Professional Documents
Culture Documents
FitSM Advanced Training SPD V2.5 PDF
FitSM Advanced Training SPD V2.5 PDF
1
Purpose of this training
3
FitSM qualification program
Expert Level
Advanced Level
2 days 2 days
Advanced training in Advanced training in
service planning and delivery service operation and control
Foundation Level
4
Agenda of this training
5
FitSM Foundation Wrap-Up & ITSM Basics
6
What is a service?
What is the key purpose of the Which additional factors will impact
service? the customers’ service quality /
performance perception?
7
IT service management
Note: The activities carried out in the ITSM context should be directed by policies
and structured and organised by processes and supporting procedures.
8
Service management system (SMS)
security policy
Control level
Process: Inputs Process managers
Process teams
Activities and roles
e.g. incident management,
change management, security Outputs
management, …
Operational level
Departments
Person (in a role) Proce- Functions
dures
e.g. procedures for Persons
classifying and prioritizing
applies incidents
10
Policies and processes
Note: Policies are then realised in processes, which are in turn made up of
procedures that people carry out.
11
Activities and procedures
12
What is a process?
The development of the FitSM standards is supported and funded by the European
Commission through the EC-FP7 project “FedSM” under contract number 312851.
14
FitSM parts
Terminology
FitSM-0
Overview & vocabulary
Requirements
FitSM-1
Requirements
FitSM-2 FitSM-3
Support & Guidance
FitSM-5 FitSM-6
FitSM-4
Selected Maturity and
Selected templates
implementation capability assess-
and samples
guides ment scheme
15
FitSM logic
16
FitSM: ITSM process framework
17
Related standards and frameworks
ISO 9000
Legend
IT service management
ITIL FitSM standard / framework
Quality management
standard
Information security
COBIT
management standard
Software engineering
maturity model
18
ITIL, ISO/IEC 20000, COBIT
IT Infrastructure Library
• Number of books with "good practice" • Most popular and wide-
in IT Service Management spread framework
• Slogan: "the key to managing IT • Not a "real" standard, but
services" often related to as "de-facto
• Descriptions of key principles, standard"
concepts and processes in ITSM • 5 books released by the
British Cabinet Office
ISO/IEC 20000
• International standard for managing • Developed by a joint
ISO/IEC 20000 and delivering IT services committee (JTC) of ISO and IEC
• Defines the minimum requirements on • Based on ITIL®, BS 15000
ITSM • Auditable, certifiable
Control Objectives for Information and
Related Technologies • Developed by ISACA
• IT Governance framework • can be combined with ITIL®
• Specifies control objectives, metrics, and ISO/IEC 20000
maturity models
19
ISO 9000, ISO/IEC 27000, CMMI
ISO 9000
• International standard for quality • Applicable to all organizations
management and branches
ISO 9000 • Quality management principles • Auditable, certifiable
• Minimum requirements for a quality • Several documents
management system
ISO/IEC 27000
• International standard for information • Applicable to all organizations
security management and branches
ISO/IEC 27000 • Minimum requirements for an • Auditable, certifiable
information security management • Based on BS 7799
system (ISMS) • Auditable, certifiable
• More than 100 security controls • Several documents
Capability Maturity Model Integration
• Maturity and capability model • Developed by SEI (Software
• Organizational maturity assessment Engineering Institute),
Carnegie Mellon University
20
ITSM: Benefits and risks in practice
21
Challenges in federated IT service
provisioning
22
Examples of federator roles (“business
models”)
Advisor
ITSM perspective
Matchmaker
24
Selected General Aspects of Establishing a
Service Management System
25
Overview
26
Top management responsibility
Why?
To ensure that top management of the organisation(s) involved
in the delivery of services is clearly committed to a service- and
process-oriented approach and that they fulfil their leadership
duties
27
Top management responsibility:
Important terms & concepts
Definition following FitSM-0:
Top management:
Senior management within the service provider organisation or federation who
set policies and exercise overall control of the organisation or federation.
28
Top management responsibility:
Requirements according to FitSM-1
GR1 Top Management Commitment & Responsibility
REQUIREMENTS
• GR1.1 Top management of the organisation(s) involved in the delivery of services shall show
evidence that they are committed to planning, implementing, operating, monitoring,
reviewing, and improving the service management system (SMS) and services. They shall:
o Assign one individual to be accountable for the overall SMS with sufficient authority to
exercise this role
o Define and communicate goals
o Define a general service management policy
o Conduct management reviews at planned intervals
• GR1.2 The service management policy shall include:
o A commitment to fulfil customer service requirements
o A commitment to a service-oriented approach
o A commitment to a process approach
o A commitment to continual improvement
o Overall service management goals
29
Documentation
Why?
To ensure that policies, processes and procedures and their
outputs are sufficiently documented to support and enhance
effectiveness and traceability of IT service management
30
Documentation:
Requirements according to FitSM-1
GR2 Documentation
REQUIREMENTS
• GR2.1 The overall SMS shall be documented to support effective planning. This
documentation shall include:
o Service management scope statement (see GR3)
o Service management policy (see GR1)
o Service management plan and related plans (see GR4)
• GR2.2 Documented definitions of all service management processes (see PR1-PR14) shall be
created and maintained. Each of these definitions shall at least cover or reference:
o Description of the goals of the process
o Description of the inputs, activities and outputs of the process
o Description of process-specific roles and responsibilities
o Description of interfaces to other processes
o Related process-specific policies as applicable
o Related process- and activity-specific procedures as required
31
Documentation:
Requirements according to FitSM-1
GR2 Documentation
REQUIREMENTS
• GR2.3 The outputs of all service management processes (see PR1-PR14) shall be documented,
and the execution of key activities of these processes recorded.
• GR2.4 Documentation shall be controlled, addressing the following activities as applicable:
o Creation and approval
o Communication and distribution
o Review
o Versioning and change tracking
32
Documentation:
Important terms & concepts
Definition following FitSM-0:
Document:
Information and its supporting medium
33
Documentation:
Examples
• Examples of documents that are not records:
– Policy
– Plan
– Process description
– Procedure definition
– Agreement
– Contract
• Examples of documents that are records:
– Ticket (e.g. incident / service request / change ticket)
– Training record
– Audit report
– Meeting minutes
– Visitor list / guestbook
34
Defining the scope of service management
Why?
To agree and document the extent and boundaries of the SMS by
clearly defining the service(s), organisation(s) and location(s) for
which the SMS is valid
35
Defining the scope of service management:
Requirements according to FitSM-1
GR3 Defining The Scope Of Service Management
REQUIREMENTS
• GR3.1 The scope of the SMS shall be defined and a scope statement created.
36
Defining the scope of service management:
Examples of scope statements
• Example:
The SMS of the ACME IT service unit that delivers Microsoft
Windows-based desktop and communication services from
their data center site in Amsterdam to all ACME business
units at locations in The Netherlands
37
The PDCA cycle applied to the SMS
Why?
To ensure that the SMS as a whole is solidly planned,
implemented, monitored and continually improved
38
Plan-Do-Check-Act Cycle (PDCA)
Maturity
Time
• Quality management approach according to W. E. Deming
• Cyclical optimization of quality leads to continual improvement
• Plan-Do-Check-Act can be applied to the whole service management system
39
PDCA applied to the SMS: Brief overview
40
Planning ITSM:
Requirements according to FitSM-1
GR4 Planning Service Management (PLAN)
REQUIREMENTS
• GR4.1 A service management plan shall be created and maintained.
• GR4.2 The service management plan shall at minimum include or reference:
o Goals and timing of implementing the SMS and the related processes
o Overall roles and responsibilities
o Required training and awareness activities
o Required technology (tools) to support the SMS
• GR4.3 Any plan shall be aligned to other plans and the overall service management plan.
41
Planning ITSM:
Roles and responsibilities
Description ITSM example Non-ITSM
example
Generic role A conceptual class of role which is Process manager Flight captain
instantiated in a specific context to
create a specific role
Specific role A concrete role which can be Incident manager Flight captain for
assigned to a person or team in order (process manager flight XX123 from
to give this person or team the for the incident and Munich to Brussels
responsibility for something service request
management
process) of an IT
service provider
42
Planning ITSM:
Generic roles according to FitSM-3
• SMS owner
• SMS manager
• Process owner (optional)
• Process manager
• Case owner
• Member of process staff
• Service owner
43
SMS owner: General tasks
46
Process manager: General tasks
47
Case owner: General tasks
Note: The role of a case owner is usually required in a process, if occurrences (e.g. incidents,
service requests, problems, changes, releases, …) or logical entities / artefacts (e.g. different
types of agreements, reports or plans, …) are managed by the process, and the process manager
him- / herself does not take over specific responsibility for all of these occurrences or entities.
48
Member of process staff: General tasks
49
Service owner: General tasks
50
Planning ITSM:
Summary of the role model
SMS owner
SMS manager Overall service management system (SMS)
Incident 142
Incident 143
Incident 144 Case owner
ISRM staff
51
Implementing ITSM:
Requirements according to FitSM-1
GR5 Implementing Service Management (DO)
REQUIREMENTS
• GR5.1 The service management plan shall be implemented.
• GR5.2 Within the scope of the SMS, the defined service management processes shall be
followed in practice, and their application, together with the adherence to related policies
and procedures, shall be enforced.
52
Monitoring and reviewing ITSM:
Requirements according to FitSM-1
GR6 Monitoring And Reviewing Service Management (CHECK)
REQUIREMENTS
• GR6.1 The effectiveness and performance of the SMS and its service management processes
shall be measured and evaluated based on suitable key performance indicators in support of
defined or agreed targets.
• GR6.2 Assessments and audits of the SMS shall be conducted to evaluate the level of maturity
and compliance.
53
Continually improving ITSM:
Requirements according to FitSM-1
GR7 Continually Improving Service Management (ACT)
REQUIREMENTS
• GR7.1 Nonconformities and deviations from targets shall be identified and corrective actions
shall be taken to prevent them from recurring.
• GR7.2 Improvements shall be planned and implemented according to the Continual Service
Improvement Management process (see PR14).
54
Agenda of this training
55
ITSM Processes for the Planning & Delivery
of Services
56
Overview
57
Common structure of the presentation of
ITSM processes in this training material
• Objective
• Important terms & concepts
• Process-specific requirements according to FitSM-1
• Initial process setup
• Inputs & outputs
• Ongoing process activities
• Roles
• Critical success factors & KPIs for selected
• Simplified application example ITSM processes
58
Overview
59
Service Portfolio Management (SPM)
Objective
To define and maintain a service portfolio
60
SPM: Important terms & concepts
Service
Customer
62
What are the services of a hotel?
• Elevator • Concierge
• TV • Swimming Pool
• Accommodation • Cleaning
• Conference rooms • Pay TV
• Restaurant • Fire detection system
• Laundry • Food sourcing
• Room service • Facility management
• Fitness centre • Internet, Wifi
• Parking • Limousine
• Website • Air conditioning
• Invoice system • Access control
63
SPM: Important terms & concepts
Note: The service portfolio includes meta-information about services such as their
value proposition, target customer base, service descriptions, technical
specifications, cost and price, risks to the provider, service level packages offered
etc.
64
SPM: Important terms & concepts
Note: A service design and transition package should be produced for every new or
changed service. It may consist of a number of documented plans and other
relevant information, available in different formats, including a list of
requirements and service acceptance criteria (SAC), a project plan, communication
and training plans, technical plans and specifications, resource plans,
development and deployment schedules / timetables etc.
65
SPM: Important terms & concepts
Service Service
portfolio catalogue
basis
for Customer
66
SPM: Requirements according to FitSM-1
67
SPM: Initial process setup
68
SPM: Inputs & outputs
Inputs
Outputs
Customer demand and
requirements A complete and up-to-date service
Understanding of the service portfolio
provider’s resources and Valid and consistent service
capabilities descriptions / specifications
Understanding of the service Service design and transition
provider’s limitations and packages for new or changed
constraints services
69
SPM: Ongoing process activities
71
SPM: Critical success factors & KPIs
72
A simplified example
73
Overview
74
Service Level Management (SLM)
Objective
To maintain a service catalogue, and to define, agree and monitor service
levels with customers by establishing meaningful service level agreements
(SLAs) and supportive operational level agreements (OLAs) and
underpinning agreements (UAs) with suppliers
75
SLM: Important terms & concepts
Note: Typical service targets might include availability or resolution time for
incidents, though many hard and soft targets can be considered.
Definition following FitSM-0:
Underpinning agreement (UA):
Documented agreement between a service provider and an external supplier that
specifies the underpinning service(s) or service component(s) to be provided by
the supplier, and the service targets that define how it will be provided.
77
SLM: Requirements according to FitSM-1
78
SLM: Important terms & concepts
79
SLM: Types of service agreements and
their relationships
Customer
IT service
Service components provider
80
SLM: Initial process setup
81
SLM: Inputs & outputs
Inputs
Outputs
Defined service portfolio
General and specific customer Up-to-date service catalogue
requirements Default / corporate level SLA
Individual SLAs with
customers
Supporting OLAs and UAs
82
SLM: Ongoing process activities
83
SLM: Activities
84
SLM: Roles
85
SLM: Roles
86
SLM: Critical success factors & KPIs
87
A simplified example
88
Overview
89
Service Reporting Management (SRM)
Objective
To specify all service reports and ensure they are produced
according to specifications in a timely manner to support
decision-making
90
SRM: Important terms & concepts
91
SRM: Requirements according to FitSM-1
92
SRM: Initial process setup
93
SRM: Inputs & outputs
Inputs
Outputs
Reporting requirements (e.g.
from SLAs) List of all (agreed) service
reports
Specifications of all service
reports
Actual reports (produced on a
regular basis)
94
SRM: Ongoing process activities
95
SRM: Roles
97
A simplified example
Pizza delivery
service level
report
Customer
complaints
report
…
98
Overview
Objective
To ensure sufficient service availability to meet agreed
requirements and adequate service continuity in case of
exceptional situations
100
SACM: Important terms & concepts
101
SACM: Important terms & concepts
102
SACM: Requirements according to FitSM-1
103
SACM: Initial process setup
104
SACM: Inputs & outputs
Inputs
Outputs
Service availability and continuity
requirements (e.g. from SLAs) Service availability and continuity
Risk factors having impact on the plans
capability of delivering services Service availability and continuity
according to agreed availability monitoring plans / concept
and continuity targets
Service availability and continuity
monitoring records / reports
105
SACM: Ongoing process activities
106
SACM: Roles
108
Overview
109
Capacity Management (CAPM)
Objective
To ensure sufficient capacities are provided to meet agreed
service capacity and performance requirements
110
CAPM: Important terms & concepts
Note: This might mean the total disk capacity or network bandwidth. It could also
be the maximum ability of a system to process requests or respond to customers.
111
CAPM: Requirements according to FitSM-1
112
CAPM: Initial process setup
113
CAPM: Inputs & Outputs
Inputs
Outputs
Service performance and capacity
requirements (e.g. from SLAs) Capacity plans (reflecting
Current level of capacities plus demands, planned upgrades,
information on the past, current downgrades and reallocations of
and future (predicted) utilisation of resources)
resources Capacity and service performance
Information on available resources monitoring plans / concept
and constraints Capacity and service performance
monitoring records / reports
114
CAPM: Ongoing process activities
115
CAPM: Roles
117
Overview
118
Information security management (ISM)
Objective
To manage information security effectively through all activities
performed to deliver and manage services, so that the
confidentiality, integrity and accessibility of relevant information
assets are preserved
119
ISM: Important terms & concepts
120
ISM: Confidentiality and integrity
10110100
10110100 01011001
01011001 10101100
10110100
10101100 11001011
10100100
11001011
01000110
Alice Bob Alice 11001011
Bob
Chuck
Chuck
121
ISM: Important terms & concepts
122
ISM: Requirements according to FitSM-1
123
ISM: Initial process setup
124
ISM: Initial process setup
125
ISM: Inputs & outputs
Inputs
Information security requirements (from
Outputs
SLAs, legislation, contracts)
Up-to-date inventory of information
Relevant risk factors (information on assets
assets, vulnerabilities, threats)
Approved information security policies
Up-to-date information security risk
assessment
Documented information security
controls
Reports on information security events,
incidents and follow-up actions
126
ISM: Inputs & outputs
Asset inventory
IS-Risiken
IS risks
IS-Risiken
Information
security
policies Information security
controls
127
ISM: Ongoing process activities
128
ISM: Ongoing process activities
129
ISM: Ongoing process activities
130
ISM: Roles
133
ISM: Critical success factors & KPIs
136
Customer Relationship Management (CRM)
Objective
To establish and maintain a good relationship with customers
receiving services
137
CRM: Important terms & concepts
138
CRM: Requirements according to FitSM-1
139
CRM: Initial process setup
140
CRM: Inputs & outputs
Inputs
Outputs
Information on service customers
Current service catalogue Up-to-date database of service
Customer demands and customers (customer database)
requirements Service review reports
Existing SLAs with customers Customer complaints records
Customer complaints Customer satisfaction reports
141
CRM: Ongoing process activities
142
CRM: Ongoing process activities
143
CRM: Roles
145
Supplier Relationship Management (SUPPM)
Objective
To establish and maintain a healthy relationship with suppliers
supporting the service provider in delivering services to
customers, and monitor their performance
146
SUPPM: Important terms & concepts
147
SUPPM: Requirements accord. to FitSM-1
148
SUPPM: Initial process setup
149
SUPPM: Inputs & outputs
Inputs
Outputs
Information on suppliers
Information on supplier Up-to-date supplier database
offerings Supplier performance reports
UAs with suppliers
150
SUPPM: Ongoing process activities
151
SUPPM: Roles
152
A simplified example
153
Agenda of this training
154
ITSM Process Interfaces & Dependencies
155
Service Planning & Delivery: Overview of
key process interfaces
Service Service
SDTPs SLM catalogue reports
Identified
customer SACM CAPM
SUPPM requirements
CRM
Supplier Customer
Supplier Customer Av. & cont. Capacity
performance satisfaction
database reports reports database plans plans
156
Explanations
XXX ITSM process, i.e. one of the service planning & delivery processes introduced earlier
[artefact] is a basis for / used for / aligned with / referenced from [artefact]
[output] is at the same time input to [ITSM process] (relevant for “closed-loop”
processes) – i.e. the output is maintained by its “producing” ITSM process and
requires regular reviews / updates
157
Detailed process interfaces: SPM, SLM and
CRM
Service
specifications
Service
SPM portfolio
Service
SDTPs SLM catalogue
Identified
customer SLAs
requirements
CRM
158
Detailed process interfaces: SLM, CRM and
SUPPM
Service
SLM catalogue
Identified
customer SLAs
requirements
OLAs
CRM UAs
159
slide in this deck (v2.5) what has changed comments
compard to v2.4?
23 (federation models) slight update with copied over from latest
examples and minor text interim Foundation slides
adjustments (v2.10b)
45 (SMS manager role) new slide
63 (services of a hotel) new slide
65 (SDTP) new slide
117 (Cap. Plan Onwer) new slide
All slides reg. the process role description of process
manager role of a specific owner added
process (e.g. 71 for SPM)
160