Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

Chapter 8
Capacity, Availability, and Information Security Management

THE FOLLOWING ITIL PLANNING, PROTECTION, AND OPTIMIZATION CAPABILITY INTERMEDIATE EXAM OBJECTIVES ARE DISCUSSED IN THIS CHAPTER:

Capacity, availability management, and information security management are discussed in terms of their
- Purpose
- Objectives
- Scope
- Value
- Policies
- Principles and basic concepts
- Process activities, methods, and techniques
- Triggers, inputs, outputs, and interfaces
- Information management
- Process roles
- Critical success factors and key performance indicators
- Challenges
- Risks

The processes discussed in this chapter cover three of the four aspects of warranty; you should remember from your ITIL Foundation studies that in order for services to deliver value, they must provide both utility (the functionality required, described as fitness for purpose) and warranty (sufficient availability, capacity, service continuity, and security for the service to perform at the required level, described as fitness for use).

Capacity management ensures that the service, and the technology on which it is based, can support the patterns of business activity. Availability management ensures that the service is reliable and resilient, with any downtime kept to a level acceptable to the customer, that is, as agreed in the service level agreements. ITIL defines information security management as “the management process within the corporate governance framework, which provides the strategic direction for security activities and ensures objectives are achieved.”

We are going to examine each of these processes in turn.

Capacity Management

ITIL states that capacity management is responsible for ensuring that the capacity of IT services and the IT infrastructure is able to meet agreed current and future capacity and performance needs in a cost-effective and timely manner. The capacity management process must therefore understand the likely changes in capacity requirements and ensure that the design and ongoing management of a service meet this demand. As we have just said, sufficient capacity is a key warranty aspect of a service that needs to be delivered if the benefits of the service are to be realized.

Capacity management is considered throughout the lifecycle; as part of strategy, the likely capacity requirements for a new service are considered as part of the service evaluation to ensure that the service is meeting a real need. In design, the service is engineered to cope with that demand and to be flexible enough to be able to adjust to meet changing capacity requirements. Transition ensures that the service, when implemented, is delivering according to its specification. The operational phase of the lifecycle ensures that day-to-day adjustments that are necessary to meet changes in requirements are implemented. Finally, as part of continual service improvement, capacity-related issues are addressed and adjustments are made to ensure that the most cost-effective and reliable delivery of the service is achieved.

Purpose of Capacity Management

The purpose of the capacity management process is to understand the current and future capacity needs of a service and to ensure that the service and its supporting services are able to deliver to this level. The actual capacity requirements will have been agreed on as part of service level management; capacity management must not only meet these, but also ensure that the future needs of the business, which may change over time, are met.

Objectives of Capacity Management

The objectives of capacity management are met by the development of a detailed plan that states the current business requirement, the expected future requirement, and the actions that will be taken to meet these requirements. This plan should be reviewed and updated at regular intervals (at least annually) to ensure that changes in business requirements are considered. Similarly, any requests to change the current configuration will be considered by capacity management to ensure that they are in line with expectations or, if not, that the capacity plan is amended to suit the changed requirement. Those responsible for capacity management will review any issues that arise and help resolve any incidents or problems that are the result of insufficient capacity. This helps ensure that the service meets its objectives. An essential objective is to make sure capacity is increased or decreased in a timely manner so that the business is not impacted.

As part of the ongoing management of capacity and its continual improvement, any proactive measures that may improve performance at a reasonable cost are identified and acted on. Advice and guidance on capacity and performance-related issues are provided, and assistance is given to service operations with performance- and capacity-related incidents and problems.

Scope of Capacity Management

The capacity management process has responsibility for ensuring sufficient capacity at all times, including both planning for short-term fluctuations, such as those caused by seasonal variations, and ensuring that the required capacity is there for longer-term business expansion. Changes in demand may sometimes actually be reductions in that demand, and this is also within the scope of the process. Capacity management should ensure that as demand for the service falls, the capacity provided for that service is also reduced or managed to ensure that unnecessary expenditure is avoided.

The process includes all aspects of service provision and therefore may involve the technical, applications, and operations management functions. Other aspects of capacity, such as staff resources, are also considered.

Capacity Management

A retail organization that was struggling to maintain its market position decided to expand its online and telephone-ordering service through a major marketing campaign. As part of this initiative, the telephone-ordering service hours were to be extended to 24 hours, 7 days a week. The business was considering what this would mean in terms of increased call center staff, warehouse staff, and stock levels. The IT director was tasked with ensuring that the IT services would support this business initiative.

The IT director called together his managers involved in the capacity management process. Those in the technical management function had to ensure that the infrastructure would be able to cope with the expected increased demand. This included the telecoms infrastructure capacity, required for the extra call center staff, and the voice traffic that the staff would generate in addition to the increase in data traffic. The website’s capacity to handle increased traffic and the ability of the applications to handle a high volume of orders, credit card processing, and so on were investigated by the technical and applications management functions. The technical solutions that were recommended as a result meant more equipment would be purchased. The operations management function investigated the impact on operational processes, such as increased time needed to carry out backups and the impact of 24/7 operations on planned maintenance. Included was the impact of the extra equipment on the UPS, air conditioning, and so on. Finally, the service desk manager calculated what increase in staff would be required to move to a 24/7 support operation and an increased user population during peak hours. This was calculated as requiring two new service desk analysts, and the building services department was asked to provide the extra office space for the new staff.

As the “Capacity Management” sidebar illustrates, an increase in capacity requirements may have repercussions across the infrastructure and on the IT staff resources required to manage it. Although staffing is a line management responsibility, the calculation of resource requirements in this area is also part of the overall capacity management process.

Capacity management also involves monitoring “patterns of business activity” to understand how well the infrastructure is meeting the demands on it and making adjustments as required to ensure that the demand is met. Proactive improvements to capacity may also be implemented, where justified, and any incidents caused by capacity issues need to be investigated.

Capacity management may recommend demand management techniques to smooth out excessive peaks in demand. These techniques are discussed in Chapter 9, “IT Service Continuity Management and Demand Management.”

Capacity Management Value to the Business

Capacity management provides value to the business by improving the performance and availability of IT services the business needs; it does so by helping to reduce capacity- and performance-related incidents and problems. The process will also ensure that the required capacity and performance are provided in the most cost-effective manner.

All processes should be contributing in some way to the achievement of customer satisfaction, and capacity management does this by ensuring that all capacity- and performance-related service levels are met. Capacity management needs to be aware of new techniques and technologies as they become available, exploiting them to provide cost-justified performance improvements and support innovation.

Proactive capacity management activities will ensure that capacity aspects are considered during the design and transition of new or changed services. The capacity plan will ensure that business needs and future plans are taken into account when planning services.

As with availability management, capacity management will have the opportunity to improve the ability of the business to follow an environmentally responsible strategy by using green technologies and techniques.

Capacity Management Policies, Principles, and Basic Concepts

Capacity management is essentially a balancing act. It ensures that the capacity and performance of the IT services and systems match the evolving demands of the business in the most cost-effective and timely manner. This requires balancing the costs against the resources needed. Capacity management needs to ensure that the processing capacity that is purchased is cost justifiable in terms of business need. It ensures that the organization makes the most efficient use of those resources.

Capacity management is also about balancing supply against demand. It is important to ensure that the available supply of IT processing power matches the demands made on it by the business, both now and in the future. It may also be necessary to manage or influence the demand for a particular resource.

The policies for capacity management should reflect the need for capacity management to play a significant role across the service lifecycle.

It is important to ensure that capacity management is part of the consideration for all service level and operational level agreements, and of course any supporting contracts with suppliers. These agreements will capture the service requirements of the business, and capacity management should consider these for the current and future business needs.

Capacity Management Process Activities, Methods, and Techniques

Capacity management has three supporting subprocesses: business capacity management, service capacity management, and component capacity management. There are many similar activities that are performed by each of the subprocesses, but each has a very different focus. Business capacity management is focused on the current and future business requirements, whereas service capacity management is focused on the delivery of the existing services that support the business, and component capacity management is focused on the IT infrastructure that underpins service provision.

In Figure 8.1, you can see the full scope of the subprocesses, techniques, and activities for the capacity management process. We will look at each subprocess in turn.

Chart shows subprocesses in capacity management for business (strategic), service (tactical), and component (operational) leading to production of capacity plan processes and capacity management data storage ends at CMIS. — **FIGURE 8.1** Capacity management subprocesses

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

Business Capacity Management

The business capacity management subprocess is concerned with understanding the business plans and the implications of these on the IT infrastructure. This enables the necessary changes such as storage upgrades to be planned and implemented in time for the required capacity to be available when the business requires it. Capacity management will use existing utilization data for the current services and resources and extrapolate trends to predict future requirements. In addition, capacity management will plan the required capacity for new services due to come on-stream through the service strategy and service portfolio processes.

The capacity requirements are subject to change as the business changes. Business changes may require new services or changes to existing services or generate increased demand for those services. Some services will no longer be required, and this will free up spare capacity. These new requirements are identified by demand management, which analyzes patterns of business activity to understand how these patterns generate demand patterns for IT service. This information enables proactive capacity management to predict and satisfy future requirements.

Capacity management needs to be included in all strategic, planning, and design activities as early as possible if the services are going to be able to meet the level of demand and the performance targets set in the service level agreements. The process will model the capacity requirements for a number of different scenarios in order to understand the impact on capacity requirements. For example, such scenarios might include the impact of fewer or greater numbers of concurrent users than the original prediction.

Once the capacity requirements are understood, capacity management will recommend procurement of new capacity, if required, or other measures taken as necessary. It will also ensure that the actions taken are implemented through the change management process. It will also advise service level management what SLA performance targets are achievable.

Service Capacity Management

The service capacity management subprocess focuses on the management, control, and prediction of the end-to-end performance and capacity of the live, operational IT services usage and workloads. It ensures that the performance of all services, as detailed in service targets within SLAs and SLRs, is monitored and measured, and that the collected data is recorded, analyzed, and reported. Wherever necessary, proactive and reactive action should be instigated to ensure that the performance of all services meets their agreed-on business targets. Wherever possible, automated thresholds should be used to manage all operational services to ensure that situations where service targets are breached or threatened are rapidly identified. Service capacity management will monitor the workload to ensure that they do not exceed any specified limitations.

Service capacity management monitors changes in performance levels and assesses the impact of changes so that most issues can be predicted and acted on before the service is impacted.

Component Capacity Management

The component capacity management subprocess focuses on the management, control, and prediction of the performance, utilization, and capacity of individual IT technology components such as processors, memory, disks, network bandwidth, and network connections. It ensures that all components within the IT infrastructure that have finite resources are monitored and measured, and that the collected data is recorded, analyzed, and reported. Wherever possible, automated thresholds should be implemented to manage all components through the event management process to ensure that situations where service targets are breached or threatened by component usage or performance are rapidly identified, and cost-effective actions, such as load-balancing, are implemented to reduce or avoid their potential impact.

Capacity Management Tools

It is important to ensure that the tools used by capacity management conform to the organization’s management architecture as well as integrate with other tools used for the management of IT systems and automation of IT processes.

Service operation monitoring and control activities provide a basis for the tools to support capacity management. The IT operations management function and the technical management departments (such as network management and server management) may carry out the bulk of the day-to-day operational duties. They will participate in the capacity management process by providing it with performance information.

Reactive and Proactive Activities

Capacity management has both reactive and proactive activities (as has availability management, which we will examine later in this chapter). In Figure 8.2, you can see the activities relating to both reactive and proactive capacity management and the interaction between the subprocesses.

Chart shows service portfolio (business requirements) flows to capacity management (for business, service, and component) connected to blocks (review and improve current service, assess new requirements, and plan new capacity) and finally to CMIS. — **FIGURE 8.2** Capacity management overview with subprocesses

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

Capacity management should include the following proactive activities:

Preempting performance issues by taking the necessary actions before the issues occur
Producing trends of the current component utilization and using them to estimate the future requirements and for planning upgrades and enhancements
Modeling and trending the predicted changes in IT services (including service retirements)
Ensuring that upgrades are budgeted, planned, and implemented before SLAs and service targets are breached or performance issues occur
Actively seeking to improve service performance wherever the cost is justifiable
Producing and maintaining a capacity plan addressing future requirements and plans for meeting them
Tuning (also known as optimizing) the performance of services and components

Capacity management should include the following reactive activities:

Monitoring, measuring, reporting, and reviewing the current performance of both services and components
Responding to all capacity-related “threshold” events and instigating corrective action
Reacting to and assisting with specific performance issues

Ongoing Activities

A number of ongoing activities form part of the capacity management process. These activities provide the basic historical information and triggers necessary for all the other activities and processes within capacity management (see Figure 8.3).

Image shows closed loop flowchart for tuning, implementation, monitoring and analysis. Resource and service thresholds and CMIS connected to monitoring. Analysis and monitoring connected to service and resource utilization exception reports. — **FIGURE 8.3** Ongoing iterative activities of capacity management

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

Each service, and all of its components, should be monitored, and compared against defined thresholds, to spot trends and identify potential issues. This enables the necessary action to be taken. Recommendations can also be made for the purchase of new capacity or the adoption of new technology.

Typical monitored data includes the following:

Processor utilization
Memory utilization
I/O rates (physical and buffer) and device utilization
Queue lengths
Disk utilization
Transaction rates
Response times
Batch duration
Database usage
Index usage
Hit rates
Concurrent user numbers
Network traffic rates

Thresholds should be based on historical analysis of normal activity and set below the level at which the service is impacted to allow time for corrective action. If the thresholds are exceeded, alarms should be raised and exception reports produced.

The ongoing activities may include balancing services, balancing workloads, changing concurrency levels, and adding or removing resources. The monitoring reports and information about the actions recommended and taken are stored in the capacity management information system (CMIS).

Capacity Management Triggers, Inputs, and Outputs and Interfaces

Let’s consider the triggers, inputs, and outputs for the capacity management process, and its interfaces with other service management processes. Capacity management is a process that has many active connections throughout the organization and its processes. It is important that the triggers, inputs, outputs, and interfaces be clearly defined to avoid duplicated effort or gaps in workflow.

Triggers

Many triggers will initiate capacity management activities:

New and changed services requiring additional capacity
Service breaches, capacity or performance events, and alerts, including threshold events
Exception reports
Periodic revision of current capacity and performance and the review of forecasts, reports, and plans
Periodic trending and modeling
Review and revision of business and IT plans and strategies
Review and revision of designs and strategies
Review and revision of SLAs, operational level agreements, contracts, or any other agreements
Requests from service level management for assistance with capacity and/or performance targets and explanation of achievements

Inputs

A number of sources of information are relevant to the capacity management process:

Business information
Service and IT information
Component performance and capacity information
Service performance issue information
Service information
Financial information
Change information
Performance information
CMS
Workload information

Outputs

The outputs of capacity management are used within the process itself as well as by many other processes and other parts of the organization. The information is often reproduced in an electronic format as visual real-time displays of performance. The outputs are as follows:

The capacity management information system
The capacity plan
Service performance information and reports
Workload analysis and reports
Ad hoc capacity and performance reports
Forecasts and predictive reports
Thresholds, alerts, and events
Improvement actions

Interfaces

As we have already explained, capacity management has strong connections across the service lifecycle with a number of other processes. For example, all changes to service and resource capacity must follow all IT processes such as change, release, configuration, and project management.

The key interfaces are as follows:

Availability management works with capacity management to determine the resources needed to ensure the required availability of services and components.
Service level management provides assistance with determining capacity targets and the investigation and resolution of breaches related to service and component capacity.
IT service continuity management is supported by capacity management through the assessment of business impact and risk, determining the capacity needed to support risk reduction measures and recovery options.
Capacity management provides assistance with incident and problem management for the resolution and correction of capacity-related incidents and problems.
By anticipating the demand for services based on user profiles and patterns of business activity, and by identifying the means to influence that demand, demand management provides strategic decision making and critical related data on which capacity management can act.

Information Management and Capacity Management

The CMIS is used to provide the relevant capacity and performance information to produce reports and support the capacity management process. The reports provide information to a number of IT and service management processes. These should include the reports described in the following sections.

Component-Based Reports

There is likely to be a team of technical staff responsible for each component, and they should be in charge of their control and management. Reports must be produced to illustrate how components are performing and how much of their maximum capacity is being used.

Service-Based Reports

Service-based reports will provide the basis of SLM and customer service reports. Reports and information must be produced to illustrate how the service and its constituent components are performing with respect to their overall service targets and constraints.

Exception Reports

Exception reports can be used to show management and technical staff when the capacity and performance of a particular component or service becomes unacceptable. Thresholds can be set for any component, service, or measurement within the CMIS. An example threshold may be that processor utilization for a particular server has breached 70 percent for three consecutive hours or that the concurrent number of logged-in users exceeds the specified limit.

In particular, exception reports are of interest to the SLM process in determining whether the targets in SLAs have been breached. Also, the incident and problem management processes may be able to use the exception reports in the resolution of incidents and problems; for example, slow response may be traced to lack of capacity. Excess capacity should also be identified. Unused capacity may represent an opportunity for cost savings.

Predictive and Forecast Reports

Part of the capacity management process is to predict future workloads and growth. To do this, future component and service capacity and performance must be forecast. This can be done in a variety of ways, depending on the techniques and the technology used. A simple example of a capacity forecast is a correlation between a business driver and component utilization. If the forecasts on future capacity requirements identify a requirement for increased resource, this requirement needs to be input into the capacity plan and included within the IT budget cycle.

Process Roles

In Chapter 1, “Introduction to Operational Support and Analysis,” we explored the generic roles applicable to all processes throughout the service lifecycle. These are relevant to the capacity management process, but specific additional requirements also apply. Remember that these are not “job titles”; they are guidance on the roles that may be needed to successfully run the process.

Capacity Management Process Owner

The capacity management process owner’s responsibilities typically include the following:

Carrying out the generic process owner role for the capacity management process (see Chapter 1 for more detail)
Working with managers of all functions to ensure acceptance of the capacity management process as the single point of coordination for all capacity- and performance-related issues, regardless of the specific technology involved
Working with other process owners to ensure an integrated approach to the design and implementation of capacity management, availability management, IT service continuity management, and information security management

Capacity Management Process Manager

The capacity management process manager’s responsibilities typically include the following:

Carrying out the generic process manager role for the capacity management process (see Chapter 1 for more detail)
Coordinating interfaces between capacity management and other processes, especially service level management, availability management, IT service continuity management, and information security management
Ensuring adequate IT capacity to meet required levels of service
Providing advice on matching capacity and demand and on optimizing the use of existing capacity
Working with SLM to ascertain capacity requirements from the business
Understanding the current usage and the maximum capacity of each component
Modeling and sizing all proposed new services and systems
Forecasting future capacity requirements
Producing, reviewing, and revising the capacity plan, in line with the organization’s business planning cycle
Setting appropriate levels of monitoring of resources and systems
Analyzing usage and performance data, and reporting on performance against targets contained in SLAs
Raising incidents and problems when breaches of capacity or performance thresholds are detected, and assisting with the investigation and diagnosis of capacity-related incidents and problems
Performing tuning to optimize and improve capacity or performance
Implementing initiatives to improve resource usage—for example, demand management techniques
Assessing new technology to improve performance and new techniques and products that could be used to improve the process
Assessing all changes for their impact on capacity and performance and attending CAB meetings when appropriate
Reporting on current usage of resources, trends and forecasts, and performance against targets contained in SLAs
Testing performance of new services and systems
Predicting the effects of future demand on performance service levels
Determining achievable performance service levels that are cost-justified
Acting as a focal point for all capacity and performance issues

Critical Success Factors and Key Performance Indicators for Capacity Management

The following list includes some sample critical success factors for capacity management and some key performance indicators for each.

Critical success factor: “Accurate business forecasts”
- KPI: Production of workload forecasts on time
- KPI: Accuracy (measured as a percentage) of forecasts of business trends
Critical success factor: “Knowledge of current and future technologies”
- KPI: Timely justification and implementation of new technology in line with business requirements (time, cost, and functionality)
- KPI: Reduction in the use of old technology, causing breached SLAs due to problems with support or performance
Critical success factor: “Ability to demonstrate cost effectiveness”
- KPI: Reduction in last-minute buying to address urgent performance issues
- KPI: Reduction in the overcapacity of IT
Critical success factor: “Ability to plan and implement the appropriate IT capacity to match business needs”
- KPI: Reduction (measured as a percentage) in the number of incidents due to poor performance
- KPI: Reduction (measured as a percentage) in lost business due to inadequate capacity

Challenges for Capacity Management

One of the major challenges facing capacity management is persuading the business to provide information on its strategic business plans. Without this information, the IT service provider will find it difficult to provide effective business capacity management. If there are commercial or confidential reasons this data cannot be shared, it becomes even more challenging for the service provider.

Another challenge is the combination of all of the component capacity management data into an integrated set of information that can be analyzed in a consistent manner. This is particularly challenging when the information from the different technologies is provided by different tools in differing formats.

The amount of information produced by business capacity management, and especially service capacity management and component capacity management, is huge, and the analysis of this information is often difficult to achieve.

It is important that the people and the processes focus on the key resources and their usage without ignoring other areas. For this to be done, appropriate thresholds must be used, and reliance must be placed on tools and technology to automatically manage the technology and provide warnings and alerts when things deviate significantly from the norm.

Risks for Capacity Management

The following list includes some of the major risks associated with capacity management:

There is a lack of commitment from the business to the capacity management process.
There is a lack of appropriate information from the business on future plans and strategies.
There is a lack of senior management commitment to or a lack of resources and/or budget for the capacity management process.
Service capacity management and component capacity management is performed in isolation because business capacity management is difficult or there is a lack of appropriate and accurate business information.
The processes become too bureaucratic or manually intensive.
The processes focus too much on the technology (component capacity management) and not enough on the services (service capacity management) and the business (business capacity management).
The reports and information provided are too technical and do not give the information required by or appropriate for the customers and the business.

Availability Management

The availability of a service is critical to its value. No matter how clever it is or what functionality it offers (its utility), the service is of no value to the customer unless it delivers the warranty expected. Poor availability is a primary cause of customer dissatisfaction. Availability is one of the four warranty aspects that must be delivered if the service is to be fit for use. Targets for availability are often included in service level agreements, so the IT service provider must understand the factors to be considered when seeking to meet or exceed the availability target. This section covers how availability is measured; the purpose, objectives, and scope of availability management; and a number of key concepts.

Defining Availability

ITIL defines availability as the ability of an IT service or other configuration item to perform its agreed function when required. Any unplanned interruption to a service during its agreed service hours (also called the agreed service time, specified in the service level agreement) is defined as downtime. The availability measure is calculated by subtracting the downtime from the agreed service time and converting it to a percentage of the agreed service time.

It is important to note the inclusion of when required in the definition and the word agreed in the calculation. The service may be available when the customer does not require it; including time when the customer does not need the service in the calculation gives a false impression of the availability from the customer perspective. If customer perception does not match the reporting provided, the customer will become cynical and distrust the reports.

Calculating Availability: Two Examples

Example A: A service is available 24 hours a day, 7 days a week. One hour of downtime per week is calculated as follows:

168 hours – 1 hour downtime = 167/168 * 100 = 99.4% availability

Example B: If the service is available but used only 9 a.m. to 5 p.m., Monday through Friday (and these 40 hours are the service hours agreed to in the SLA), then the same 1 hour of downtime results in a different figure:

40 hours – 1 hour downtime = 39/40 × 100 = 97.5% availability

If the downtime occurred overnight, it would be included in the calculations in Example A but not those in Example B because there was no agreed service after 5 p.m.

It is important, therefore, to agree on exactly what the specified service hours are; they should be documented in the SLA. The basis for the calculation should be clear to the customer.

Keep in mind that the customer experiences the end-to-end service; the availability delivered depends on all links in the chain being operational when required. The customer will complain that a service is unavailable whether the fault is with the application, the network, or the hardware. The availability management process is therefore concerned with reducing service affecting downtime wherever it occurs. Again, it should be clearly stated in the availability reports whether the calculations are based on the end-to-end service or just the application availability. It is therefore essential to understand the difference between service availability and component availability.

Purpose of Availability Management

The purpose of the availability management process is to take the necessary steps to deliver the availability requirements defined in the SLA. The process should consider both the current requirements and the future needs of the business. All actions taken to improve availability have an accompanying cost, so all improvements made must be assessed for cost-effectiveness.

Availability management considers all aspects of IT service provision to identify possible improvements to availability. Some improvements will depend on implementing new technology; others will result from more effective use of staff resources or streamlined processes. Availability management analyzes reasons for downtime and assesses the return on investment for improvements to ensure that the most cost-effective measures are taken. The process ensures that the delivery of the agreed availability is prioritized across all phases of the lifecycle.

Objectives of Availability Management

The objectives of availability management are as follows:

Producing and maintaining a plan that details how the current and future availability requirements are to be met. This plan should consider requirements 12 to 24 months in advance to ensure that any necessary expenditure is agreed on in the annual budget negotiations and any new equipment is bought and installed before the availability is affected. The plan should be revised regularly to take into account any changes in the business.
Providing advice throughout the service lifecycle on all availability-related issues to both the business and IT, ensuring that the impact of any decisions on availability is considered.
Managing the delivery of services to meet the agreed targets. Where downtime has occurred, availability management will assist in resolving the incident by utilizing incident management and, when appropriate, resolving the underlying problem by utilizing the problem management process.
Assessing all requests for change to ensure that any potential risk to availability has been considered. Any updates to the availability plan required as a result of changes will also be considered and implemented.
Considering all possible proactive steps that could be taken to improve availability across the end-to-end service, assessing the risk and potential benefits of these improvements, and implementing them where justified.
Implementing monitoring of availability to ensure that targets are being achieved.
Optimizing all areas of IT service provision to deliver the required availability consistently to enable the business to use the services provided to achieve its objectives.

Scope of Availability Management

As discussed, the availability management process encompasses all phases of the service lifecycle. It is included in the design phase because the most effective way to deliver availability is to ensure that availability considerations are designed in from the start. Once the service is operational, opportunities are continually sought to remove risks to availability and make the service more robust. The activities for these opportunities are part of proactive availability management. Throughout the live delivery of the service, availability management analyzes any downtime and implements measures to reduce the frequency and length of future occurrences. These are the reactive activities of availability management. Changes to live services are assessed to understand risks to the service, and measurements are put in place to ensure that downtime is measured accurately. This continues throughout the operational phase until the service is retired.

The scope of availability management includes all operational services and technology. Where SLAs are in place, there will be clear, agreed targets. There may be other services, however, where no formal SLA exists but where downtime has a significant business impact. Availability management should not exclude these services from consideration; it should strive to achieve high availability in line with the potential impact of downtime on the business. Service level management should work to negotiate SLAs for all such services in the future—without them, it is the IT service provider who is assessing the level of availability required—but this should be a business decision. Availability management should be applied to all new IT services and for existing services where SLRs or SLAs have been established. Supporting services must be included because the failures of these services impact the customer-facing services. Availability management may also work with supplier management to ensure that the level of service provided by partners does not threaten the overall service availability.

Every aspect of service provision comes within the scope of availability management. Poor processes, untrained staff, and ineffective tools can all contribute to causing or unnecessarily prolonging downtime. The availability management process ensures that the availability of systems and services matches the evolving needs of the business.

The role of IT within businesses is critical. The availability and reliability of IT services can directly influence customer satisfaction and the reputation of the business. Availability management is essential in ensuring that IT delivers the levels of service availability required by the business to satisfy its business objectives and deliver the quality of service demanded by its customers.

Customer satisfaction is an important factor for all businesses and may provide a competitive edge for the organization. Dissatisfaction with the availability and reliability of IT service can be a key factor in customers taking their business to a competitor.

Availability can also improve the ability of the business to follow an environmentally responsible strategy by using green technologies and techniques in availability management.

Availability Management Policies

The policies of availability management should state that the process is included as part of all lifecycle stages, from service strategy to continual service improvement. The appropriate availability and resilience should be designed into services and components from the initial design stages. This will ensure not only that the availability of any new or changed service meets the expected targets, but also that all existing services and components continue to meet all their targets.

Availability policies should be established by the service provider to ensure that availability is considered throughout the lifecycle. Policies should also be established regarding the criteria to be used to define availability and unavailability of a service or component and how each will be measured.

Availability management is completed at two interconnected levels:

Service availability involves all aspects of service availability and unavailability. This includes the impact of component availability and the potential impact of component unavailability on service.
Component availability involves all aspects of component availability and unavailability.

Availability Management Principles and Basic Concepts

Availability management must align its activities and priorities to the requirements of the business. This requires a firm understanding of the business processes and how they are underpinned by the IT service. Information regarding the future business plans and priorities and therefore the future requirements of the business with regard to availability is essential input to the availability plan. Only with this understanding of the business requirement can the service provider be sure that its efforts to improve availability are correctly targeted.

The response of the IT service provider to failure can improve the customer’s perception of the service, despite the break in service. The service provider’s actions can show an understanding of the impact of the downtime on the business processes, and an eagerness to overcome the issue and prevent recurrences can reassure the business that IT understands its needs.

Additionally, the process requires a strong technical understanding of the individual components that make up each service, their capabilities, and their current performance. Through this combination of business understanding and technical knowledge, the optimal design can be delivered to produce the required level of availability to meet current and future needs.

When designing a new service and discussing its availability requirements, the service provider and the business must focus on the criticality of the service to the business being able to achieve its aims. Expenditure to provide high availability across every aspect of a service is unlikely to be justified. The business process that the IT service supports may be a vital business function (VBF), and identifying which services or parts of services are the most critical is therefore a business decision. For example, the ability of an Internet-based bookshop to be able to process credit card payments would be a vital business function. The ability to display a “customers who bought this book also bought these other books” feature is not vital. It may encourage some increased sales, but the purchaser is able to complete their purchase without it. Once these VBFs are understood, the design of the service to ensure the required availability can commence. Understanding the VBFs informs decisions regarding where expenditure to protect availability is justified.

Determining what the appropriate availability target of a service should be is a business decision, not an IT decision. However, availability comes at a price, and the service provider must ensure that the customer understands the cost implications of too high a target. Customers may otherwise demand a very high availability target (99.99% or greater) and then find the service unaffordable.

Where the cost of very high availability is justified, the design of the service will include highly reliable components, resilience, and minimal or no planned downtime.

Having considered the importance of availability to the business, in the following sections we examine some of the key availability management activities and concepts that the IT service provider may employ to cut downtime and thus deliver the required availability to the business, enabling it to achieve its business objectives.

Availability Concepts

Availability management comprises both reactive and proactive activities, as shown in Figure 8.4. The reactive activities include regular monitoring of service provisions involving extensive data gathering and reporting of the performance of individual components and processes and the availability delivered by them. Event management is often used to monitor components because this speeds up the identification of any issues through the setting of alert thresholds. It may even be possible to restart the failing service automatically, possibly before the break has been noticed by the customers. Instances of downtime are investigated, and remedial actions are taken to prevent a recurrence. The proactive activities include identifying and managing risks to the availability of the service and implementing measures to protect against such an occurrence. Where protective measures have been put in place to provide resilience in the event of component failure, the measures require regular testing to ensure that they work as designed to protect the service availability. All new or changed services should be subject to continual service improvement; countermeasures should be implemented wherever they can be cost justified. This cost justification requires an understanding of the vital business functions and the cost to the business of any downtime. It is ultimately a business decision, not a technical decision. Figure 8.4 also shows the availability management information system (AMIS); this is the repository for all availability management reports, plans, risk registers, and so on, and it forms part of the service knowledge management system (SKMS).

Chart shows availability management process with reactive activities (example: monitor, measure, analyze report, etc.), proactive activities (example: risk assessment and management, etc.) and AMIS (example: availability management reports, plan, etc.). — **FIGURE 8.4** The availability management process

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

Reliability

The first availability concept we cover is reliability. This is defined by ITIL as “a measure of how long a service, component, or CI can perform its agreed function without interruption.” We normally describe how reliable an item is by stating how frequently it can be expected to break down within a given time: “My car is very reliable. It has broken down only twice in five years.” We measure reliability by calculating the mean (or average) time between failures (MTBF) or the mean (or average) time between service incidents (MTBSI).

Reliability of a service can be improved first by ensuring that the components specified in the design are of good quality and from a supplier with a good reputation. Even the best components will fail eventually; however, the reliability of the service can be improved by designing the service so that a component failure does not result in downtime. This is another availability concept called resilience. By ensuring that the design includes alternate network routes, for example, a network component failure will not lead to service downtime because the traffic will reroute. Carrying out planned maintenance to ensure that all the components are kept in good working order will also help improve reliability.

Maintainability

However reliable the equipment and resilient the design, not all downtime can be prevented. When a fault occurs and there is insufficient resilience in the design to prevent it from affecting the service, the length of the downtime that results can be affected by how quickly the fault can be overcome. This is called maintainability and is measured as the mean time to restore service (MTRS). It may be more cost-effective to concentrate on resilience measures for those items that have a long service restoration time. To calculate MTRS, divide the total downtime by the total number of failures.

Simple measures can be taken to reduce MTRS, such as having common spares available on site, and these measures can have a significant impact on availability.

ITIL recommends the use of MTRS rather than mean time to repair (MTTR) because repair may or may not include the restoration of the service following the repair. From the customer perspective, downtime includes all the time between the fault occurring and the service being fully usable again. MTRS measures this complete time and is therefore a more meaningful measurement.

These concepts are illustrated in Figure 8.5, which shows what ITIL calls the expanded incident lifecycle. This illustrates periods of uptime with incidents causing periods of downtime. MTRS is shown as the average of the downtime for the incident. MTBF is shown as the average of the uptime for the incident.

Image shows expanded incident lifecycle with incident start, uptime, service available, downtime, service unavailable, process (diagnose, recover, detect, repair, and restore), and time: MTBSI and MTBF. — **FIGURE 8.5** The expanded incident lifecycle

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

Each incident needs to be detected, diagnosed, and repaired, and the data needs to be recovered and the service restored. Any method of shortening any of these steps—speeding up detection through event management or speeding up diagnosis by the use of a knowledge base, for example—will shorten the downtime and improve availability. The figure also shows another concept: MTBSI, which calculates the average time from the start of one incident to the start of the next and is used as a measure of reliability.

Serviceability

Serviceability is defined as the ability of a third-party supplier to meet the terms of its contract. This contract will include agreed levels of availability, reliability, and/or maintainability for a supporting service or component.

In Figure 8.6, you can see the terms and measures used in availability management, which are combined when applied to suppliers providing serviceability.

Flowchart of availability terms and measures flows in order: business (customers), service level agreements, service (A, B, and C), IT systems, MTBF and MTRS, internal supports teams, and suppliers. — **FIGURE 8.6** Availability terms and measures

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

Availability Concepts: Reliability, Maintainability, and Serviceability

A large bakery had used a machine for making bread rolls for 15 years without any downtime. This machine was responsible for the production of all the bread rolls for a major fast-food company and was therefore very important to the business. The long period without failure showed that the machine was very reliable, possibly because of a resilient design. One day it failed. Because it had never failed before, there was consternation; there was no procedure in place for such an occurrence. Eventually a manual was located, but it was in German. The staff at the bakery tracked down the manufacturer in Germany (this was in the days before Google) and placed a call. An engineer arrived the following day (exactly two days since the fault occurred) and fixed the machine in 15 minutes. The mean time to repair was therefore short (15 minutes), but the mean time to restore service was 2 days and 15 minutes, which had a major impact on the ability of the company to satisfy its external customer, the fast-food chain. The weakness here was in the serviceability of the machine; there was no contract in place to ensure a response and fix in an appropriate time.

Measurement of Availability

The term vital business function (VBF) is used to reflect the part of a business process that is critical to the success of the business. The more vital the business function generally, the greater the level of resilience and availability that needs to be incorporated into the design of the supporting IT services. The availability requirements for all services, vital or not, should be determined by the business and not by IT.

Certain vital business functions may need special designs. These commonly include the following functions:

High Availability A characteristic of the IT service that minimizes or masks the effects of IT component failure to the users of a service.

Fault Tolerance The ability of an IT service, component, or configuration item to continue to operate correctly after failure of a component part.

Continuous Operation An approach or design to eliminate planned downtime of an IT service. Individual components or configuration items may be down even though the IT service remains available.

Continuous Availability An approach or design to achieve 100 percent availability. A continuously available IT service has no planned or unplanned downtime.

Within the IT industry, many suppliers commit to high availability or continuous availability solutions but only if specific environmental standards and resilient processes are used. They often agree to such contracts only after additional, sometimes costly, improvements have been made.

The availability management process depends heavily on the measurement of service and component achievements with regard to availability.

The decision on what to measure and how to report it depends on which activity is being supported, who the recipients are, and how the information is to be used. It is important to recognize the differing perspectives of availability from the business, users, and service providers to ensure that measurement and reporting satisfies these varied needs.

The business perspective considers IT service availability in terms of its contribution or impact on the vital business functions that drive the business operation.

The user perspective considers IT service availability as a combination of three factors. These are the frequency, the duration, and the scope of impact. For many applications, poor response times for the user are considered at the same level as failures of technology.

The IT service provider perspective considers IT service and component availability with regard to availability, reliability, and maintainability.

It is important to consider the full scope of measures needed to report the same level of availability in different ways to satisfy the differing perspectives of availability. Measurements need to be meaningful and add value. This is influenced strongly by the combination of “what you measure” and “how you report it.”

Availability Management Process, Methods, and Techniques

We have explored the concepts and measures used in the availability management process. Figure 8.4 showed the key elements of the process, including the availability management information system. A number of different techniques can be used for availability management; we will examine them now.

Expanded Incident Lifecycle

We looked at the expanded incident lifecycle briefly earlier, in Figure 8.5, when considering availability concepts. This technique requires the analysis of the lifecycle of an incident from start to finish and the period between an incident and the next outage. Outages may not always be preventable; the availability management process seeks not only to avoid downtime, but also to minimize its duration and impact when it does occur. The duration of the downtime can be reduced by analyzing how long each step in the process takes, and then exploiting any opportunities to shorten that stage. Let’s look at each of the incident stages in turn:

Incident Detection This is time that elapses between the incident occurring and the IT service provider becoming aware of the failure. Event management tools can be very helpful in this regard, sending notification of failure, possibly before the users have become aware themselves. This enables the fault to be addressed quickly, thus reducing downtime and improving availability. Tools may have the capability to diagnose the fault and to automatically recover the service. Further information about event management is covered in Chapter 3, “Event Management, Request Fulfillment, and Access Management.”

Incident Diagnosis This is the time by which the cause of the fault has been identified. Faster diagnosis will reduce downtime and increase availability. Again, some monitoring tools can assist in gathering the necessary diagnostic data to help in problem resolution. This may occasionally delay the resolution of service, but it will enable the root cause of repeated failures to be identified and removed, thus reducing the overall downtime.

Incident Repair This is the time at which the repair has been implemented. This may be impacted by the design of the component, so care should be taken in the service design stage to choose components that can be repaired quickly. It may also be impacted by the performance of internal teams or suppliers responsible for carrying out the repair actions. The relevant operational level agreements and underpinning contracts should be monitored by service level management and supplier management for breaches and service improvement plans put in place to prevent such breaches in the future.

Incident Recovery This is the time at which component recovery has been completed. The backup and recovery requirements for the hardware, software, and data components should be identified as early as possible within the design cycle to enable appropriate recovery plans to be drawn up and tested. Wherever possible, recovery actions should be automated. Availability requirements should also contribute to determining what spare parts are kept within the definitive spares area. We discuss the storage of definitive spares in Chapter 12, “Change Management and Service Asset and Configuration Management,” which describes a storage area set aside for the secure storage of spare components and assemblies that are maintained at the same revision level as the systems within the controlled test or live environment; these are used for testing new services in the transition stage and to replace faulty equipment in the operation stage.

Incident Restoration This is the time at which normal business service is resumed. It is important that the ability to work normally is verified before the incident is closed. This may be verified by the service desk by talking to the service users. If the service is one used by the public, such as an ATM or web commerce site, visual checks of transaction throughput or user simulation scripts that validate the end-to-end service may be necessary.

By looking at each stage of the expanded incident lifecycle, we can identify delays and take action to reduce them in the future. For example, a downtime of an hour but with a repair action time of 5 minutes will identify delays such as time wasted before the fault was identified due to poorly configured event management tools, overlong diagnosis time, lack of skills, lack of documentation, and so forth. Availability management needs to work in close association with incident and problem management to ensure that repeat occurrences are eliminated.

Fault Tree Analysis

This approach uses Boolean logic, using AND and OR statements, to analyze the sequence of events that lead to a failure. These events may be characterized as basic, resulting, conditional, or trigger events. The AND statement means all the input events must occur simultaneously for the resultant event to take place (for example, when both the primary and fail-over lines must be down for the network to be down). OR is when the event occurs if any of the input events occurs. There is also an INHIBIT statement when the resulting event occurs only when the input condition is not met. Figure 8.7 gives an example of a fault tree and these statements.

In Figure 8.7, the service is down if the network or the server or the application is down (an example of the OR statement). The network is down if both the primary and failover lines are down (an example of the AND statement). Finally the service would not be considered down if the fault(s) occurred outside service hours (an example of the INHIBIT statement).

Component Failure Impact Analysis

Component failure impact analysis (CFIA) is a technique that considers the importance of an individual component to the provision of service. It enables the impact on services of a failing component to be predicted, in particular any single points of failure (SPOFs). This, in turn, will indicate where resilience or risk reduction measures are required to protect availability. Combined with other techniques, this approach can provide useful information for the design of future services.

CFIA is a relatively simple technique that can be used to analyze all aspects of the IT infrastructure and applications, such as hardware, network, software, applications, data centers, and support staff. Additionally, it can identify impact and dependencies on IT support organization skills and staff competencies.

The technique involves identifying which elements of the IT infrastructure configuration are to be assessed, and then creating a grid with CIs on one axis and the IT services that have a dependency on the CI on the other, as shown in Figure 8.8.

Image shows PC1 and PC2 connected to switch 1. WAN connects to data center and environment (contains server 1 connected to disk system 1 and 2, system software, and application). — **FIGURE 8.8** Example of component failure impact analysis

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

The next step is to perform the CFIA and populate the grid for each component with a blank where the failure of the CI does not impact the service, an “X” when the failure of the CI would bring down the service, an “A” when there is an alternative CI to provide the service, and an “M” when there is an alternative CI but it requires manual intervention to recover the service.

The completed grid will highlight the critical CIs. Actions can then be taken to provide resilience and protect availability.

Service Failure Analysis

Service failure analysis is used as a structured approach to the analysis of an interruption. Each time an interruption takes place, full analysis is undertaken as an assignment or project to identify a preventive action. It takes a holistic view looking for improvements in technology, the IT support organization, processes, procedures, and tools. Many of its activities are closely aligned with those of problem management. Both processes aim to identify root causes and encourage cross-functional teamwork, lateral thinking, and innovative, and often inexpensive, solutions.

SFIA should use a structured approach, as shown in Figure 8.9.

Structured SFA starts with select opportunity, scope assignment, plan assignment, build hypotheses, analyze data, interview key personnel, findings and conclusions, recommendations, report, and validation. — **FIGURE 8.9** The structured approach to SFA

Copyright © AXELOS Limited 2010. All rights reserved. Material is reproduced under license from AXELOS.

The report should categorize the recommendations under the following headings:

Detection Actions to enable better event reporting to ensure that underlying IT service issues are detected early to enable a proactive response

Reduction Actions to minimize the user impact from IT service interruption, possibly by reducing the duration of the impact

Avoidance Actions to eliminate this particular cause of IT service interruption

Risk Analysis and Management

Risk analysis and management provides an analysis of the likelihood of business impact relating to availability risks (the likelihood of something happening). Business impact analysis and the identification of the potential impact of the business are vital parts of risk management. Identification of mitigation against risk is a key component of the design of services. Further information regarding techniques for risk management can be found in the relevant ISO standards, and other best practice frameworks such as the management of risk framework. One common approach to risk assessment is one described in ISO standard 31000. This assessment approach consists of three steps:

Risk identification creates a comprehensive list of risks that could impact the service.
Risk analysis involves developing a full understanding of the risks.
Risk evaluation decides which risks require action and the relative priorities among them.

Possible actions to address the risks may include the following:

Avoiding the risk by deciding not to start or continue with the risky activity
Deciding to take the risk in order to benefit from an opportunity
Removing the risk
Taking action to make the risk less likely to occur
Lessening the impact of failure

Availability Management Triggers, Inputs, Outputs, and Interfaces

We will now review the triggers, inputs, and outputs of availability management and how the process interfaces with other service management processes.