Skip to main content

8.0 - Manage Information Technology (IT)

PCF Category: 8.0
Total Elements: 321
Hierarchy Depth: Up to 4 levels

Overview

This category encompasses all processes related to manage information technology (it) within an enterprise.

Process Groups (Level 1)

Hierarchy IDProcess GroupSub-Elements
8.0Manage Information Technology (IT)0
8.1Develop and manage IT customer relationships43
8.2Develop and manage IT business strategy50
8.3Develop and manage IT resilience and risk61
8.4Manage information18
8.5Develop and manage services/solutions39
8.6Deploy services/solutions41
8.7Create and manage support services/solutions61

Detailed Process Hierarchy

8.0 - Manage Information Technology (IT)

PCF ID: 20607

8.1 - Develop and manage IT customer relationships

PCF ID: 20608

IDProcessPCF IDMetrics
8.1.1Understand IT customer needs20609N
8.1.2Identify IT customer transformation needs20612N
8.1.3Plan and communicate IT services20617N
8.1.4Provide IT transformation guidance20623N
8.1.5Develop and manage IT service levels20632N
8.1.6Manage IT customer relationships20641N
8.1.7Analyze service performance20648N
8.1.1 - Understand IT customer needs (2 elements)
IDProcessPCF ID
8.1.1.1Understand IT customer communities20610
8.1.1.2Assess IT customer operational capabilities20611
8.1.2 - Identify IT customer transformation needs (4 elements)
IDProcessPCF ID
8.1.2.1Understand business requirements for IT capabilities20613
8.1.2.2Understand IT landscape20614
8.1.2.3Develop IT visioning20615
8.1.2.4Outline IT service expectations20616
8.1.3 - Plan and communicate IT services (5 elements)
IDProcessPCF ID
8.1.3.1Manage IT customer expectations20618
8.1.3.2Define future IT services20619
8.1.3.3Determine IT performance indicators20620
8.1.3.4Create IT marketing messages20621
8.1.3.5Create IT service marketing plan20622
8.1.4 - Provide IT transformation guidance (9 elements)
IDProcessPCF ID
8.1.4.1Develop IT transformation plans20624
8.1.4.2Collect IT customer requirements20625
8.1.4.3Analyze IT customer requirements20937
8.1.4.4Identify and prioritize IT opportunities20626
8.1.4.5Facilitate solution design activities20627
8.1.4.6Prioritize IT outcomes20628
8.1.4.7Develop business cases20629
8.1.4.8Support business case20630
8.1.4.9Develop transformation roadmap20631
8.1.5 - Develop and manage IT service levels (7 elements)
IDProcessPCF ID
8.1.5.1Understand IT service requirements20633
8.1.5.2Forecast IT service demand20634
8.1.5.3Maintain IT services catalog20635
8.1.5.4Define service level agreement20636
8.1.5.5Maintain IT customer contracts20637
8.1.5.6Negotiate and establish service level agreements20638
8.1.5.7Develop and maintain improvement processes20640
8.1.6 - Manage IT customer relationships (5 elements)
IDProcessPCF ID
8.1.6.1Establish relationship management mechanisms20642
8.1.6.2Understand IT customer strategy20643
8.1.6.3Understand IT customer environment20644
8.1.6.4Communicate IT capabilities20645
8.1.6.5Manage IT requirements20646
8.1.7 - Analyze service performance (4 elements)
IDProcessPCF ID
8.1.7.1Assess SLA compliance20649
8.1.7.2Triage SLA compliance issues20650
8.1.7.3Collect feedback about IT products and services20647
8.1.7.4Synthesize and distribute IT performance information20938

8.2 - Develop and manage IT business strategy

PCF ID: 20652

IDProcessPCF IDMetrics
8.2.1Define business technology and governance strategy20653N
8.2.2Manage IT portfolio strategy20660N
8.2.3Define and maintain enterprise architecture20668N
8.2.4Define IT service management strategy20674N
8.2.5Control IT management system20682N
8.2.6Manage IT value portfolio20693N
8.2.7Define and manage technology innovation20699N
8.2.1 - Define business technology and governance strategy (6 elements)
IDProcessPCF ID
8.2.1.1Build and maintain IT strategic intelligence20654
8.2.1.2Monitor and map current and emerging technologies20655
8.2.1.3Define and communicate digital transformation strategy20656
8.2.1.4Develop IT strategic alignment20657
8.2.1.5Articulate IT alignment principles20658
8.2.1.6Maintain IT strategic alignment20659
8.2.2 - Manage IT portfolio strategy (6 elements)
IDProcessPCF ID
8.2.2.1Establish and validate IT value criteria20661
8.2.2.2Determine IT portfolio investment balance20662
8.2.2.3Evaluate proposed IT investment projects20663
8.2.2.4Prioritize IT projects20664
8.2.2.5Align IT resources to strategic priorities20665
8.2.2.6Align IT portfolio to business objectives20667
8.2.3 - Define and maintain enterprise architecture (4 elements)
IDProcessPCF ID
8.2.3.1Create and publish enterprise architecture principles20670
8.2.3.2Establish and operate enterprise architecture governance20671
8.2.3.3Research technologies to innovate IT services and solutions20672
8.2.3.4Provide input to definition and prioritization of IT projects20673
8.2.4 - Define IT service management strategy (7 elements)
IDProcessPCF ID
8.2.4.1Establish IT service management strategy and goals20675
8.2.4.2Identify IT service operating and process requirements20676
8.2.4.3Define IT service catalog20677
8.2.4.4Establish IT service management framework20678
8.2.4.5Define and implement IT service management20679
8.2.4.6Define and deploy support service management process tools and methods20680
8.2.4.7Monitor and report IT performance20681
8.2.5 - Control IT management system (9 elements)
IDProcessPCF ID
8.2.5.1Determine IT performance measures20683
8.2.5.2Define IT control points and assurance procedures governance model20684
8.2.5.3Monitor and analyze overall IT performance20685
8.2.5.4Monitor and analyze IT financial performance20686
8.2.5.5Monitor and analyze IT value and benefits20687
8.2.5.6Optimize IT resource allocation20688
8.2.5.7Manage IT projects and services interdependencies20689
8.2.5.8Report IT service and project performance20690
8.2.5.9Select, deploy, and operate IT performance analytics tools20692
8.2.6 - Manage IT value portfolio (4 elements)
IDProcessPCF ID
8.2.6.1Assess performance against IT service and project value criteria20694
8.2.6.2Quantify value of IT service and project portfolio investments20695
8.2.6.3Communicate business technology value contribution20696
8.2.6.4Determine and implement IT portfolio adjustments20697
8.2.7 - Define and manage technology innovation (7 elements)
IDProcessPCF ID
8.2.7.1Establish selection criteria for research initiatives20700
8.2.7.2Analyze emerging technology concepts20701
8.2.7.3Identify technology concepts and capabilities20702
8.2.7.4Execute IT research projects20703
8.2.7.5Evaluate IT research project outcomes20939
8.2.7.6Identify and promote viable concepts20704
8.2.7.7Develop and plan IT investment projects20705

8.3 - Develop and manage IT resilience and risk

PCF ID: 20706

IDProcessPCF IDMetrics
8.3.1Develop IT compliance, risk, and security strategy20707N
8.3.2Develop IT resilience strategy20716N
8.3.3Control IT risk, compliance, and security20721N
8.3.4Plan and manage IT continuity20731N
8.3.5Develop and manage IT security, privacy, and data protection20735N
8.3.6Conduct and analyze IT compliance assessments20743N
8.3.7Develop and execute IT resilience and continuity operations20749N
8.3.8Manage IT user identity and authorization20756N
8.3.1 - Develop IT compliance, risk, and security strategy (10 elements)
IDProcessPCF ID
8.3.1.1Determine and evaluate IT regulatory and audit requirements20708
8.3.1.2Understand business unit risk tolerance20940
8.3.1.3Establish IT risk tolerance20709
8.3.1.4Establish risk ownership20710
8.3.1.5Establish and maintain risk management roles20711
8.3.1.6Establish compliance objectives20712
8.3.1.7Identify systems to support compliance20941
8.3.1.8Identify and evaluate IT risk20713
8.3.1.9Evaluate IT-related risks resiliency20714
8.3.1.10Create IT risk mitigation strategies and approaches20715
8.3.2 - Develop IT resilience strategy (4 elements)
IDProcessPCF ID
8.3.2.1Determine IT delivery resiliency20717
8.3.2.2Determine critical IT risks20718
8.3.2.3Prioritize IT risks20719
8.3.2.4Establish mitigation approaches for IT risks20720
8.3.3 - Control IT risk, compliance, and security (10 elements)
IDProcessPCF ID
8.3.3.1Evaluate enterprise regulatory and compliance obligations20722
8.3.3.2Analyze IT security threat impact20723
8.3.3.3Create and maintain IT compliance requirements20724
8.3.3.4Create and maintain IT security policies, standards, and procedures20942
8.3.3.5Develop and deploy risk management training20725
8.3.3.6Establish risk reporting capabilities and responsibilities20726
8.3.3.7Establish communication standards20727
8.3.3.8Conduct IT risk and threat assessments20728
8.3.3.9Monitor and manage IT activity risk20729
8.3.3.10Identify, supervise and monitor IT risk mitigation measures20730
8.3.4 - Plan and manage IT continuity (3 elements)
IDProcessPCF ID
8.3.4.1Evaluate IT continuity20732
8.3.4.2Identify IT continuity gaps20733
8.3.4.3Manage IT business continuity20734
8.3.5 - Develop and manage IT security, privacy, and data protection (7 elements)
IDProcessPCF ID
8.3.5.1Assess IT regulatory and confidentiality requirements and policies20736
8.3.5.2Create IT security, privacy, and data protection risk governance20737
8.3.5.3Define IT data security and privacy policies, standards, and procedures20738
8.3.5.4Review and monitor physical and logical IT data security measures20739
8.3.5.5Review and monitor application security controls20740
8.3.5.6Review and monitor IT physical environment security controls20741
8.3.5.7Monitor/analyze network intrusion detection data and resolve threats20742
8.3.6 - Conduct and analyze IT compliance assessments (5 elements)
IDProcessPCF ID
8.3.6.1Conduct projects to enhance IT compliance and remediate risk20744
8.3.6.2Conduct IT compliance control auditing of internal and external services20745
8.3.6.3Perform IT compliance reporting20746
8.3.6.4Identify and escalate IT compliance issues and remediation requirements20747
8.3.6.5Support external audits and reports20748
8.3.7 - Develop and execute IT resilience and continuity operations (6 elements)
IDProcessPCF ID
8.3.7.1Conduct IT resilience improvement projects20750
8.3.7.2Develop, document, and maintain IT business continuity planning20751
8.3.7.3Implement and enforce change control procedures20752
8.3.7.4Execute recurring IT service provider business continuity20753
8.3.7.5Provide IT resilience training20754
8.3.7.6Execute recurring IT business operations continuity20755
8.3.8 - Manage IT user identity and authorization (8 elements)
IDProcessPCF ID
8.3.8.1Support integration of identity and authorization policies20757
8.3.8.2Manage IT user directory20758
8.3.8.3Manage IT user authorization20759
8.3.8.4Manage IT user authentication mechanisms20760
8.3.8.5Audit IT user identity and authorization systems20761
8.3.8.6Respond to IT information security and network breaches20762
8.3.8.7Conduct penetration testing20763
8.3.8.8Audit integration of user identity and authorization systems20764

8.4 - Manage information

PCF ID: 20765

IDProcessPCF IDMetrics
8.4.1Define business information and analytics strategy20766N
8.4.2Define and maintain business information architecture20770N
8.4.3Define and execute business information lifecycle planning and control20776N
8.4.4Manage business information content20779N
8.4.1 - Define business information and analytics strategy (3 elements)
IDProcessPCF ID
8.4.1.1Establish data, information, and analytic objectives20767
8.4.1.2Establish data, information, and analytic governance20768
8.4.1.3Access IT data/analytic capabilities20769
8.4.2 - Define and maintain business information architecture (5 elements)
IDProcessPCF ID
8.4.2.1Determine enterprise business information requirements20771
8.4.2.2Define enterprise data models20772
8.4.2.3Identify and understand external data sources20773
8.4.2.4Establish data ownership and stewardship responsibilities20774
8.4.2.5Maintain and evolve enterprise data and information architecture20775
8.4.3 - Define and execute business information lifecycle planning and control (2 elements)
IDProcessPCF ID
8.4.3.1Define and maintain enterprise information policies, standards, and procedures20777
8.4.3.2Implement and execute data administration responsibilities20778
8.4.4 - Manage business information content (4 elements)
IDProcessPCF ID
8.4.4.1Monitor and control business information20780
8.4.4.2Maintain business information feeds and repositories20781
8.4.4.3Perform internal usage audits20782
8.4.4.4Implement and administer business information access20783

8.5 - Develop and manage services/solutions

PCF ID: 20784

IDProcessPCF IDMetrics
8.5.1Develop service/solution and integration strategy20785N
8.5.2Manage service/solution lifecycle planning20793N
8.5.3Develop and manage service/solution architecture20799N
8.5.4Execute IT service/solution creation and testing20808N
8.5.5Perform service/solution maintenance and testing20817N
8.5.1 - Develop service/solution and integration strategy (7 elements)
IDProcessPCF ID
8.5.1.1Determine IT service/solution development20786
8.5.1.2Define IT service/solution development processes/standards20787
8.5.1.3Identify, deploy, and support development methodologies and tools20788
8.5.1.4Establish service component criteria20789
8.5.1.5Understand and select reusable service components20790
8.5.1.6Maintain service component portfolio20791
8.5.1.7Establish development standards exception governance20792
8.5.2 - Manage service/solution lifecycle planning (5 elements)
IDProcessPCF ID
8.5.2.1Monitor and track emerging technology capabilities20794
8.5.2.2Identify IT services/solutions20795
8.5.2.3Determine IT service/solution approach20796
8.5.2.4Define IT solution lifecycle20797
8.5.2.5Develop IT service/solution "sunset" plans20798
8.5.3 - Develop and manage service/solution architecture (8 elements)
IDProcessPCF ID
8.5.3.1Assess IT application and infrastructure architecture constraints20800
8.5.3.2Assess business constraints on IT service/solution20801
8.5.3.3Determine IT component integration requirements20802
8.5.3.4Identify opportunities for IT component reuse20803
8.5.3.5Promote adoption of existing service/solution architecture20804
8.5.3.6Develop and maintain service/solution architectures20805
8.5.3.7Assess IT service/solution architecture conformance20806
8.5.3.8Manage architectural exceptions20807
8.5.4 - Execute IT service/solution creation and testing (8 elements)
IDProcessPCF ID
8.5.4.1Execute IT service/solution development lifecycle20809
8.5.4.1.1Assess and validate IT service/solution requirements20810
8.5.4.1.2Create service/solution design20811
8.5.4.1.3Build and test IT service/solution components20812
8.5.4.1.4Integrate IT components and services20813
8.5.4.1.5Execute IT service/solution validation20814
8.5.4.1.6Bundle service/solution deployment packaging20815
8.5.4.1.7Manage service/solution process exceptions20816
8.5.5 - Perform service/solution maintenance and testing (6 elements)
IDProcessPCF ID
8.5.5.1Execute IT service/solution maintenance lifecycle20818
8.5.5.1.1Assess IT remediation20819
8.5.5.1.2Modify service/solution design20820
8.5.5.1.3Perform IT service/solution remediation20821
8.5.5.1.4Manage service/solution operations20822
8.5.5.1.5Prepare fixed/enhanced service/solution packaging20823

8.6 - Deploy services/solutions

PCF ID: 20824

IDProcessPCF IDMetrics
8.6.1Develop and manage service/solution deployment strategy20825N
8.6.2Plan service and solution implementation20832N
8.6.3Manage change deployment control20840N
8.6.4Implement technology solutions20848N
8.6.5Perform service and solution rollout20858N
8.6.1 - Develop and manage service/solution deployment strategy (6 elements)
IDProcessPCF ID
8.6.1.1Assess IT deployment business impact20826
8.6.1.2Establish IT deployment policies20827
8.6.1.3Define and create deployment procedure workflow20828
8.6.1.4Define IT change/release standards20829
8.6.1.5Assign deployment approval responsibilities20830
8.6.1.6Analyze deployments outcomes20831
8.6.2 - Plan service and solution implementation (7 elements)
IDProcessPCF ID
8.6.2.1Assess IT deployment risk20833
8.6.2.2Define implementation schedule and roll-out sequence20834
8.6.2.3Determine implementation requirements20835
8.6.2.4Plan and align user testing and resources20836
8.6.2.5Develop IT training20837
8.6.2.6Create implementation communications20838
8.6.2.7Manage IT roll-back procedures20839
8.6.3 - Manage change deployment control (7 elements)
IDProcessPCF ID
8.6.3.1Asses IT change/release impact20841
8.6.3.2Confirm change/release compliance20842
8.6.3.3Assess IT change/release risk20843
8.6.3.4Consolidate IT change20844
8.6.3.5Create and communicate deployment schedule20845
8.6.3.6Approve change/release deployment20846
8.6.3.7Document IT change/release outcome20847
8.6.4 - Implement technology solutions (9 elements)
IDProcessPCF ID
8.6.4.1Confirm hardware/software operational status20849
8.6.4.2Confirm operational availability20850
8.6.4.3Execute internal IT implementation plan20851
8.6.4.4Confirm implementation completion20852
8.6.4.5Implement software change/release20853
8.6.4.6Perform post-installation testing20854
8.6.4.7Distribute software components network-wide20855
8.6.4.8Verify change/release implementation success20856
8.6.4.9Execute roll-back plan20857
8.6.5 - Perform service and solution rollout (7 elements)
IDProcessPCF ID
8.6.5.1Conduct IT training20859
8.6.5.2Prepare and distribute service/solution communications20860
8.6.5.3Support organizational changes20861
8.6.5.4Execute rollout plans20862
8.6.5.5Provide rollout support20863
8.6.5.6Manage rollout support capabilities20864
8.6.5.7Monitor and record rollout issues20865

8.7 - Create and manage support services/solutions

PCF ID: 20866

IDProcessPCF IDMetrics
8.7.1Define and establish service delivery strategy20867N
8.7.2Define and develop service support strategy20873N
8.7.3Plan and manage service delivery control20880N
8.7.4Develop and manage infrastructure resource planning20888N
8.7.5Define service support planning20895N
8.7.6Develop and manage service delivery operations20905N
8.7.7Manage infrastructure resource administration20914N
8.7.8Operate IT user support20921N
8.7.1 - Define and establish service delivery strategy (5 elements)
IDProcessPCF ID
8.7.1.1Assess business objectives and IT service delivery20868
8.7.1.2Define IT service delivery portfolio20869
8.7.1.3Create and maintain IT service delivery model20870
8.7.1.4Determine IT service delivery locations and activities20871
8.7.1.5Define IT service delivery sourcing strategy20872
8.7.2 - Define and develop service support strategy (6 elements)
IDProcessPCF ID
8.7.2.1Assess business objectives and IT service support delivery20874
8.7.2.2Define IT service support portfolio20875
8.7.2.3Create and maintain IT support model20876
8.7.2.4Develop IT support service sourcing strategy20877
8.7.2.5Establish support service framework20878
8.7.2.6Provide service support tools and technology20879
8.7.3 - Plan and manage service delivery control (7 elements)
IDProcessPCF ID
8.7.3.1Plan operational activities for IT service delivery20881
8.7.3.1.1Schedule service delivery resources20882
8.7.3.1.2Maintain/optimize batch job schedule20883
8.7.3.1.3Schedule change/release windows20884
8.7.3.1.4Schedule/optimize backup and archive activities20885
8.7.3.1.5Balance operational workloads across available infrastructure components20886
8.7.3.1.6Determine specific problem support procedures20887
8.7.4 - Develop and manage infrastructure resource planning (5 elements)
IDProcessPCF ID
8.7.4.1Develop IT service delivery strategy20889
8.7.4.2Assess IT infrastructure business objectives20890
8.7.4.3Determine ongoing IT infrastructure capabilities20891
8.7.4.4Plan IT infrastructure change20892
8.7.4.5Plan and budget IT license usage volumes20893
8.7.5 - Define service support planning (10 elements)
IDProcessPCF ID
8.7.5.1Understand IT support demand patterns20896
8.7.5.2Determine required support resource levels, responsibilities, and capabilities20897
8.7.5.3Maintain service support knowledge repository20898
8.7.5.4Maintain service support learning20943
8.7.5.5Communicate service support needs20899
8.7.5.6Define IT escalation mechanisms20900
8.7.5.7Manage IT service support resources20901
8.7.5.8Coordinate with external support providers20902
8.7.5.9Triage IT service delivery incidents20903
8.7.5.10Monitor IT service support performance20904
8.7.6 - Develop and manage service delivery operations (8 elements)
IDProcessPCF ID
8.7.6.1Operate and monitor online systems20906
8.7.6.2Run and monitor batch job schedule20907
8.7.6.3Manage service delivery workloads20908
8.7.6.4Manage infrastructure performance and capacity20909
8.7.6.5Respond to unplanned operational issues20910
8.7.6.6Produce and distribute output media20911
8.7.6.7Monitor IT infrastructure security20912
8.7.6.8Manage IT infrastructure/data recovery20913
8.7.7 - Manage infrastructure resource administration (6 elements)
IDProcessPCF ID
8.7.7.1Manage infrastructure configuration20915
8.7.7.2Perform infrastructure component maintenance20916
8.7.7.3Install/configure/upgrade infrastructure components20917
8.7.7.4Maintain IT asset records20918
8.7.7.5Administer IT licenses/user agreements20919
8.7.7.6Provide IT infrastructure service and capabilities20920
8.7.8 - Operate IT user support (6 elements)
IDProcessPCF ID
8.7.8.1Triage IT issues/requests20922
8.7.8.2Provide IT resolution capabilities20923
8.7.8.3Manage IT user requests20925
8.7.8.4Escalate IT requests20926
8.7.8.5Resolve IT issues/requests20927
8.7.8.6Execute IT continuity and recovery action20928

Change Summary (v7.2.1 vs v6.1.1)

Changes are indicated by:

  • +XXXXX - New element added (PCF ID)
  • -XXXXX - Element removed
  • cXXXXX - Element changed
  • NEW - Newly introduced in v7.2.1

Full Process List

Complete 321 elements
Hierarchy IDNamePCF IDChange
8.0Manage Information Technology (IT)20607+20608, +20652, +20706, +20765, +20784, +20824, +20866, NEW
8.1Develop and manage IT customer relationships20608+20609, +20612, +20617, +20623, +20632, +20641, +20648, NEW
8.1.1Understand IT customer needs20609+20610, +20611, NEW
8.1.1.1Understand IT customer communities20610NEW
8.1.1.2Assess IT customer operational capabilities20611NEW
8.1.2Identify IT customer transformation needs20612+20613, +20614, +20615, +20616, NEW
8.1.2.1Understand business requirements for IT capabilities20613NEW
8.1.2.2Understand IT landscape20614NEW
8.1.2.3Develop IT visioning20615NEW
8.1.2.4Outline IT service expectations20616NEW
8.1.3Plan and communicate IT services20617+20618, +20619, +20620, +20621, +20622, NEW
8.1.3.1Manage IT customer expectations20618NEW
8.1.3.2Define future IT services20619NEW
8.1.3.3Determine IT performance indicators20620NEW
8.1.3.4Create IT marketing messages20621NEW
8.1.3.5Create IT service marketing plan20622NEW
8.1.4Provide IT transformation guidance20623+20624, +20625, +20937, +20626, +20627, +20628, +20629, +20630, +20631, NEW
8.1.4.1Develop IT transformation plans20624NEW
8.1.4.2Collect IT customer requirements20625NEW
8.1.4.3Analyze IT customer requirements20937NEW
8.1.4.4Identify and prioritize IT opportunities20626NEW
8.1.4.5Facilitate solution design activities20627NEW
8.1.4.6Prioritize IT outcomes20628NEW
8.1.4.7Develop business cases20629NEW
8.1.4.8Support business case20630NEW
8.1.4.9Develop transformation roadmap20631NEW
8.1.5Develop and manage IT service levels20632+20633, +20634, +20635, +20636, +20637, +20638, +20640, NEW
8.1.5.1Understand IT service requirements20633NEW
8.1.5.2Forecast IT service demand20634NEW
8.1.5.3Maintain IT services catalog20635NEW
8.1.5.4Define service level agreement20636NEW
8.1.5.5Maintain IT customer contracts20637NEW
8.1.5.6Negotiate and establish service level agreements20638NEW
8.1.5.7Develop and maintain improvement processes20640NEW
8.1.6Manage IT customer relationships20641+20642, +20643, +20644, +20645, +20646, NEW
8.1.6.1Establish relationship management mechanisms20642NEW
8.1.6.2Understand IT customer strategy20643NEW
8.1.6.3Understand IT customer environment20644NEW
8.1.6.4Communicate IT capabilities20645NEW
8.1.6.5Manage IT requirements20646NEW
8.1.7Analyze service performance20648+20649, +20650, +20647, +20938, NEW
8.1.7.1Assess SLA compliance20649NEW
8.1.7.2Triage SLA compliance issues20650NEW
8.1.7.3Collect feedback about IT products and services20647NEW
8.1.7.4Synthesize and distribute IT performance information20938NEW
8.2Develop and manage IT business strategy20652+20653, +20660, +20668, +20674, +20682, +20693, +20699, NEW
8.2.1Define business technology and governance strategy20653+20654, +20655, +20656, +20657, +20658, +20659, NEW
8.2.1.1Build and maintain IT strategic intelligence20654NEW
8.2.1.2Monitor and map current and emerging technologies20655NEW
8.2.1.3Define and communicate digital transformation strategy20656NEW
8.2.1.4Develop IT strategic alignment20657NEW
8.2.1.5Articulate IT alignment principles20658NEW
8.2.1.6Maintain IT strategic alignment20659NEW
8.2.2Manage IT portfolio strategy20660+20661, +20662, +20663, +20664, +20665, +20667, NEW
8.2.2.1Establish and validate IT value criteria20661NEW
8.2.2.2Determine IT portfolio investment balance20662NEW
8.2.2.3Evaluate proposed IT investment projects20663NEW
8.2.2.4Prioritize IT projects20664NEW
8.2.2.5Align IT resources to strategic priorities20665NEW
8.2.2.6Align IT portfolio to business objectives20667NEW
8.2.3Define and maintain enterprise architecture20668+20670, +20671, +20672, +20673, NEW
8.2.3.1Create and publish enterprise architecture principles20670NEW
8.2.3.2Establish and operate enterprise architecture governance20671NEW
8.2.3.3Research technologies to innovate IT services and solutions20672NEW
8.2.3.4Provide input to definition and prioritization of IT project...20673NEW
8.2.4Define IT service management strategy20674+20675, +20676, +20677, +20678, +20679, +20680, +20681, NEW
8.2.4.1Establish IT service management strategy and goals20675NEW
8.2.4.2Identify IT service operating and process requirements20676NEW
8.2.4.3Define IT service catalog20677NEW
8.2.4.4Establish IT service management framework20678NEW
8.2.4.5Define and implement IT service management20679NEW
8.2.4.6Define and deploy support service management process tools a...20680NEW
8.2.4.7Monitor and report IT performance20681NEW
8.2.5Control IT management system20682+20683, +20684, +20685, +20686, +20687, +20688, +20689, +20690, +20692, NEW
8.2.5.1Determine IT performance measures20683NEW
8.2.5.2Define IT control points and assurance procedures governance...20684NEW
8.2.5.3Monitor and analyze overall IT performance20685NEW
8.2.5.4Monitor and analyze IT financial performance20686NEW
8.2.5.5Monitor and analyze IT value and benefits20687NEW
8.2.5.6Optimize IT resource allocation20688NEW
8.2.5.7Manage IT projects and services interdependencies20689NEW
8.2.5.8Report IT service and project performance20690NEW
8.2.5.9Select, deploy, and operate IT performance analytics tools20692NEW
8.2.6Manage IT value portfolio20693+20694, +20695, +20696, +20697, NEW
8.2.6.1Assess performance against IT service and project value crit...20694NEW
8.2.6.2Quantify value of IT service and project portfolio investmen...20695NEW
8.2.6.3Communicate business technology value contribution20696NEW
8.2.6.4Determine and implement IT portfolio adjustments20697NEW
8.2.7Define and manage technology innovation20699+20700, +20701, +20702, +20703, +20939, +20704, +20705, NEW
8.2.7.1Establish selection criteria for research initiatives20700NEW
8.2.7.2Analyze emerging technology concepts20701NEW
8.2.7.3Identify technology concepts and capabilities20702NEW
8.2.7.4Execute IT research projects20703NEW
8.2.7.5Evaluate IT research project outcomes20939NEW
8.2.7.6Identify and promote viable concepts20704NEW
8.2.7.7Develop and plan IT investment projects20705NEW
8.3Develop and manage IT resilience and risk20706+20707, +20716, +20721, +20731, +20735, +20743, +20749, +20756, NEW
8.3.1Develop IT compliance, risk, and security strategy20707+20708, +20940, +20709, +20710, +20711, +20712, +20941, +20713, +20714, +20715, NEW
8.3.1.1Determine and evaluate IT regulatory and audit requirements20708NEW
8.3.1.2Understand business unit risk tolerance20940NEW
8.3.1.3Establish IT risk tolerance20709NEW
8.3.1.4Establish risk ownership20710NEW
8.3.1.5Establish and maintain risk management roles20711NEW
8.3.1.6Establish compliance objectives20712NEW
8.3.1.7Identify systems to support compliance20941NEW
8.3.1.8Identify and evaluate IT risk20713NEW
8.3.1.9Evaluate IT-related risks resiliency20714NEW
8.3.1.10Create IT risk mitigation strategies and approaches20715NEW
8.3.2Develop IT resilience strategy20716+20717, +20718, +20719, +20720, NEW
8.3.2.1Determine IT delivery resiliency20717NEW
8.3.2.2Determine critical IT risks20718NEW
8.3.2.3Prioritize IT risks20719NEW
8.3.2.4Establish mitigation approaches for IT risks20720NEW
8.3.3Control IT risk, compliance, and security20721+20722, +20723, +20724, +20942, +20725, +20726, +20727, +20728, +20729, +20730, NEW
8.3.3.1Evaluate enterprise regulatory and compliance obligations20722NEW
8.3.3.2Analyze IT security threat impact20723NEW
8.3.3.3Create and maintain IT compliance requirements20724NEW
8.3.3.4Create and maintain IT security policies, standards, and pro...20942NEW
8.3.3.5Develop and deploy risk management training20725NEW
8.3.3.6Establish risk reporting capabilities and responsibilities20726NEW
8.3.3.7Establish communication standards20727NEW
8.3.3.8Conduct IT risk and threat assessments20728NEW
8.3.3.9Monitor and manage IT activity risk20729NEW
8.3.3.10Identify, supervise and monitor IT risk mitigation measures20730NEW
8.3.4Plan and manage IT continuity20731+20732, +20733, +20734, NEW
8.3.4.1Evaluate IT continuity20732NEW
8.3.4.2Identify IT continuity gaps20733NEW
8.3.4.3Manage IT business continuity20734NEW
8.3.5Develop and manage IT security, privacy, and data protection20735+20736, +20737, +20738, +20739, +20740, +20741, +20742, NEW
8.3.5.1Assess IT regulatory and confidentiality requirements and po...20736NEW
8.3.5.2Create IT security, privacy, and data protection risk govern...20737NEW
8.3.5.3Define IT data security and privacy policies, standards, and...20738NEW
8.3.5.4Review and monitor physical and logical IT data security mea...20739NEW
8.3.5.5Review and monitor application security controls20740NEW
8.3.5.6Review and monitor IT physical environment security controls20741NEW
8.3.5.7Monitor/analyze network intrusion detection data and resolve...20742NEW
8.3.6Conduct and analyze IT compliance assessments20743+20744, +20745, +20746, +20747, +20748, NEW
8.3.6.1Conduct projects to enhance IT compliance and remediate risk20744NEW
8.3.6.2Conduct IT compliance control auditing of internal and exter...20745NEW
8.3.6.3Perform IT compliance reporting20746NEW
8.3.6.4Identify and escalate IT compliance issues and remediation r...20747NEW
8.3.6.5Support external audits and reports20748NEW
8.3.7Develop and execute IT resilience and continuity operations20749+20750, +20751, +20752, +20753, +20754, +20755, NEW
8.3.7.1Conduct IT resilience improvement projects20750NEW
8.3.7.2Develop, document, and maintain IT business continuity plann...20751NEW
8.3.7.3Implement and enforce change control procedures20752NEW
8.3.7.4Execute recurring IT service provider business continuity20753NEW
8.3.7.5Provide IT resilience training20754NEW
8.3.7.6Execute recurring IT business operations continuity20755NEW
8.3.8Manage IT user identity and authorization20756+20757, +20758, +20759, +20760, +20761, +20762, +20763, +20764, NEW
8.3.8.1Support integration of identity and authorization policies20757NEW
8.3.8.2Manage IT user directory20758NEW
8.3.8.3Manage IT user authorization20759NEW
8.3.8.4Manage IT user authentication mechanisms20760NEW
8.3.8.5Audit IT user identity and authorization systems20761NEW
8.3.8.6Respond to IT information security and network breaches20762NEW
8.3.8.7Conduct penetration testing20763NEW
8.3.8.8Audit integration of user identity and authorization systems20764NEW
8.4Manage information20765+20766, +20770, +20776, +20779, NEW
8.4.1Define business information and analytics strategy20766+20767, +20768, +20769, NEW
8.4.1.1Establish data, information, and analytic objectives20767NEW
8.4.1.2Establish data, information, and analytic governance20768NEW
8.4.1.3Access IT data/analytic capabilities20769NEW
8.4.2Define and maintain business information architecture20770+20771, +20772, +20773, +20774, +20775, NEW
8.4.2.1Determine enterprise business information requirements20771NEW
8.4.2.2Define enterprise data models20772NEW
8.4.2.3Identify and understand external data sources20773NEW
8.4.2.4Establish data ownership and stewardship responsibilities20774NEW
8.4.2.5Maintain and evolve enterprise data and information architec...20775NEW
8.4.3Define and execute business information lifecycle planning a...20776+20777, +20778, NEW
8.4.3.1Define and maintain enterprise information policies, standar...20777NEW
8.4.3.2Implement and execute data administration responsibilities20778NEW
8.4.4Manage business information content20779+20780, +20781, +20782, +20783, NEW
8.4.4.1Monitor and control business information20780NEW
8.4.4.2Maintain business information feeds and repositories20781NEW
8.4.4.3Perform internal usage audits20782NEW
8.4.4.4Implement and administer business information access20783NEW
8.5Develop and manage services/solutions20784+20785, +20793, +20799, +20808, +20817, NEW
8.5.1Develop service/solution and integration strategy20785+20786, +20787, +20788, +20789, +20790, +20791, +20792, NEW
8.5.1.1Determine IT service/solution development20786NEW
8.5.1.2Define IT service/solution development processes/standards20787NEW
8.5.1.3Identify, deploy, and support development methodologies and ...20788NEW
8.5.1.4Establish service component criteria20789NEW
8.5.1.5Understand and select reusable service components20790NEW
8.5.1.6Maintain service component portfolio20791NEW
8.5.1.7Establish development standards exception governance20792NEW
8.5.2Manage service/solution lifecycle planning20793+20794, +20795, +20796, +20797, +20798, NEW
8.5.2.1Monitor and track emerging technology capabilities20794NEW
8.5.2.2Identify IT services/solutions20795NEW
8.5.2.3Determine IT service/solution approach20796NEW
8.5.2.4Define IT solution lifecycle20797NEW
8.5.2.5Develop IT service/solution "sunset" plans20798NEW
8.5.3Develop and manage service/solution architecture20799+20800, +20801, +20802, +20803, +20804, +20805, +20806, +20807, NEW
8.5.3.1Assess IT application and infrastructure architecture constr...20800NEW
8.5.3.2Assess business constraints on IT service/solution20801NEW
8.5.3.3Determine IT component integration requirements20802NEW
8.5.3.4Identify opportunities for IT component reuse20803NEW
8.5.3.5Promote adoption of existing service/solution architecture20804NEW
8.5.3.6Develop and maintain service/solution architectures20805NEW
8.5.3.7Assess IT service/solution architecture conformance20806NEW
8.5.3.8Manage architectural exceptions20807NEW
8.5.4Execute IT service/solution creation and testing20808+20809, NEW
8.5.4.1Execute IT service/solution development lifecycle20809+20810, +20811, +20812, +20813, +20814, +20815, +20816, NEW
8.5.4.1.1Assess and validate IT service/solution requirements20810NEW
8.5.4.1.2Create service/solution design20811NEW
8.5.4.1.3Build and test IT service/solution components20812NEW
8.5.4.1.4Integrate IT components and services20813NEW
8.5.4.1.5Execute IT service/solution validation20814NEW
8.5.4.1.6Bundle service/solution deployment packaging20815NEW
8.5.4.1.7Manage service/solution process exceptions20816NEW
8.5.5Perform service/solution maintenance and testing20817+20818, NEW
8.5.5.1Execute IT service/solution maintenance lifecycle20818+20819, +20820, +20821, +20822, +20823, NEW
8.5.5.1.1Assess IT remediation20819NEW
8.5.5.1.2Modify service/solution design20820NEW
8.5.5.1.3Perform IT service/solution remediation20821NEW
8.5.5.1.4Manage service/solution operations20822NEW
8.5.5.1.5Prepare fixed/enhanced service/solution packaging20823NEW
8.6Deploy services/solutions20824+20825, +20832, +20840, +20848, +20858, NEW
8.6.1Develop and manage service/solution deployment strategy20825+20826, +20827, +20828, +20829, +20830, +20831, NEW
8.6.1.1Assess IT deployment business impact20826NEW
8.6.1.2Establish IT deployment policies20827NEW
8.6.1.3Define and create deployment procedure workflow20828NEW
8.6.1.4Define IT change/release standards20829NEW
8.6.1.5Assign deployment approval responsibilities20830NEW
8.6.1.6Analyze deployments outcomes20831NEW
8.6.2Plan service and solution implementation20832+20833, +20834, +20835, +20836, +20837, +20838, +20839, NEW
8.6.2.1Assess IT deployment risk20833NEW
8.6.2.2Define implementation schedule and roll-out sequence20834NEW
8.6.2.3Determine implementation requirements20835NEW
8.6.2.4Plan and align user testing and resources20836NEW
8.6.2.5Develop IT training20837NEW
8.6.2.6Create implementation communications20838NEW
8.6.2.7Manage IT roll-back procedures20839NEW
8.6.3Manage change deployment control20840+20841, +20842, +20843, +20844, +20845, +20846, +20847, NEW
8.6.3.1Asses IT change/release impact20841NEW
8.6.3.2Confirm change/release compliance20842NEW
8.6.3.3Assess IT change/release risk20843NEW
8.6.3.4Consolidate IT change20844NEW
8.6.3.5Create and communicate deployment schedule20845NEW
8.6.3.6Approve change/release deployment20846NEW
8.6.3.7Document IT change/release outcome20847NEW
8.6.4Implement technology solutions20848+20849, +20850, +20851, +20852, +20853, +20854, +20855, +20856, +20857, NEW
8.6.4.1Confirm hardware/software operational status20849NEW
8.6.4.2Confirm operational availability20850NEW
8.6.4.3Execute internal IT implementation plan20851NEW
8.6.4.4Confirm implementation completion20852NEW
8.6.4.5Implement software change/release20853NEW
8.6.4.6Perform post-installation testing20854NEW
8.6.4.7Distribute software components network-wide20855NEW
8.6.4.8Verify change/release implementation success20856NEW
8.6.4.9Execute roll-back plan20857NEW
8.6.5Perform service and solution rollout20858+20859, +20860, +20861, +20862, +20863, +20864, +20865, NEW
8.6.5.1Conduct IT training20859NEW
8.6.5.2Prepare and distribute service/solution communications20860NEW
8.6.5.3Support organizational changes20861NEW
8.6.5.4Execute rollout plans20862NEW
8.6.5.5Provide rollout support20863NEW
8.6.5.6Manage rollout support capabilities20864NEW
8.6.5.7Monitor and record rollout issues20865NEW
8.7Create and manage support services/solutions20866+20867, +20873, +20880, +20888, +20895, +20905, +20914, +20921, NEW
8.7.1Define and establish service delivery strategy20867+20868, +20869, +20870, +20871, +20872, NEW
8.7.1.1Assess business objectives and IT service delivery20868NEW
8.7.1.2Define IT service delivery portfolio20869NEW
8.7.1.3Create and maintain IT service delivery model20870NEW
8.7.1.4Determine IT service delivery locations and activities20871NEW
8.7.1.5Define IT service delivery sourcing strategy20872NEW
8.7.2Define and develop service support strategy20873+20874, +20875, +20876, +20877, +20878, +20879, NEW
8.7.2.1Assess business objectives and IT service support delivery20874NEW
8.7.2.2Define IT service support portfolio20875NEW
8.7.2.3Create and maintain IT support model20876NEW
8.7.2.4Develop IT support service sourcing strategy20877NEW
8.7.2.5Establish support service framework20878NEW
8.7.2.6Provide service support tools and technology20879NEW
8.7.3Plan and manage service delivery control20880+20881, NEW
8.7.3.1Plan operational activities for IT service delivery20881+20882, +20883, +20884, +20885, +20886, +20887, NEW
8.7.3.1.1Schedule service delivery resources20882NEW
8.7.3.1.2Maintain/optimize batch job schedule20883NEW
8.7.3.1.3Schedule change/release windows20884NEW
8.7.3.1.4Schedule/optimize backup and archive activities20885NEW
8.7.3.1.5Balance operational workloads across available infrastructur...20886NEW
8.7.3.1.6Determine specific problem support procedures20887NEW
8.7.4Develop and manage infrastructure resource planning20888+20889, +20890, +20891, +20892, +20893, NEW
8.7.4.1Develop IT service delivery strategy20889NEW
8.7.4.2Assess IT infrastructure business objectives20890NEW
8.7.4.3Determine ongoing IT infrastructure capabilities20891NEW
8.7.4.4Plan IT infrastructure change20892NEW
8.7.4.5Plan and budget IT license usage volumes20893NEW
8.7.5Define service support planning20895+20896, +20897, +20898, +20943, +20899, +20900, +20901, +20902, +20903, +20904, NEW
8.7.5.1Understand IT support demand patterns20896NEW
8.7.5.2Determine required support resource levels, responsibilities...20897NEW
8.7.5.3Maintain service support knowledge repository20898NEW
8.7.5.4Maintain service support learning20943NEW
8.7.5.5Communicate service support needs20899NEW
8.7.5.6Define IT escalation mechanisms20900NEW
8.7.5.7Manage IT service support resources20901NEW
8.7.5.8Coordinate with external support providers20902NEW
8.7.5.9Triage IT service delivery incidents20903NEW
8.7.5.10Monitor IT service support performance20904NEW
8.7.6Develop and manage service delivery operations20905+20906, +20907, +20908, +20909, +20910, +20911, +20912, +20913, NEW
8.7.6.1Operate and monitor online systems20906NEW
8.7.6.2Run and monitor batch job schedule20907NEW
8.7.6.3Manage service delivery workloads20908NEW
8.7.6.4Manage infrastructure performance and capacity20909NEW
8.7.6.5Respond to unplanned operational issues20910NEW
8.7.6.6Produce and distribute output media20911NEW
8.7.6.7Monitor IT infrastructure security20912NEW
8.7.6.8Manage IT infrastructure/data recovery20913NEW
8.7.7Manage infrastructure resource administration20914+20915, +20916, +20917, +20918, +20919, +20920, NEW
8.7.7.1Manage infrastructure configuration20915NEW
8.7.7.2Perform infrastructure component maintenance20916NEW
8.7.7.3Install/configure/upgrade infrastructure components20917NEW
8.7.7.4Maintain IT asset records20918NEW
8.7.7.5Administer IT licenses/user agreements20919NEW
8.7.7.6Provide IT infrastructure service and capabilities20920NEW
8.7.8Operate IT user support20921+20922, +20923, +20925, +20926, +20927, +20928, NEW
8.7.8.1Triage IT issues/requests20922NEW
8.7.8.2Provide IT resolution capabilities20923NEW
8.7.8.3Manage IT user requests20925NEW
8.7.8.4Escalate IT requests20926NEW
8.7.8.5Resolve IT issues/requests20927NEW
8.7.8.6Execute IT continuity and recovery action20928NEW

Back to: APQC PCF Overview