. The standard does not require that all the information is held in a single physical data store, although all stores of data should be understood and where necessary linked so that they can be managed as a single logical data store to improve efficiency. ITIL V3 uses service knowledge management system (SKMS) and configuration management system (CMS). NOTE The changes make little difference to achieving the requirements of the standard as there is no requirement in clause 9.1 that a single physical data store is used. As and when this is realised it may actually simplify using ITIL V3 as a route to achieving the requirements. 10 Release process Release and deployment management are mainly covered in the service transition book. It additionally covers deployment approaches and knowledge transfer in more detail, plus early life support. The term release and deployment management in ITL V3 is used where release management is used in the standard. The different titles are the main difference between the two, with ITIL V3 effectively using Release as if it did not include deployment, and the standard using release to include deployment. Requirements for deployment are covered in clause 10, primarily by the last paragraph of requirements. Although the standard includes requirements for planning for handover, early running and the actual handover, there are a few requirements for the actual handover in the standard. refer to related change requests, known Please see comments against clause 8.2 about the use of the words known error. errors and problems.

ITIL V3 and ISO/IEC 20000 The Authors Dr Jenny Dugmore Jenny is a consultant working for Service Matters and the technical expert on ISO/IEC 20000 for the UK Accreditation Service. She chairs the international committee responsible for the ISO/IEC 20000 series and the BSI s service management committee. Jenny is the co-author of the BSI s Achieving ISO/IEC 20000 series, A Managers Guide to Service Management and IT Service Management Selfassessment Workbook. Sharon Taylor Sharon Taylor is owner of the Aspect Group Inc and Chief Architect, OGC IT Service Management Practices. Permission to reproduce extracts from BS ISO/IEC 20000-1: 2005 is granted by BSI. British Standards can be obtained in PDF format from the BSI online shop: http://www.bsi-global.com/ en/shop/ or by contacting BSI Customer Services for hardcopies: Tel: +44 (0)20 8996 9001, Email: mailto:cservices@bsi-global.com Sourced by TSO and published on www.best-management-practice.com Our White Paper series should not be taken as constituting advice of any sort and no liability is accepted for any loss resulting from use of or reliance on its content. While every effort is made to ensure the accuracy and reliability of the information, TSO cannot accept responsibility for errors, omissions or inaccuracies. Content, diagrams, logo s, jackets are correct at time of going to press but may be subject to change without notice. Copyright OGC, TSO and BSI. Reproduction in full or part is prohibited without prior consent from the Author. ITIL is a Registered Trade Mark, and a Registered Community Trade Mark of the Office of Government Commerce, and is Registered in the U.S. Patent and Trademark Office. The swirl logo is a Trade Mark of the Office of Government Commerce. 5135 3/08

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information