{"id":6384,"date":"2016-06-14T20:33:41","date_gmt":"2016-06-14T20:33:41","guid":{"rendered":"https:\/\/multiacademstg.wpengine.com\/20000academy\/?p=6384"},"modified":"2025-04-11T10:31:31","modified_gmt":"2025-04-11T10:31:31","slug":"whats-the-content-of-an-itiliso-20000-sla","status":"publish","type":"post","link":"https:\/\/advisera.com\/20000academy\/blog\/2016\/06\/14\/whats-the-content-of-an-itiliso-20000-sla\/","title":{"rendered":"What\u2019s the content of an ITIL\/ISO 20000 SLA?"},"content":{"rendered":"<p>Once your IT service is in the live environment \u2013 that\u2019s when your service\u2019s \u201cadult life\u201d begins; i.e., it\u2019s time to see how good (or bad) the service is. Users will start using it and judgements will be made. Firstly, users will judge functionality (according to\u00a0<a href=\"https:\/\/advisera.com\/20000academy\/what-is-itil\/\" target=\"_blank\" rel=\"noopener noreferrer\">ITIL<\/a>\u00a0\u2013 utility or fit for purpose). That will be the justification as to whether all customer requirements are fulfilled. Secondly, users and customers will judge how well you maintain agreed characteristics of the service (or warranty \u2013 fit for use, i.e., availability, capacity, security, and continuity). There is no discussion; both utility and warranty are set much earlier.<\/p>\n<p>You can hardly have any influence on utility (fit for purpose; i.e., what does the service do). Warranty (characteristics of the service) is your point of interest once the service is in the live environment. Namely, all the characteristics of the service that you agreed on with your customer have to remain as agreed (e.g., capacity means usually some performance characteristics of the service like throughput or number of transactions in, e.g., a minute, etc.). The <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/?rel=relationship-and-agreement-processes&#038;doc=service-level-agreement-sla-\" target=\"_blank\" rel=\"noopener\">Service Level Agreement (SLA)<\/a> is the document that will clarify your relationship with the customer, but also your obligations (OK, and the customer\u2019s as well) to maintain the service\u2019s quality level.<\/p>\n<h2><strong>Why bother?<\/strong><\/h2>\n<p>Actually, why would you bother to have a clear, concise, and descriptive <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/?rel=relationship-and-agreement-processes&#038;doc=service-level-agreement-sla-\" target=\"_blank\" rel=\"noopener\">SLA<\/a>? Isn\u2019t it easier to sit down with the customer, agree on what needs to be done, and start working? Well, easier said than done. Once there is a different view on the same issue \u2013 you\u2019ll realize that there must be something better than a verbal agreement. If it isn\u2019t you \u2013 your customer will require that.<\/p>\n<p>See it from the positive side \u2013 once you have a written agreement, you know your obligations. So, resource planning can be made as well as budgets allocated. If I was responsible for delivery of services, then I\u2019d be very happy if I knew exactly what and how something had to be delivered.\u00a0 Further on, in such case I could instigate control and measurement mechanisms, reporting, collaboration with customers, improvements, etc.<br \/>\n<div id=\"middle-banner\" class=\"banner-shortcode\"><\/div><script>loadMiddleBanner();<\/script><br \/>\n<div id=\"side-banner-trigger\" class=\"banner-shortcode\"><\/div><\/p>\n<h2><strong>Requirements and recommendations<\/strong><\/h2>\n<p>Since ITIL is, generally, not prescriptive, there are no strict requirements regarding the <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/?rel=relationship-and-agreement-processes&#038;doc=service-level-agreement-sla-\" target=\"_blank\" rel=\"noopener\">SLA<\/a> and its content. Actually, by reading ITIL literature you will find a lot of useful tips, but no fixed requirements as in ISO 20000.<\/p>\n<p><a href=\"https:\/\/advisera.com\/20000academy\/what-is-iso-20000\/\" target=\"_blank\" rel=\"noopener noreferrer\">ISO 20000<\/a>\u00a0is a set of requirements related to the (IT) Service Management System (SMS) and, as such, it sets requirements towards the <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/?rel=relationship-and-agreement-processes&#038;doc=service-level-management-process\" target=\"_blank\" rel=\"noopener\">Service Level Management process<\/a>\u00a0and the SLA. Direct requirements are \u201csimple\u201d:<\/p>\n<ul>\n<li>Existence \u2013 there should be one or more SLA for every delivered service.<\/li>\n<li>Requirements \u2013 service requirements (agreed with the customer) have to be considered while creating an SLA. That includes (agreed) service targets, workload characteristics, and exceptions.<\/li>\n<li>Change management \u2013 <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/?rel=service-design-build-and-transition-processes&amp;doc=request-for-change-and-change-record\" target=\"_blank\" rel=\"noopener\">changes<\/a>\u00a0to the SLAs should be controlled by the change management process.<\/li>\n<\/ul>\n<p>Indirect requirements are related to the <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/?rel=service-portfolio-processes&amp;doc=service-catalog\" target=\"_blank\" rel=\"noopener\">service catalogue<\/a>\u00a0(changes in the service catalogue must be reflected in SLAs) and performance monitoring (against service targets).<\/p>\n<h2><strong>What to include?<\/strong><\/h2>\n<p>Generally, it\u2019s hard (or better to say \u2013 impossible) to provide a cookbook for the SLA content. The reason is that every service is different, and every customer sets their own requirements. But, from an experience point of view, there are some elements that are either common to most of the SLAs or are recommendable to include in the SLA (regardless of whether you are implementing ITIL or ISO 20000):<\/p>\n<ul>\n<li>Header and footer of the document \u2013 the SLA is an agreement, i.e., a legally binding document between the supplier and the customer. So, it has to contain the legal part of the document.<\/li>\n<li>Service description \u2013 what do you support; i.e., describe the functionality as briefly and precisely as possible.<\/li>\n<li>Scope \u2013 define what is included in the SLA, but also what is excluded (e.g., training or delivery of licenses and\/or equipment).<\/li>\n<li>Performance supported \u2013 this could include supported service hours (e.g., 24&#215;7), or some detailed descriptive parameter (availability, capacity), like number of transactions per minute.<\/li>\n<li>Processes \u2013 I found quite often that the service provider and the customer have different expectations from, e.g., the incident management process. Once an incident is opened, the SLA clock starts ticking. When the incident is resolved, the IT service provider stops the clock. The catch is that the customer expects the root cause to be eliminated, which is the job of problem management. Besides that root cause analysis requires high expertise, it also requires more time; therefore, it\u2019s advisable to make a distinction between these two processes. It\u2019s the same with change management \u2013 who is doing what, how the communication works, what are the change categories, etc. Therefore, if possible \u2013 include process definition in the SLA.<\/li>\n<li>Contacts \u2013 define contacts on your (as well as the customer\u2019s) side and describe how customers and users can contact you (e.g., web portal, mail address). Include a description of responsibilities on both sides.<\/li>\n<li>Security \u2013 that applies to the confidentiality, integrity, and availability of configuration items that are part of the service, but also to the relationship between you and the customer (usually meaning \u2013 NDA or Non-Disclosure Agreement).<\/li>\n<li>Charging \u2013 you certainly shouldn\u2019t forget about this element.<\/li>\n<li>Reporting \u2013 which reports, what is the frequency of sending reports, who sends them to whom, etc.?<\/li>\n<\/ul>\n<h2><strong>To have one, or not to have one?<\/strong><\/h2>\n<p>Having no SLA is the worst option. If you already have one, check whether the SLA helps you define your relationship with the customer and whether all responsibilities are clear. Namely, SLA means obligation \u2013 permanent and clearly defined. I\u2019m sure that proactive and efficient IT service suppliers don\u2019t mind signing the SLA. On the other side, service suppliers who hesitate to sign an SLA should think twice. The SLA helps the customer to get what he pays for, but the same is valid for the supplier \u2013 the SLA enables them to charge for the service they provided.<\/p>\n<p><em>To implement ISO 20000 easily and efficiently, use our<\/em> <a href=\"https:\/\/advisera.com\/20000academy\/iso-20000-documentation-toolkit\/\" target=\"_blank\" rel=\"noopener\">ISO 20000 Documentation Toolkit<\/a> <em>that provides step-by-step guidance for full ISO 20000 compliance.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Once your IT service is in the live environment \u2013 that\u2019s when your service\u2019s \u201cadult life\u201d begins; i.e., it\u2019s time to see how good (or bad) the service is. Users will start using it and judgements will be made. Firstly, users will judge functionality (according to\u00a0ITIL\u00a0\u2013 utility or fit for purpose). That will be the &#8230;<\/p>\n","protected":false},"author":32,"featured_media":17313,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[404,357,366,344,204,378,141],"class_list":["post-6384","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","tag-customer","tag-incident-management","tag-iso-20000","tag-itil","tag-service","tag-service-level-management","tag-sla"],"acf":[],"_links":{"self":[{"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/posts\/6384","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/comments?post=6384"}],"version-history":[{"count":3,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/posts\/6384\/revisions"}],"predecessor-version":[{"id":18237,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/posts\/6384\/revisions\/18237"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/media\/17313"}],"wp:attachment":[{"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/media?parent=6384"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/categories?post=6384"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/advisera.com\/20000academy\/wp-json\/wp\/v2\/tags?post=6384"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}