IT Service Continuity Management: Difference between revisions
From IT Process Wiki
No edit summary |
|||
| Line 8: | Line 8: | ||
<br style="clear:both;"/> | <br style="clear:both;"/> | ||
== IT Service Continuity Management (ITSCM) == | <p> </p> | ||
==<span id="IT Service Continuity Management (ITSCM)">Overview</span>== | |||
''IT Service Continuity Management (ITSCM)'' aims to manage risks that could seriously impact IT services. ITSCM ensures that the IT service provider can always provide minimum agreed Service Levels, by reducing the risk from disaster events to an acceptable level and planning for the recovery of IT services. ITSCM should be designed to support Business Continuity Management. | '''Objective''': ''IT Service Continuity Management (ITSCM)'' aims to manage risks that could seriously impact IT services. ITSCM ensures that the IT service provider can always provide minimum agreed Service Levels, by reducing the risk from disaster events to an acceptable level and planning for the recovery of IT services. ITSCM should be designed to support Business Continuity Management. | ||
'''Part of''': [[ITIL V3 Service Design|Service Design]] | '''Part of''': [[ITIL V3 Service Design|Service Design]] | ||
'''Process Owner''': [[IT Service Continuity Management# | '''Process Owner''': [[IT Service Continuity Management#IT Service Continuity Manager|IT Service Continuity Manager]] | ||
<p> </p> | <p> </p> | ||
== Process | == Process Description == | ||
[[Image:It-service-continuity-management.jpg| | [[Image:It-service-continuity-management.jpg|right|thumb|375px|alt=IT Service Continuity Management ITIL|[https://wiki.en.it-processmaps.com/images/pdf/process_overview_it_service_continuity_management_itilv3.pdf IT Service Continuity Management (ITSCM)]]] | ||
There are no major differences between IT Service Continuity Management in ITIL | There are no major differences between IT Service Continuity Management in ITIL V3 (2007) and ITIL 2011. | ||
'' | Following the introduction of Design Coordination in '''''ITIL 2011''''' the information flows have been adapted. The process overview of [[Media:It-service-continuity-management.jpg|IT Service Continuity Management (.JPG)]] is showing the most important interfaces (see Figure 1). | ||
<p> </p> | <p> </p> | ||
''Note:'' IT Service Continuity Management ensures that appropriate continuity mechanisms are in place. The recovery of IT services is managed through the [[Incident Management]] process, especially the "[[Incident Management#Sub-Processes|Handling of Major Incidents]]" sub-process. | |||
== Sub-Processes == | == Sub-Processes == | ||
These are the IT Service Continuity Management sub-processes and their process objectives: | |||
; | <p> </p> | ||
;ITSCM | ;<span id="IT Service Continuity Support">ITSCM Support</span> | ||
:Process Objective: To make sure that all | :Process Objective: To make sure that all members of IT staff with responsibilities for fighting disasters are aware of their exact duties, and to make sure that all [[IT Service Continuity Management#Index of Disaster-Relevant Information|relevant information]] is readily available when a disaster occurs. | ||
;ITSCM Review | ;<span id="Service Continuity">Design Services for Continuity</span> | ||
:Process Objective: To design appropriate and cost-justifiable continuity mechanisms and procedures to meet the agreed [[IT Service Continuity Management#Business Continuity Strategy|business continuity targets]]. This includes the design of risk reduction measures and [[IT Service Continuity Management#Recovery Plan|recovery plans]]. | |||
;<span id="ITIL ITSCM Testing">ITSCM Training and Testing</span> | |||
:Process Objective: To make sure that all preventive measures and recovery mechanisms for the case of [[IT Service Continuity Management#Disaster Recovery Invocation Guideline|disaster events]] are subject to regular testing. | |||
;<span id="IT Service Continuity Review">ITSCM Review</span> | |||
:Process Objective: To review if disaster prevention measures are still in line with risk perceptions from the business side, and to verify if continuity measures and procedures are regularly maintained and tested. | :Process Objective: To review if disaster prevention measures are still in line with risk perceptions from the business side, and to verify if continuity measures and procedures are regularly maintained and tested. | ||
<p> </p> | <p> </p> | ||
== ITIL | == Definitions == | ||
The following ITIL terms and acronyms (''information objects'') are used in IT Service Continuity Management to represent process outputs and inputs: | |||
<p> </p> | |||
;<span id="Availability ITSCM Security Testing Schedule">Availability/ ITSCM/ Security Testing Schedule</span> | ;<span id="Availability ITSCM Security Testing Schedule">Availability/ ITSCM/ Security Testing Schedule</span> | ||
| Line 68: | Line 77: | ||
;<span id="IT Service Continuity Strategy">IT Service Continuity Strategy</span> | ;<span id="IT Service Continuity Strategy">IT Service Continuity Strategy</span> | ||
:The IT Service Continuity Strategy contains an outline of the approach to ensure the continuity of vital services in the case of disaster events. It includes a list of Vital Business Functions and applied risk reduction or recovery options. The IT Service Continuity Strategy should be based on a [[IT Service Continuity Management#Business Continuity Strategy|Business Continuity Strategy]]. The ITSCM Strategy is underpinned by more detailed [[IT Service Continuity Management#IT Service Continuity Plan|ITSCM Plans]], describing how continuity is ensured for specific disaster events and services. | :The IT Service Continuity Strategy contains an outline of the approach to ensure the [[IT Service Continuity Management#Service Continuity|continuity of vital services]] in the case of disaster events. It includes a list of Vital Business Functions and applied risk reduction or recovery options. The IT Service Continuity Strategy should be based on a [[IT Service Continuity Management#Business Continuity Strategy|Business Continuity Strategy]]. The ITSCM Strategy is underpinned by more detailed [[IT Service Continuity Management#IT Service Continuity Plan|ITSCM Plans]], describing how continuity is ensured for specific disaster events and services. | ||
;<span id="Recovery Plan">Recovery Plan</span> | ;<span id="Recovery Plan">Recovery Plan</span> | ||
:Recovery Plans are created mainly by Availability and IT Service Continuity Management. The plans contain detailed instructions for returning specific services and/or systems to a working state, which often includes recovering data to a known consistent state. | :Recovery Plans are created mainly by [[Availability Management|Availability]] and IT Service Continuity Management. The plans contain detailed instructions for returning specific services and/or systems to a working state, which often includes recovering data to a known consistent state. | ||
;<span id="Test Report">Test Report</span> | ;<span id="Test Report">Test Report</span> | ||
| Line 78: | Line 87: | ||
<p> </p> | <p> </p> | ||
== | == Checklists | KPIs == | ||
* [[ITIL KPIs Service Design#ITIL KPIs IT Service Continuity Management|Key Performance Indicators (KPIs) IT Service Continuity Management]] | * [[ITIL KPIs Service Design#ITIL KPIs IT Service Continuity Management|Key Performance Indicators (KPIs) IT Service Continuity Management]] | ||
* [[ITIL-Checklists#Checklists for IT Service Continuity Management|Checklists IT Service Continuity Management]]: | |||
** [[Checklist ITSCM Risk Analysis]] | |||
** [[Checklist IT Service Continuity Plan]] | |||
** [[Checklist ITSCM Report]] | |||
** [[Checklist Emergency Plan]] | |||
** [[Checklist Protocol Disaster Practice]] | |||
<p> </p> | |||
== | == Roles | Responsibilities == | ||
;IT Service Continuity Manager - Process Owner | ;<span id="IT Service Continuity Manager">IT Service Continuity Manager - Process Owner</span> | ||
:The IT Service Continuity Manager is responsible for managing risks that could seriously impact IT services. | :The IT Service Continuity Manager is responsible for managing risks that could seriously impact IT services. | ||
:He ensures that the IT service provider can provide minimum agreed service levels in cases of disaster, by reducing the risk to an acceptable level and planning for the recovery of IT services. | :He ensures that the IT service provider can provide minimum agreed service levels in cases of disaster, by reducing the risk to an acceptable level and planning for the recovery of IT services. | ||
| Line 91: | Line 107: | ||
<p> </p> | <p> </p> | ||
== | {| border="1" cellpadding="5" cellspacing="0" style="text-align:center;" valign="top" | ||
|- | |||
| valign="top" colspan="6" style="background:#ffffdd;" align="center"| '''Responsibility Matrix: IT Service Continuity Management''' | |||
|- | |||
! width="50%" align="center" style="background:#ffffee;" | ITIL Role | Sub-Process | |||
! style="background:#ffffee;" | [[IT Service Continuity Management#IT Service Continuity Manager|IT Service Continuity Manager]] | |||
! style="background:#ffffee;" | Service Owner[[IT Service Continuity Management#ITIL-Rollen|<small>[3]</small>]] | |||
! style="background:#ffffee;" | Applications Analys[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
! style="background:#ffffee;" | Technical Analyst[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
! style="background:#ffffee;" | IT Operator[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
|- | |||
| align="left" |[[#IT Service Continuity Support|ITSCM Support]] | |||
| A[[IT Service Continuity Management#Accountable|<small>[1]</small>]]R[[IT Service Continuity Management#Responsible|<small>[2]</small>]] | |||
| | |||
| | |||
| | |||
| | |||
|- | |||
| align="left" |[[#Service Continuity|Design Services for Continuity]] | |||
| AR | |||
| R[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
| R[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
| R[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
| | |||
|- | |||
| align="left" |[[#ITIL ITSCM Testing|ITSCM Training and Testing]] | |||
| AR | |||
| | |||
| | |||
| | |||
| R[[IT Service Continuity Management#ITIL Roles|<small>[3]</small>]] | |||
|- | |||
| align="left" |[[#IT Service Continuity Review|ITSCM Review]] | |||
| AR | |||
| | |||
| | |||
| | |||
| | |||
|- | |||
|} | |||
<p> </p> | |||
'''Remarks''' | |||
<span id="Accountable">[1] ''A: Accountable'' Accountable according to the RACI Model: Those who are ultimately accountable for the correct and thorough completion of the IT Service Continuity Management process.</span> | |||
<span id="Responsible">[2] ''R: Responsible'' according to the RACI Model: Those who do the work to achieve a task within ITIL Continuity Management.</span> | |||
<span id="ITIL Roles">[3] siehe [[Roles within ITIL V3|→ Role descriptions ...]]</span> | |||
<p> </p> | |||
<!-- This page is assigned to the following categories: --> | <!-- This page is assigned to the following categories: --> | ||
[[Category:ITIL V3]][[Category:ITIL process]][[Category:Service Design|IT Service Continuity Management]][[Category:IT Service Continuity Management|!]] | [[Category:ITIL V3]][[Category:ITIL process]][[Category:Service Design|IT Service Continuity Management]][[Category:IT Service Continuity Management|!]] | ||
<!-- --- --> | <!-- --- --> | ||
Revision as of 21:07, 29 November 2011
<seo metakeywords="service continuity management, itil service continuity, itil service continuity management, itscm itil v3, service continuity itil, service continuity process" metadescription="IT Service Continuity Management: ITIL process definition - Sub-processes - Terms - Additional information on ITIL V3 ITSCM." />
Overview
Objective: IT Service Continuity Management (ITSCM) aims to manage risks that could seriously impact IT services. ITSCM ensures that the IT service provider can always provide minimum agreed Service Levels, by reducing the risk from disaster events to an acceptable level and planning for the recovery of IT services. ITSCM should be designed to support Business Continuity Management.
Part of: Service Design
Process Owner: IT Service Continuity Manager
Process Description
There are no major differences between IT Service Continuity Management in ITIL V3 (2007) and ITIL 2011.
Following the introduction of Design Coordination in ITIL 2011 the information flows have been adapted. The process overview of IT Service Continuity Management (.JPG) is showing the most important interfaces (see Figure 1).
Note: IT Service Continuity Management ensures that appropriate continuity mechanisms are in place. The recovery of IT services is managed through the Incident Management process, especially the "Handling of Major Incidents" sub-process.
Sub-Processes
These are the IT Service Continuity Management sub-processes and their process objectives:
- ITSCM Support
- Process Objective: To make sure that all members of IT staff with responsibilities for fighting disasters are aware of their exact duties, and to make sure that all relevant information is readily available when a disaster occurs.
- Design Services for Continuity
- Process Objective: To design appropriate and cost-justifiable continuity mechanisms and procedures to meet the agreed business continuity targets. This includes the design of risk reduction measures and recovery plans.
- ITSCM Training and Testing
- Process Objective: To make sure that all preventive measures and recovery mechanisms for the case of disaster events are subject to regular testing.
- ITSCM Review
- Process Objective: To review if disaster prevention measures are still in line with risk perceptions from the business side, and to verify if continuity measures and procedures are regularly maintained and tested.
Definitions
The following ITIL terms and acronyms (information objects) are used in IT Service Continuity Management to represent process outputs and inputs:
- Availability/ ITSCM/ Security Testing Schedule
- A schedule for the regular testing of all availability, continuity and security mechanisms, jointly maintained by Availability, IT Service Continuity and Information Security Management.
- Business Continuity Strategy
- An outline of the approach to ensure the continuity of Vital Business Functions in the case of disaster events. The Business Continuity Strategy is prepared by the business and serves as a starting point for producing the IT Service Continuity Strategy.
- Disaster Recovery Invocation Guideline
- A document produced by IT Service Continuity Management with detailed instructions on when and how to invoke the procedure for fighting a disaster. Most importantly, the guideline defines the first steps to be taken by 1st Level Support after learning that a (suspected) disaster has occurred.
- Index of Disaster-Relevant Information
- A catalogue of all information that is relevant in the event of disasters. This document is maintained and circulated by IT Service Continuity Management to all members of IT staff with responsibilities for fighting disasters.
- IT Service Continuity Report
- The IT Service Continuity Report is created at regular intervals and provides other Service Management processes and IT Management with information related to disaster prevention.
- IT Service Continuity Plan
- IT Service Continuity Plans underpin the ITSCM Strategy, describing how continuity is ensured for specific disaster events and services. It specifies the measures to enhance the resilience of services and describes how to effectively respond to a disaster event. ITSCM Plans usually include references to more detailed Recovery Plans with specific instructions for returning systems to a working state.
- IT Service Continuity Strategy
- The IT Service Continuity Strategy contains an outline of the approach to ensure the continuity of vital services in the case of disaster events. It includes a list of Vital Business Functions and applied risk reduction or recovery options. The IT Service Continuity Strategy should be based on a Business Continuity Strategy. The ITSCM Strategy is underpinned by more detailed ITSCM Plans, describing how continuity is ensured for specific disaster events and services.
- Recovery Plan
- Recovery Plans are created mainly by Availability and IT Service Continuity Management. The plans contain detailed instructions for returning specific services and/or systems to a working state, which often includes recovering data to a known consistent state.
- Test Report
- A report of the preparation, progress and evaluation of a test, created for example during the various tests carried out by Availability, IT Service Continuity or Information Security Management.
Checklists | KPIs
- Key Performance Indicators (KPIs) IT Service Continuity Management
- Checklists IT Service Continuity Management:
Roles | Responsibilities
- IT Service Continuity Manager - Process Owner
- The IT Service Continuity Manager is responsible for managing risks that could seriously impact IT services.
- He ensures that the IT service provider can provide minimum agreed service levels in cases of disaster, by reducing the risk to an acceptable level and planning for the recovery of IT services.
| Responsibility Matrix: IT Service Continuity Management | |||||
| ITIL Role | Sub-Process | IT Service Continuity Manager | Service Owner[3] | Applications Analys[3] | Technical Analyst[3] | IT Operator[3] |
|---|---|---|---|---|---|
| ITSCM Support | A[1]R[2] | ||||
| Design Services for Continuity | AR | R[3] | R[3] | R[3] | |
| ITSCM Training and Testing | AR | R[3] | |||
| ITSCM Review | AR | ||||
Remarks
[1] A: Accountable Accountable according to the RACI Model: Those who are ultimately accountable for the correct and thorough completion of the IT Service Continuity Management process.
[2] R: Responsible according to the RACI Model: Those who do the work to achieve a task within ITIL Continuity Management.
[3] siehe → Role descriptions ...
