Posts categorized "ISO20000"

ISO / IEC 20000 Explained: Free Audio and PDF Guide

ISO/IEC 20000 Explained!

I recently collaborated with David Clifford, a highly regarded Industry Expert on ISO/IEC 20000, to produce an awesome package of information that you are about to gain FREE access to.

David and I have produced a content packed Teleseminar covering the answers to the top, most burning questions, that anyone who's serious about ISO/IEC 20000 REALLY needs to understand.

Specifically, David provided detailed answers along with examples and insights into the following questions:-

1. What exactly is ISO/IEC 20000?

2. Is there any type of defined relationship between ISO/IEC 20000 and ITIL?

3. What types of Organizations should seek certification and what are the reasons?

4. What is the eligibility criteria for Organizations seeking ISO/IEC 20000 certification?

5. What is the relationship between scope and eligibility?

6. What are the benefits of ISO/IEC 20000 to an Organization?

7. What is a typical timeframe for achieving certification and what are the costs involved?

8. What is the return on investment (ROI) for achieving ISO/IEC 20000 certification?

9. What skills, education and capabilities are required to successfully obtain certification?

10. Is it more difficult to maintain certification than it is to achieve it first time?

11. What does the future hold for ISO/IEC 20000 in the next five years?

Whilst answering the questions, David illustrated his answers with real life examples and revealed lots of additional information to assist you in your ISO/IEC 20000 certification journey.


Click the Link below to access:-

- Full Teleseminar (Digital Audio Download)

- Fully Edited Call Transcript (40 Page PDF)

- Exclusive Online Resources Section

- Plus Special Bonus Materials - not available anywhere else


=> http://www.AskTheISO20000Expert.com <=


I trust you find these resources valuable in your quest towards ISO/IEC 20000 certification.



August 09, 2006 in ISO20000 | | Comments (0) | TrackBack (0)

Digg This | Save to del.icio.us

ITIL, CoBIT and ISO: Overlap Or Complement?

By Jean-Pierre Garbani with Laura Koetzle and Thomas Powell.

In this excellent article the authors attempt to highlight the real differences between ITIL, CoBIT and ISO. Originally published on the CIO website.

To quote the article directly, “Today, Forrester estimates that 30% of $1 billion-plus companies are experimenting with ITIL and between 12% and 13% have implemented ITIL. However, ITIL is relatively weak in security controls and weaker yet in metrics and outsourcing, two areas where ISO and COBIT shine.”

"The three different best practices frameworks cover different domains:-

ISO 17799. This international standard — of which International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) released a revised version in June 2005 — aims to improve the practices and organizations around information security. It defines a global approach to security management that touches the responsibilities and organizations responsible for security as well as the policies, critical asset classification, and risk management. It is best used when security certification and overall definition of all security processes — logical and physical — is needed and basic rules for security defined.

ITIL. Originally created by the UK government, ITIL summarizes best practices for the implementation of IT management processes. ITIL defines the processes to be implemented to deliver and support IT services (most of the time, IT services today equal applications) focusing on the business (IT’s customer). The ITIL philosophy revolves around the service desk as a communication platform and the configuration management database (CMDB).

COBIT. COBIT compiles an up-to-date international set of generally accepted control objectives for day-to-day use by business managers and IT managers. It addresses IT governance and the key performance indicators associated with process improvement. At first glance, COBIT seems to overlap considerably with ITIL, but COBIT has clearly been influenced by problems raised by the insurance industry. Mergers and acquisitions, unification of processes, outsourcing and audits are main chapters of the COBIT framework.

Here are the strengths and weaknesses of each:-

ISO 17999 provides security controls. It does not provide implementation guidance and does not specifically address how these processes fit into the overall IT management processes.

ITIL is strong on delivery and support processes. It describes how to structure operational processes but is weak on security controls and processes.

COBIT is focused on controls and metrics. It also lacks a security component but provides a more global view of IT processes at the IT organization management principles than ITIL.

ISO, ITIL, And COBIT: Complementary Or Overlapping?

Looking at these three frameworks, we reach the conclusion that they do in fact complement each other: you can supplement the IT operational process strengths of ITIL with the critical success factors (CSF) and key performance indicators (KPI) of COBIT, and both can make good use of the security processes and controls defined in ISO.

Examples of complementary elements between ITIL Service Support, COBIT, and ISO are:-

Incident management. Defined as an ITIL service support process, it has an ISO complement in case of security incidents as well as a COBIT delivery and support chapter.

Problem management. The COBIT delivery and support chapter defines incident and problem management processes that complement the ITIL problem management process.

Change, configuration, and release management. These ITIL processes have a direct complement in COBIT’s change management and configuration changes as well as in ISO’s operational change control, controls against viruses, and third-party security requirements.

COBIT and ISO also provide guidance, key indicators, and controls for the definition of service-level agreements, capacity planning, availability management, and business continuity, which complement ITIL service delivery processes."

Obviously we should add to this mix the introduction of ISO20000 the new international standard for IT Service Management.

Resources: -

Read the Full Article Here

Want an Overview of ISO20000? Read it Here

Need more information on ISO20000? Find it Here

Need more on information CoBIT? Find it Here

April 26, 2006 in ISO20000, ITIL Best Practice | | Comments (0) | TrackBack (0)

Digg This | Save to del.icio.us

ISO20000 and ITIL - The "Need to Know" Guide

To kickstart the first of three articles on ISO20000, I have received permission from Sandeep Narang of Pepperweed, to re-publish this great introductory article on ISO/IEC 20000 and ITIL.

Sandeep really knows his stuff about ISO 20000 and ITIL and comes across as being about as authoratative as you can get on the subject.

In this first article we examine the effect that ISO 20000 will have on ITIL and learn more about ITIL adoption.

Please feel free to leave a comment (or if you've already subscribed - you can e-mail me directly) and let everyone know what's on your mind about ISO20000.

Further guest article slots are available on this topic for the next week - so let me know.

ISO20000 and ITIL.

By Sandeep Narang. Re-Published from a July 31st article, 2005.

Quality is a journey not a destination. In today's Information Technology Service Management (ITSM) space, there exists a maze of tools, technology, standards, best practices, and regulatory compliance requirements that complicate the path towards service excellence.

One such path that has gained immense popularity is ITIL or the IT Infrastructure Library, a best- practice model that can be used by organizations to implement and improve the delivery and support of IT-related services and solutions.

Contrary to popular belief, ITIL is not a service management standard, but rather a structured approach or process framework on which a growing number of ITSM standards are based. Most prominent among these ITIL-based ITSM standards are the British Standard BS15000-1:2002 and the Australian Standard AS 8018.1-2004. A South African version of the BS15000 standard also exists.

The International Organization for Standardization (ISO) recently adopted the BS15000 standard and is expected to publish the ISO 20000 standard for Service Management by 2006, although many think it likely that this effort will take longer. Adoption of a standard by ISO is not something new to the industry. In fact, ISO had previously adopted the BS7799-2:2002 security standard (in part). A complete ISO version of BS7799-2:2002 is expected to be published early next year, most likely as ISO27001.

What effect will ISO20000 have on ITIL?
While some industry analysts worry that adoption of ITIL by ISO may slow down ITIL process improvements, this does not seem to be the case. In fact, the Office of Government Commerce (OGC) is currently in the process of refreshing and enhancing the ITIL methodology. An endorsement of ITIL by ISO is almost certain to have significant benefits.

ITIL Awareness

In the U.S. adoption of BS15000 has been somewhat slow. A 2004 survey by Gartner, comprised mostly of U.S. companies, found that 58% of respondents had little or no knowledge about ITIL, and 19% of respondents were still evaluating models for standardizing their IT operations. ISO standards, on the other hand, are widely known and accepted in the U.S.

The ISO 9000 standard, for example, had approximately 8500 registered sites in the U.S. in January 1996. Today there are more than 43,400 - owing at least in part to an IRS ruling in January 2000 that many costs associated with ISO 9000 certification would be tax deductible. The number of ISO U.S. registrations is expected to rise even further with additions in the environmental, automotive, medical devices, and aerospace sectors.

ISO has, in fact, become the leading standards body across the globe. As of December 31st, 2004, ISO had developed 14,941 international standards and standards-type documents - 2,287 related to the Electronics, Information Technology and Telecommunications sectors. Given the success of ISO, to date, it is widely expected that ISO 20000 will become the most widely adopted IT standard worldwide, raising awareness and adoption of the ITIL initiative by an order of magnitude.

ISO20000 will provide significant additional benefits in the areas of change acceleration and standards interoperability.

Some of the biggest challenges IT teams face when implementing Service Management include: 1) getting the attention and commitment of senior management and 2) ensuring acceptance and adoption of managed change throughout the organization.

These "resistance bands" are considerably reduced for organizations already registered as ISO certified entities and intending to make use of ISO20000 as a progressive step towards achieving an IT specific certification. In such a scenario, an existing continuous-improvement cycle actively involves all stakeholders within the organization, while enhancing transparency and aiding and improving the Quality Management System.

ISO 20000 adoption will provide significant additional opportunities for leveraging ITIL-based ITSM and complementary standards.

ISO standards are designed to interoperate with other standards and best practices. A recent project at one of the world's largest banks involved combining the implementation of the BS15000 ITIL-based ITSM standard and the BS7799 security standard. In this case, the interoperability between these two standards greatly enhanced the project's success, with ITIL-based infrastructure processes designed and built specifically to support maintenance of security controls and compliance requirements. Many analysts consider ISO 9000 as a good starting point towards ITSM excellence.

For other effects that ISO20000 will have on ITIL, we will have to wait and watch. It is important to note, however, that ISO 20000 will not be an instant panacea for all of IT's issues and opportunities. No model or methodology can fulfill its ROI or business alignment potential "out of the box." As in t-shirts, one size simply cannot fit all. To achieve the full benefits of IT process standardization, ITIL-based ITSM should be addressed holistically along with other quality frameworks such as Six Sigma, COBIT, CMM and related ISO standards.

Sandeep Narang is an ITSM consultant with Pepperweed Consulting, an IT infrastructure and process implementation firm recently listed as an Inc. 500 fastest growing privately held company.


New!  ISO/IEC 20000 Explained - Free Audio Download and 40 Page eBook.


March 26, 2006 in ISO20000 | | Comments (0) | TrackBack (1)

Digg This | Save to del.icio.us

Categories

Learn About ITIL

Recent Comments

Archives

More...

Categories

Recent Posts

About

My Photo

About ITIL

ITIL Books

Notable Sites and Blogs

Latest...

Subscribe to this blog's feed

ITIL Training Latest

    follow me on Twitter

    Social Bookmarks

    • Social Bookmarks
      Click To Bookmark
      Add to: Del.icio.us Add to: StumbleUpon Add to: Furl Add to: Google Add to: Technorati Information

    Success Strategies

    • Success Strategies
      Success Strategies for the Crazy Busy