ITIL4_Bigtest#2

Continual improvement is everyone’s responsibility. Although there may be a group of staff members who focus on this work full-time, it is critical that everyone in the organization understands that active participation in continual improvement activities is a core part of their job. To ensure that this is more than a good intention, it is wise to include contribution to continual improvement in all job descriptions and every employee’s objectives, as well as in contracts with external suppliers and contractors.

By definition, outcome is a result for a stakeholder enabled by one or more outputs. In other words, outcomes allow service consumers to achieve a desired result.

Incident management can have an enormous impact on customer and user satisfaction, and on how customers and users perceive the service provider. Every incident should be logged and managed to ensure that it is resolved in a time that meets the expectations of the customer and user. Target resolution times are agreed, documented, and communicated to ensure that expectations are realistic. Incidents are prioritized based on an agreed classification to ensure that incidents with the highest business impact are resolved first.

By definition, services is a means of enabling value co-creation by facilitating outcomes that customers want to achieve, without the customer having to manage specific costs and risks.

When a problem cannot be resolved quickly, it is often useful to find and document a workaround for future incidents, based on an understanding of the problem. Workarounds are documented in problem records. This can be done at any stage; it doesn’t need to wait for analysis to be complete. If a workaround has been documented early in problem control, then this should be reviewed and improved after problem analysis has been completed.

The purpose of the information security management practice is to protect the information needed by the organization to conduct its business. This includes understanding and managing risks to the confidentiality, integrity, and availability of information, as well as other aspects of information security such as authentication (ensuring someone is who they claim to be) and nonrepudiation (ensuring that someone can’t deny that they took an action).

Problems are prioritized for analysis based on the risk that they pose, and are managed as risks based on their potential impact and probability. It is not essential to analyse every problem; it is more valuable to make significant progress on the highest-priority problems than to investigate every minor problem that the organization is aware of.

The purpose of the relationship management practice is to establish and nurture the links between the organization and its stakeholders at strategic and tactical levels. It includes the identification, analysis, monitoring, and continual improvement of relationships with and between stakeholders.

The success of an improvement initiative depends on a clear and accurate understanding of the starting point and the impact of the initiative. An improvement can be thought of as a journey from Point A to Point B, and "Where are we now?" step clearly defines what Point A looks like. A journey cannot be mapped out if the starting point is not known.

A key element in this step is a current state assessment. This is an assessment of existing services, including the users’ perception of value received, people’s competencies and skills, the processes and procedures involved, and/or the capabilities of the available technological solutions. The organization’s culture, i.e. the prevailing values and attitudes across all stakeholder groups, also needs to be understood to decide what level of organizational change management is required.