304 129 1MB
English Pages 98 Year 2012
ITIL® 2011 At a Glance John O. Long
SpringerBriefs in Computer Science
Series Editors Stan Zdonik Peng Ning Shashi Shekhar Jonathan Katz Xindong Wu Lakhmi C. Jain David Padua Xuemin Shen Borko Furht VS Subrahmanian Martial Hebert Katsushi Ikeuchi Bruno Siciliano
For further volumes: http://www.springer.com/series/10028
John O. Long
ITIL® 2011 At a Glance
John O. Long Raleigh, NC, USA [email protected]
ISSN 2191-5768 ISSN 2191-5776 (electronic) ISBN 978-1-4614-3896-0 ISBN 978-1-4614-3897-7 (eBook) DOI 10.1007/978-1-4614-3897-7 Springer New York Heidelberg Dordrecht London Library of Congress Control Number: 2012939343 © The Author 2012 This work is subject to copyright. All rights are reserved by the Publisher, whether the whole or part of the material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storage and retrieval, electronic adaptation, computer software, or by similar or dissimilar methodology now known or hereafter developed. Exempted from this legal reservation are brief excerpts in connection with reviews or scholarly analysis or material supplied specifically for the purpose of being entered and executed on a computer system, for exclusive use by the purchaser of the work. Duplication of this publication or parts thereof is permitted only under the provisions of the Copyright Law of the Publisher’s location, in its current version, and permission for use must always be obtained from Springer. Permissions for use may be obtained through RightsLink at the Copyright Clearance Center. Violations are liable to prosecution under the respective Copyright Law. The use of general descriptive names, registered names, trademarks, service marks, etc. in this publication does not imply, even in the absence of a specific statement, that such names are exempt from the relevant protective laws and regulations and therefore free for general use. While the advice and information in this book are believed to be true and accurate at the date of publication, neither the authors nor the editors nor the publisher can accept any legal responsibility for any errors or omissions that may be made. The publisher makes no warranty, express or implied, with respect to the material contained herein. Printed on acid-free paper Springer is part of Springer Science+Business Media (www.springer.com)
Copyright and Legal Information ITIL® is a Registered Trade Mark, and a Registered Community Trade Mark of the Office of Government Commerce, and is registered in the U.S. Patent and Trademark Office. ITIL® Glossaries/Acronyms © Crown Copyright Office of Government Commerce. Reproduced with the permission of the Controller of HMSO and the Office of Government Commerce. BPMN workflow diagrams created using BizAgi Process Modeler by BizAgi Ltd. This book is currently under consideration by publishers. This book may only be distributed by the author for evaluation purposes.
Table of Contents Introduction............................................................................... 1 Purpose .................................................................................. 1 Audience ................................................................................ 1 Organization of the Book ........................................................ 1 For more information .............................................................. 2 List of ITIL Processes............................................................... 3 Service Strategy ....................................................................... 5 Overview Diagram .................................................................. 6 Service Strategy Key Concepts .............................................. 7 Strategy Management for IT Services ................................... 12 Architecture Considerations .................................................. 13 Service Portfolio Management .............................................. 14 Financial Management for IT Services .................................. 16 Architecture Considerations .................................................. 18 Demand Management .......................................................... 20 Architecture Considerations .................................................. 21 Business Relationship Management ..................................... 22 Architecture Considerations .................................................. 23 Other Practices ..................................................................... 24 Service Design ........................................................................ 25 Brief Description ................................................................... 25 Service Design Key Concepts............................................... 27 Design Coordination ............................................................. 28 Architecture Considerations .................................................. 31 Service Catalog Management ............................................... 32 Service Level Management................................................... 34 Capacity Management .......................................................... 36 Availability Management ....................................................... 40 IT Service Continuity Management ....................................... 44 Information Security Management ........................................ 46
viii
Table of Contents
Supplier Management ...........................................................48 Other Practices .....................................................................50 Additional Service Design Roles ...........................................50 Service Transition...................................................................51 Service Transition Key Concepts ..........................................52 Service Asset and Configuration Management .....................56 Change Management ...........................................................60 Release and Deployment Management ................................62 Service Validation and Testing ..............................................64 Transition Planning and Support ...........................................66 Knowledge Management ......................................................68 Change Evaluation................................................................70 Other Practices .....................................................................72 Additional Service Transition Roles ....................................... 72 Service Operation ...................................................................73 Service Operation Key Concepts ..........................................75 Event Management ...............................................................78 Incident Management ...........................................................80 Request Fulfillment ...............................................................82 Problem Management ...........................................................84 Access Management ............................................................86 Other Practices .....................................................................88 Service Operation Functions .................................................88 Additional Service Operation Roles.......................................90 Continual Service Improvement ............................................91 Seven-Step Improvement Process ........................................94 Additional CSI Roles .............................................................95
1
Introduction Purpose This book is designed as a quick reference for ITIL® 2011. It is not intended as an overview of ITIL® 2011 but merely as a memory jogger. It is suggested that you first familiarize yourself with the ITIL® 2011 documentation before using this book. This book contains references to more detailed material found in ITIL® 2011. Audience This book is intended to be used by anyone involved in planning, consulting, implementing, or testing an ITIL® 2011 implementation. Organization of the Book This book summarizes each of the ITIL® 2011 books. Each book in the ITIL® 2011 series represents a single stage in the lifecycle of an IT service. The first and last books in the series, Service Strategy and Continual Service Improvement, do not contain rigorously-defined processes, but instead describe a set of practices that may be used during those stages of the service lifecycle. The second, third, and fourth books in the series, Service Design, Service Transition, and Service Operation, contain rigorously-defined processes. The subsequent chapters in this book each summarize one of the ITIL® 2011 books. The Service Strategy and Continual Service Improvement chapters contain the following structure: x x x x
Brief Description of the Stage Overview Diagram of the Stage Key Concepts of the Stage Processes
Each process section within a chapter is structured in the following way: x
Process Purpose – The rationale for the process
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_1, © The Author 2012
2 x x x x
ITIL® 2011 At a Glance
Overview Diagram – Shows all triggers, inputs, outputs, activities, and roles for the process Key Concepts – Various diagrams for describing important concepts and a list of key terms BPMN Workflow – The high-level workflow for the ITIL activities cast in very basic BPMN (Business Process Modeling Notation) Architecture Considerations – Changes that could be made to the process if a rigorously-defined ITSM architecture was needed. This is the view of the author based on inconsistencies and issues found with implementing ITIL 2011.
For more information The author may be contacted at [email protected]
3
List of ITIL Processes Process name Access Management Availability Management Business Relationship Management Capacity Management
Acronym ACC AVM
ITIL Book Operation Design
What’s new in ITIL 2011
BRM
Strategy
New process
CAP
Design
Change Evaluation
CHE
Transition
Change Management
CHA
Transition
Demand Management Design Coordination Event Management Financial Management for IT Services Incident Management IT Service Continuity Management Knowledge Management Problem Management
DEM DES EVE
Strategy Design Operation
Previously known as “Evaluation” Build and Test Authorization separate from Deployment authorization Newly defined activities New process Workflow improved
FIN
Strategy
Newly defined activities
INC
Operation
SCO
Design
KNO
Transition
PRB
Operation
Release and Deployment Management Request Fulfillment Service Asset and Configuration Management Service Catalog Management Service Level Management
RDM
Transition
REQ
Operation
SAC
Transition
SCA
Design
SLM
Design
Some activities consolidated into Deployment Workflow improved
Workflow improved
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_2, © The Author 2012
4 Service Portfolio Management Service Validation and Testing Seven-Step Improvement Strategy Management for IT Services Supplier Management Transition Planning and Support
ITIL® 2011 At a Glance
SPM
Strategy
Newly defined activities
SVT
Transition
SSI
CSI
Workflow improved
STM
Strategy
New process
SUP
Design
New repository for data
TPS
Transition
5
Service Strategy Brief Description Service Strategy describes an IT organization’s high-level approach to providing services. First, the IT organization must identify the market for its services. This, in turn, drives the identification of services offerings as well as the strategic assets that will constitute those services. Envisioned services will be added to the service portfolio. These identified services will continue to be pursued until they are finally chartered for design (and development), which moves those services into the Service Design stage. Supporting this overall activity is the need to determine the IT organization’s overall approach to providing services. This may include internal providers, external providers, a shared approach, preferred providers, etc. In addition, several practices play a part in determining the overall service strategy, including financial management, demand management, and risk management.
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_3, © The Author 2012
6
ITIL® 2011 At a Glance
Overview Diagram
Strategy Management for IT Services
Business Relationship Management
IT Customers
Service Portfolio Management
Supporting Processes and Practices Financial Management
Demand Management
Risk Management
Key Rectangle with gray back ground - Process Rectangle with white back ground – Practice
Service strategy defines a number of processes and practices
7
ITIL® 2011 At a Glance
Service Strategy Key Concepts Service Design Package and Other Service Artifacts
Service Strategy
Service Design
Service Transition
Service Operation
Service Design Package
Statement of Requirements (SOR)
Service Acceptance Criteria (SAC)
Service Level Requirements (SLR)
Service Level Targets
Contain severy thing that defines the service through each stage of the service lifecycle.
The service design package is used throughout the service lifecycle
8
ITIL® 2011 At a Glance
Types of Services Business unit Business process
Business process
Service Level Agreements
Operational Level Agreements
Core service
Core service Underpinning Contracts
Business services
Supporting service
Infrastructure service
Supporting service
Supporting service Service Supplier
Infrastructure service
IT Organization
An IT organization provides core services, supporting services, and infrastructure services
9
ITIL® 2011 At a Glance
Service Providers The Business Business Unit
Business Unit
Business Unit
Business Unit
Internal service providers Type I service provider
External Business
Type II service provider
External service providers Type III service provider
There are three types of service providers
10
ITIL® 2011 At a Glance
Service Packages, Service Level Packages, and Lines of Service Customer 1 (pattern of business activity)
Customer 2 (pattern of business activity)
Service level package 2
Service level package 1
Service package 1
Service package 2 Core service
Supporting service
Supporting service
Line of Service (LOS)
A line of service consists of all service packages for a service
11
ITIL® 2011 At a Glance
Service Portfolio and Catalog
Service Pipeline
Service Catalog
Service Status • Requirements • Defined • Analysed • Approved
Service Status • Chartered • Designed • Developed • Built • Test • Released • Operational
Service Portfolio
Retired Services
Service Status • Retired
The service portfolio includes the service pipeline, the service catalog, and retired services
12
ITIL® 2011 At a Glance
Strategy Management for IT Services Purpose To define overall direction for the IT service management effort, obtain buy-in, and carry out that direction. Overview Diagram Triggers Annual planning cycles
Inputs Current plans
Environment research Vendor strategies and road maps Customer interviews Service Portfolio Service reports
New business opportunity
Internaland external environment changes
Mergers and acquisitions
Outputs
Strategy Management for IT Services Roles
Activities Strategic assessment
Strategy Management Process Owner
Strategy generation
Strategic plans
Business Strategy Manager
Strategy execution
SPM
FIN
DES
SVT
KNO
Strategy reviews Organization mission and vision
Strategy Management Process Manager
Measurement and evaluation
Tactical plans
Strategic policies
SSI
Strategic reqts for new services
Audit reports Primary interfaces
Key Concepts Strategy – A high-level approach to carrying out defined IT objectives. Sourcing Strategy – An overall plan and approach to how IT services are provided by internal and external service providers, specifically showing whether there is a preference for internal or external providers.
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations This process was originally a loosely-defined set of activities in ITIL v3 but has now evolved to a full-blown process. Strategy Management is a needed process, but is still defined at a very high level. More work needs to be done to make this process actionable.
13
14
ITIL® 2011 At a Glance
Service Portfolio Management Purpose To manage and control the set of planned, existing, and retired IT services. Overview Diagram Triggers New IT strategy
Request for new service
Service improvement opportunity
Preoperational service status
Service level reviews
Large variation in service costs
Inputs Business strategy and plans
Service improvement
Outputs Service Portfolio Management Activities
Roles
Process initiation Service Portfolio Management Process Owner
Define
Service portfolio
Service charter
Analyze Financial report Approve Business requests and complaints Early service project updates
Service status report
Service Portfolio Management Process Manager
Service investment report
Charter
SCA
STM
FIN
DEM
BRM
SLM
CAP
AVM
SCO
ISM
SUP
CHA
SAC
SVT
KNO
SSI
Change proposal
Strategic risk
Primary interfaces
Key Concepts Application portfolio – The entire set of IT applications, regardless of status in the application lifecycle. This may be implemented as part of the CMS or the service portfolio. Customer agreement portfolio – The entire set of service agreements and other contracts between the service provider and its customers. Customer portfolio – The entire set of customers who receive IT services from an IT service provider.
ITIL® 2011 At a Glance
Market space – A description of the IT customer market, including a description of customer needs, that may be used to determine a set of IT services for that market. Project portfolio – The entire set of IT projects, regardless of status in the project lifecycle. Retired services – The subset of the service portfolio consisting of those services no longer available to customers. Service catalog – The subset of the service portfolio consisting of those services currently available to customers. Service model – A model of the interactions between service assets and customer assets within a service or set of services to create value to the customer. Service pipeline – The subset of the service portfolio consisting of those services not yet available to customers. Service portfolio – The entire set of services managed by a service provider, regardless of status in the service lifecycle. BPMN Workflow
Architecture Considerations This process focuses on the management of the Service Portfolio. However, there are other portfolios to be managed as well, including the Customer Portfolio, Customer Agreement Portfolio, Application Portfolio, and Project Portfolio. This process could be improved by being renamed to “IT Portfolio Management” and the scope broadened to manage all portfolios.
15
16
ITIL® 2011 At a Glance
Financial Management for IT Services Purpose Obtain and steward financial resources for IT service management. This includes charging and billing IT customers as well as performing general accounting. Overview Diagram Triggers Financial reporting cycle
Inputs Regulations and standards
Financial audit results
Financial information request
New service opportunity investigation
Change request with financial impact
Service pricing request
Financial Management for IT Services Roles Activities
Outputs Service valuation
Accounting Generally accepted accounting practices
Financial Management Process Owner
Budgeting CMS sources of financial data
Budget Holder
Service investment analysis
Compliance results Financial Management Process Manager
Charging Service portfolio STM
SPM
BRM
CHA
SAC
SSI
CAP
Cost optimization results
AVM Business impact analysis results
Primary interfaces
Key Concepts Charging policy – A policy that defines how services and other items will be calculated and charged. Charging process – The approach for deciding how to charge customers and bill them. Cost center – An organization or project against which IT costs are expensed. Using this approach, IT customers are not charged for services. IT service providers can be paid for using either a cost center or a profit center.
ITIL® 2011 At a Glance
Cost unit – Things that can be easily counted while assigning costs for a service. Cost units are the smallest items that can be counted within a cost element. For example, within the cost element “training”, cost units could be instructors, training manuals, or meals. Enterprise Financial Management – Financial management applied to the entire enterprise. Financial management for IT services is a subset of enterprise financial management. External funding – Funding that is obtained from services sold to external customers. Financial Year – A consecutive 12 month accounting period. Funding model – An approach to how and when funding is available for a service provider. Funding models include rolling plan funding, trigger-based funding, and zero-based funding. Internal funding – Funding that is obtained from other business units in the same organization. Profit center – A business unit that charges for IT services. A service provider can be organized as either a profit center or a cost center. A profit center can charge to make a profit, operate at a loss, or just cover costs. Rolling plan funding – A funding plan for a fixed length of time (i.e., cycle) and is used repeatedly for additional cycles. This type of funding is typically used for specific projects. Trigger-based funding – A funding plan that initiates when a specific event occurs, such as a request to upgrade a service. Zero-based funding – A funding plan that allocates costs to a specific budget amount, then recovers those costs from costs transfers from other business units. This is the most typical funding plan for IT services.
17
18
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations Financial Management is a part of any major organization. ITIL calls this Financial Management for IT Services to distinguish it from other types of Financial Management within the enterprise. Although this is a useful distinction, the same could be said of many other ITIL processes. For instance, Change Management is a process found in many areas of the enterprise, not just IT, yet ITIL does not call that process “Change Management for IT Services”. The phrase “for IT Services” should merely be an implied part of each ITIL process. An important part of Financial Management not described in ITIL is advisory aspects of Financial Management such as providing financial assessments for change requests, financial feasibility to new projects or portfolio proposals, etc.
20
ITIL® 2011 At a Glance
Demand Management Purpose Promote reduced demand for services as required by the IT organization. This may include reducing user access, providing user incentives to reduce demand during peak hours, etc. Overview Diagram Triggers Request for new or changed service
Need for service model definition
New service initiative
Business activity forecast exception
Service performance issue
Inputs
Outputs Demand Management
Request for new or changed service Service model validation request Service portfolio
Roles
Activities Identify sources of demand forecasting
Activity-based demand management
Patterns of business activity
Develop differentiated offerings
Customer portfolio Customer agreement portfolio Charging model
Demand Management Process Owner
User profiles
User profiles
Patterns of business activity
Demand policies Demand Management Process Manager
Manage operational demand
STM
SPM
FIN
BRM
SLM
Chargeable items
CAP
AVM
SCO
CHA
SAC
Service improvement opportunity
SVT
EVE
Service utilization policy Service package differentiation options
Primary interfaces
Key Concepts Demand – A strong request for a resource, such as a service Supply and demand – The principle upon which Demand Management exists – matching service supply to customer demand, including understanding potential demand and managing service assets to meet that demand.
ITIL® 2011 At a Glance
Gearing service assets – The principle of adjusting service assets to meet the changing patterns of customer demand.
BPMN Workflow
Architecture Considerations Demand Management should include an activity to forecast demand management, not just look at past patterns of user behavior. There should also be an activity to report on demand management outcomes.
21
22
ITIL® 2011 At a Glance
Business Relationship Management Purpose To develop and maintain business relationships between IT service providers and the IT customer, including ensuring that customer needs are realized in IT services. Overview Diagram Triggers New strategic initiative
New or updated service
Inputs Customer requirements Customer communication Service strategy
New business opportunity
Customer New service suggestions charter and requests
Business Relationship Management Roles Activities Initiate by Customers
Business Demand Relationship Management Manager Process Owner
Initiate by Service Provider
Business Relationship Management Process Manager
Service Portfolio Project portfolio
Request for change Business activity patterns
Scheduled meeting with customer
Scheduled customer survey
Outputs Stakeholder definition Defined business outcome Service funding agreement Customer portfolio
Customer strategy
Service level agreement
Customer complaints
STM
SPM
FIN
DEM
SLM
SCA
CAP
AVM
SCO
CHA
RDM
SSI
Primary interfaces
Service requirements Customer satisfaction surveys and results Customer schedules Customer training and communication schedule Service performance feedback
User profiles
Key Concepts Business Relationship Management Process vs Business Relationship Manager Role – The process is focused on maintaining appropriate relationships between the IT organization and its customers and service providers. However, the role is often involved in representing other processes with customers, such
ITIL® 2011 At a Glance
as Service Level Management and Service Portfolio Management. Customer Satisfaction – The practice of taking actions to meet and exceed customer expectations. Service Requirements – Customer wants and needs related to an IT service. Complaint – Negative feedback from a customer that is an important input to continual service improvement. Compliment – Positive feedback from a customer that is an important input to continual service improvement. BPMN Workflow
Architecture Considerations As a new ITIL process, Business Relationship Management needs more architectural rigor. The two ill-named activities do not adequately describe the kinds of work that must be done in Business Relationship Management, such as identifying contacts, managing contact information, defining customer and service provider considers, monitoring and tracking issues, etc.
23
24
ITIL® 2011 At a Glance
Other Practices Risk Management – Identifying, evaluating, and determining acceptable responses to risks. Organizational Change – The transition of an organization from a current state to a future state. At an enterprise level, this is often referred to as Change Management, not to be confused with ITIL (and other) Change Management. Six Sigma – A data-driven methodology for reducing defects to near-zero. Program and Project Management – The processes for initiating, coordinating, and monitoring ongoing programs and timelimited projects. Governance – The approach to ensuring that policies and strategy are adhered to. Quality Management System – An approach to ensuring that an organization meets targeted quality levels. Balanced Scorecard – A tool that breaks down a strategy into key performance indicators.
25
Service Design Brief Description Service Design is a stage in the service lifecycle in which a new or modified service is developed and made ready for the Service Transition stage. The primary effort of this stage is the design (and development) of the service. This include defining service requirements, designing the service solution, evaluating alternate suppliers of the service, and integrating existing service assets or creating them from scratch into a service. Service Level Management provides the interface to IT customers in the collection of requirements. Supporting processes such as Availability Management, Capacity Management, Information Security Management, and IT Service Continuity Management are consulted to make sure the envisioned service will meet service level targets and expectations. Supplier Management manages relationships with potential service providers. As the service progresses through this stage, the Service Catalog is updated with new information about the service, including status changes in the service. The Service Catalog is that part of the Service Portfolio that can be viewed by IT customers. It is also an instrument of Service Level Management to enter into discussions with IT customers about new service requirements or about the initiation of a service level agreement.
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_4, © The Author 2012
26
ITIL® 2011 At a Glance
Overview Diagram Service Catalog Management Service Level Management Utility
Design Coordination Requirements Engineering
Supporting Processes and Practices
Warranty
Availability Management
Capacity Management
Information Security Management
IT Service Continuity Management
Supplier Management Data and Information Management
Application Management
Key Rectangle with gray background – Process Rectangle with white background – Practice
The design of services is at the heart of this lifecycle stage
27
ITIL® 2011 At a Glance
Service Design Key Concepts Service Availability Service availability
Service outage
Uptime • • • • •
Downtime Detect Diagnose Repair Recover Restore
Service interruption
Service outage
Service availability
Uptime • • • • •
Service restoration
Downtime Detect Diagnose Repair Recover Restore
Service interruption
Service restoration
Time between system incidents
Time between failures
Several standard metrics are used to measure service availability Information Security
28
ITIL® 2011 At a Glance
Information security involves identifying threats, vulnerabilities, and risks, and then implementing appropriate controls Service Continuity
Normal service operation
Disaster
Invocation
Recovery
Return to normal
Service continuity is a cycle involving service operation, disaster, invocation, and recovery Design Coordination Purpose Coordinate all service design work, including planning, resourcing, compliance, and handoff to service transition.
30
ITIL® 2011 At a Glance
Overview Diagram Triggers Changes in business requirements
Inputs Service charter Change request Change records Current and future strategy, plans, and budget Business impact analysis results
Initiation of new programs and projects
RFCs
Outputs
Design Coordination Activities Design and maintain policies and methods Plan design resources and capabilities Coordinate design activities Manage design risks and issues
Roles Improve service design Plan individual designs Coordinate individual designs Monitor individual designs Review designs and ensure handover
Design Coordination Process Owner
Design Coordination Process Manager
Enterprise architecture Updates to management systems Updates to metrics Updates to processes
Service portfolio
STM
SPM
CHA
FIN
BRM
TPS
IT strategy
RDM
SVT
CHE
SLM
AVM
CAP
Governance requirements and management systems Laws, regulations, and standards Program and project schedules
Service design package
Updates to service portfolio Updates to change records
SUP
Primary interfaces
CMS Enterprise architecture Metrics
Key Concepts Service – A collection of IT systems, components, and resources that work together to provide value to IT customers. Service Design Package – The collection of all information and documentation about a service through each stage of its life cycle. There is a new service design package whether the service is new, updated, or retired.
ITIL® 2011 At a Glance
Design balance – The goal of Design Coordination, which is an equilibrium of utility, warranty, standards compliance, and efficiency in developing and delivering the service. BPMN Workflow
Architecture Considerations Design Coordination, a new ITIL process, is not a wellrecognized industry process. It seems to have been created because there was no overall process for managing the development of services or other IT products. This process should be replaced by a Product Management or Service Product Management process which defines the product vision, manages overall product development, determines when updates or new releases are needed, and ensures deployed products are kept at the right service level.
31
32
ITIL® 2011 At a Glance
Service Catalog Management Purpose To provide and manage catalog of IT services, including appropriate views needed by different categories of customers. Overview Diagram Triggers RFCs changing services
RFCs initiating new services
RFCs retiring services
Outputs
Inputs Business strategy and plans
Service Catalog Management Roles
Activities Define service
Business impact analysis on a service
Service Catalog Management Process Owner
Define Catalog contents
Service Portfolio Feedback from other processes
Service Portfolio updates
Provide Catalog
Business requirements for a service Configuration Management System
Service definition
Service Catalog Identify business service dependencies
Identify technical service dependencies
Change Mgt
ServiceCatalog Management Process Manager
Configuration Mgt
Primary interfaces
Key Concepts Business Service Catalog – The collection of IT services that directly enable processes that are part of the business. Hierarchy of services – A network of services that support business processes (business services) and services that enable those business services (technical services). Service – A collection of IT systems, components, and resources that work together to provide value to IT customers. Service Catalog – The collection of IT services currently provided to IT customers.
ITIL® 2011 At a Glance
Service Package – An in-depth description of an IT service available through the Service Catalog. Service Portfolio – The collection of all IT services, including those in the pipeline, those currently being delivered, and those that have been retired. Technical Service Catalog – The collection of IT services that support business processes. Types of service – A qualification of the services in the service catalog. Services should be put into different categories. The most useful categories are customer-facing services and supporting services. BPMN Workflow
Service Catalog Management Service Catalog Management exists primarily because of the prominence of the Service Catalog within ITIL. In reality, Service Catalog Management is nothing more than the administration and management of an IT application. If this line of thinking were carried through, there would be processes for administration of applications such as the CMDB, the Service Desk, the Operations Bridge, or others.
33
34
ITIL® 2011 At a Glance
Service Level Management Purpose Ensure that an agreed level of service is provided to IT customers. Overview Diagram Triggers Changes in Service Portfolio
New or Actual or changed potential Initiation of SLAs, OLAs, service level service or UCs breaches reviews
Service feedback
Periodic recurring activities
Inputs
Strategy and policy changes
Outputs Service Level Management
Business strategy and plans Business impact analysis Business requirements Service strategies and policies Service Portfolio/ Catalog Change schedule
Roles
Activities Design SLA frameworks Develop contacts and relationships Handle complaints and compliments Define requirements for newservices Negotiate SLAs for Operational Services
Monitor service performance against SLAs Produce service reports Conduct service review and implement SIP Measure and improve customer satisfaction Review and revise OLAs and UCs
Service Level Management Process Owner
Service Level Management Process Manager
Service Owner
Service Improvement Plan Service Quality Plan SLA, SLR, and OLA Templates Service Level Agreements Service Level Requirements Operational Level Agreements
Configuration Management System Business Relationship Manager
Service feedback Feedback from other processes
Service reports
Service Catalog Mgt
Configuration Mgt
Supplier Mgt
Incident Mgt
Availability Mgt
Capacity Mgt
Primary interfaces
Reports on OLAs, UCs Service review results SLA review results Revisions to UCs
Key Concepts Operational Level Agreement (OLA) – An agreement with an internal service provider to provide services within specified levels. Service Level Agreement (SLA) – A negotiated agreement between the IT service provider and the IT customer defining the
ITIL® 2011 At a Glance
responsibilities of each party concerning the delivery of an IT service. Underpinning Contract (UC) – An agreement with an external service provider to provide services within specified levels. BPMN Workflow
Architecture Considerations Service Level Management, as defined in ITIL, suffers from having too many activities. These should be reduced a bit, since five to seven activities are typically about right for comprehensibility to a broad audience. However, the process also suffers from the fact that there are two primary types of work being carried out in the process. The first type is the establishment of a service level agreement with a customer plus the accompanying work, such as creating OLAs and underpinning contracts, monitoring the service levels, and carrying out service reviews. The second type of work is responding to complaints, improving customer satisfaction, and developing relationships. This second type of work actually overlaps with Business Relationship Management and should be relegated to that process. One ITIL-defined activity, Defining SLA Frameworks, is actually the kind of work that should go into the definition and setup of that process. Every process in ITIL should have an activity to define and implement process roles, work product templates, metrics, procedures, etc. but that kind of work is generally missing.
35
36
ITIL® 2011 At a Glance
Capacity Management Purpose Provide a focal point for performance and capacity-related analyses and planning. Overview Diagram Triggers
Periodic analyses Service breaches
Exceptions
Periodic revisions and reviews
RFCs of new Business and IT strategy SLA, OLA, or changed IT plan review review UC review services results results results
Outputs
Inputs Capacity Management Business strategy and plans ITstrategy, plans, and budget CI performance and capacity info Performance incidents and problems Service information Financial information
Activities Perform preemptive actions Model and identify needed changes Improve performance Monitor and report performance
Roles
Capacity Mgt Information System
Estimate capacity trends Ensure needed capacity upgrades Tune and optimize services Resolve capacityrelated events
Capacity Manager
Service information and reports Resource workload reports
Respond to requests Incident Mgt
Ad hoc reports
Problem Mgt
Service Level mgt
Change mgt
Change information Capacity Mgt Information System
Capacity Plan
Forecasts and predictions Alerts
Primary interfaces
Configuration Mgt System Resource workload information
Key Concepts Business Capacity Management – The management of capacity for business services. Capacity – The maximum throughput provided by a CI Capacity Plan – A long-term plan for providing adequate service capacity to meet expected service level targets.
ITIL® 2011 At a Glance
Capacity Management Information System – The information system that contains all capacity-related plans, analyses, information, and reports. Component Capacity Management – The management of capacity for configuration items that make up an IT service. Demand – Desired use of an IT service or resource. Human resource capacity – An aspect of Capacity Management that deals with staffing, scheduling, and training of human resources and their effects on service capacity. Performance – The measurable results of a resource, CI, or service. Service Capacity Management – The management of capacity for IT services. Threshold – An operational level that, when exceeded, causes an alert or action to be initiated. Tuning – The adjustment or manipulation of IT resources to make better use of those resources, including balancing and optimization. Utilization – The use of a resource.
37
38
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations Capacity Management lacks the kind of single-thread work found in Incident Management, which is typically responding to individual incidents. Instead, Capacity Management primarily carries out planning and responding to a variety of capacity-related requests. The activities prescribed by ITIL overlap and should be refactored so the activities can be better sequenced.
40
ITIL® 2011 At a Glance
Availability Management Purpose Ensure that IT services meet service level availability targets, including planning for future service availability. Overview Diagram Triggers RFCs of new or changed services
Service breaches and alerts
Review of Review of availability designs forecasts Review of Change of business and availability Periodic IT plans and risk or activities strategies impact
New or changed SLAs, OLAs, UCs
Inputs Business strategy and plans Business impact analysis Risk analysis reports
Outputs Activities Reactive activities Proactive activities
Availability Management Roles Reactive availability management
Availability Management Process Owner
Proactive availability management
Service information
Availability Management Process Manager
Service costs Change and release schedules
INC
PRB
CAP
SCO
CI information Service level targets Requirements for underlying technology Network topology, tech assessments Past availability measurements Incident and problem information
SLM availability request
Primary interfaces
SLM
Availability Mgt Information System Availability Plan Proposed service level targets Service availability reports Component availability reports Updated risk analysis information Availability monitoring requirements Availability test schedule Preventive maintenance schedules Projected Service Outage Proactive availability procedures Service improvement input
ITIL® 2011 At a Glance
Key Concepts Availability – The ability of an item to perform its function when required. Component Failure Impact Analysis – Analysis performed to determine how component failure impacts IT services. Fault Tree Analysis – Analysis that indicates a chain of events that led to a problem. Maintainability – How rapidly an item can be restored to normal operation after a failure Reliability – How long an item can perform its function without interruption Serviceability – The ability of a third-party supplier to meet its agreed-upon service targets. Service Failure Analysis – Analysis performed to determine the cause of related service interruptions. Note that this focuses on service interruption as opposed to root cause Analysis, which focuses on the cause of incidents. Single Point of Failure (SPOF) – A configuration item that, when it fails, may cause an incident. Identification of SPOFs is an important aspect of managing service availability. Vital business function – The critical business functions of a business service Unavailability – The characteristic of a service when it is not available to users
41
42
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations Architecture Management has many similarities with Capacity Management, but is better architected by ITIL in that there are fewer activities. However, it suffers from the fact that most of the work is planning and responding to various requests. This makes it difficult to create a sequenceable workflow.
44
ITIL® 2011 At a Glance
IT Service Continuity Management Purpose Ensure that IT services will continue to operate according to an agreed-to plan. Overview Diagram Triggers RFCs of new or changed services
Major incident that may invoke continuity plans
New or changed SLAs, OLAs, UCs
RFC assessments
Review of designs
Review of business and IT plans and strategies
Periodic activities
Change of continuity risk or impact
Continuity test initiation
Inputs
Outputs
IT Service Continuity Management Business strategy and plans IT strategy and plans Business continuity strategy, plans Service information Service costs
Updated ITSCM policy and strategy
Roles
Activities Initiation
ITSCM plans IT Service Continuity Management Process Owner
Requirements and strategy Implementation
Risk analysis reports
Ongoing operation
IT Service Continuity Management Process Owner
Invocation
Continuity and availability test schedules IT Service Continuity plans, reports
Continuity test schedule Continuity test scenarios
Change schedules CI information
Business impact analysis reports
Change Mgt
Incident Mgt
Problem Mgt
Availability Mgt
Service Level Mgt
Capacity Mgt
Config Mgt
Information Security Mgt
Continuity test results
Primary interfaces
Key Concepts Business Continuity – Continuing to provide business services after a major outage. This is directly related to IT Service Continuity. Business Continuity Plan – A plan to restore business services after a major outage
ITIL® 2011 At a Glance
Business impact analysis – An approach to determining vital business functions and dependencies. Continuity testing – Performing tests of continuity plans to ensure that they will work in the face of a major outage. IT Service Continuity – Continuing to provide technical services after a major outage. IT Service Continuity Plan – A plan to restore IT services after a major outage. Management of Risk (M_o_R) – A methodology to assess the impact of risks within an enterprise. Restoration – Returning a CI or service to its normal operating state after repair and recovery. Risk analysis – Determining the vulnerability to IT service threats. BPMN Workflow
Architecture Considerations This process is fairly well-architected by ITIL but is missing the activities to restore services from a continuity state to the normal state.
45
46
ITIL® 2011 At a Glance
Information Security Management Purpose Align IT security with business security. Overview Diagram Triggers New or changed governance guidelines
New or changed risk management guidelines
New or changed business security policy
New or Securitychanged related Review of Periodic SLAs, OLAs, requests designs activities or UCs New or Change of Review of IT changed risk or Security plans and services impact breaches strategies
Inputs
Outputs
Information Security Management Business strategy and plans Business security policies Service information
Roles
Activities Security controls
Information Security Management Process Owner
Management of security breaches and incidents
Security controls
Risk analysis Information Security Management Process Owner
Security events and breaches Change information IT strategy and plans Configuration Management System Supplier access information
Security Management Policy Security Mgt Information System Risk assessment reports
Incident Mgt Change Mgt
Problem Mgt
IT Service Continuity Mgt
Service Level Mgt
Config Mgt
Availability Mgt
Capacity Mgt
Financial Mgt
Supplier Mgt
Security audit results Security test schedules Security classifications Security breach reports Supplier access policies
Primary interfaces
Key Concepts Information Security Management System (ISMS) – An information system containing information security standards, policies, and procedures. An ISMS should support the following elements: Control, Plan, Implement, Evaluate, and Maintain.
ITIL® 2011 At a Glance
Information Security Policy – An overall policy for conducting information security, supported by a number of underpinning security policies, including x x
Access control
x
Antivirus policy
x
Password control
x
Internet policy
x
Asset use policy And others
ISO 27001 – International standard for certifying an ISMS Risk Assessment – Assessment of security risks must be carried out in order to achieve the objectives of ISM. BPMN Workflow
Architecture Considerations The majority of the activities in this process involve analysis/planning activities, but a smaller number of activities involve operational work focused on security incidents. These latter activities overlap with activities in Incident Management.
47
48
ITIL® 2011 At a Glance
Supplier Management Purpose Manage service providers in support of service level targets. Overview Diagram Triggers New or changed Review of Requests Recategorization of business designs and from other suppliers and/or needs, services strategies processes contracts New or New or changed Requirements changed IT SLAs, OLAs, Periodic for new strategies and or UCs activities contracts plans
New or changed governance guidelines
Inputs Business strategy and plans Supplier and contracts strategy Strategies and plans of suppliers Supplier agreements and contracts Supplier performance data IT strategy and plans Supplier performance issues Financial costs and information
Outputs
Supplier Management Roles
Activities Define new supplier and contract reqts Evaluate new suppliers and contracts Supplier categorization and maintenance of SCMIS
IT Service Continuity Mgt
Supplier, contract and performance management Contract renewal or termination Establishment of new suppliers and contracts
Service Level Mgt
Supplier Management Process Owner
Supplier Management Process Owner
Information Security Mgt
Supplier and Contracts Database Supplier performance reports Supplier review results Supplier Service Impr Plans Supplier performance survey data
Financial Mgt
Service Portfolio Mgt Primary interfaces
Information about services Configuration Management System
Key Concepts Invitation to Tender (ITT) – A document similar to the Statement of Requirements Operational Level Agreement (OLA) – See Service Level Management.
ITIL® 2011 At a Glance
Service Provider – Any internal or external provider of an IT service Statement of Requirements (SoR) – A document identifying all requirements for a service or project Supplier and Contracts Database – a repository of information about suppliers and contracts with suppliers Supplier performance – Suppliers that provide services at appropriate levels of service tend to be retained, whereas those that do not tend to have their contracts terminated Supplier Service Improvement Plan – Actions that are to be taken by a supplier to improve their levels of service Underpinning Contract (UC) – See Service Level Management. BPMN Workflow
Architecture Considerations This activities in this process were structured to represent the life cycle of a supplier relationship, from establishing a supplier contract, through managing the ongoing relationship, to the end of the supplier contract. Unfortunately, the process does not cover procurement from the supplier, which is missing from ITIL altogether. Procurement should be a part of this process. In addition, this process contains an activity to manage the Supplier and Contract Management Information System. This is an inconsistency, since most of the other processes do not contain an activity to manage the primary process tool/repository.
49
50
ITIL® 2011 At a Glance
Other Practices Application Management – The management and control of applications through their entire lifecycle, from creation to retirement. Data and Information Management – The control, organization, and disposition of data and information within the organization. This includes collection as well as disposal. Requirements Engineering – The discipline of collecting, organizing, and prioritizing requirements for a CI or service to be designed. Additional Service Design Roles IT Designer/Architect – Designs needed IT technology and coordinates those designs within the IT organization IT Planner – Creates IT plans and coordinates them with other IT plans
51
Service Transition Brief Description The service transition stage readies a new or changed service for operation. The primary activity done during this stage is Transition Planning and Support. This process plans all of the activities that must take place to put the service into production. This may involve the creation of a number of RFCs that will carry out all necessary changes (Change Management) and deployments (Release and Deployment Management). Prior to moving the service into production, there may be a period of testing and validating the service to ensure sufficient quality of the service. An overall evaluation framework is used by transition planning and support to determine if the service is still in an acceptable state to proceed or must be remediated in some manner. As the service is readied for production, various configuration items and assets must be assembled and configured. Information about all of these CIs and assets, as well as the relationships between all of these elements, must be maintained in order to provide the best support for the service. Knowledge about the services and underlying CIs and service assets is collected during this stage and subsequent stages in order to provide effective support for service faults.
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_5, © The Author 2012
52
ITIL® 2011 At a Glance
Overview Diagram Transition Planning and Support
Enabling Processes Change Management Change Evaluation
Service Validation and Testing
Release and Deployment Management Informational Processes
Service Asset and Configuration Management Knowledge Management
Configuration Management
Asset Management
Key Rectangle with gray background – Process Rectangle with white background – Practice
A number of enabling and informational processes support the transition of a service into operational status Service Transition Key Concepts Stakeholder – Any party that has an interest in a service, configuration item, or other IT asset that may be subject to change.
53
ITIL® 2011 At a Glance
Service Knowledge Management System Service Knowledge Management System Configuration Management System Availability Management Information System (AMIS)
CMDB
• • • •
Capacity Management Information System (CMIS)
Known Error Database (KEDB)
• •
Security Management Information System (SMIS)
Multiple CMDBs Secure libraries and secure stores Definitive Media Library Definitive spares Configuration baselines Snapshots
Service Desk System Other sources of information
Service Catalog
Service Portfolio
Supplier and Contracts Management Information System (SCMIS)
The service knowledge management system includes many service management information systems
54
ITIL® 2011 At a Glance
Configuration Items (and Assets) Categories of Configuration Items Service Lifecycle CIs Service design packages Change plans Release plans Test plans Lifecycle plans Internal CIs Project artifacts Assets that help deliver and maintain services External CIs Customer requirements Customer agreements Supplier releases Interface CIs Items that help deliver a service across a service provider interface
Service CIs Capability assets Knowledge Processes Management Organizations Resource assets Applications Data Facilities Capital Service packages Release packages
Organization CIs Characteristics of CIs Related CI docs Regulations Product information
Definitions Asset = Resource or Capability Resource = Anything that helps deliver a service and belongs to an organization Capability = the ability of are source to carry out an activity
There are a variety of different types of CIs and assets
55
ITIL® 2011 At a Glance
Change Idea
Change
Request for Change (RFC)
Proposes the change Reality
Change record
Change
Records all aspects of the change
Proposed changes are RFCs whereas change records record everything about proposed and implemented changes Release Release
software hardware
Released into environment together
documentation Change
processes
A release may include a number of changes
56
ITIL® 2011 At a Glance
Service Asset and Configuration Management Purpose Control and track all CIs to promote integrity in the infrastructure. Overview Diagram Triggers RFC changes CI information
Release changes CI information
Purchase order updates CI information
Acquisition updates CI information
Service request changes CI information
Inputs Service Asset and Configuration Management Roles
Activities Service design package
Management and planning
Status accounting and reporting
RFC
Configuration Identification
Verification and audit
Updated CI information
Configuration control
Outputs Configuration information Asset information
Service Asset and Configuration Management Process Owner
Configuration Analyst
Service Asset and Configuration Management Process Owner
Configuration Librarian
CI relationships Configuration snapshot Status report
Updated asset information
CHA
FIN
SCO
INC
PRB
Audit report
AVM
Primary interfaces
Key Concepts Asset – A capability or resource that is used in the delivery of a service. Also called service asset. There are many types of assets, including management assets, organization assets, process assets, knowledge assets, people assets, information assets, application assets, infrastructure assets, and financial assets Asset Management – The process within SACM that deals with inventory of all service assets Configuration baseline – The configuration of a set of CIs that has been reviewed and agreed upon
ITIL® 2011 At a Glance
Configuration item – An element of the IT infrastructure that is managed as part of the delivery of an IT service, including people, hardware, software, services, facilities, SLAs, and documentation. Configuration Management – The process within SACM that ensures that configuration items within the IT infrastructure are identified, maintained, and properly controlled. Configuration management database (CMDB) – A virtual repository of information about configuration items. Configuration Management System (CMS) – A system of databases and tools that manage information in multiple CMDBs, as well as additional information related to CIs. Configuration model – A depiction of the relationships between CIs Configuration record – The record of information about a CI Decommissioning assets – The work of removing an asset from service Definitive Media Library (DML) – The secure library that stores definitive versions of all electronic CIs. Definitive spares – A secure store for CIs that are at the same levels at CIs in a test or live environment. Secure library – A secure storage of electronic assets. This is a part of the CMS. Secure store – A physical storage location storing IT assets. This is a part of the CMS. Snapshot – The status of a set of configuration items at a point in time
57
58
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Guidelines Service Asset and Configuration Management contains an activity called Manage and Plan which defines the process framework for Configuration Management. Every process should have an activity to define the process framework.
60
ITIL® 2011 At a Glance
Change Management Purpose Manage all changes to the IT infrastructure in a controlled manner. Overview Diagram Triggers Strategic change
Service change
Operational change
Inputs
Outputs
RFC
Rejected and approved RFCs Change Management
Change proposal
Activities
Plans
Create and record RFC
Change schedule
Review RFC
Projected service outage
Assess and evaluate change
Assets and CIs
Review and close change
Config baseline
Roles Authorize change build and test Coordinate change build and test Authorize change deployment Coordinate change deployment
Assets and CIs Change schedule
Change Management Process Owner
Projected Service Outage Authorized change plans
Change Management Process Manager
Change decisions and actions Change documents and records Change Mgt reports
Test results Change Practitioner
SAC
Change Authority
Change Initiator
CAB Chair
CAB Member
PRB
SCM
SEC
CAP
Primary interfaces
Key Concepts Change assessment – An evaluation of the change request from various points of view. Change authorization – Approval of a change request. There may be different authorization levels based on the type of change being considered. Change priority – The order in which change request are considered for authorization
ITIL® 2011 At a Glance
Change process model – Predefined workflows for changes that fit within a predetermined template Change record – a record of a change throughout its lifecycle. This information becomes the initial part of a change record. Remediation – The approach or plan to be followed if a change is not successful. This may involve backing out an installation, invoking continuity plans, or some other approach. Request For Change (RFC) – A record of a proposed change Risk categorization – An evaluation of the overall risk of a change request to the business Standard changes – A very lowrisk change that is pre-authorized for implementation. BPMN Workflow
Architecture Considerations This process should be combined with Change Evaluation, which has no purpose other than to support Change Management.
61
62
ITIL® 2011 At a Glance
Release and Deployment Management Purpose Build, test, and deploy capabilities to provide services. This does not include application development. Overview Diagram Triggers Inputs
Outputs
RFC to deploy a release package
New or updated service
Authorized RFC Service design package ITSC Plan Service Mgt plans
Release and Deployment Management Roles
Activities Release and deployment planning
Procurement stds, catalogs
Release build and test
Service assets
Deployment
Build models
Review and close
Release and deploy plan Completed RFC Service notification
Env reqts and specs
Release and Deployment Management Process Owner
Release Packaging and Build Practitioner
Release and Deployment Management Process Manager
Deployment Practitioner
Updated service catalog New service capability Updated ITSM docs SLAs, OLAs, UCs Updated service reports
Rel policy, design Rel, deploy models
Early Life Support Practitioner
Entry and exit criteria DES
TPS
CHA
Primary interfaces
Build and Test Environment Manager SAC
SVT
Tested continuity plans List of CIs in release Updated capacity plan Release pkg baseline Service Transition Rpt
Key Concepts Deployment option – The overall approach for deploying a release, such as gradually or in one large deployment. Early life support – A period of additional attention and support for an IT service immediately after deployment. This consists of more intensive monitoring, adjustment of service level targets, and additional resources to handle related incidents and problems.
ITIL® 2011 At a Glance
Pilot – Deployment of an IT service or asset that is limited for trial purposes. Push approach/ pull approach – Different approaches to making a release package available to users. A push approach installs the release package for the user. A pull approach makes the release package available on a central website that may be downloaded and installed at the user’s convenience. Release – A group of changes that are tested, packaged, and deployed into the IT infrastructure at the same time. These changes may include hardware, software, documentation, or other items. Release and deployment model – A standard or repeatable model for carrying out a release. There may be such models for different types of releases. Release package – The set of configuration items in the release that will be built and deployed together. Service rehearsal – A type of service testing that involves performing as much of the service as possible before actual deployment. Service retirement and cleanup – Services or service assets may be retired as part of a deployment action. Service transfer – Deployment may involve transfer of service from one service provider to another. BPMN Workflow
Architecture Considerations This process should include the creation of a process framework to identify the overall approach to carrying out the process. In addition, an improvement activity should be included in the process.
63
64
ITIL® 2011 At a Glance
Service Validation and Testing Purpose Ensure that a new or changed service will meet customer requirements and will be fit for purpose and fit for use. Overview Diagram Triggers Test scheduled for a release plan, test plan, or quality assurance plan
Service Validation and Testing Outputs
Inputs Activities Service design package Service charter Service provider interface Operation models Capacity Plan
Roles
Validation and test management
Perform tests
Plan and design tests
Evaluate exit criteria and report
Verify test plans and test design
Test cleanup and closure
Configuration baseline Service Validation and Testing Process Owner
Test results
Test analysis
Prepare test environment
Service Validation and Testing Process Manager
Financial/cost models
Service information Incidents and problems
Test conditions and results Service Validation and Testing Process Practitioner
Design specifications Release & deployment plan
Test initiation
DES
CSI
Improvement ideas Supplier relationships
STR
Acceptance criteria Primary interfaces RFCs
Key Concepts Service Design Package – The documented requirements and design of a service. Service level package – The level of utility and warranty that goes with a specific service package Service model – A depiction of service functionality
ITIL® 2011 At a Glance
Test model – A model of how to define each service deliverable. Test Strategy – The general approach to carrying out testing. Types of testing – Various aspects of what to test in a service, including usability, accessibility, performance, availability, compliance, remediation, etc. Validation – the practice of identifying that a new or modified configuration item meets needs of the business. Verification – the practice of identifying that a new or modified configuration item meets requirements BPMN Workflow
Architecture Considerations Service Validation and Testing should be an integrated part of the solution development process. Typically, this would be an SDLC or waterfall development process. Most IT organizations already have such processes and do not need a separate Service Validation and Testing process.
65
66
ITIL® 2011 At a Glance
Transition Planning and Support Purpose Plan service transitions that appear in each stage of an IT service’s lifecycle, including design, transition, operation, and retirement. Overview Diagram Triggers Authorized Change Inputs
Outputs
Transition Planning and Support Activities
RFC
Transition strategy Authorized change
Service design package
Roles Planning and coordinating service transition
Service transition lifecycle stages
Provide transition proces support
Transition Planning and Support Process Owner
Transition Planning and Support Practitioner Transition Strategy
Prepare for service transition Transition Planning and Support Process Manager
DEM
SPM
BRM SVT
TPS CHE
SUP KNO
CHA
Service Transition plans
SAC
RDM
Primary interfaces
Key Concepts Service Design Package – specifications, models, architectures, designs, plans, and acceptance criteria Service Transition – a stage in the lifecycle of an IT service
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations A service transition is really just an IT project that coordinates a number of related changes. This process would be unnecessary if ITIL had a Project Management process.
67
68
ITIL® 2011 At a Glance
Knowledge Management Purpose Ensure that the right information is provided to the right roles at the appropriate time. Overview Diagram Triggers Service errors detected during transition
Service desk staff record actions
Problem Mgt staff record actions
Service course corrections
Service feedback
Outputs
Inputs
Knowledge Management data
Roles
Activities
knowledge
Knowledge management strategy information
Knowledge Management Process Owner
Knowledge transfer
Knowledge Management Process Practitioner
Managing data, information and knowledge Knowledge Management Process Manager
Using the SKMS
INC
PRB
Knowledge Creator
CHA
Primary interfaces
Key Concepts Data – disjointed facts about events Information – context for data Knowledge – Insights gained from individuals about events concerning how events happened Knowledge Management Strategy – Overall policies, governance, roles, and procedures for knowledge management
ITIL® 2011 At a Glance
Service Knowledge Management System – The overall system that encompasses all Service Management Information Systems, including x x
Availability Management Information System
x
Configuration Management System
x
Security Management Information System
x
Capacity Management Information System
x
Known Errors Database
x
Supplier and Contracts Database and others
Wisdom – Discernment concerning why events happened BPMN Workflow
Architecture Considerations The activity Manage Knowledge Assets spans a lot of work. This activity is integrated with the work of all other processes, since every process manages some type of knowledge.
69
70
ITIL® 2011 At a Glance
Change Evaluation Purpose Determine the ramifications of a proposed service change whether as a result of a Request for Change, a new Service Design Package, or testing. Overview Diagram Triggers
Evaluation request from Change Mgt or Service Transition
Project plan activity Outputs
Inputs
Change Evaluation Service package
Evaluation plan Service Design Package
Service Acceptance Criteria
Roles
Activities
Understand the intended effect of change Understand the unintended effect of change
Evaluate predicted performance
Change evaluation report
Change Evaluation Process Owner
Evaluate actual performance Risk management
Change Evaluation Process Manager
Evaluation report
Test results, report Change Evaluation Process Practitioner CHA
TPS
Primary interfaces
Key Concepts Actual performance – A measure or assessment of the past effects of an implemented change.
ITIL® 2011 At a Glance
Deviation – The determination that actual performance is acceptable Predicted performance – A measure or assessment of the effects of a future change Risk – A potential occurrence that may cause loss Risk management formula – Likelihood x impact Unintended effects – Side effects of a change, arrived at by discussions with stakeholders to determine effects other than those anticipated by the change request BPMN Workflow
Architecture Considerations This process should not exist as a separate process since it does not have an existence apart from Change Management. This process should be merged with Change Management.
71
72
ITIL® 2011 At a Glance
Other Practices Communications and Commitment Management – The practice of providing effective communication to all affected parties concerning a change. Organizational and Stakeholder Change Management – The practice of managing process and cultural changes among IT stakeholders. Many changes affect important underpinnings of how an organization works. This practice goes beyond mere deployment of changes to determine how to improve the acceptance of significant changes within an organization. Stakeholder Management – The practice of resolving the needs and concerns of stakeholders of IT services. Stakeholders may represent a variety of interests, including customers, users, regulatory organizations, business units, partners, and others. Additional Service Transition Roles Process Owner – Provides high-level direction for a process and ensures that a process is implemented and performed to support business objectives Service Owner – Provides high-level responsibility for the design, development, maintenance, and support of a service
73
Service Operation Brief Description In the Service Operation stage, a service is available for IT end users. During execution of the service, it is monitored to determine service levels as well as to look for operational faults. Operational faults may be detected as events from service monitoring. Those events may be resolved within Event Management or may be escalated to Incident Management to be resolved by Service Desk personnel. In either case, the event is recorded as an incident and the service is restored as quickly as possible via either a workaround or some other resolution. Faults may also be detected by users, who may contact the Service Desk to log an incident. The Incident Management process is used by the Service Desk to get the service restored to the user as quickly as possible. The Problem Management process supports the Incident Management process by looking for incident trends (problems) and resolving root causes of those problems. This process also proactively addresses any faults not yet previously identified. The user may also contact the Service Desk to carry out simple, virtually risk-free actions (service requests) that cannot be performed by the user (Request Fulfillment) or to provide access to services or service assets (Access Management).
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_6, © The Author 2012
74
ITIL® 2011 At a Glance
Overview Diagram Monitoring and Control
Event Management
Incident Management
Request Fulfillment
Problem Management
Access Management Service Desk
IT User Key Rectangle with gray background – Process Rectangle with white background – Practice Rectangle with dashed border – Function
The service desk is at the heart of the service operation stage
75
ITIL® 2011 At a Glance
Service Operation Key Concepts Events, Incidents, and Problems Incidents may be initiated via users orevents. Not all events represent failures.
User Resolution
Monitoring
Event
Error
Event Failure
Alert/Event Incident
Root cause Known Error
Workaround
!! Problem
Related Incidents
Change
Events may turn into incidents, and related incidents may constitute a problem
76
ITIL® 2011 At a Glance
Restoring a Service
Error
Replacement or correction
1.Repair
Data
2.Recovery
Additional steps
Data
3.Restoration
User
After a service has been interrupted, it should be repaired, recovered, and restored
77
ITIL® 2011 At a Glance
Service Desk
Service Desk Request for information or advice
Information or advice
Request for access Access rights Request for standard change
Standard change
Report of a service failure Incident Request for change
A user may submit a variety of things to the service desk which are then processed or routed to the appropriate team
78
ITIL® 2011 At a Glance
Event Management Purpose To identify and resolve system events that represent failures within configuration items. Overview Diagram Key Triggers CI performance exceptions
Exception to automated procedure
Business process exception
Device or record status change
Automated job completion
Threshold limit reached
Application access
Inputs
Outputs Event Management Activities
Service level reqts Event detection thresholds Response solutions Event recognition information Operational procedures
Roles
Event occurs
Second-level event correlation
Event notification
Further action required
Event detection
Response selection
Event logged
Review actions
First-level event correlation and filtering
Event record Event logs
Event Management Process Owner
Event information for SKMS
Event Management Process Manager
Close event
Significance of events
SLM
ISM
CAP
AVM
SAC
PRB
ACC
KNO
CHA
INC
Primary interfaces
Key Concepts Event Correlation – Various system monitoring tools generate events according to predefined event generation rules. The usefulness of event management is closely tied to how well these rules are defined. Tightly constrained rules will not generate enough events to identify many failures, whereas loosely constrained rules will generate many false positives.
ITIL® 2011 At a Glance
Event Filtering – Ignoring events that are of less significance to focus on events of greater significance. Event response – Some events may have an automatic response associated with the event, such as restarting a process. Other events may require manual intervention, such as incident management or creation of an RFC. Event rule sets – Categories of rules defining how event messages are processed and evaluated. Monitoring – Monitoring is different from event management. Monitoring determines the status of a configuration item or service, whereas event management identifies changes in status of those CIs and services that represent faults within the IT infrastructure. Types of events – The three primary types of events include informational events (provides information only), warning events (unusual situations that do not warrant immediate action), and exception events (unusual situations that warrant immediate action). BPMN Workflow
Architecture Considerations Event Management has too many activities at the highest level.
79
80
ITIL® 2011 At a Glance
Incident Management Purpose To restore service operation to a user as rapidly as possible. Overview Diagram Key Triggers User contacts Service Desk
Significant event raised
Potential failure noticed
Inputs
Known Errors Incident feedback RFC feedback Event information Service level targets
Outputs
Incident Management
CI Information
Roles
Activities Incident identification
Incident escalation
Incident logging
Investigation and diagnosis
Incident categorization
Resolution and recovery
Incident prioritization
Incident closure
Initial diagnosis
Reopen incident
Incident information Incident Management Process Owner
Incident Management Process Manager
Secondline analyst
ISM
Incident classifications Problem records Validation of nonrecurrence Incident feedback
Customer feedback Incident escalation criteria
First-line analyst
Third-line analyst SLM
Resolved incidents
CAP
AVM
PRB
ACC
Primary interfaces
SAC
CHA
CI identification Satisfaction feedback Monitoring feedback Resolution history
Key Concepts Classification – Grouping similar types of incidents into categories. Escalation – Incidents that cannot be resolved by available resources are escalated either to those with greater skills (functional escalation) or to those who are at higher levels of management (hierarchical escalation). Incident models – Similar types of incidents may follow similar paths to resolution. For this reason, predefined workflows for specific types of incidents may be created.
ITIL® 2011 At a Glance
Major incidents – Some incidents are of such magnitude that they are treated individually. Such an incident may be treated as an individual problem in Problem Management. Prioritization – The relative impact and urgency of an incident, where impact is the effect the incident has on the business, and urgency is how long it will take for the incident to have that effect. Recovery – Returning a configuration item to its working state after resolution Repair – Replacing or fixing a configuration item Resolution – Addressing the root cause of an incident or problem via a repair or a workaround. Timescales – A time period in which an incident should be resolved or escalated. Because incident management is focused on rapid restoration of services, timescales are important. BPMN Workflow
Architecture Considerations Both categorizing and prioritizing incidents are closely related because they determine which team will respond to the incident and how quickly they will do so. These activities should be merged together to make room for other common activities such as creating the process framework and continuous improvement of the process.
81
82
ITIL® 2011 At a Glance
Request Fulfillment Purpose Request fulfillment processes service requests and requests for information. Access-related service requests are processed by Access Management. Overview Diagram Key Triggers User selects service request
Outputs
Inputs Work request Authorization form Service request RFC Other requests Request for information
Request Fulfilment Activities
Roles
Request review
Receive Request Request logging and validation
Request model execution
Request categorization
Request closure
Request prioritization
Reopen request
Request Fulfillment Process Owner
Request Fulfillment Process Manager
Request response
RFC CI update
Request Fulfillment Analyst SCA
Status report
Rerouted incident
Request authorization
FIN
Service request
RDM
SAC
PRB
ACC
CHA
INC
Updated records Closed request Canceled request
Primary interfaces
Key Concepts Request Model – a predefined workflow for handling a specific type of service request Service Request – a standard (preapproved) change that is straightforward and virtually risk-free.
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations ITIL has always suffered from the lack of a process that specifically serves as the front-end for the service desk. The Request Fulfillment should serve that purpose, but it is not explicitly described that way. This leads to all kinds of religious debates among ITIL adherents concerning whether Incident Management or Request Fulfillment is the first process to receive user contacts to the service desk. This process should be explicitly architected (and possibly renamed) so it is clear that all initial user contacts with the service desk come through this process.
83
84
ITIL® 2011 At a Glance
Problem Management Purpose To diagnose root causes of incidents, request changes that will resolve those root causes, and reduce the number of future incidents. Overview Diagram Key Triggers Faults discovered after release accepted
Incident trend found
Suppliers provide notification of known faults
Outputs
Inputs Incident records Incident reports CI Information Incident feedback Implementation reedback Event information
Problem Management Roles
Activities Problem detection
Work arounds
Problem logging
Raise a known error record
Problem categorization
Problem resolution
Problem prioritization
Problem closure
Problem investigation and diagnosis
Major problem review
Problem records Problem Management Process Owner
Prioritization criteria Risks
RFCs
Work arounds Known errors
Problem Management Process Manager
Svc level objectives Problem feedback
Problem resolution
Problem reports CSI recommendations
Problem Analyst FIN
AVM
CAP
SCO
SLM
RDM
KNO
CSI
CHA
SAC
Primary interfaces
Key Concepts Known Error – a problem for which the root cause has been determined and a workaround or resolution has been created. Proactive problem management – looking for potential problems before they are reported by other processes or functions and resolving those problems.
ITIL® 2011 At a Glance
Problem – a problem is a root cause of a group of related incidents. Problem Model – a predefined workflow for handling a specific type of problem Reactive problem management – resolving problems that have already been uncovered by incident management or some other source. BPMN Workflow
Architecture Considerations This is a fairly well-architected process.
85
86
ITIL® 2011 At a Glance
Access Management Purpose To provide rights for a user to access a service. Overview Diagram Key Triggers RFC affecting access from many users
Service request for access
Management request
Request from HR
Outputs
Inputs Information Security policies
Access Management Roles
Activities Request access
Check and monitor identity status
Authorized RFC
Verification
Log and track access
Authorized access request
Provide rights
Remove or restrict rights
Service level reqts
Access rights
Access Management Process Owner
Access Management Process Manager DEM
STR SLM
ISM CHA
SCA SAC
Access granting history Access denial history Access violation communication
SCO REQ
Primary interfaces
Key Concepts Access – the ability to make use of a specific configuration item. There may be different types of access, such as read, write, execute, etc. Directory services – An application that records the rights given to each identity and allows modifications to those rights. Identity – the name of a user or group. Access rights are granted to identities. Rights – permission given to an identity.
ITIL® 2011 At a Glance
BPMN Workflow
Architecture Considerations There needs to be more support for managing user identitities. Two specific areas that should be addressed include the following: x
x
Periodically, there is a need to audit user identities and determine if there are any that need to be removed. Users sometimes leave the organization without their identity being removed. Also, duplicate or temporary identities may exist that are no longer needed. Group identities need to be managed, as group members typically change over time.
87
88
ITIL® 2011 At a Glance
Other Practices Facilities and Data Center Management – Management of the physical location where IT resources are housed. This location is often referred to as a data center. Information Security Management and Service Operation – Enforcement of information security policy during service operations. IT Operations – The operation and management of specific types of technology resources. Support for these resources requires specific types of expertise. Examples include the following: x x
Mainframe Management
x
Network Management
x
Server Management and Support
x
Storage and Archive
x
Directory Services Management
x
Middleware Management
x
Database Administration
x
Desktop Support Internet/Web Management
Monitoring and Control – The cycle of service monitoring and response. Service Operation Functions A “function” is an abstract organizational unit within an IT organization. It represents a real organization or group, but not a process. A function may use one or more IT processes or practices to carry out its objectives. There are five primary functions within Service Operation, some, of which, are divided into smaller functions.
89
ITIL® 2011 At a Glance
Service Operation Functions
Service Desk
Technical Management
IT Operations Control
Application Management
Mainframe
Financial Applications
Network
HR Applications
Database
Business Applications
Desktop Internet/Web Server Storage
Facilities Management
Console Management/ Operations Bridge Job Scheduling
Consolidation
Backup and restore Print and output management
Recovery sites
Data Centers
Contracts
Directory Services Middleware Internet/web
Service operation functions Application Management – Control of the entire lifecycle of an application Facilities Management – Management of IT data centers and other physical IT facilities IT Operations Management – Ongoing operation and execution of IT services and IT resources in support of those services Service Desk – User support for IT services Technical Management – Provides specialized technical skills to carry out IT operations
90
ITIL® 2011 At a Glance
Additional Service Operation Roles Application Management Roles Application Manager/Team Leader – Oversees application support staff Application Analyst/Architect – Provides technical support of deployed applications IT Operations Management Roles IT Operations Manager – Oversees control of IT operations and facilities Shift Leader – Supervises IT operations staff for a specific shift IT Operations Analyst – Experience operators who provide more detailed planning and analysis in support of operations IT Operator – Performs daily operational tasks Service Desk Roles Service Desk Manager – Oversees all service desk activities and supervisors Service Desk Supervisor – Oversees service desk activities for a specific shift Service Desk Analyst – Provides first-level support for incidents and service requests Super User – Users who act as liaison between the service desk and the user community Technical Management Roles Technical Manager/Team Leader – Provides leadership for a technical team Technical Analyst/Architect – Determine stakeholder needs for a technical domain and provides analysis in support of that technical domain Technical Operator – Performs daily technical operations tasks
91
Continual Service Improvement Brief Description During the Continual Service Improvement stage, the IT organization collects data and feedback from users, customers, stakeholders, and other sources to enhance services and how they are provided. This involves the use of a seven-step improvement process that collects data, analyzes the data, provides recommendations, and implements those recommendations. In support of the improvement process, Service Level Management collects information from IT users and customers and data from the operation of the services. Service measurement and reporting provides standard vehicles for describing the performance of the services. Finally, all service improvements must be scrutinized according to whether they meet the needs of the business and provide an overall return on investment.
J.O. Long, ITIL ® 2011 At a Glance, SpringerBriefs in Computer Science, DOI 10.1007/978-1-4614-3897- 7_7, © The Author 2012
92
ITIL® 2011 At a Glance
Overview Diagram
Service Check
Do Process CSI Register
Information Organization
Plan
Act
Tool
A variety of ongoing processes support the Continual Service Improvement lifecycle stage
94
ITIL® 2011 At a Glance
Seven-Step Improvement Process Purpose To guide improvement efforts related to IT services, processes, organizations, information, and tools. Overview Diagram Key Triggers
Incident trend found
Key Inputs
Faults discovered after release accepted
Suppliers provide notification of known faults
Roles
Activities
Service catalog SLRs Service catalog
Identify strategy for improvement
Present and use the information
Define what you will measure
Implement improvement
RFC Seven-Step Improvement Process Owner
Problem fix
Gather data
Vision and mission
Analyze information and data
Legislative reqts
Assessment requests
Seven-Step Improvement Process Manager
Process data
Goals & objectives
KEDB
Governance reqts Budget cycle
Key Outputs
Seven-Step Improvement
Reporting Analyst CHA
Customer surveys
SAC
RDM
AVM
CAP
SCO
SLM
FIN
Primary interfaces
IT Strategy Market expectations Commercial models
Key Concepts Plan Do Check Act (PDCA) – The key stages of the quality improvement cycle. PDCA is also known as the Deming Cycle.
ITIL® 2011 At a Glance
CSI Register – A repository of all improvement efforts.
BPMN Workflow
Architecture Considerations The Seven Step Improvement Process is a generic process that can be applied to any context. It is unfortunate that an entire book is devoted to this process. Other improvement processes exist in other context that are just as suitable. Every other process should have an improvement activity that assesses the process and looks for ways to improve it. Therefore, this improvement cycle should be built into every other process. Additional CSI Roles Business Relationship Manager – See the chapter on Business Relationship Management.
95