SlideShare une entreprise Scribd logo

Demystifying ISO 20000-1 Standard

N
NUS-ISS

This document provides an overview of an upcoming workshop on the ISO 20000-1 standard for service management. It introduces TUV SUD PSB and its product portfolio, then discusses what ISO 20000 is, why organizations pursue ISO 20000 certification, the main components of the standard, and the ISO 20000 certification roadmap and process. Key success factors and a conclusion are also mentioned.

Technologie
1  sur  57
Télécharger pour lire hors ligne
7 May 13 Demystifying ISO 20000-1 standard ISO/TS 16949 Workshop 07 May 2013 Chris Ng Product Manager / Lead Auditor TÜV SÜD PSB Pte Ltd MITM, ABCP, CISM, CISA, CISSP, CTT, ISO 9000 LA, ISO 27000 LA, ISO 20000 LA ISO 22301 LA, SS 507 LA, SS 584 LA IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 1
Content IT & IT Security CertfiicationSchemes7 May 13 Intro to TUV SUD PSB & Product Portfolio Intro to TUV SUD PSB & Product Portfolio What is ISO 20000 (SMS) ?What is ISO 20000 (SMS) ?2 Why ISO 20000 certification?Why ISO 20000 certification?3 Main components of ISO 20000Main components of ISO 200004 1 ISO certification roadmap -Pre-requisites -Certification Process ISO certification roadmap -Pre-requisites -Certification Process 5 TÜV SÜD PSB Singapore Slide 2
Content IT & IT Security CertfiicationSchemes7 May 13 Key success factorsKey success factors ConclusionConclusion7 6 TÜV SÜD PSB Singapore Slide 3
TÜV SÜD PSB Pte Ltd 10/4/2016 TUV SUD PSB Corporate Overview
TÜV SÜD PSB TUV SUD heritage: over 145 years of business success Slide 5 Establishment of a Mannheim-based steam boiler inspection association by 21 operators and owners of steam boilers, with the objective of protecting man, the environment and property against the risk emanating from a new and largely unknown form of technology 1866 First vehicle periodic technical inspection (PTI)1910 1958 Development of a Bavaria-wide network of vehicle inspection centres in the late 1950s 1926 Introduction of the “TÜV mark / stamp” in Germany 1990s Conglomeration of TÜVs from the southern part of Germany to form TÜV SÜD and the expansion of business operations into Asia TÜV SÜD continues to pursue a strategy of internationalisation and growth Today 2006 Expansion of services in ASEAN by acquiring Singapore-based PSB Group 2009 Launch of Turkey-wide vehicle inspection by TÜVTURK
TÜV SÜD PSB Pte Ltd 10/4/2016 IT Certification Product Portfolio
Auditing solutions service portfolio Quality ISO 9001 ISO / TS 16949 ISO 13485 ESD 20:20 TL 9000 AS 9100 IT Information Security (ISO27001) Service Mgt System (ISO20000-1) Business Continuity & Disaster Recovery (BC/DR, SS507) Business Continuity Management (ISO 22301) Multi-Tier Cloud Security (MTCS) (SS 584) Environmental Health & Safety ISO14001 OHSAS 18001 QC080000 Safety & Health Management System (SHMS) Safe Management of Hazardous Substances (SMHS) Carbon Footprint Certification Food safety ISO22000 British Retail Consortium (BRC) Hazard Analysis and Critical Control Points (HACCP) Good Manufacturing Practice (GMP) Specific industry Quality Management for Bunker Supply Chain (QMBS) Quality Maritime Education and Training (QMET) Good Distribution Practice for Medical Devices (GDPMDS) Product Inspection Product Listing (PLS) Ready Mixed Concrete Certification Pre-shipment Inspection (PSI) Factory/Agency Inspection Source Inspection Suppliers’ Audit 7 May 13 ISO14064 PAS 2050 ISO 50001 Social compliance SA8000 CDM Validation, verification of carbon dioxide (CO²) emissions IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 7
7 May 13 Why TUV SUD PSB? • Why TUV SUD PSB? – Market leader in certification industries within ASEAN – Certification Body with the largest team of IT and other scheme Auditors in ASEAN – All IT auditors are armed with many years of industrial experiences exposed to various IT related schemes – Quality of audits – One of the few Registered Certification Body (RCB) for APMG ISO/IEC 20000:2011 Certification Scheme – 1st Certification Body (CB) to award ISO 20000:2011 certificate to organization in Singapore IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 8
TÜV SÜD PSB Pte Ltd 10/4/2016 Seminars Participated
7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guess speaker for several IT related seminars in Singapore AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #1 - Information Security Management System Foundation – 23 Apr 2010 Information Systems Audit and Control Association (ISACA) – ISO 27001 Dinner talks – 19 Aug 2010 AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #8 - SS540 - The Singapore Standard for Business Continuity Management (BCM) and its relationship with the ISO 27001 (ISMS) standard – 18 Feb 11 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 10
7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guess speaker for several IT related seminars in Singapore AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #1 - Information Security Management System Foundation – 5 Apr 2012 AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #1 (Re-run) - Information Security Management System Foundation – 11 May 2012 ISACA Oct 12 Networking Talk Seminar - Introduction to Business Continuity Management Standard (ISO 22301) – 23 Oct 12 PinkAsiaForum12 – 1st Annual IT Service Management Leadership Forum – 6-7 Dec 12 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 11
7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guest speaker for several IT related seminars in Singapore TUV SUD PSB’s “Think Security First’ Seminar” to give an introduction on ISO 27001 Standards on 13 Sep 13 BCM Institute Seminar on “An insight into the ISO 22301 (BCMS) standard - the certification body perspective” on 28 Feb 14 ISACA May 14 Networking Talk Seminar – Online all the time (BCM related) – 20 May 14 Invited as a speaker for ST Kinetics’ Business ContinuityAwareness Week to give an introduction on “ISO 22301 (BCMS) standard - the certification body perspective” on 21 Jul 14 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 12
7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guest speaker for several IT related seminars in Singapore -Invited by IDA as Panel Experts in discussion forum on SS 584 Multi- tier Cloud Security (MTCS) standard in Cloud Asia Conference on 30 Oct 14 Conduct a Clinic Session on SS 584 Multi-tier Cloud Security (MTCS) standard in TUV SUD PSB on 13 May 15 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 13
TÜV SÜD PSB Pte Ltd 10/4/2016 ISO 20000 Standard (An International Standard for Service Management)
TÜV SÜD PSB Pte Ltd 10/4/2016 ITIL
IT Infrastructure Library (ITIL) • The IT Infrastructure Library (ITIL) – is essentially a series of documents that forms the basis of a framework to deliver, improving and managing IT Services – this customizable framework defines how Service Management is applied within an organization. – Not a standard but a Best Practices Framework, which includes all the best practices to facilitate the delivery of high quality IT services – It focuses on managing services to customers, not technology to users – Centered on Service Lifecycle approach and focused on providing business value – adopted as the de-facto standard for best practice in the provision of IT Service TÜV SÜD PSB Singapore Slide 16
IT Infrastructure Library (ITIL) • The IT Infrastructure Library (ITIL) – It focuses on the following: Service Strategy – determines which types of services should be offered to which customers or markets Service Design – identifies service requirements and devises new service offerings as well as changes and improvements to existing ones Service Transition – builds and deploys new or modified services Service Operation – carries out operational tasks Continual Service Improvement – learns from past successes and failures and continually improves the effectiveness and efficiency of services and processes. TÜV SÜD PSB Singapore Slide 17
10/4/2016 What is SMS? • What is Service Management System (SMS)? – Service Management System (SMS) is a process-based practice intended to align the delivery of information technology (IT) services with the needs of the enterprise, emphasizing benefits to customers. – SMS focuses on the delivery of end-to-end services using best practice process model
What is ISO/IEC 20000 standard? • What is ISO/IEC 20000 standard? – the formal standard against which organizations may seek independent certification for their Service Management Systems (SMS) – introduced in Dec 2005 and closely follows the ITIL framework to ensure there is a consistent way to implement and “measure” IT Service Management – A set of “controls” against which an organization can be assessed for effective IT Service Management processes – requires organizations to comply with all the requirements across Service Management standard – adopts an integrated end-to-end approach TÜV SÜD PSB Singapore Slide 19
What is ISO/IEC 20000 standard? • What is ISO/IEC 20000 standard? – to provide a common base for: developing organizational IT service standards and adopting effective service management practices to provide confidence in inter-organizational dealings – uses a Plan-Do-Check-Act (PDCA) model to achieve continual improvement TÜV SÜD PSB Singapore Slide 20
TÜV SÜD PSB Pte Ltd Why ISO 20000 (SMS)?
7 May 13 Why ISO 20000 certification? • Why ISO 20000 certification? – Satisfying Customers’ Requirements Requirements from customers to posses a comprehensive service management system – Enhancing Operational Efficiency & Effectiveness Certification improves the delivering of quality services in a more efficient & effective manner – Provision of Assurance Certification provides assurance to the clients that the organization has a robust and reliable operational setup within its service management systems Benefits & Drivers IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 22
7 May 13 Why ISO 20000 certification? – Enhancing the Risk management: Leads to a better knowledge of service management systems, their weaknesses and how to protect them. Apply controls from a risk perspective. – Increasing credibility and confidence Certification can help set a company apart from its competitors and in the marketplace. Provides assurance to the clients in managing the provision of IT services Benefits & Drivers IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 23
7 May 13 Why ISO 20000 certification? – Helping to reduce costs Reduced costs related to streamlining of processes , handling of operational issues through its structured & organized incident and problem handling process – Improving service awareness Improves employee awareness of providing quality services and their specific roles & responsibilities to achieve that Benefits & Drivers IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 24
TÜV SÜD PSB Pte Ltd Application of ISO 20000 (SMS)
7 May 13 Application of ISO 20000 • Which organizations can go for ISO 20000 certification? – Any organization that requires alignment of its Services (incl of IT services) with the Business needs – Provide assurance to interested parties e.g. customers that they have reliable and certified Service Management Systems (SMS) • Certify organizations in: – finance, banking and insurance – telecommunications – utilities – retail sectors – manufacturing sector – various service industries – transportation sector – Government bodies IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 26
TÜV SÜD PSB Pte Ltd 10/4/2016 ISO 20000 Family of Standards
ISO/IEC 20000 Standard • Family of ISO/IEC 20000 standard – ISO 20000-1:2011 (Part 1) – A specification where the Service Management processes can be audited against defines the processes and provides assessment criteria and recommendations for those responsible for Service Management – ISO 20000-2:2012 (Part 2) Code of practice that provides assistance to organizations that are to be audited against ISO/IEC 20000 standard or are planning service improvements TÜV SÜD PSB Singapore Slide 28
TÜV SÜD PSB Pte Ltd 10/4/2016 The Main Components of ISO/IEC 20000
ISO/IEC 20000 Standard • Main components of ISO/IEC 20000 standard – ISO 20000-1:2011 (9 sections) 1. Scope 2. Normative references 3. Terms and Definitions 4. Service Management System General Requirements 5. Design & Transition of New or Changed Services 6. Service Delivery Process 7. Relationship Processes 8. Resolution Processes 9. Control Processes TÜV SÜD PSB Singapore Slide 30
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard • Clause 4: Service management system general requirements – Clause 4.1 Management responsibility – Clause 4.2 Governance of processes operated by other parties – Clause 4.3 Documentation management – Clause 4.4 Resource management – Clause 4.5 Establish & improve the SMS TÜV SÜD PSB Singapore Slide 31
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard • Clause 5: Design & transition of new or changed service – Clause 5.1 General – Clause 5.2 Plan new or changed services – Clause 5.3 Design & development of new or changed services – Clause 5.4 Transition of new or changed services TÜV SÜD PSB Singapore Slide 32
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard – ISO/IEC 20000-1:2011 groups the main ITIL processes into Four core process sets (Cl 6-9) :- – 1. Service Delivery Processes (Cl 6) – which includes: Service Level Management (SLM) (Cl 6.1), Service Reporting (Cl 6.2) Service Continuity & Availability Management, (Cl 6.3) Budgeting and Accounting for Services (Cl 6.4) Capacity Management (Cl 6.5), Information Security Management (Cl 6.6) TÜV SÜD PSB Singapore Slide 33
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 2. Relationship Processes (Cl 7): Business Relationship Management (Cl 7.1) – to establish and maintain a good relationship between the service provider and customer – have designated individual to handle customer Supplier Management (Cl 7.2) – to manage suppliers to ensure the provision of seamless, quality services – monitor of supplier’s service performance – management of changes – review of SLAs TÜV SÜD PSB Singapore Slide 34
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 3. Resolution Processes (Cl 8): Incident & Service Request Management (Cl 8.1) – deals with the restoration of services – requires a documented procedure for all incidents which include information like classification, priority, escalation, resolution, closure, etc. – takes into consideration of the impact & urgency of incident – defines major incident and ensure it is communicated to the right interested parties Problem Management (Cl 8.2) – to minimize or avoid impact of incidents or problems – identifying & removing the root causes of incidents or problems – Will lead to Change Management for relevant solutions or patches TÜV SÜD PSB Singapore Slide 35
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 4. Control Processes (Cl 9): Configuration Management (Cl 9.1) – to define & control the components of the service & infrastructure & maintain accurate configuration information – establishment of configuration baseline, – definition of CIs in the CMDB – identifies assets owner & interdependencies Change Management (Cl 9.2) – ensures all changes are assessed, approved, implemented and reviewed in a controlled manner – procedures to handle emergency changes – decision-making of accepting change shall take into consideration the risks, the potential impacts to services and the customer, service requirements, etc. TÜV SÜD PSB Singapore Slide 36
Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 4. Control Processes (Cl 9): Release & Deployment Management (Cl 9.3) – to deliver, distribute and track one or more changes in the live environment – conducts impact analysis before release – release needs to be built & tested before deployment – establishes release, roll-out & roll-back plan TÜV SÜD PSB Singapore Slide 37
10/4/2016 Main Components of ISO/IEC 20000
TÜV SÜD PSB Pte Ltd 10/4/2016 The Certification Roadmap
ISO 20000 Certification Road map (2 phases) 1. Gap analysis - Getting the ISO 20000 standards - List of identified gaps - Cost and schedule estimation 2. Setting up SMS framework -Prepare Service Management Policy & Plan -Define Scope, objectives, resources, etc. -Identify Risk Management methodology, perform risk assessment., identify internal audit approach, etc. 3. Implementation -Allocation of funds, budget, roles and Responsibilities, ITIL/ISO 20k training, etc. -Documenting policies, plans, processes, etc. 4. Check & Act -Management review (*), internal audit (*), -Monitor Service Improvement plan etc. 1 Phase 1: Pre-Certification Phase TÜV SÜD PSB Singapore Slide 40
Pre-requisites for ISO 20000 certification • Pre-requisites – Develop the SMS Manual Establish the SMS Scope (*) Establish SMS Policy (*) Define SMS Objectives (*) – Perform Risk Assessment Description of Risk Assessment Methodology & Process (*) Risk assessment report Risk Treatment Process & Plan (*) – Prepare Service Improvement Policy/Service Management Plan, etc. TÜV SÜD PSB Singapore Slide 41
Pre-requisites for ISO 20000 certification • Pre-requisites (con’t) – Perform Internal Audit Internal Audit Procedure Internal audit Programme & Results (*) – Conduct Management Review (*) – Develop competency of staff in SMS (*) – Continual Improvement Corrective Actions (CA) Procedure Preventive Actions (PA) Procedure Non-conformities uncovered and results of CA (*) – Establish Control of documents/records procedures Control of Document Procedure Control of Records Procedure TÜV SÜD PSB Singapore Slide 42
ISO 20000 Certification Road map (con’t) 7. Preliminary assessment (Stage 1) - Records demonstrating SMS implementation 8. Certification assessment (Stage 2) -Assessment report and Corrective Action (CA) 9. Awarding of certificate 1 5. Application for ISO 20000 certification 6. Document (Manual) assessment (Stage 1) Phase 2: Certification Phase TÜV SÜD PSB Singapore Slide 43
ISO 20000 Certification Process 1. Application 2. Documentation Assessment (Stage 1) 3. Preliminary Assessment (Stage 1) 4. Certification Assessment (Stage 2) 5. Award of Certificate (valid for 3 yrs) 6. Post-Award Routine Surveillance 7. Renewal of Certificate (on the 3rd yr) CERTIFICATION PROCESS TÜV SÜD PSB Singapore Slide 44
TÜV SÜD PSB Pte Ltd 10/4/2016 Key Success Factors
Successful ISO 20000 implementation • Key Success Factors: – Management Commitment – Cross-functional forum / committee – Understanding Stakeholders’ business requirements in relation to service delivery – Effective Risk Management Process TÜV SÜD PSB Singapore Slide 46
Successful ISO 20000 implementation • Key Success Factors: – Training & Awareness – Proactive & Continual Improvement Internal audit & management review Identify and act on security weaknesses Learn from incidents and establish relevant Prevention Action TÜV SÜD PSB Singapore Slide 47
TÜV SÜD PSB Pte Ltd 10/4/2016 Common FAQs
Common FAQs • Q1: How much and how long it takes for an ISO 20000 certification audit to complete? – The cost and the time taken depends on the following factors: Scope of services Staff strength in supporting the services Number of remote sites (if any) Complexity of logistics arrangement Complexity of organization , processes & services No. of ITIL process that are already implemented Nature & sensitivity of businesses Any existing certification like ISO 9001 being implemented Language Barrier (requires a local interpreter if English is not the used medium for audit) TÜV SÜD PSB Singapore Slide 49
Common FAQs • Q2: How many months of data must I accumulate before applying for certification? – Typically, a minimum of 3 months of data and/or implementation records will be required in order for a meaningful audit to be carried out. TÜV SÜD PSB Singapore Slide 50
Common FAQs • Q3:What are the different kinds of assessment findings? (con’t) Stage 1 Certification: – Area of Concerns (AOC) Represents a non-conformance in the implementation of the SMS requirements. Organization will be given a one month’s time to resolve any AOC issues TÜV SÜD PSB Singapore Slide 51
Common FAQs • Q3:What are the different kinds of assessment findings? (con’t) Stage 2 Certification / Continuing / Renewal : – Category 1 (Major finding) Represents a breakdown in the SMS framework. Organization will be given a three month’s time to resolve any CAT 1 issues On site visit is necessary to clear CAT 1 issues – Category 2 (Minor finding) Represents some deficiency in the implementation of SMS requirements. Organization will be given a one month’s time to resolve any CAT 2 issues TÜV SÜD PSB Singapore Slide 52
Common FAQs • Q3:What are the different kinds of assessment findings? (con’t) – AFI (Area for Improvement) Represents an area that need to be enhanced before it develops into a CAT 1 or CAT 2 problems – Positive (Positive Aspects) Represents an implementation that can be used as a role model for other departments or organization TÜV SÜD PSB Singapore Slide 53
TÜV SÜD PSB Pte Ltd 10/4/2016 Conclusion
Conclusion • Conclusion – ISO 20000-1 is the certifiable standard for the Service Management Systems (SMS) of an organization – ISO 20000-2 is used as a code of practice to satisfy the requirements of the SMS standard – Need to perform detail readiness check or gap analysis before applying for ISO 20000 certification – Understand the Key Success Factors in ISO 20000 certification TÜV SÜD PSB Singapore Slide 55
Thank you IT & IT Security CertfiicationSchemes7 May 13TÜV SÜD PSB Singapore Slide 56 Thank you www.tuv-sud-psb.sg Vielen Dank C m n b n Terima kasih
Contact IT & IT Security CertfiicationSchemes7 May 13 Name: Chris Ng Designation: Product Manager / Lead Auditor Email: khee-soon.ng@tuv-sud-psb.sg Tel : 65 68851628 Office Hotline: (65) 9366 8611 TÜV SÜD PSB Singapore Slide 57

Recommandé

Iso 20000 itsms implementation steps-lakshy
Iso 20000 itsms implementation steps-lakshyIso 20000 itsms implementation steps-lakshy
Iso 20000 itsms implementation steps-lakshyLakshy Management Consultant Pvt Ltd
 
Iso 20000 presentation
Iso 20000 presentationIso 20000 presentation
Iso 20000 presentationMusibau Taiwo Lasisi
 
Benefits of Implementing ISO 20000 within your Organization
Benefits of Implementing ISO 20000 within your Organization Benefits of Implementing ISO 20000 within your Organization
Benefits of Implementing ISO 20000 within your OrganizationPECB
 
ISO/I20000 in a nutshell
ISO/I20000 in a nutshellISO/I20000 in a nutshell
ISO/I20000 in a nutshellCaroline Mouton
 
ITSM Foundation Course Material
ITSM Foundation Course MaterialITSM Foundation Course Material
ITSM Foundation Course Materialstefanhenry
 
New Microsoft PowerPoint Presentation
New Microsoft PowerPoint PresentationNew Microsoft PowerPoint Presentation
New Microsoft PowerPoint PresentationMohammed Ghorab
 
ISO 20000 Implementation Presentation
ISO 20000 Implementation PresentationISO 20000 Implementation Presentation
ISO 20000 Implementation PresentationSriramITISConsultant
 
ISO 20000 Certification
ISO 20000 CertificationISO 20000 Certification
ISO 20000 CertificationJan-Willem Middelburg
 

Recommandé

Iso 20000 itsms implementation steps-lakshy
Iso 20000 itsms implementation steps-lakshyIso 20000 itsms implementation steps-lakshy
Iso 20000 itsms implementation steps-lakshyLakshy Management Consultant Pvt Ltd
 
Iso 20000 presentation
Iso 20000 presentationIso 20000 presentation
Iso 20000 presentationMusibau Taiwo Lasisi
 
Benefits of Implementing ISO 20000 within your Organization
Benefits of Implementing ISO 20000 within your Organization Benefits of Implementing ISO 20000 within your Organization
Benefits of Implementing ISO 20000 within your OrganizationPECB
 
ISO/I20000 in a nutshell
ISO/I20000 in a nutshellISO/I20000 in a nutshell
ISO/I20000 in a nutshellCaroline Mouton
 
ITSM Foundation Course Material
ITSM Foundation Course MaterialITSM Foundation Course Material
ITSM Foundation Course Materialstefanhenry
 
New Microsoft PowerPoint Presentation
New Microsoft PowerPoint PresentationNew Microsoft PowerPoint Presentation
New Microsoft PowerPoint PresentationMohammed Ghorab
 
ISO 20000 Implementation Presentation
ISO 20000 Implementation PresentationISO 20000 Implementation Presentation
ISO 20000 Implementation PresentationSriramITISConsultant
 
ISO 20000 Certification
ISO 20000 CertificationISO 20000 Certification
ISO 20000 CertificationJan-Willem Middelburg
 
What is iso iec 20000
What is iso iec 20000What is iso iec 20000
What is iso iec 20000Mart Rovers
 
Iso 20000 standard implementation
Iso 20000 standard implementationIso 20000 standard implementation
Iso 20000 standard implementationIITSW Company
 
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised StandardLynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised StandarditSMF UK
 
10 Benefits of Implementing ISO/IEC 20000 in an Organization
10 Benefits of Implementing ISO/IEC 20000 in an Organization10 Benefits of Implementing ISO/IEC 20000 in an Organization
10 Benefits of Implementing ISO/IEC 20000 in an OrganizationPECB
 
ITIL / ISO 20000 Professional Certification Myths and Realities
ITIL / ISO 20000 Professional Certification Myths and RealitiesITIL / ISO 20000 Professional Certification Myths and Realities
ITIL / ISO 20000 Professional Certification Myths and RealitiesAlejandro Debenedet
 
Iso iec 20000 foundation training course by interprom
Iso iec 20000 foundation training course by interpromIso iec 20000 foundation training course by interprom
Iso iec 20000 foundation training course by interpromMart Rovers
 
ITIL and ISO 20000: Fundamentals and necessary compliance Synergies
ITIL and ISO 20000: Fundamentals and necessary compliance SynergiesITIL and ISO 20000: Fundamentals and necessary compliance Synergies
ITIL and ISO 20000: Fundamentals and necessary compliance SynergiesPECB
 
What is ISO20000
What is ISO20000What is ISO20000
What is ISO20000Ben Kalland
 
New ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsNew ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsIntegration Technologies Group Inc
 
Experience from Implementation of ISO 20000
Experience from Implementation of ISO 20000Experience from Implementation of ISO 20000
Experience from Implementation of ISO 20000Ana Meskovska
 
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSMISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSMGlobal Manager Group
 
PECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
PECB Webinar: Winning approach towards successful ISO/IEC 20000 CertificationPECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
PECB Webinar: Winning approach towards successful ISO/IEC 20000 CertificationPECB
 
Itil Updated Aug2008 For Cio Presentation
Itil Updated Aug2008 For Cio PresentationItil Updated Aug2008 For Cio Presentation
Itil Updated Aug2008 For Cio PresentationJames Sutter
 
Benefits of Integrating ISO and CMMI Service Management System Frameworks
Benefits of Integrating ISO and CMMI Service Management System FrameworksBenefits of Integrating ISO and CMMI Service Management System Frameworks
Benefits of Integrating ISO and CMMI Service Management System FrameworksIntegration Technologies Group Inc
 
How Your Organization Can Become ISO Certified...It's easier than you think
How Your Organization Can Become ISO Certified...It's easier than you thinkHow Your Organization Can Become ISO Certified...It's easier than you think
How Your Organization Can Become ISO Certified...It's easier than you thinkITSM Academy, Inc.
 
ISO/IEC 20000 audit day overview
ISO/IEC 20000 audit day overviewISO/IEC 20000 audit day overview
ISO/IEC 20000 audit day overviewMarval Software
 
Become competitive for gwac and idiq opportunities through certification 2019
Become competitive for gwac and idiq opportunities through certification 2019Become competitive for gwac and idiq opportunities through certification 2019
Become competitive for gwac and idiq opportunities through certification 2019Integration Technologies Group Inc
 
Efforts Toward Awareness.9 Oct2010
Efforts Toward Awareness.9 Oct2010Efforts Toward Awareness.9 Oct2010
Efforts Toward Awareness.9 Oct2010krsinghal
 
How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?Global Manager Group
 
EGI Integrated Management System
EGI Integrated Management SystemEGI Integrated Management System
EGI Integrated Management SystemEOSC-hub project
 
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...NUS-ISS
 
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...NUS-ISS
 

Contenu connexe

Tendances

What is iso iec 20000
What is iso iec 20000What is iso iec 20000
What is iso iec 20000Mart Rovers
 
Iso 20000 standard implementation
Iso 20000 standard implementationIso 20000 standard implementation
Iso 20000 standard implementationIITSW Company
 
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised StandardLynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised StandarditSMF UK
 
10 Benefits of Implementing ISO/IEC 20000 in an Organization
10 Benefits of Implementing ISO/IEC 20000 in an Organization10 Benefits of Implementing ISO/IEC 20000 in an Organization
10 Benefits of Implementing ISO/IEC 20000 in an OrganizationPECB
 
ITIL / ISO 20000 Professional Certification Myths and Realities
ITIL / ISO 20000 Professional Certification Myths and RealitiesITIL / ISO 20000 Professional Certification Myths and Realities
ITIL / ISO 20000 Professional Certification Myths and RealitiesAlejandro Debenedet
 
Iso iec 20000 foundation training course by interprom
Iso iec 20000 foundation training course by interpromIso iec 20000 foundation training course by interprom
Iso iec 20000 foundation training course by interpromMart Rovers
 
ITIL and ISO 20000: Fundamentals and necessary compliance Synergies
ITIL and ISO 20000: Fundamentals and necessary compliance SynergiesITIL and ISO 20000: Fundamentals and necessary compliance Synergies
ITIL and ISO 20000: Fundamentals and necessary compliance SynergiesPECB
 
What is ISO20000
What is ISO20000What is ISO20000
What is ISO20000Ben Kalland
 
Experience from Implementation of ISO 20000
Experience from Implementation of ISO 20000Experience from Implementation of ISO 20000
Experience from Implementation of ISO 20000Ana Meskovska
 
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSMISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSMGlobal Manager Group
 
PECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
PECB Webinar: Winning approach towards successful ISO/IEC 20000 CertificationPECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
PECB Webinar: Winning approach towards successful ISO/IEC 20000 CertificationPECB
 
Itil Updated Aug2008 For Cio Presentation
Itil Updated Aug2008 For Cio PresentationItil Updated Aug2008 For Cio Presentation
Itil Updated Aug2008 For Cio PresentationJames Sutter
 
Benefits of Integrating ISO and CMMI Service Management System Frameworks
Benefits of Integrating ISO and CMMI Service Management System FrameworksBenefits of Integrating ISO and CMMI Service Management System Frameworks
Benefits of Integrating ISO and CMMI Service Management System FrameworksIntegration Technologies Group Inc
 
How Your Organization Can Become ISO Certified...It's easier than you think
How Your Organization Can Become ISO Certified...It's easier than you thinkHow Your Organization Can Become ISO Certified...It's easier than you think
How Your Organization Can Become ISO Certified...It's easier than you thinkITSM Academy, Inc.
 
ISO/IEC 20000 audit day overview
ISO/IEC 20000 audit day overviewISO/IEC 20000 audit day overview
ISO/IEC 20000 audit day overviewMarval Software
 
Become competitive for gwac and idiq opportunities through certification 2019
Become competitive for gwac and idiq opportunities through certification 2019Become competitive for gwac and idiq opportunities through certification 2019
Become competitive for gwac and idiq opportunities through certification 2019Integration Technologies Group Inc
 
Efforts Toward Awareness.9 Oct2010
Efforts Toward Awareness.9 Oct2010Efforts Toward Awareness.9 Oct2010
Efforts Toward Awareness.9 Oct2010krsinghal
 
How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?Global Manager Group
 
EGI Integrated Management System
EGI Integrated Management SystemEGI Integrated Management System
EGI Integrated Management SystemEOSC-hub project
 

Tendances (20)

What is iso iec 20000
What is iso iec 20000What is iso iec 20000
What is iso iec 20000
 
Iso 20000 standard implementation
Iso 20000 standard implementationIso 20000 standard implementation
Iso 20000 standard implementation
 
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised StandardLynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
Lynda Cooper: ISO/IEC 20000 - The Launch of the Revised Standard
 
10 Benefits of Implementing ISO/IEC 20000 in an Organization
10 Benefits of Implementing ISO/IEC 20000 in an Organization10 Benefits of Implementing ISO/IEC 20000 in an Organization
10 Benefits of Implementing ISO/IEC 20000 in an Organization
 
ITIL / ISO 20000 Professional Certification Myths and Realities
ITIL / ISO 20000 Professional Certification Myths and RealitiesITIL / ISO 20000 Professional Certification Myths and Realities
ITIL / ISO 20000 Professional Certification Myths and Realities
 
Iso iec 20000 foundation training course by interprom
Iso iec 20000 foundation training course by interpromIso iec 20000 foundation training course by interprom
Iso iec 20000 foundation training course by interprom
 
ITIL and ISO 20000: Fundamentals and necessary compliance Synergies
ITIL and ISO 20000: Fundamentals and necessary compliance SynergiesITIL and ISO 20000: Fundamentals and necessary compliance Synergies
ITIL and ISO 20000: Fundamentals and necessary compliance Synergies
 
What is ISO20000
What is ISO20000What is ISO20000
What is ISO20000
 
New ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsNew ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation Steps
 
Experience from Implementation of ISO 20000
Experience from Implementation of ISO 20000Experience from Implementation of ISO 20000
Experience from Implementation of ISO 20000
 
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSMISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
ISO 20000-1:2018 Awareness and Auditor Training PPT Presentation kit for ITSM
 
PECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
PECB Webinar: Winning approach towards successful ISO/IEC 20000 CertificationPECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
PECB Webinar: Winning approach towards successful ISO/IEC 20000 Certification
 
Itil Updated Aug2008 For Cio Presentation
Itil Updated Aug2008 For Cio PresentationItil Updated Aug2008 For Cio Presentation
Itil Updated Aug2008 For Cio Presentation
 
Benefits of Integrating ISO and CMMI Service Management System Frameworks
Benefits of Integrating ISO and CMMI Service Management System FrameworksBenefits of Integrating ISO and CMMI Service Management System Frameworks
Benefits of Integrating ISO and CMMI Service Management System Frameworks
 
How Your Organization Can Become ISO Certified...It's easier than you think
How Your Organization Can Become ISO Certified...It's easier than you thinkHow Your Organization Can Become ISO Certified...It's easier than you think
How Your Organization Can Become ISO Certified...It's easier than you think
 
ISO/IEC 20000 audit day overview
ISO/IEC 20000 audit day overviewISO/IEC 20000 audit day overview
ISO/IEC 20000 audit day overview
 
Become competitive for gwac and idiq opportunities through certification 2019
Become competitive for gwac and idiq opportunities through certification 2019Become competitive for gwac and idiq opportunities through certification 2019
Become competitive for gwac and idiq opportunities through certification 2019
 
Efforts Toward Awareness.9 Oct2010
Efforts Toward Awareness.9 Oct2010Efforts Toward Awareness.9 Oct2010
Efforts Toward Awareness.9 Oct2010
 
How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?How to fulfil requirements of ISO 20000:2018 Documents?
How to fulfil requirements of ISO 20000:2018 Documents?
 
EGI Integrated Management System
EGI Integrated Management SystemEGI Integrated Management System
EGI Integrated Management System
 

En vedette

NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...NUS-ISS
 
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...NUS-ISS
 
NUS-ISS PCP for Data Analysts
NUS-ISS PCP for Data Analysts NUS-ISS PCP for Data Analysts
NUS-ISS PCP for Data Analysts NUS-ISS
 
Integration of ICT Standards
Integration of ICT StandardsIntegration of ICT Standards
Integration of ICT StandardsAna Meskovska
 
NUS-ISS PCP for FullStack Software Developers
NUS-ISS PCP for FullStack Software DevelopersNUS-ISS PCP for FullStack Software Developers
NUS-ISS PCP for FullStack Software DevelopersNUS-ISS
 
WSQ Professional Conversion Programme
WSQ Professional Conversion ProgrammeWSQ Professional Conversion Programme
WSQ Professional Conversion ProgrammeNUS-ISS
 
Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...
Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...
Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...PECB
 
Product Portfolio Risk Management
Product Portfolio Risk ManagementProduct Portfolio Risk Management
Product Portfolio Risk ManagementRuediger Klein
 
Implementing ISO20000
Implementing ISO20000Implementing ISO20000
Implementing ISO20000NUS-ISS
 
What is iso iec 20000
What is iso iec 20000What is iso iec 20000
What is iso iec 20000Mart Rovers
 
Geospatial analytics data science sg meetup
Geospatial analytics data science sg meetupGeospatial analytics data science sg meetup
Geospatial analytics data science sg meetupNUS-ISS
 
Security Operation Center - Design & Build
Security Operation Center - Design & BuildSecurity Operation Center - Design & Build
Security Operation Center - Design & BuildSameer Paradia
 
Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009Goutama Bachtiar
 
Project Portfolio Management
Project Portfolio ManagementProject Portfolio Management
Project Portfolio ManagementAnand Subramaniam
 
Understanding IT Governance and Risk Management
Understanding IT Governance and Risk ManagementUnderstanding IT Governance and Risk Management
Understanding IT Governance and Risk Managementjiricejka
 

En vedette (19)

NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
NUS-ISS Learning Day 2016 - What Other IT Management Skills Should IT Project...
 
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
NUS-ISS Learning Day 2016 - Improve IT Project Management and other IT Proces...
 
NUS-ISS PCP for Data Analysts
NUS-ISS PCP for Data Analysts NUS-ISS PCP for Data Analysts
NUS-ISS PCP for Data Analysts
 
Integration of ICT Standards
Integration of ICT StandardsIntegration of ICT Standards
Integration of ICT Standards
 
NUS-ISS PCP for FullStack Software Developers
NUS-ISS PCP for FullStack Software DevelopersNUS-ISS PCP for FullStack Software Developers
NUS-ISS PCP for FullStack Software Developers
 
WSQ Professional Conversion Programme
WSQ Professional Conversion ProgrammeWSQ Professional Conversion Programme
WSQ Professional Conversion Programme
 
Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...
Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...
Integrating ISO 27001, ISO 20000, and Project Management – From Theory to Pra...
 
Product Portfolio Risk Management
Product Portfolio Risk ManagementProduct Portfolio Risk Management
Product Portfolio Risk Management
 
Program portfolio risk management solutions
Program portfolio risk management solutionsProgram portfolio risk management solutions
Program portfolio risk management solutions
 
Implementing ISO20000
Implementing ISO20000Implementing ISO20000
Implementing ISO20000
 
Infosec Audit Lecture_4
Infosec Audit Lecture_4Infosec Audit Lecture_4
Infosec Audit Lecture_4
 
What is iso iec 20000
What is iso iec 20000What is iso iec 20000
What is iso iec 20000
 
Geospatial analytics data science sg meetup
Geospatial analytics data science sg meetupGeospatial analytics data science sg meetup
Geospatial analytics data science sg meetup
 
Gunadarma workshop security
Gunadarma workshop securityGunadarma workshop security
Gunadarma workshop security
 
Security Operation Center - Design & Build
Security Operation Center - Design & BuildSecurity Operation Center - Design & Build
Security Operation Center - Design & Build
 
Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009Implementing Enterprise Risk Management with ISO 31000:2009
Implementing Enterprise Risk Management with ISO 31000:2009
 
Project Portfolio Management
Project Portfolio ManagementProject Portfolio Management
Project Portfolio Management
 
Understanding IT Governance and Risk Management
Understanding IT Governance and Risk ManagementUnderstanding IT Governance and Risk Management
Understanding IT Governance and Risk Management
 
Risk Management Framework
Risk Management FrameworkRisk Management Framework
Risk Management Framework
 

Similaire à Demystifying ISO 20000-1 Standard

QAI -ITSM Practice Presentation
QAI -ITSM Practice PresentationQAI -ITSM Practice Presentation
QAI -ITSM Practice PresentationQAIites
 
David Pultorak ISECON 2007 Keynote: IT Frameworks
David Pultorak ISECON 2007 Keynote: IT FrameworksDavid Pultorak ISECON 2007 Keynote: IT Frameworks
David Pultorak ISECON 2007 Keynote: IT FrameworksDavid Pultorak
 
411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx
411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx
411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx401apecgkvelu
 
The Status and Issues of Quality Management System Certification in Japan
The Status and Issues of Quality Management System Certification in JapanThe Status and Issues of Quality Management System Certification in Japan
The Status and Issues of Quality Management System Certification in JapanQuEST Forum
 
GSS Infosoft Pvt Ltd
GSS Infosoft Pvt LtdGSS Infosoft Pvt Ltd
GSS Infosoft Pvt Ltdbecoder
 
Quality & Reliability Consultant
Quality & Reliability ConsultantQuality & Reliability Consultant
Quality & Reliability ConsultantMunirhaq
 
Mark thomas cobit-and-frameworks
Mark thomas cobit-and-frameworksMark thomas cobit-and-frameworks
Mark thomas cobit-and-frameworksAbou Tesnime
 
Materi sosialisasi
Materi sosialisasiMateri sosialisasi
Materi sosialisasirafif2
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)samsontamwaiho
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)samsontamwaiho
 
Resume_IshitaKundu_CISA
Resume_IshitaKundu_CISAResume_IshitaKundu_CISA
Resume_IshitaKundu_CISAIshita Kundu
 
EMS 14001:2015 Awareness and Auditor Training Presentation
EMS 14001:2015 Awareness and Auditor Training PresentationEMS 14001:2015 Awareness and Auditor Training Presentation
EMS 14001:2015 Awareness and Auditor Training PresentationCertification Consultant
 
Iso 9001 2008 consulting by Netpeckers Consulting India
Iso 9001 2008 consulting by Netpeckers Consulting IndiaIso 9001 2008 consulting by Netpeckers Consulting India
Iso 9001 2008 consulting by Netpeckers Consulting IndiaIskcon Ahmedabad
 

Similaire à Demystifying ISO 20000-1 Standard (20)

mm CGEIT Best Practices and Concepts
mm CGEIT Best Practices and Conceptsmm CGEIT Best Practices and Concepts
mm CGEIT Best Practices and Concepts
 
QAI -ITSM Practice Presentation
QAI -ITSM Practice PresentationQAI -ITSM Practice Presentation
QAI -ITSM Practice Presentation
 
David Pultorak ISECON 2007 Keynote: IT Frameworks
David Pultorak ISECON 2007 Keynote: IT FrameworksDavid Pultorak ISECON 2007 Keynote: IT Frameworks
David Pultorak ISECON 2007 Keynote: IT Frameworks
 
411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx
411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx
411705005-IATF-16949-PPT-TRAINING-AWARENESS.pptx
 
Sosialisasi sni iso iec 20000 - sistem manajemen layanan
Sosialisasi sni iso iec 20000 - sistem manajemen layananSosialisasi sni iso iec 20000 - sistem manajemen layanan
Sosialisasi sni iso iec 20000 - sistem manajemen layanan
 
The Status and Issues of Quality Management System Certification in Japan
The Status and Issues of Quality Management System Certification in JapanThe Status and Issues of Quality Management System Certification in Japan
The Status and Issues of Quality Management System Certification in Japan
 
GSS Infosoft Pvt Ltd
GSS Infosoft Pvt LtdGSS Infosoft Pvt Ltd
GSS Infosoft Pvt Ltd
 
ISO 27001 definitions
ISO 27001 definitionsISO 27001 definitions
ISO 27001 definitions
 
Quality & Reliability Consultant
Quality & Reliability ConsultantQuality & Reliability Consultant
Quality & Reliability Consultant
 
GRC2-KSA.ppt
GRC2-KSA.pptGRC2-KSA.ppt
GRC2-KSA.ppt
 
CMMI for Services v2.0 Changes, Practice Areas, Appraisals
CMMI for Services v2.0 Changes, Practice Areas, AppraisalsCMMI for Services v2.0 Changes, Practice Areas, Appraisals
CMMI for Services v2.0 Changes, Practice Areas, Appraisals
 
Usulan untuk wg1 dan wg2 pada pnps2015 rapat awal pt35-01 - 9 april 2015
Usulan untuk wg1 dan wg2 pada pnps2015 rapat awal pt35-01 - 9 april 2015Usulan untuk wg1 dan wg2 pada pnps2015 rapat awal pt35-01 - 9 april 2015
Usulan untuk wg1 dan wg2 pada pnps2015 rapat awal pt35-01 - 9 april 2015
 
Mark thomas cobit-and-frameworks
Mark thomas cobit-and-frameworksMark thomas cobit-and-frameworks
Mark thomas cobit-and-frameworks
 
Materi sosialisasi
Materi sosialisasiMateri sosialisasi
Materi sosialisasi
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)
 
Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)Iso27001 Isaca Seminar (23 May 08)
Iso27001 Isaca Seminar (23 May 08)
 
Resume_IshitaKundu_CISA
Resume_IshitaKundu_CISAResume_IshitaKundu_CISA
Resume_IshitaKundu_CISA
 
Usulan untuk wg1 dan wg2 serta kualitas data pada pnps2015 rapat ke-2 pt35-...
Usulan untuk wg1 dan wg2 serta kualitas data pada pnps2015 rapat ke-2 pt35-...Usulan untuk wg1 dan wg2 serta kualitas data pada pnps2015 rapat ke-2 pt35-...
Usulan untuk wg1 dan wg2 serta kualitas data pada pnps2015 rapat ke-2 pt35-...
 
EMS 14001:2015 Awareness and Auditor Training Presentation
EMS 14001:2015 Awareness and Auditor Training PresentationEMS 14001:2015 Awareness and Auditor Training Presentation
EMS 14001:2015 Awareness and Auditor Training Presentation
 
Iso 9001 2008 consulting by Netpeckers Consulting India
Iso 9001 2008 consulting by Netpeckers Consulting IndiaIso 9001 2008 consulting by Netpeckers Consulting India
Iso 9001 2008 consulting by Netpeckers Consulting India
 

Plus de NUS-ISS

Designing Impactful Services and User Experience - Lim Wee Khee
Designing Impactful Services and User Experience - Lim Wee KheeDesigning Impactful Services and User Experience - Lim Wee Khee
Designing Impactful Services and User Experience - Lim Wee KheeNUS-ISS
 
Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...
Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...
Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...NUS-ISS
 
How the World's Leading Independent Automotive Distributor is Reinventing Its...
How the World's Leading Independent Automotive Distributor is Reinventing Its...How the World's Leading Independent Automotive Distributor is Reinventing Its...
How the World's Leading Independent Automotive Distributor is Reinventing Its...NUS-ISS
 
The Importance of Cybersecurity for Digital Transformation
The Importance of Cybersecurity for Digital TransformationThe Importance of Cybersecurity for Digital Transformation
The Importance of Cybersecurity for Digital TransformationNUS-ISS
 
Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...
Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...
Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...NUS-ISS
 
Understanding GenAI/LLM and What is Google Offering - Felix Goh
Understanding GenAI/LLM and What is Google Offering - Felix GohUnderstanding GenAI/LLM and What is Google Offering - Felix Goh
Understanding GenAI/LLM and What is Google Offering - Felix GohNUS-ISS
 
Digital Product-Centric Enterprise and Enterprise Architecture - Tan Eng Tsze
Digital Product-Centric Enterprise and Enterprise Architecture - Tan Eng TszeDigital Product-Centric Enterprise and Enterprise Architecture - Tan Eng Tsze
Digital Product-Centric Enterprise and Enterprise Architecture - Tan Eng TszeNUS-ISS
 
Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...
Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...
Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...NUS-ISS
 
Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...
Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...
Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...NUS-ISS
 
Supply Chain Security for Containerised Workloads - Lee Chuk Munn
Supply Chain Security for Containerised Workloads - Lee Chuk MunnSupply Chain Security for Containerised Workloads - Lee Chuk Munn
Supply Chain Security for Containerised Workloads - Lee Chuk MunnNUS-ISS
 
Future of Learning - Yap Aye Wee.pdf
Future of Learning - Yap Aye Wee.pdfFuture of Learning - Yap Aye Wee.pdf
Future of Learning - Yap Aye Wee.pdfNUS-ISS
 
Future of Learning - Khoong Chan Meng
Future of Learning - Khoong Chan MengFuture of Learning - Khoong Chan Meng
Future of Learning - Khoong Chan MengNUS-ISS
 
Site Reliability Engineer (SRE), We Keep The Lights On 24/7
Site Reliability Engineer (SRE), We Keep The Lights On 24/7Site Reliability Engineer (SRE), We Keep The Lights On 24/7
Site Reliability Engineer (SRE), We Keep The Lights On 24/7NUS-ISS
 
Product Management in The Trenches for a Cloud Service
Product Management in The Trenches for a Cloud ServiceProduct Management in The Trenches for a Cloud Service
Product Management in The Trenches for a Cloud ServiceNUS-ISS
 
Overview of Data and Analytics Essentials and Foundations
Overview of Data and Analytics Essentials and FoundationsOverview of Data and Analytics Essentials and Foundations
Overview of Data and Analytics Essentials and FoundationsNUS-ISS
 
Predictive Analytics
Predictive AnalyticsPredictive Analytics
Predictive AnalyticsNUS-ISS
 
Feature Engineering for IoT
Feature Engineering for IoTFeature Engineering for IoT
Feature Engineering for IoTNUS-ISS
 
Master of Technology in Software Engineering
Master of Technology in Software EngineeringMaster of Technology in Software Engineering
Master of Technology in Software EngineeringNUS-ISS
 
Master of Technology in Enterprise Business Analytics
Master of Technology in Enterprise Business AnalyticsMaster of Technology in Enterprise Business Analytics
Master of Technology in Enterprise Business AnalyticsNUS-ISS
 
Diagnosing Complex Problems Using System Archetypes
Diagnosing Complex Problems Using System ArchetypesDiagnosing Complex Problems Using System Archetypes
Diagnosing Complex Problems Using System ArchetypesNUS-ISS
 

Plus de NUS-ISS (20)

Designing Impactful Services and User Experience - Lim Wee Khee
Designing Impactful Services and User Experience - Lim Wee KheeDesigning Impactful Services and User Experience - Lim Wee Khee
Designing Impactful Services and User Experience - Lim Wee Khee
 
Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...
Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...
Upskilling the Evolving Workforce with Digital Fluency for Tomorrow's Challen...
 
How the World's Leading Independent Automotive Distributor is Reinventing Its...
How the World's Leading Independent Automotive Distributor is Reinventing Its...How the World's Leading Independent Automotive Distributor is Reinventing Its...
How the World's Leading Independent Automotive Distributor is Reinventing Its...
 
The Importance of Cybersecurity for Digital Transformation
The Importance of Cybersecurity for Digital TransformationThe Importance of Cybersecurity for Digital Transformation
The Importance of Cybersecurity for Digital Transformation
 
Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...
Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...
Architecting CX Measurement Frameworks and Ensuring CX Metrics are fit for Pu...
 
Understanding GenAI/LLM and What is Google Offering - Felix Goh
Understanding GenAI/LLM and What is Google Offering - Felix GohUnderstanding GenAI/LLM and What is Google Offering - Felix Goh
Understanding GenAI/LLM and What is Google Offering - Felix Goh
 
Digital Product-Centric Enterprise and Enterprise Architecture - Tan Eng Tsze
Digital Product-Centric Enterprise and Enterprise Architecture - Tan Eng TszeDigital Product-Centric Enterprise and Enterprise Architecture - Tan Eng Tsze
Digital Product-Centric Enterprise and Enterprise Architecture - Tan Eng Tsze
 
Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...
Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...
Emerging & Future Technology - How to Prepare for the Next 10 Years of Radica...
 
Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...
Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...
Beyond the Hype: What Generative AI Means for the Future of Work - Damien Cum...
 
Supply Chain Security for Containerised Workloads - Lee Chuk Munn
Supply Chain Security for Containerised Workloads - Lee Chuk MunnSupply Chain Security for Containerised Workloads - Lee Chuk Munn
Supply Chain Security for Containerised Workloads - Lee Chuk Munn
 
Future of Learning - Yap Aye Wee.pdf
Future of Learning - Yap Aye Wee.pdfFuture of Learning - Yap Aye Wee.pdf
Future of Learning - Yap Aye Wee.pdf
 
Future of Learning - Khoong Chan Meng
Future of Learning - Khoong Chan MengFuture of Learning - Khoong Chan Meng
Future of Learning - Khoong Chan Meng
 
Site Reliability Engineer (SRE), We Keep The Lights On 24/7
Site Reliability Engineer (SRE), We Keep The Lights On 24/7Site Reliability Engineer (SRE), We Keep The Lights On 24/7
Site Reliability Engineer (SRE), We Keep The Lights On 24/7
 
Product Management in The Trenches for a Cloud Service
Product Management in The Trenches for a Cloud ServiceProduct Management in The Trenches for a Cloud Service
Product Management in The Trenches for a Cloud Service
 
Overview of Data and Analytics Essentials and Foundations
Overview of Data and Analytics Essentials and FoundationsOverview of Data and Analytics Essentials and Foundations
Overview of Data and Analytics Essentials and Foundations
 
Predictive Analytics
Predictive AnalyticsPredictive Analytics
Predictive Analytics
 
Feature Engineering for IoT
Feature Engineering for IoTFeature Engineering for IoT
Feature Engineering for IoT
 
Master of Technology in Software Engineering
Master of Technology in Software EngineeringMaster of Technology in Software Engineering
Master of Technology in Software Engineering
 
Master of Technology in Enterprise Business Analytics
Master of Technology in Enterprise Business AnalyticsMaster of Technology in Enterprise Business Analytics
Master of Technology in Enterprise Business Analytics
 
Diagnosing Complex Problems Using System Archetypes
Diagnosing Complex Problems Using System ArchetypesDiagnosing Complex Problems Using System Archetypes
Diagnosing Complex Problems Using System Archetypes
 

Dernier

Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsNathaniel Shimoni
 
UiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPathCommunity
 
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxUse of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxLoriGlavin3
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityIES VE
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxLoriGlavin3
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesThousandEyes
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...itnewsafrica
 
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better StrongerModern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better Strongerpanagenda
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Mark Goldstein
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxLoriGlavin3
 
Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...itnewsafrica
 
QCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architecturesQCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architecturesBernd Ruecker
 
Emixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native developmentEmixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native developmentPim van der Noll
 
Glenn Lazarus- Why Your Observability Strategy Needs Security Observability
Glenn Lazarus- Why Your Observability Strategy Needs Security ObservabilityGlenn Lazarus- Why Your Observability Strategy Needs Security Observability
Glenn Lazarus- Why Your Observability Strategy Needs Security Observabilityitnewsafrica
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfNeo4j
 
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical InfrastructureVarsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructureitnewsafrica
 

Dernier (20)

Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
 
UiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to HeroUiPath Community: Communication Mining from Zero to Hero
UiPath Community: Communication Mining from Zero to Hero
 
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptxUse of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
Use of FIDO in the Payments and Identity Landscape: FIDO Paris Seminar.pptx
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a reality
 
The State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptxThe State of Passkeys with FIDO Alliance.pptx
The State of Passkeys with FIDO Alliance.pptx
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
 
Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
Abdul Kader Baba- Managing Cybersecurity Risks and Compliance Requirements i...
 
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better StrongerModern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
Modern Roaming for Notes and Nomad – Cheaper Faster Better Stronger
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
Arizona Broadband Policy Past, Present, and Future Presentation 3/25/24
 
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptxThe Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
The Fit for Passkeys for Employee and Consumer Sign-ins: FIDO Paris Seminar.pptx
 
Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...Zeshan Sattar- Assessing the skill requirements and industry expectations for...
Zeshan Sattar- Assessing the skill requirements and industry expectations for...
 
QCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architecturesQCon London: Mastering long-running processes in modern architectures
QCon London: Mastering long-running processes in modern architectures
 
Emixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native developmentEmixa Mendix Meetup 11 April 2024 about Mendix Native development
Emixa Mendix Meetup 11 April 2024 about Mendix Native development
 
Glenn Lazarus- Why Your Observability Strategy Needs Security Observability
Glenn Lazarus- Why Your Observability Strategy Needs Security ObservabilityGlenn Lazarus- Why Your Observability Strategy Needs Security Observability
Glenn Lazarus- Why Your Observability Strategy Needs Security Observability
 
Connecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdfConnecting the Dots for Information Discovery.pdf
Connecting the Dots for Information Discovery.pdf
 
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical InfrastructureVarsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
Varsha Sewlal- Cyber Attacks on Critical Critical Infrastructure
 

Demystifying ISO 20000-1 Standard

  • 1. 7 May 13 Demystifying ISO 20000-1 standard ISO/TS 16949 Workshop 07 May 2013 Chris Ng Product Manager / Lead Auditor TÜV SÜD PSB Pte Ltd MITM, ABCP, CISM, CISA, CISSP, CTT, ISO 9000 LA, ISO 27000 LA, ISO 20000 LA ISO 22301 LA, SS 507 LA, SS 584 LA IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 1
  • 2. Content IT & IT Security CertfiicationSchemes7 May 13 Intro to TUV SUD PSB & Product Portfolio Intro to TUV SUD PSB & Product Portfolio What is ISO 20000 (SMS) ?What is ISO 20000 (SMS) ?2 Why ISO 20000 certification?Why ISO 20000 certification?3 Main components of ISO 20000Main components of ISO 200004 1 ISO certification roadmap -Pre-requisites -Certification Process ISO certification roadmap -Pre-requisites -Certification Process 5 TÜV SÜD PSB Singapore Slide 2
  • 3. Content IT & IT Security CertfiicationSchemes7 May 13 Key success factorsKey success factors ConclusionConclusion7 6 TÜV SÜD PSB Singapore Slide 3
  • 4. TÜV SÜD PSB Pte Ltd 10/4/2016 TUV SUD PSB Corporate Overview
  • 5. TÜV SÜD PSB TUV SUD heritage: over 145 years of business success Slide 5 Establishment of a Mannheim-based steam boiler inspection association by 21 operators and owners of steam boilers, with the objective of protecting man, the environment and property against the risk emanating from a new and largely unknown form of technology 1866 First vehicle periodic technical inspection (PTI)1910 1958 Development of a Bavaria-wide network of vehicle inspection centres in the late 1950s 1926 Introduction of the “TÜV mark / stamp” in Germany 1990s Conglomeration of TÜVs from the southern part of Germany to form TÜV SÜD and the expansion of business operations into Asia TÜV SÜD continues to pursue a strategy of internationalisation and growth Today 2006 Expansion of services in ASEAN by acquiring Singapore-based PSB Group 2009 Launch of Turkey-wide vehicle inspection by TÜVTURK
  • 6. TÜV SÜD PSB Pte Ltd 10/4/2016 IT Certification Product Portfolio
  • 7. Auditing solutions service portfolio Quality ISO 9001 ISO / TS 16949 ISO 13485 ESD 20:20 TL 9000 AS 9100 IT Information Security (ISO27001) Service Mgt System (ISO20000-1) Business Continuity & Disaster Recovery (BC/DR, SS507) Business Continuity Management (ISO 22301) Multi-Tier Cloud Security (MTCS) (SS 584) Environmental Health & Safety ISO14001 OHSAS 18001 QC080000 Safety & Health Management System (SHMS) Safe Management of Hazardous Substances (SMHS) Carbon Footprint Certification Food safety ISO22000 British Retail Consortium (BRC) Hazard Analysis and Critical Control Points (HACCP) Good Manufacturing Practice (GMP) Specific industry Quality Management for Bunker Supply Chain (QMBS) Quality Maritime Education and Training (QMET) Good Distribution Practice for Medical Devices (GDPMDS) Product Inspection Product Listing (PLS) Ready Mixed Concrete Certification Pre-shipment Inspection (PSI) Factory/Agency Inspection Source Inspection Suppliers’ Audit 7 May 13 ISO14064 PAS 2050 ISO 50001 Social compliance SA8000 CDM Validation, verification of carbon dioxide (CO²) emissions IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 7
  • 8. 7 May 13 Why TUV SUD PSB? • Why TUV SUD PSB? – Market leader in certification industries within ASEAN – Certification Body with the largest team of IT and other scheme Auditors in ASEAN – All IT auditors are armed with many years of industrial experiences exposed to various IT related schemes – Quality of audits – One of the few Registered Certification Body (RCB) for APMG ISO/IEC 20000:2011 Certification Scheme – 1st Certification Body (CB) to award ISO 20000:2011 certificate to organization in Singapore IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 8
  • 9. TÜV SÜD PSB Pte Ltd 10/4/2016 Seminars Participated
  • 10. 7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guess speaker for several IT related seminars in Singapore AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #1 - Information Security Management System Foundation – 23 Apr 2010 Information Systems Audit and Control Association (ISACA) – ISO 27001 Dinner talks – 19 Aug 2010 AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #8 - SS540 - The Singapore Standard for Business Continuity Management (BCM) and its relationship with the ISO 27001 (ISMS) standard – 18 Feb 11 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 10
  • 11. 7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guess speaker for several IT related seminars in Singapore AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #1 - Information Security Management System Foundation – 5 Apr 2012 AISP-ITSC Information Security Standards - ISO 27001 Series: Talk #1 (Re-run) - Information Security Management System Foundation – 11 May 2012 ISACA Oct 12 Networking Talk Seminar - Introduction to Business Continuity Management Standard (ISO 22301) – 23 Oct 12 PinkAsiaForum12 – 1st Annual IT Service Management Leadership Forum – 6-7 Dec 12 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 11
  • 12. 7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guest speaker for several IT related seminars in Singapore TUV SUD PSB’s “Think Security First’ Seminar” to give an introduction on ISO 27001 Standards on 13 Sep 13 BCM Institute Seminar on “An insight into the ISO 22301 (BCMS) standard - the certification body perspective” on 28 Feb 14 ISACA May 14 Networking Talk Seminar – Online all the time (BCM related) – 20 May 14 Invited as a speaker for ST Kinetics’ Business ContinuityAwareness Week to give an introduction on “ISO 22301 (BCMS) standard - the certification body perspective” on 21 Jul 14 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 12
  • 13. 7 May 13 Why TUV SUD PSB? • Seminars Participated – Being invited as guest speaker for several IT related seminars in Singapore -Invited by IDA as Panel Experts in discussion forum on SS 584 Multi- tier Cloud Security (MTCS) standard in Cloud Asia Conference on 30 Oct 14 Conduct a Clinic Session on SS 584 Multi-tier Cloud Security (MTCS) standard in TUV SUD PSB on 13 May 15 IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 13
  • 14. TÜV SÜD PSB Pte Ltd 10/4/2016 ISO 20000 Standard (An International Standard for Service Management)
  • 15. TÜV SÜD PSB Pte Ltd 10/4/2016 ITIL
  • 16. IT Infrastructure Library (ITIL) • The IT Infrastructure Library (ITIL) – is essentially a series of documents that forms the basis of a framework to deliver, improving and managing IT Services – this customizable framework defines how Service Management is applied within an organization. – Not a standard but a Best Practices Framework, which includes all the best practices to facilitate the delivery of high quality IT services – It focuses on managing services to customers, not technology to users – Centered on Service Lifecycle approach and focused on providing business value – adopted as the de-facto standard for best practice in the provision of IT Service TÜV SÜD PSB Singapore Slide 16
  • 17. IT Infrastructure Library (ITIL) • The IT Infrastructure Library (ITIL) – It focuses on the following: Service Strategy – determines which types of services should be offered to which customers or markets Service Design – identifies service requirements and devises new service offerings as well as changes and improvements to existing ones Service Transition – builds and deploys new or modified services Service Operation – carries out operational tasks Continual Service Improvement – learns from past successes and failures and continually improves the effectiveness and efficiency of services and processes. TÜV SÜD PSB Singapore Slide 17
  • 18. 10/4/2016 What is SMS? • What is Service Management System (SMS)? – Service Management System (SMS) is a process-based practice intended to align the delivery of information technology (IT) services with the needs of the enterprise, emphasizing benefits to customers. – SMS focuses on the delivery of end-to-end services using best practice process model
  • 19. What is ISO/IEC 20000 standard? • What is ISO/IEC 20000 standard? – the formal standard against which organizations may seek independent certification for their Service Management Systems (SMS) – introduced in Dec 2005 and closely follows the ITIL framework to ensure there is a consistent way to implement and “measure” IT Service Management – A set of “controls” against which an organization can be assessed for effective IT Service Management processes – requires organizations to comply with all the requirements across Service Management standard – adopts an integrated end-to-end approach TÜV SÜD PSB Singapore Slide 19
  • 20. What is ISO/IEC 20000 standard? • What is ISO/IEC 20000 standard? – to provide a common base for: developing organizational IT service standards and adopting effective service management practices to provide confidence in inter-organizational dealings – uses a Plan-Do-Check-Act (PDCA) model to achieve continual improvement TÜV SÜD PSB Singapore Slide 20
  • 21. TÜV SÜD PSB Pte Ltd Why ISO 20000 (SMS)?
  • 22. 7 May 13 Why ISO 20000 certification? • Why ISO 20000 certification? – Satisfying Customers’ Requirements Requirements from customers to posses a comprehensive service management system – Enhancing Operational Efficiency & Effectiveness Certification improves the delivering of quality services in a more efficient & effective manner – Provision of Assurance Certification provides assurance to the clients that the organization has a robust and reliable operational setup within its service management systems Benefits & Drivers IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 22
  • 23. 7 May 13 Why ISO 20000 certification? – Enhancing the Risk management: Leads to a better knowledge of service management systems, their weaknesses and how to protect them. Apply controls from a risk perspective. – Increasing credibility and confidence Certification can help set a company apart from its competitors and in the marketplace. Provides assurance to the clients in managing the provision of IT services Benefits & Drivers IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 23
  • 24. 7 May 13 Why ISO 20000 certification? – Helping to reduce costs Reduced costs related to streamlining of processes , handling of operational issues through its structured & organized incident and problem handling process – Improving service awareness Improves employee awareness of providing quality services and their specific roles & responsibilities to achieve that Benefits & Drivers IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 24
  • 25. TÜV SÜD PSB Pte Ltd Application of ISO 20000 (SMS)
  • 26. 7 May 13 Application of ISO 20000 • Which organizations can go for ISO 20000 certification? – Any organization that requires alignment of its Services (incl of IT services) with the Business needs – Provide assurance to interested parties e.g. customers that they have reliable and certified Service Management Systems (SMS) • Certify organizations in: – finance, banking and insurance – telecommunications – utilities – retail sectors – manufacturing sector – various service industries – transportation sector – Government bodies IT & IT Security CertfiicationSchemesTÜV SÜD PSB Singapore Slide 26
  • 27. TÜV SÜD PSB Pte Ltd 10/4/2016 ISO 20000 Family of Standards
  • 28. ISO/IEC 20000 Standard • Family of ISO/IEC 20000 standard – ISO 20000-1:2011 (Part 1) – A specification where the Service Management processes can be audited against defines the processes and provides assessment criteria and recommendations for those responsible for Service Management – ISO 20000-2:2012 (Part 2) Code of practice that provides assistance to organizations that are to be audited against ISO/IEC 20000 standard or are planning service improvements TÜV SÜD PSB Singapore Slide 28
  • 29. TÜV SÜD PSB Pte Ltd 10/4/2016 The Main Components of ISO/IEC 20000
  • 30. ISO/IEC 20000 Standard • Main components of ISO/IEC 20000 standard – ISO 20000-1:2011 (9 sections) 1. Scope 2. Normative references 3. Terms and Definitions 4. Service Management System General Requirements 5. Design & Transition of New or Changed Services 6. Service Delivery Process 7. Relationship Processes 8. Resolution Processes 9. Control Processes TÜV SÜD PSB Singapore Slide 30
  • 31. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard • Clause 4: Service management system general requirements – Clause 4.1 Management responsibility – Clause 4.2 Governance of processes operated by other parties – Clause 4.3 Documentation management – Clause 4.4 Resource management – Clause 4.5 Establish & improve the SMS TÜV SÜD PSB Singapore Slide 31
  • 32. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard • Clause 5: Design & transition of new or changed service – Clause 5.1 General – Clause 5.2 Plan new or changed services – Clause 5.3 Design & development of new or changed services – Clause 5.4 Transition of new or changed services TÜV SÜD PSB Singapore Slide 32
  • 33. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard – ISO/IEC 20000-1:2011 groups the main ITIL processes into Four core process sets (Cl 6-9) :- – 1. Service Delivery Processes (Cl 6) – which includes: Service Level Management (SLM) (Cl 6.1), Service Reporting (Cl 6.2) Service Continuity & Availability Management, (Cl 6.3) Budgeting and Accounting for Services (Cl 6.4) Capacity Management (Cl 6.5), Information Security Management (Cl 6.6) TÜV SÜD PSB Singapore Slide 33
  • 34. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 2. Relationship Processes (Cl 7): Business Relationship Management (Cl 7.1) – to establish and maintain a good relationship between the service provider and customer – have designated individual to handle customer Supplier Management (Cl 7.2) – to manage suppliers to ensure the provision of seamless, quality services – monitor of supplier’s service performance – management of changes – review of SLAs TÜV SÜD PSB Singapore Slide 34
  • 35. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 3. Resolution Processes (Cl 8): Incident & Service Request Management (Cl 8.1) – deals with the restoration of services – requires a documented procedure for all incidents which include information like classification, priority, escalation, resolution, closure, etc. – takes into consideration of the impact & urgency of incident – defines major incident and ensure it is communicated to the right interested parties Problem Management (Cl 8.2) – to minimize or avoid impact of incidents or problems – identifying & removing the root causes of incidents or problems – Will lead to Change Management for relevant solutions or patches TÜV SÜD PSB Singapore Slide 35
  • 36. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 4. Control Processes (Cl 9): Configuration Management (Cl 9.1) – to define & control the components of the service & infrastructure & maintain accurate configuration information – establishment of configuration baseline, – definition of CIs in the CMDB – identifies assets owner & interdependencies Change Management (Cl 9.2) – ensures all changes are assessed, approved, implemented and reviewed in a controlled manner – procedures to handle emergency changes – decision-making of accepting change shall take into consideration the risks, the potential impacts to services and the customer, service requirements, etc. TÜV SÜD PSB Singapore Slide 36
  • 37. Main Components of ISO/IEC 20000 • Main components of ISO/IEC 20000 standard (con’t) – 4. Control Processes (Cl 9): Release & Deployment Management (Cl 9.3) – to deliver, distribute and track one or more changes in the live environment – conducts impact analysis before release – release needs to be built & tested before deployment – establishes release, roll-out & roll-back plan TÜV SÜD PSB Singapore Slide 37
  • 39. TÜV SÜD PSB Pte Ltd 10/4/2016 The Certification Roadmap
  • 40. ISO 20000 Certification Road map (2 phases) 1. Gap analysis - Getting the ISO 20000 standards - List of identified gaps - Cost and schedule estimation 2. Setting up SMS framework -Prepare Service Management Policy & Plan -Define Scope, objectives, resources, etc. -Identify Risk Management methodology, perform risk assessment., identify internal audit approach, etc. 3. Implementation -Allocation of funds, budget, roles and Responsibilities, ITIL/ISO 20k training, etc. -Documenting policies, plans, processes, etc. 4. Check & Act -Management review (*), internal audit (*), -Monitor Service Improvement plan etc. 1 Phase 1: Pre-Certification Phase TÜV SÜD PSB Singapore Slide 40
  • 41. Pre-requisites for ISO 20000 certification • Pre-requisites – Develop the SMS Manual Establish the SMS Scope (*) Establish SMS Policy (*) Define SMS Objectives (*) – Perform Risk Assessment Description of Risk Assessment Methodology & Process (*) Risk assessment report Risk Treatment Process & Plan (*) – Prepare Service Improvement Policy/Service Management Plan, etc. TÜV SÜD PSB Singapore Slide 41
  • 42. Pre-requisites for ISO 20000 certification • Pre-requisites (con’t) – Perform Internal Audit Internal Audit Procedure Internal audit Programme & Results (*) – Conduct Management Review (*) – Develop competency of staff in SMS (*) – Continual Improvement Corrective Actions (CA) Procedure Preventive Actions (PA) Procedure Non-conformities uncovered and results of CA (*) – Establish Control of documents/records procedures Control of Document Procedure Control of Records Procedure TÜV SÜD PSB Singapore Slide 42
  • 43. ISO 20000 Certification Road map (con’t) 7. Preliminary assessment (Stage 1) - Records demonstrating SMS implementation 8. Certification assessment (Stage 2) -Assessment report and Corrective Action (CA) 9. Awarding of certificate 1 5. Application for ISO 20000 certification 6. Document (Manual) assessment (Stage 1) Phase 2: Certification Phase TÜV SÜD PSB Singapore Slide 43
  • 44. ISO 20000 Certification Process 1. Application 2. Documentation Assessment (Stage 1) 3. Preliminary Assessment (Stage 1) 4. Certification Assessment (Stage 2) 5. Award of Certificate (valid for 3 yrs) 6. Post-Award Routine Surveillance 7. Renewal of Certificate (on the 3rd yr) CERTIFICATION PROCESS TÜV SÜD PSB Singapore Slide 44
  • 45. TÜV SÜD PSB Pte Ltd 10/4/2016 Key Success Factors
  • 46. Successful ISO 20000 implementation • Key Success Factors: – Management Commitment – Cross-functional forum / committee – Understanding Stakeholders’ business requirements in relation to service delivery – Effective Risk Management Process TÜV SÜD PSB Singapore Slide 46
  • 47. Successful ISO 20000 implementation • Key Success Factors: – Training & Awareness – Proactive & Continual Improvement Internal audit & management review Identify and act on security weaknesses Learn from incidents and establish relevant Prevention Action TÜV SÜD PSB Singapore Slide 47
  • 48. TÜV SÜD PSB Pte Ltd 10/4/2016 Common FAQs
  • 49. Common FAQs • Q1: How much and how long it takes for an ISO 20000 certification audit to complete? – The cost and the time taken depends on the following factors: Scope of services Staff strength in supporting the services Number of remote sites (if any) Complexity of logistics arrangement Complexity of organization , processes & services No. of ITIL process that are already implemented Nature & sensitivity of businesses Any existing certification like ISO 9001 being implemented Language Barrier (requires a local interpreter if English is not the used medium for audit) TÜV SÜD PSB Singapore Slide 49
  • 50. Common FAQs • Q2: How many months of data must I accumulate before applying for certification? – Typically, a minimum of 3 months of data and/or implementation records will be required in order for a meaningful audit to be carried out. TÜV SÜD PSB Singapore Slide 50
  • 51. Common FAQs • Q3:What are the different kinds of assessment findings? (con’t) Stage 1 Certification: – Area of Concerns (AOC) Represents a non-conformance in the implementation of the SMS requirements. Organization will be given a one month’s time to resolve any AOC issues TÜV SÜD PSB Singapore Slide 51
  • 52. Common FAQs • Q3:What are the different kinds of assessment findings? (con’t) Stage 2 Certification / Continuing / Renewal : – Category 1 (Major finding) Represents a breakdown in the SMS framework. Organization will be given a three month’s time to resolve any CAT 1 issues On site visit is necessary to clear CAT 1 issues – Category 2 (Minor finding) Represents some deficiency in the implementation of SMS requirements. Organization will be given a one month’s time to resolve any CAT 2 issues TÜV SÜD PSB Singapore Slide 52
  • 53. Common FAQs • Q3:What are the different kinds of assessment findings? (con’t) – AFI (Area for Improvement) Represents an area that need to be enhanced before it develops into a CAT 1 or CAT 2 problems – Positive (Positive Aspects) Represents an implementation that can be used as a role model for other departments or organization TÜV SÜD PSB Singapore Slide 53
  • 54. TÜV SÜD PSB Pte Ltd 10/4/2016 Conclusion
  • 55. Conclusion • Conclusion – ISO 20000-1 is the certifiable standard for the Service Management Systems (SMS) of an organization – ISO 20000-2 is used as a code of practice to satisfy the requirements of the SMS standard – Need to perform detail readiness check or gap analysis before applying for ISO 20000 certification – Understand the Key Success Factors in ISO 20000 certification TÜV SÜD PSB Singapore Slide 55
  • 56. Thank you IT & IT Security CertfiicationSchemes7 May 13TÜV SÜD PSB Singapore Slide 56 Thank you www.tuv-sud-psb.sg Vielen Dank C m n b n Terima kasih
  • 57. Contact IT & IT Security CertfiicationSchemes7 May 13 Name: Chris Ng Designation: Product Manager / Lead Auditor Email: khee-soon.ng@tuv-sud-psb.sg Tel : 65 68851628 Office Hotline: (65) 9366 8611 TÜV SÜD PSB Singapore Slide 57