Sound IT governance and compliance to regulations, as well as improved accountability, and auditability have become the cornerstones in delivering effective IT services to businesses.
This is according to Dr Don Page, CEO of the Marval Group, who says computers have fast become entrenched in everyday life and over the last few years, organisations have begun to realise that their business now entirely relies upon a sound and effective IT infrastructure.
“In fact, if ICT does not work, in most cases the business and its employees simply cannot work either,” the group says.
Because of the vital nature of IT, Page notes, it has become increasingly important to ensure stakeholder and customer confidence in the way in which these IT services are delivered to the business, and many industries have become heavily regulated as a result.
“The IT challenge is now to deliver standardised, efficient and reliable IT services to the business, drive down costs, reduce risk and increase the organisational value of ICT investment.
“At the same time, IT is under pressure to work within increasingly constrained budgets while continually improving services and ensuring business, stakeholder and customer confidence in the fact that IT investment is being leveraged to its full capacity,” Page says.
Aligning IT and business
Edward Carbutt, executive director at Marval SA, adds that the concept of IT service management (ITSM) is focused on helping organisations to ensure that IT and business are better aligned, and that IT meets the needs of the business in a transparent, repeatable and manageable fashion, driven by processes and procedures.
“In essence, the building blocks of ITSM, such as ITIL [IT Infrastructure Library] and ISO/IEC 20000, are geared towards not only towards ensuring better IT service delivery, but also support good governance by the very nature of their implementation," he says.
According to Carbutt, ITIL offers best practice guidelines to businesses in terms of the management and delivery of IT services, and the latest iteration, ITIL v3, focuses strongly on the areas of continual improvement, service life-cycle and improved change control.
However, he points out, in order for these best practices to be truly effective within an organisation, there is a need for some form of accountability.
“Ensuring a successful ITIL-based service improvement programme means being able to enforce continual improvement strategies and provide evidence to prove quality of service and progress made. This is where ISO/IEC 20000 comes into the picture,” notes Carbutt.
On the other hand, Page notes that where ITIL talks of process and the way things should be done in line with best practice, which can be difficult to implement and control, ISO/IEC 20000 is a prescriptive international standard for the management of the IT and service infrastructure.
Benchmarking infrastructure
The infrastructure, he adds, can be audited and benchmarked against, providing measures that can be used to prove quality of service and progress, ensuring an auditable culture of continual improvement and accountability from the start.
“Instead of offering advice on how things should be done, in essence it offers a formal structure that states how things shall be done, which goes a long way towards standardising IT processes and ensuring auditability and accountability."
He also maintains that ISO/IEC 20000 can be used as a starting point in developing an IT governance framework, as it outlines the minimal critical requirements for IT governance and demonstrates business commitment from IT to its customers, whether these are internal or external.
“And where ITIL relies heavily on the people within an organisation, who are liable to leave with their ITIL certification and the resulting skills, ISO/IEC 20000 is an organisational certification that ensures the continuity of ITSM initiatives beyond the employment cycle of any individual employee," he says.
Share