ISO 20000

From IT Process Wiki
Jump to: navigation, search

diese Seite auf Deutschesta página en españolDE - ES - ISO 20000 - ISO/IEC 20000 - ISO 20000 Requirements


ISO/IEC 20000 (often abbreviated to ISO 20000) is the internationally acknowledged standard for service management. It was developed in 2005 based on the earlier BS 15000, and subsequently revised in 2011 and 2018.

The standard enables organizations to demonstrate reliability and commitment to a high quality of service. ISO 20000 has thus become a competitive differentiator for the delivery of services.

 

In the YaSM Wiki we provide a complete introduction to ISO 20000, covering topics such as:

 

How ITIL and ISO 20000 are related

ISO 20000 requirements and ITIL 2011
Figure 1: ISO 20000

The basic principles behind ITIL and ISO 20000 are very much in line (see also: "Alignment White Paper: ITIL V3 and ISO/IEC 20000", Jenny Dugmore & Sharon Taylor, March 2008). The key differences are:

  • ITIL certifications are available for individuals only, whereas ISO 20000 is a certification scheme for organizations.
  • ITIL is a rather detailed collection of best practices, while ISO 20000 is an international standard that sets out Service Management requirements for IT organizations.
  • When organizations say they are compliant to ITIL, very often this statement is not verifiable; a certification according to the ISO 20000 standard means there has been an objective assessment.

Frequently, an ISO 20000 certification is sought after introducing ITIL, because it allows an IT organization to actually prove that it is a customer-oriented, efficient and effective supplier of IT services. A certification can thus be used for marketing purposes, or to gain access to customers and markets which require their service suppliers to be ISO 20000 certified.

 

ISO 20000 Sections and related ITIL Processes

ITIL was explicitly written to be aligned with ISO 20000, as the following table exemplifies: for every section in ISO/IEC 20000:2011, Part 1 (Mandatory Requirements) there are one or several related ITIL processes.

The following table summarizes in broad terms how the main ISO 20000 processes correspond to ITIL processes (ITIL 2011 main processes).

 

ISO 20000 Sections (ISO/IEC 20000:2011) Related ITIL Processes (ITIL 2011)
Ch. Title Remark
4 Service management system general requirements
4.1 Management responsibility
4.2 Governance of processes operated by other parties
4.3 Documentation management
4.4 Resource management
4.5 Establish and improve the SMS

4.5.1 Define scope
4.5.2 Plan the SMS (Plan)
4.5.3 Implement and operate the SMS (Do)
4.5.4 Monitor and review the SMS (Check)
4.5.5 Maintain and improve the SMS (Act)

5 Design and transition of new or changed services
5.1 General
5.2 Plan new or changed services
5.3 Design and development of new or changed services
5.4 Transition of new or changed Services
6 Service delivery processes  
6.1 Service level management
6.2 Service reporting
6.3 Service continuity and availability management

6.3.1 Service continuity and availability requirements
6.3.2 Service continuity and availability plans
6.3.3 Service continuity and availability monitoring and testing

6.4 Budgeting and accounting for IT Services
6.5 Capacity management
6.6 Information security management

6.6.1 Information security policy
6.6.2 Information security controls
6.6.3 Information security changes and incidents

7 Relationship processes
7.1 Business relationship management
7.2 Supplier Management
8 Resolution processes
8.1 Incident and service request management
8.2 Problem management
9 Control processes
9.1 Configuration management
9.2 Change management
9.3 Release and deployment management

 

Note:

ITIL focuses on the life cycle of services, but offers less guidance on establishing and operating the Service Management System (SMS) itself. As a consequence, it is at times not straightforward to map the ITIL guidance and (especially) Section 4 and Section 5 of ISO 20000, but various ITIL processes together can typically be used to fulfill the requirements.

 

Documentation

The original ISO 20000 documents can be ordered from the publisher's web site: ISO International Organization for Standardization