IT Management
IT-ServiceManagement

IT Services, Security Management and Audit Programmes

IT Service Management is a growing concern for many organizations. Also customers demand that your organization's IT Services are managed properly in case of outsourcing. There is a growing trend that these IT Services must be managed according standards (see also Service Oriented Enterprise Certification)

Organizations engage Globeron for consultancy and gap analysis before applying for certifications like ISO/IEC 20000 - BS15000 (the first IT Service Management Standard) The list below is an overview of emerging standards:

1 - Service Oriented Process Management

2 - Service Oriented Infrastructure (SOI)

3 - Service Oriented DataCenter

1 - Service Oriented Process Management

I SO/IEC 20000 / BS15K-RAP - BS15000 Readiness Assessment

Info: IT Service Management Standardization  ISO/IEC 20000 - BS15000, BS15000 Certification, BS15000 info and ITSMF

Program BS15000 ("British Standard") is the first and only worldwide standard specifically aimed at IT Service Management. BS15000 will become the standard in the world for IT Service Management and will become the "ISO9000" for IT service providersIt has been approved for a fast track approach for ISO and will be officially called ISO/IEC 20000 expected to be completed in mid 2006.

It is an integrated set of management processes for the effective delivery of IS/IT Services to the business and its customers. This is applicable to both internally managed IS/IT delivery organizations and to commercial organizations delivering IS/IT Services to their customers and the market place.

BS15000 is aligned with, and complementary to, the process approach defined within the IT Infrastructure Library (ITIL) from the UK Office of Government Commerce (OGC). The Standard was developed by the British Standards Institute (BSI) but the scheme is owned by the itSMF (IT Service Management Forum – International).

For service providers in the outsource and system integration space this will be one of the key marketing advantages a company will have and will enable them to secure more contracts as customers will have the confidence that a BS15000 certified company will be able to deliver consistent and controlled quality service levels. There is also a compelling argument and competitive advantage for organizations to achieve such a formal certification scheme.

The benefits derived from ISO9000x and BS7799, ISO/IEC17799 or ISO/IEC 27001:2005 are good examples where such certifications have helped to established consistent and reliable products, increased service quality and security assurances to customers, and to establish superior worldwide business leadership. Whether we like it or not…. Isn't it time for you to get certified?

ITIL / BS15000 - Introduction to IT Service Management and BS15000

ITIL ("IT Infrastructure Library") and BS15000 ("British Standard") are the buzz words in the IT Service Management Industry. But, what is this all about? What is the background of these best practices and standards and what would it mean for your organization? This half day introduction Seminar will tell you all there is to know:

  • What Is IT Service Management ?
  • History of ITIL and evolution to BS15000 - ISO/IEC 20000
  • The ITIL Framework Structure
  • The BS15000 Standard & Code of Practice
  • The Market Need and Opportunity
  • How to achieve BS15000 - ISO/IEC 20000 ?

After this half day seminar you will understand fully what the market drivers are and how your organization can benefit from this exciting industry opportunity. In addition to that you will get a useful insight on how to go about implementing BS15000 in your organization

IT Security Standardization BS7799 / ISO17799 / ISO-IEC 27001:2005

Info: IT Security Standardization BS7799 - ISO/IEC 17799 / ISO/IEC 27001, 27002 and 27004

In general use, ISO 17799 / ISO IEC 27001:2005 is a generic term, embracing both ISO 17799 (published by ISO) and BS7799-2 (published by BSI). The former of these two documents is a code of practice for information security management: see the Contents of ISO 17799. The latter is a specification for information security management: see the Contents of BS7799-2.

Certification is currently available against BS7799-2 eventually to be renamed (ISO 27001) and is granted through an Accredited Certification Body. As a worldwide standard, the number of certified entities is increasing, with representation across the world.  Publication of ISO/IEC 27001 is anticipated at the end of this year or perhaps early in 2006.

2 - Service Oriented Infrastructure (SOI)

IT Service Oriented and Delivery Architectures

Info: DataCenter IT Infrastructure Design, Implementation, Migration & Management, Service Oriented Infrastructure,  Service Architecture, IT Architecture Certification

Allowing processes to interconnect easily in a flexible infrastructure based on business needs, the Service Oriented Architectures (SOA) / Service Oriented Infrastructure (SOI) approach is ideally suited to a modern dynamic enterprise. Properly managed and secured SOA can provide the reliability and interoperability that are the critical enablers. Driven by the need for greater business agility, increased IT asset reuse, and reduced complexity throughout the entire enterprise, companies of all sizes implement SOA to reap a number of important benefits, including easier resource sharing, fewer information silos, simpler structure, and a reduced risk of lock-in into proprietary systems.

As enterprise systems mature and services become widely used, key performance indicators (KPIs) and Service Level Agreements are becoming crucial business contracts. Agencies that are tasked with the delivery of critical services will need to be able to provide consistent quality of service based on KPIs. To fully benefit from SOA, the right metrics have to be in place and consistently used.

With the number of services on the network available to users increasing, which amplifies the network effect, the value of such services grows exponentially. In the near future, as organizations increase the flexibility and responsiveness of their business processes by directly interoperating with their suppliers, customers, and other partners, the SOA approach will become indispensable.

3 - Service Oriented DataCenter

IT DataCenter Business Continuity / Disaster Recovery (DCR) Standardization SS507

Info: IT DataCenter Business Continuity / Disaster Recovery (BC/DR) Standardization SS507, iDA BC/DR Brochure

Your IT assets and main IT core components are usually located in the Datacenter. Therefore it is important that these IT assets are in a good controlled environment. The Datacenter Compliance Review (DCR) is a thorough review of your data centre in line with industry standards such as SS507 and other norms and best practices for mission critical sites. It allows you to understand the fundamental gaps and risks in your Datacenter which could lead to High Availability problems, increased operating and maintenance cost. The outcome will allow you to address possible issues and areas of improvement allowing you to rectify issues before they become problems and to pro-actively budget for improvements.

The DCR service is often used by companies to plan for improvement or as an in-depth assessment as part of Business Continuity and Disaster Recovery (BC/DR) planning and implementation initiatives.

DCR is also used as a stepping stone to the DCC services which provides Certification based on international norms. During the audit various documentation and processes will be reviewed and will also consist of a survey of the Data Centre itself and supporting facilities such as UPS Room etc.

The audit reviews the following areas:

  • Data centre location and construction
  • Electrical layout and dimensioning
  • Environmental control and monitoring
  • Fire Suppression
  • Electromagnetic Field analysis
  • Network Infrastructure
  • Operational Security Processes
  • Safety measures
  • Maintenance and Support

The output of the audit will be a concise report which will highlight the findings, potential risks and suggestions for improvement.

Contact Information

Contact: sales@globeron.com

 

© Copyright Globeron Pte Ltd 2003-2007. All rights reserved - Contact: webmaster@globeron.com