ITIL Service Support


• ITIL Service Desk
• ITIL Incident Management
• ITIL Problem Management
• ITIL Configuration Management
• ITIL Change Management
• ITIL Release Management

  ITIL Service Delivery


• ITIL Service Level Management
• ITIL Availability Management
• ITIL Capacity Management
• ITIL Financial Management
• ITIL Service Continuity Mgmnt.
• ITIL Security Management

  ITIL Stuff


• ITIL Organisations
• ITIL Links
• ITIL FAQ

Security Management aspects

Availability of IT service brings its value only when the Security Management issues ensuring the security aspects of services are properly implemented. These aspects are :

- authorization - services and data should be only available to authorized staff. To achieve this there should be implemented a number of security mechanisms such as software and hardware authorization systems kept up to date and ready to use all the time.
- IT security policies - services must run in compliance with defined IT security policies available and known by IT staff.
­ Recovery - there should be a possibility to recover both data and services in case a system failure.

Security Magement controls and maintains the general process of acces to the resources that should be kept away from any unauthorized use. Controlling process may include tests and reviews of the security level of the environment. Any incident that may result with security issue should be recoderd and analyzed - this is another task for subpart of Availibility Management discipline.

In general it is important to analyse all possible risks that could arise during the usage of IT system. The summary and conclusion of the risk analysis should be included in Service Level Agreement that should also draw the border conditions of security system. All recognized risks should be covered and there should be defined a mesure for that cover. The more detail IT risk analisys will be provided here soon.

Added: 2007-10-26