ISO/IEC JTC 1/SC 40

Last updated

ISO/IEC JTC 1/SC 40 IT Service Management and IT Governance is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). ISO/IEC JTC 1/SC 40 develops and facilitates the development of international standards, technical reports, and technical specifications within the fields of IT service management and IT governance, with a focus in IT activity such as audit, digital forensics, governance, risk management, outsourcing, service operations and service maintenance. [1] The international secretariat of ISO/IEC JTC 1/SC 40 is Standards Australia (SA), located in Australia. [2]

Contents

History

ISO/IEC JTC 1/SC 40 was formed at the November 2013, 28th JTC 1 Plenary held in Perros-Guirec, France. The subcommittee was established via Resolution 21 from this meeting, and its scope, secretariat, and possible liaisons determined. [3] The new subcommittee combines the work of ISO/IEC JTC 1/WG 8 Governance of IT, ISO/IEC JTC 1/SC 7/WG 25 IT service management, and ISO/IEC JTC 1/SC 7/WG 27 IT enabled services/BPO (ITES/BPO). [1]

Scope

The scope of ISO/IEC JTC 1/SC 40 is: [3] [4] [5] [6]

"Standardization of IT Service Management and IT Governance"

Develop standards, tools, frameworks, best practices and related documents for IT Service Management and IT Governance, including areas of IT activity such as audit, digital forensics, governance, risk management, outsourcing, service operations and service maintenance, but excluding subject matter covered under the scope and existing work programs of JTC 1/SC 27 and JTC 1/SC 38.

The work will initially cover:

Structure

ISO/IEC JTC 1/SC 40 is made up of three working groups (WGs), three study groups (SGs), and one advisory group (AG), each of which carries out specific tasks in standards development within the field of IT Service Management and IT Governance. The focus of each working group is described in the group’s terms of reference. The working groups, study groups, and advisory group of ISO/IEC JTC 1/SC 40 are: [7]

Working GroupTitle
ISO/IEC JTC 1/SC 40/WG 1Governance of Information Technology
ISO/IEC JTC 1/SC 40/WG 2IT Service Management
ISO/IEC JTC 1/SC 40/WG 3IT Enabled Services - Business Process Outsourcing
ISO/IEC JTC 1/SC 40/SG 1General Study Group on Future Work
ISO/IEC JTC 1/SC 40/SG 2Study Group on Service Maintenance (complete)
ISO/IEC JTC 1/SC 40/SG 3Study Group on the governance and service management of IT and IT-enabled business services provided by multiple service providers
ISO/IEC JTC 1/SC 40/CAG 1Chairman Advisory Group

Collaborations

ISO/IEC JTC 1/SC 40 works in close collaboration with a number of other organizations or subcommittees, both internal and external to ISO or IEC, in order to avoid conflicting or duplicative work. Organizations internal to ISO or IEC that collaborate with or are in liaison to ISO/IEC JTC 1/SC 40 include: [8]

Organizations external to ISO or IEC that collaborate with or are in liaison to ISO/IEC JTC 1/SC 40 include:

Member countries

Countries pay a fee to ISO to be members of subcommittees. [9] [10]

The 28 "P" (participating) members of ISO/IEC JTC 1/SC 40 are: Australia, Brazil, Canada, China, Côte d'Ivoire, Denmark, Finland, France, Germany, India, Italy, Japan, Republic of Korea, Luxembourg, Netherlands, New Zealand, Peru, Poland, Portugal, Romania, Russian Federation, Rwanda, Singapore, South Africa, Spain, Sweden, United Kingdom, and United States of America [2]

The 10 "O" (observing) members of ISO/IEC JTC 1/SC 40 are: Argentina, Austria, Belgium, Czech Republic, Hong Kong, Islamic Republic of Iran, Ireland, Kenya, Switzerland, and Uruguay.

Standards

ISO/IEC JTC 1/SC 40 currently has 11 published standards, as well as various other standards or technical reports under development within the field of IT service-management and IT governance. These include: [11] [12]

ISO/IEC StandardTitleStatusDescription
ISO/IEC 20000-1Information technology – Service management – Part 1: Service management system requirementsPublished (2011)Specifies the requirements for the service provider to plan, establish, implement, operate, monitor, review, maintain, and improve a service management system (SMS) [13]
ISO/IEC 20000-2Information technology – Service management – Part 2: Guidance on the application of service management systemsPublished (2012)Provides guidance on the application of SMS based on the requirements of ISO/IEC 20000-1 [14]
ISO/IEC 20000-3Information technology – Service management – Part 3: Guidance on scope definition and applicability of ISO/IEC 20000-1Published (2012)Provides guidance on scope definition, applicability and demonstration of conformity to the requirements in ISO/IEC 20000-1. Guidance on the different types of conformity assessment and assessment standards is included. [15]
ISO/IEC TR 20000-4Information technology – Service management – Part 4: Process reference modelPublished (2010)The purpose of ISO/IEC TR 20000-4:2010 is to facilitate the development of a process assessment model according to ISO/IEC 15504 process assessment principles. [16]
ISO/IEC TR 20000-5Information technology – Service management – Part 5: Exemplar implementation plan for ISO/IEC 20000-1Published (2013)Provides guidance on how to implement an SMS to fulfill the requirements of ISO/IEC 20000-1 [17]
ISO/IEC 20000-6 [18] Information Technology -- Service Management -- Part 6: Requirements for bodies providing audit and certification of service management systemsUnder DevelopmentPart 6: Requirements for bodies providing audit and certification of service management systems
ISO/IEC 20000-8 [19] Information technology -- Service management -- Part 8: Guidance on the application of service management systems for smaller organizationsUnder DevelopmentPart 8: Guidance on the application of service management systems for smaller organizations
ISO/IEC TR 20000-9Information technology – Service management – Part 9: Guidance on the application of ISO/IEC 20000-1 to cloud servicesPublished (2015)Provides guidance on the use of ISO/IEC 20000‑1:2011 for service providers delivering cloud services [20]
ISO/IEC TR 20000-10Information technology – Service management – Part 10: Concepts and terminologyPublished (2013)Provides an overview of the concepts and terminology of ISO/IEC 20000 and establishes a common framework for helping organizations understand the purpose of the parts of ISO/IEC 20000 and the relationships between the parts [21]
ISO/IEC TR 20000-11 [22] Information technology -- Service management -- Part 11: Guidance on the relationship between ISO/IEC 20000-1:2011 and service management frameworksUnder DevelopmentPart 11: Guidance on the relationship between ISO/IEC 20000-1:2011 and service management frameworks
ISO/IEC TR 20000-12 [23] Information technology -- IT Service management -- Part 12: Guidance on the relationship between ISO/IEC 20000-1:2011 and service management frameworks: CMMI-SVCUnder DevelopmentPart 12: Guidance on the relationship between ISO/IEC 20000-1:2011 and service management frameworks: CMMI-SVC
ISO/IEC 30105-1 [12] IT Enabled Services / Business Process Outsourcing Lifecycle Processes ITESBPO StandardPublished (2016)Part 1: Process Reference Model (PRM)
ISO/IEC 30105-2 [12] IT Enabled Services / Business Process Outsourcing Lifecycle Processes ITESBPO StandardPublished (2016)Part 2: Process Assessment Model
ISO/IEC 30105-3 [12] IT Enabled Services / Business Process Outsourcing Lifecycle Processes ITESBPO StandardPublished (2016)Part 3: Process measurement framework and organization maturity model
ISO/IEC 30105-4 [12] IT Enabled Services / Business Process Outsourcing Lifecycle Processes ITESBPO StandardPublished (2016)Part 4: Terms and concepts
ISO/IEC 30105-5 [12] IT Enabled Services / Business Process Outsourcing Lifecycle Processes ITESBPO StandardPublished (2016)Part 5: Guidelines
ISO/IEC 30121System and software engineering – Information technology – Governance of digital forensic risk frameworkPublished (2015)Provides a framework for governing bodies of organizations on the best way to prepare an organization for digital investigations, before they occur [24]
ISO/IEC 38500 [25] Information Technology – governance of IT – For the OrganizationPublished (2015)Provides guiding principles for members of governing bodies of organizations on the effective, efficient, and acceptable use of information technology (IT) within their organizations
ISO/IEC TS 38501 [26] Information Technology – Corporate Governance of IT Implementation GuidePublished (2015)Provides guidance on how to implement arrangements for effective governance of IT within an organization
ISO/IEC TR 38502Information technology – Governance of IT – Framework and modelPublished (2014)provides guidance on the nature and mechanisms of governance and management together with the relationships between them, in the context of IT within an organization [27]
ISO/IEC 38505-1Information Technology -- Governance of IT -- Part 1: The application of ISO/IEC 38500 to the governance of dataUnder DevelopmentPart 1: The application of ISO/IEC 38500 to the governance of data
ISO/IEC TR 38503 [28] Information technology -- governance of IT -- Guidance on the audit of the governance of ITUnder Development
ISO/IEC TR 38504 [29] Information technology -- The structure of principles-based standards in the governance of ITUnder Development

See also

Related Research Articles

<span class="mw-page-title-main">International Organization for Standardization</span> International standards development organization

The International Organization for Standardization is an international standard development organization composed of representatives from the national standards organizations of member countries. Membership requirements are given in Article 3 of the ISO Statutes.

ISO/IEC 20000 is the international standard for IT service management. It was developed in 2005 by ISO/IEC JTC1/SC7 and revised in 2011 and 2018. It was originally based on the earlier BS 15000 that was developed by BSI Group.

ISO/IEC JTC 1/SC 22 Programming languages, their environments and system software interfaces is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) that develops and facilitates standards within the fields of programming languages, their environments and system software interfaces. ISO/IEC JTC 1/SC 22 is also sometimes referred to as the "portability subcommittee". The international secretariat of ISO/IEC JTC 1/SC 22 is the American National Standards Institute (ANSI), located in the United States.

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). ISO/IEC JTC 1/SC 27 develops International Standards, Technical Reports, and Technical Specifications within the field of information security. Standardization activity by this subcommittee includes general methods, management system requirements, techniques and guidelines to address information security, cybersecurity and privacy. Drafts of International Standards by ISO/IEC JTC 1 or any of its subcommittees are sent out to participating national standardization bodies for ballot, comments and contributions. Publication as an ISO/IEC International Standard requires approval by a minimum of 75% of the national bodies casting a vote. The international secretariat of ISO/IEC JTC 1/SC 27 is the Deutsches Institut für Normung (DIN) located in Germany.

ISO/IEC JTC 1/SC 36 Information Technology for Learning, Education and Training is a standardization subcommittee (SC), which is part of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), that develops and facilitates standards within the field of information technology (IT) for learning, education and training (LET). ISO/IEC JTC 1/SC 36 was established at the November 1999 ISO/IEC JTC 1 plenary in Seoul, Korea. The subcommittee held its first plenary meeting in March 2000 in London, United Kingdom. The international secretariat of ISO/IEC JTC 1/SC 36 is the Korean Agency for Technology and Standards (KATS), located in the Republic of Korea.

ISO/IEC JTC 1/SC 37 Biometrics is a standardization subcommittee in the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of biometrics. The international secretariat of ISO/IEC JTC 1/SC 37 is the American National Standards Institute (ANSI), located in the United States.

ISO/IEC JTC 1/SC 38 Cloud Computing and Distributed Platforms is a standardization subcommittee, which is part of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).

ISO/IEC JTC 1/SC 39 Sustainability for and by Information Technology is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), that develops and facilitates standards within the field of sustainability and resource efficiency through Information Technology. The international secretariat of ISO/IEC JTC 1/SC 39 is the American National Standards Institute (ANSI), located in the United States.

ISO/IEC JTC 1/SC 7 Software and systems engineering is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), that develops and facilitates standards within the field of engineering of software products and systems. The international secretariat of ISO/IEC JTC 1/SC 7 is the Bureau of Indian Standards (BIS) located in India.

ISO/IEC JTC 1/SC 25 Interconnection of information technology equipment is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1, of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of interconnection of information technology equipment. The international secretariat of ISO/IEC JTC 1/SC 25 is the Deutsches Institut für Normung (DIN) located in Germany.

ISO/IEC JTC 1/SC 28 Office equipment is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), that develops and facilitates international standards, technical reports, and technical specifications within the field of office equipment and products, and systems composed of combinations of office equipment. The group's main focus lies within the area of printers and copiers. The international secretariat of ISO/IEC JTC 1/SC 28 is the Japanese Industrial Standards Committee (JISC) located in Japan.

ISO/IEC JTC 1/SC 2 Coded character sets is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), that develops and facilitates standards within the field of coded character sets. The international secretariat of ISO/IEC JTC 1/SC 2 is the Japanese Industrial Standards Committee (JISC), located in Japan. SC 2 is responsible for the development of the Universal Coded Character Set which is the international standard corresponding to the Unicode Standard.

ISO/IEC JTC 1/SC 32 Data management and interchange is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of data management and interchange. The international secretariat of ISO/IEC JTC 1/SC 32 is the American National Standards Institute (ANSI) located in the United States.

ISO/IEC JTC 1/SC 29, entitled Coding of audio, picture, multimedia and hypermedia information, is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It develops and facilitates international standards, technical reports, and technical specifications within the field of audio, picture, multimedia, and hypermedia information coding. The standards developed by SC 29 have been recognized by nine Emmy Awards.

ISO/IEC JTC 1/SC 6 Telecommunications and information exchange between systems is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1. It is part of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of telecommunications and information exchange between systems.

ISO/IEC JTC 1/SC 24 Computer graphics, image processing and environmental data representation is a standardization subcommittee of the joint subcommittee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of computer graphics, image processing, and environmental data representation. The international secretariat of ISO/IEC JTC 1/SC 24 is the British Standards Institute (BSI) located in the United Kingdom.

ISO/IEC JTC 1/SC 23 Digitally recorded media for information interchange and storage is a standardization subcommittee of the joint technical committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of removable digital storage media for digital information interchange. The international secretariat of ISO/IEC JTC 1/SC 23 is the Japanese Industrial Standards Committee (JISC) located in Japan.

ISO/IEC JTC 1/SC 17 Cards and personal identification is a standardization subcommittee of the Joint Technical Committee ISO/IEC JTC 1 of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), which develops and facilitates standards within the field of identification cards and personal identification. The international secretariat of ISO/IEC JTC 1/SC 17 is the British Standards Institution (BSI) located in the United Kingdom.

ISO/IEC JTC 1/SC 35 User interfaces is a standardization subcommittee (SC), which is part of the joint technical committee, ISO/IEC JTC 1, of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), that develops standards within the field of user-system interfaces in information and communication technology (ICT) environments. The subcommittee was founded at the 1998 Sendai ISO/IEC JTC 1 Plenary meeting, before which it was a working group directly under ISO/IEC JTC 1. The international secretariat of ISO/IEC JTC 1/SC 35 is AFNOR, located in France.

ISO/IEC JTC 1/SC 31 Automatic identification and data capture techniques is a subcommittee of the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) Joint Technical Committee (JTC) 1, and was established in 1996. SC 31 develops and facilitates international standards, technical reports, and technical specifications in the field of automatic identification and data capture techniques. The first Plenary established three working groups (WGs): Data Carriers, Data Content, and Conformance. Subsequent Plenaries established other working groups: RFID, RTLS, Mobile Item Identification and Management, Security and File Management, and Applications.

References

  1. 1 2 ANSI (2013-12-20). "ISO/IEC JTC 1 Holds 28th Plenary Meeting in France" . Retrieved 2013-12-30.
  2. 1 2 ISO. "ISO/IEC JTC 1/SC 40" . Retrieved 2013-12-30.
  3. 1 2 ISO/IEC JTC 1 (2013-11-13). "Resolutions Adopted at the 28th Meeting of ISO/IEC JTC 1, 4-9 November 2013 in Perros-Guirec, France" (PDF): 8. Retrieved 2013-12-30.{{cite journal}}: Cite journal requires |journal= (help)
  4. "ISO/IEC JTC 1/SC 40" . Retrieved 2013-12-30.
  5. IEC. "ISO/IEC JTC 1/SC 40 Scope" . Retrieved 2013-12-30.
  6. ISO/IEC JTC 1/SC 40 (2014-10-13). 2013-2014 Business Plan (Report).
  7. "ISO/IEC JTC 1/SC 40 Structure". ISO. Retrieved 2015-07-20.
  8. "ISO/IEC JTC 1/SC 40" . Retrieved 2013-12-30.
  9. ISO (June 2012). "III. What Help Can I Get from the ISO Central Secretariat?". ISO Membership Manual (PDF). ISO. pp. 17–18. Retrieved 2013-07-12.
  10. "ISO/IEC JTC 1/SC 40 Participation". ISO. Retrieved 2015-07-20.
  11. ISO. "Standards Catalogue (Published): ISO/IEC JTC 1/SC 40" . Retrieved 2013-12-30.
  12. 1 2 3 4 5 6 ISO. "Standards Catalogue (Under Development): ISO/IEC JTC 1/SC 40" . Retrieved 2014-01-02.
  13. ISO (2011-04-12). "ISO/IEC 20000-1:2011" (2 ed.). Retrieved 2013-12-30.
  14. ISO (2012-02-14). "ISO/IEC 20000-2:2012" (2 ed.). Retrieved 2013-12-30.
  15. ISO (2012-08-14). "ISO/IEC 20000-3:2012" (1 ed.). Retrieved 2015-07-20.
  16. ISO (2014-02-24). "ISO/IEC 20000-4:2010" (1 ed.). Retrieved 2015-07-20.
  17. ISO (2013-10-30). "ISO/IEC TR 20000-5:2013" (2 ed.). Retrieved 2013-12-30.
  18. "ISO/IEC CD 20000-6". ISO. Retrieved 2015-08-26.
  19. "ISO/IEC WD 20000-8". ISO. Retrieved 2015-08-26.
  20. ISO (2015-02-16). "ISO/IEC TR 20000-9:2015" (1 ed.). Retrieved 2015-07-20.
  21. ISO (2013-10-30). "ISO/IEC TR 20000-10:2013" (1 ed.). Retrieved 2013-12-30.
  22. "ISO/IEC TR 20000-11". ISO. Retrieved 2015-08-26.
  23. "ISO/IEC TR 20000-12". ISO. Retrieved 2015-08-26.
  24. ISO (2015-03-17). "ISO/IEC 30121:2015" (2 ed.). Retrieved 2015-07-20.
  25. ISO (2015-02-11). "ISO/IEC 38500" (2 ed.). Retrieved 2015-07-20.
  26. ISO (2015-04-20). "ISO/IEC TR 38501" (2 ed.). Retrieved 2015-07-20.
  27. ISO (2014-01-21). "ISO/IEC TR 38502" (1 ed.). Retrieved 2015-07-20.
  28. "ISO/IEC TR 38503". ISO. Retrieved 2015-08-26.
  29. "ISO/IEC TR 38504". ISO. Retrieved 2015-08-26.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.