Feeds

Software asset management becomes an ISO standard

Good practice benchmark set

  • alert
  • submit to reddit

Secure remote control for conventional and virtual desktops

A new international standard has been produced to enable organisations to prove they are performing Software Asset Management (SAM) to a standard sufficient to satisfy corporate governance and to aid industry and vendors with software compliance.

Published by ISO (International Organisation for Standardisation) and IEC (International Electrotechnical Commission), ISO/IEC 19770-1:2006, Information technology – Software asset management - Part 1: Processes will enable organisations to benchmark their capability in delivering managed services, measuring service levels and assessing performance.

The standard is in two parts. Part one describes the processes involved in SAM:

  • Control Environment: covers the processes and procedures, policies, roles and responsibilities, statements of all requirements and communications as well as ongoing assessment for the SAM process.
  • Planning and Implementation: maps out the activities needed, resources required, reporting structure, measurement and verification, plus a continual improvement process.
  • Inventory: defines the scope selection and confirmation of assets included in Software Asset Management and the auditable monitoring of the existence, access to, usage, and storage of them.
  • Verification and compliance: covers the process to identify and record assets and match inventory to licences and associated processes like authorisation and calculating effective licence from underlying licences (upgrades)
  • Operations Management: Covers security policy and documentary evidence of implementation, the management of relationship with suppliers, and the contracts that relate to them including customer (user) relationships and maintenance of SLAs for both the management and maintenance of contractual documents/budgets.
  • Life Cycle: Covers the life cycle of software assets from change management and selection of assets, acquisition and development (including new releases), incident management, problem management through to retirement, transfer, and disposals.

Part two, which has not yet been published, will define a product identification that aims to simplify the software inventory process.

Investors in Software, a group that exists to advance professionalism in SAM, said the standard will help organisations that follow it.

"Good practice in SAM brings significant benefits in the areas of risk management, cost control, and competitive advantage," chairman Shaun Fröhlich said. "We welcome the ISO Standard as a very significant development for the software industry that brings huge benefits for software users, vendors and resellers. It enables organisations, for the first time, to benchmark their SAM processes against internationally approved guidelines."

Copyright © 2006, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Related stories

ISO/IEC 19770-1 Software Asset Management Process (available for sale by electronic download from ISO website)
All you need to know about effective software management

Secure remote control for conventional and virtual desktops

More from The Register

next story
6 Obvious Reasons Why Facebook Will Ban This Article (Thank God)
Clampdown on clickbait ... and El Reg is OK with this
BBC: We're going to slip CODING into kids' TV
Pureed-carrot-in-ice cream C++ surprise
Kaspersky backpedals on 'done nothing wrong, nothing to fear' blather
Founder (and internet passport fan) now says privacy is precious
TROLL SLAYER Google grabs $1.3 MEEELLION in patent counter-suit
Chocolate Factory hits back at firm for suing customers
Twitter: La la la, we have not heard of any NUDE JLaw, Upton SELFIES
If there are any on our site it is not our fault as we are not a PUBLISHER
Facebook, Google and Instagram 'worse than drugs' says Miley Cyrus
Italian boffins agree with popette's theory that haters are the real wrecking balls
Sit tight, fanbois. Apple's '$400' wearable release slips into early 2015
Sources: time to put in plenty of clock-watching for' iWatch
Facebook to let stalkers unearth buried posts with mobe search
Prepare to HAUNT your pal's back catalogue
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.