February 2011 - Posts - CA on Service Management

This Blog

Home
Contact

Syndication

February 2011 - Posts

Effective use of frameworks and standards in the cloud

Published: February 24 2011, 04:53 PM | no comments
by Robert Stroud

Recently I was asked on a press interview if ITIL, COBIT and standards such as ISO/IEC 20000 were relevant in the cloud? It appears that some believe that if you abdicate your IT to a third party such as an outsourcer or place it in the cloud you are no longer accountable for delivery. Such thoughts are absolute rubbish. Just because you leverage a third party you are still accountable for the delivery of the service to the business so you had better have your processes well organized. Doing so will move attention from management of incidents to ensuring that service is delivered at the service levels commensurate with the value of the service.

I am a strong believer in the theory that cloud computing will continue to grow but I'm also pragmatic. Solving an incident in today's complex multi-partner environment is challenging. You need to know who is delivering each component and that the correct controls are in place to ensure service continuity. Further, as the Business will be paying "green dollars" for the consumption, more than likely they are going to want to approve the additional capacity.

This is all well and good, if it is an arrangement where there is a single supplier, but in reality there will often be multiple partners involved. This is where good use of automation with embedded controls will play a pivotal role. By correctly investing in effective automated process leveraging the control identified in COBIT organizations can ensure they are in compliance with the organization's governance and risk appetites.

So where do you start? I strongly suggest that you start with the ISACA publication "Implementing and continuously improving governance" available on the ISACA website (http://www.isacsa.org/). The publication provides a good-practice approach for implementing IT governance based on a continual improvement life cycle that should be tailored to suit the enterprise's specific needs and covers areas such as

Positioning IT governance
Taking the first steps towards IT governance
Challenges and success factors
Enabling change
Implementing a continual improvement life cycle
Using COBIT, Val IT and Risk IT components

ISACA provides a wide range of resources supporting the guide and COBIT, Val IT and Risk IT are freely downloadable from www.isaca.org.

Share this post:

Tags: Governance, ISACA, IT, VAL IT, Robert Stroud, cobit 5, risk IT, service management

By: Robert Stroud
Robert Stroud serves as VP and as Service Management, Cloud Computing and Governance Evangelist at CA Technologies. Robert also serves as an International vice president of ISACA, is part of the Framework committee and was the former chair of the COBIT Steering Committee. Robert also serves on the itSMF...
Read More..

COBIT SIG: Growing rapidly in North America. What are you missing?

Published: February 22 2011, 12:58 PM | 2 Comment(s)
by Robert Stroud

The itSMF USA COBIT Special Interest Group (SIG) commenced in March 2010, and is one of the fastest growing SIGs within the itSMF movement. The purpose of the SIG is to increase visibility and interoperability between the ITIL and COBIT Frameworks through a collaborative network of professionals interested in sharing good practices.

The primary role of the COBIT SIG is to serve as an advisory and expert panel for knowledge transfer and collaboration on various COBIT related subjects as they relate to the field of IT Service Management. The group meets virtually on a quarterly sharing information share experiences, developments, and good practices regarding COBIT. This week I am honored to be the presenter and I will be presenting the topic "Implementing and continually improving IT" on Thursday February 24 at 1pm (Eastern US time). In this session I will be presenting an overview of the ISACA publication Implementing and Continually Improving IT Governance. The publication available for purchase on the ISACA bookstore is an excellent practical publication for the IT Governance practitioner.

Topics covered in the book include;

Positioning IT Governance
Taking the First Steps Towards IT Governance
Identifying Implementation Challenges and Success Factors
Implementing Continual Improvement
Using CobiT®, Val IT^TM and Risk IT Components

Following the overview of the publication I will be taking your Governance questions and I am planning of documenting some of the Q&A on the blog.

If you have not attended a SIG meeting or you would like to attend this one, please register.

Hope to see you Thursday!

Share this post:

Tags: IT Governance, Governance, IT, VAL IT, Robert Stroud, cobit 5, risk IT, service management, SIG

Is IT really delivering benefits to the business?

Published: February 17 2011, 12:44 PM | no comments
by Robert Stroud

Is your organization guilty of wasting IT expenditure? Do you communicate value back to the business in terms they can relate? Are you transparent in terms of expenditure, priorities and delivery against initial forecasts and estimations? It is not a new phenomenon but even today, more than 20% of IT spend is a staggering US $600 Billion is being wasted globally!

When investments are made in the area of IT enabled business change, they are usually committed to transform the business for efficiency, agility, value and can only deliver value where appropriate governance and management processes are in place. With the global economy moving out of recession it is critical that we put processes in place to ensure that decisions taken are based on the correct organizational priorities and are reviewed constantly so that decisions can be made based on valid factual data.

In the past, many IT groups have managed projects based on the experience of a few great people that can track much of this in their heads, on spreadsheets, or perhaps by using a series of reminders in Outlook. Unfortunately, this is no longer possible, nor appropriate, in an age where compliance is mandatory and the service supply chain is growing more complex by the minute.

ISACA has developed a number of frameworks (COBIT is probably the best known) including VAL IT 2.0 which fills the gap for a framework that delivers the guidance for Value Management.

The Val IT 2.0 framework is a set of good practices that enables management to effectively govern IT investments to effectively derive optimal value. The framework provides a means to measure, monitor and optimize the realization of value from investments in IT. It complements COBIT and will help all those with an interest in benefits realization and value delivery from IT. Val IT 2.0 provides significant enhancements over its predecessor, containing components such as maturity model, goals, inputs and outputs for each process and key performance measurements.

I will be delivering a number of sessions on VAL IT 2.0 at events this year including an ‘on-demand' presentation and series of half day workshop at conferences this year. The first opportunity for you to hear more is at the ISACA EuroCACS 2011 conference, March 21-23 in Manchester (UK) where I will be delivering a session on VAL IT 2.0 called "Enhancing Business Value of IT with Val IT 2.0". If you are interested in attending the ISACA EuroCACS event to hear this session, good news, there is still time. If you cannot attend the event a webcast on Val IT 2.0 is available on the ISACA webcast.

Share this post:

Tags: COBIT, ISACA, IT, VAL IT, Robert Stroud, service management, ISACA EuroCACS

The phone, an SLA, and a broken business process!

Published: February 16 2011, 01:38 PM | no comments
by Robert Stroud

Have you ever ignored the warning signs of a failing device? I did, although I should have known that my phone was dying and like a good Boy Scout, I should have been prepared. The time between each charge of my mobile phone had been rapidly reducing and I just didn't bother with it, although I knew I should have. Then it happened--total failure to charge. The thing is, I was never was a Boy Scout, so preparation had not entered my mind. Instead, I thought that I would deal with it when it happened. Besides, how long can it take to get a new phone?

Upon realizing that my device had failed, I visited that well known support site, "Google," and searched for assistance. I got many wonderfully varied responses from flushing down the toilet (not recommended, not eco friendly and if not illegal should be) to trying all sorts of restores to the best answer of all, call your provider and order a new one (note to self next time just use the corporate service desk. It's faster).

I ordered the new device, but remember how I thought that it wouldn't take too long to get a new phone? Well, a week later it showed up, delayed due to ice storms which is considered an "act of God" and therefore modified the two day delivery SLA (still cannot find that in the fine print). Then, after it was charged and ready to go, I activated it online. So far so good, right? Wrong.

It appears that when I ordered the phone I asked for my existing plans to be transferred to my new service but as some of them were no longer offered, the phone company decided to simply not activate the feature. Of course, they failed to communicate this with this to me and it took me two days and a support call to figure this out! And they say technology is supposed to be simple!

The are some good nuggets of insight here. First, the SLA and the Ice Storm.The modification of my two day delivery SLA due to the act of God is quite appropriate. I understand about the SLA modification and I wish more IT organizations would consider this. Last week I was speaking to an large healthcare organization and they were reporting downtime against SLA's and including time down due to planned changes. Now, to be clear, the absolute number of minutes the service is unavailable is important, but I am firm believer that if the window has been negotiated and approved to implement IT-enabled business change you shouldn't count it against the SLA. The same is true of downtime due to maintenance and so on with the caveat that you negotiated these windows based on business requirements. Be fair to your customers.

The second nugget of insight was the total failure of the business process when I transferred my service. The business policy is clear that if there is no equivalent plan the capability doesn't transfer but rather than simply remove the feature, a better approach would be to contact the customer. This could still be undertaken in an automated manner. I hold the phone carriers business culpable here, not the IT person I called. Upon reflection, these types of challenges are probably going to become more prevalent in the future as business process continues to be delivered via technology. This means that business requirements are going to have to be articulated to customers long before implemented through technology.

I have my phone and it's up and running fine now. Which makes me a happy evangelist, now able to travel from venue to venue sharing the message of effective governance of enterprise IT, service management, effective use of social media and now there is a new message--that you should treat your mobile telecommunication device well--you don't want to be left without it!

Share this post:

Tags: Business and IT Integration, IT, SLA, Robert Stroud, customer service, business processes, service management, mobile, Act of God

Delivering operational effectiveness and efficiency with demand rapidly increasing

Published: February 15 2011, 02:42 PM | no comments
by Robert Stroud

If you believe all the current hype in the media, we are heading out of recession and although effective cost management remains important, innovation is a critical deliverable for the business. To drive innovation, most businesses will leverage technology.

It's a frustrating juxtaposition. There is increasing business intensity and a mandate that IT budgets remain flat or only increase minimally. At the same time, technology is advancing at an ever accelerating pace. This places pressure on IT to manage the accelerated rate of change whilst ensuring effective operations and still maintaining compliance. Successful execution must include leveraging good practices to assist them in integrating IT with the Business, whilst at the same time achieving efficient and effective service delivery and ensuring enterprise governance of IT.

I will be delivering a session called "Delivering operational effectiveness and efficiency" at the ISACA EuroCACS 2011 conference, March 21-23 in Manchester (UK), where I will be exploring using good practices such as ITIL and COBIT in the prevailing business climate. This session will leverage the "COBIT users guide for service mangers" to guide attendees and their organizations through their journey of business and IT integration whilst being agile and meeting compliance requirements.

If you are interested in attending the ISACA EuroCACS event there is still time!

Share this post:

Tags: COBIT, ISACA, IT, Robert Stroud, operational effectiveness, EuroCACS

CA Community

February 2011 - Posts

Effective use of frameworks and standards in the cloud

Leave a comment

COBIT SIG: Growing rapidly in North America. What are you missing?

Leave a comment

Is IT really delivering benefits to the business?

Leave a comment

The phone, an SLA, and a broken business process!

Leave a comment

Delivering operational effectiveness and efficiency with demand rapidly increasing

Leave a comment