The common problem with IT based companies of today is that their systems are very much prone to a wide variety of changes which oftentimes deliver negative effects. This is why ITIL best practices were developed to help avoid this kind of things from happening.

ITIL best practices are a set of the most appropriate practices that were originally derived from various private and public sectors worldwide. These practices have been tested through time and have been proven to work well on IT based systems. Furthermore, this has been the most widely accepted approach by various companies that use IT service management systems.

There are various benefits and advantages that can be taken from undertaking ITIL best practices. One good example is the 24/7 monitoring of the performance as well as the policy that are applied in the network. Automated operations also make it a lot easier for the staff to perform their tasks making them deliver a much more productive work. Due to the fact that IT based systems are often bombarded by a variety of changes these best practices deliver up to date reports on the latest and detailed changes as well as enhancements.

Because IT systems are prone to unwanted incidents, ITIL best practices are able to instantly detect these elements in order to refrain from experiencing the full blow of the impact. Business priorities are also clearly set and simplified to further improve the performance of the system. Lastly, secured isolation on various configurations that have potential negative influences is implemented.

Aside from the above mentioned practices, the PCI compliance also needs to be given of much importance. Companies are then required to abide various PCI compliance requirements. One of the first and basic requirements is maintaining a firewall configuration in order to protect the important data of the cardholder. Furthermore, a well secured network needs to be established by restricting the system passwords from other security parameters.

It is strongly encouraged to make use of public and open networks when it comes to encrypting transmissions. Antivirus software needs to be regularly checked and used on all systems. PCI compliance requirements also suggest in developing safe and secured applications and systems. Thus, vulnerability management program is securely established and maintained.

In order to establish a well enforced access control, it is necessary make restrictions on access to cardholder data by means of business need-to-know. Unique ID for each person is also a necessity. Furthermore, physical access on cardholder data must not be allowed. Another control objective that requires a set of PCI compliance requirements refers on the regular monitoring and testing of networks. From this specific objective, it is best to be able to track and monitor all possible access to various network resources. A regular check up on systems and processes must also be maintained.

The last factor that makes up the whole set of the PCI compliance requirements refers to preserving a policy that strongly establishes information security. By abiding through these requirements, IT based companies can expect much better improvements on their services.

In the summer of 2007, the UK’s Office of Government Commerce (OGC) launched the new version of its best practice framework for Service Management – known as ITIL (R) V3 – and since then, has been busy putting its new qualifications scheme into place. The new top-level certification for the latest version is known as the ITIL Expert qualification.

However, perhaps this new qualification scheme could – before it has really got going properly – already be due for a review according to the most recent figures for ITIL training. They show a high number of candidates taking version 3 foundation level training, but a very low take-up for the subsequent capabilities and lifecycle training courses.

Perhaps the reason for this situation is the sheer number of courses needed to be taken to qualify as an ITIL Expert. Delegates now need to complete six or seven separate courses to qualify; which translates into between twenty-two to twenty-seven days of training. By contrast, the older V2 scheme leading to the Service Manager certificate only took thirteen days to complete.

The new qualification schema is a three-level affair with a fourth level also scheduled. Of course, this new range of courses may be good for training providers, but the key question is: is it right for the market? The absence of a significant number of bums-on-seats seems to me to suggest that it absolutely is not.

In addition, whilst the V2 Service Manager certificate is live, it remains a much more attractive route to the new top-level V3 qualification for many people since it only requires eighteen days to complete from scratch; and just fifteen if you already hold a V2 Foundation certificate. This boils down to less days out of the office, lower cost and fewer exams to pass.

It is, in my opinion, time for APMG to be decisive and act immediately to support the V3 qualifications scheme. It is finally time to axe the old V2 qualifications and really get behind the new scheme.

It is always good for professionals to combine the right sets of expertise. For someone involved with IT infrastructure projects, IT Infrastructure Library (ITIL) is a great complementary certification. What I find is that often the specialty knowledge drives the PRODUCT of efforts, but the project management skills drives the PROJECT that produces the PRODUCT. On solid technical teams, that second mindset is often missing.

Background

When you get any level experience in the workplace, you realize that the world is a collection of operations and projects. We are always seeking to systematize where possible, to streamline operations, and to improve results. We are always trying to create a “business as usual”, “runs by itself” environment, although in reality the full achievement of this is elusive. We are always cognizant of change in external conditions, and of the need to be proactive in changing our operations when necessary. This intersection of operations and project management, is, I believe, where ITIL and project management come together.

The IT Infrastructure Library (ITIL) describes a set of best practices processes for stable, high quality IT services. Project management, as a discipline, provides the capability to implement a defined change in a controlled way, so that cost, schedule, and quality of deliverable are as expected. It would seem that awareness of ITIL in an environment where it is embedded would be an input to project management. Likewise, project management is a great skill to use in implementing and continuously improving the best practices provided by ITIL.

PRINCE2 and ITIL

PRINCE2 and ITIL originate from a single source, the OGC (The Office of Government Commerce) in the UK. While I do not have hard core statistics, ITIL seems to be more strongly on the radar screen in the United States than PRINCE2, probably in part because the PMI’s PMBOK is more heavily established. But the practice of ITIL does seem to draw on PRINCE2 to an extent due to its common origins, despite the fact that a project management framework such as PMBOK can, in my opinion, be just as effective.

Both ITIL and Prince2 have a mechanism for evaluating the change or project. The Post Project Review in Prince2 is the same as the ITIL Post Implementation Review. A successful review can therefore lead to the end of the project.

Where ITIL and Project Management Meet

IT Infrastructure Library (ITIL) is all about providing service within the operations of IT in an organization. This includes management of the Service Lifecycle, Service Strategy, Service Design, Service Transition, and Service Operation. It also means continual improvement of the whole set of services that are in place. Management challenges within this realm include Service Desk and Incident Management, Configuration and Release Management, Service Level and Capacity Management, Problem and Change Management, Continuity and Availability Management, and Financial and Security Management.

ITIL itself, as a discipline, addresses the operations within the defined services realm. However, any changes to that services realm can and should be handled by applying a good project management discipline. The difference is that the ongoing operations will be concerned with maintaining and improving services as an in-place, as-is process. The project management discipline will be concerned with defining the beginning of an initiative, delivering the product of that initiative, and turning over the results of that effort to be incorporated into the operation before finally closing out the project.

The two disciplines are substantially different, and using the wrong one can definitely result in lower effectiveness. In the case of ITIL and Project Management, both disciplines will provide inputs the other. For example, ITIL will provide the current situation to a project. It also provides certain procedures, like configuration management, that must be followed within the confines of the project. The results, or “product of the project”, will become the key input to changes or improvements to be implemented within the ITIL implementation framework in the organization. The professional that understands both sides in depth will be quite valuable to the organization and will have a leg up in knowledge and credibility.

A Little about ITIL (ITIL certification, that is)

ITIL certification has 3 levels: the Foundation Certificate, the Practitioner Certificate, and the Manager’s Certificate. Project Management Training Online offers ITIL training in preparation for the Foundation Certificate.

In a nutshell, here is what these 3 levels are about:

• The Foundation Certificate: There are no entry requirements, and the foundation test consists of a one hour long multiple choice examination testing a candidate’s basic understanding of the principles and terminology of the IT Infrastructure Library. It is designed to provide familiarity with the IT Infrastructure Library (ITIL) best practices for IT Service Management.

• The Practitioner Certificates: This is aimed at those who are responsible within their organization for designing specific processes within the IT Service Management discipline, and performing the activities that belong to those processes. The Practitioner’s Certificates focus on the depth of understanding and application of those subjects, treating each subject as a specialty. Prerequisites include the Foundation certificate and mandatory attendance at an accredited training course.

• The Manager’s Certificate: Aimed at managers and consultants, 2 – 3 hour examinations test the practical application of the theory of ITIL, and the exam is typically preceded by a 10-day training event other assessments may also be required. Candidates must hold the Foundation certificate and mandatory attendance at an accredited training course is required.

——
John Reiling, PMP is an experienced and certified Project Manager. John’s web site, Project Management Training Online, provides online project management training for PMP exam prep and PDUs. John also writes regularly in his blog, PMcrunch.com. Source: http://www.articlealley.com/article_696503_15.html