1、 Reference number ISO/IEC TS 15504-9:2011(E) ISO/IEC 2011TECHNICAL SPECIFICATION ISO/IEC TS 15504-9 First edition 2011-08-01Information technology Process assessment Part 9: Target process profiles Technologies de linformation valuation des procds Partie 9: Profils de procds cibles ISO/IEC TS 15504-
2、9:2011(E) COPYRIGHT PROTECTED DOCUMENT ISO/IEC 2011 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at
3、 the address below or ISOs member body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.org Web www.iso.org Published in Switzerland ii ISO/IEC 2011 All rights reservedISO/IEC TS 15504-9:2011(E) I
4、SO/IEC 2011 All rights reserved iiiContents Page Foreword iv Introduction vi 1 Scope 1 2 Normative references 1 3 Terms and definitions . 1 4 Overview . 2 4.1 Introduction 2 4.2 Target process profiles sponsors and users . 2 4.3 Target process profiles purpose . 3 4.4 Deploying a documented process
5、. 4 5 Target process profiles . 4 5.1 General . 4 5.2 Defining a target process profile . 5 5.2.1 Introduction 5 5.2.2 Define the purpose 5 5.2.3 Select the community of use 6 5.2.4 Define the business requirement . 6 5.2.5 Define the domain of application . 6 5.2.6 Define characterization . 7 5.2.7
6、 Define target process profile factors . 7 5.2.8 Define criteria for data and information collection 8 5.2.9 Select processes . 9 5.2.10 Define target process profile output . 10 5.2.11 Define target capability . 10 6 Process for creating and using target process profiles 11 6.1 Overview . 11 6.2 Cr
7、eate the target process profiles . 11 6.3 Using target process profiles . 13 6.3.1 User Guidance . 13 6.3.2 Application for gap analysis 13 Bibliography 16 ISO/IEC TS 15504-9:2011(E) iv ISO/IEC 2011 All rights reservedForeword ISO (the International Organization for Standardization) and IEC (the Int
8、ernational Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular
9、fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established
10、 a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical co
11、mmittee are circulated to national bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. In other circumstances, particularly when there is an urgent market requirement for such documents, the joint technical committee m
12、ay decide to publish an ISO/IEC Technical Specification (ISO/IEC TS), which represents an agreement between the members of the joint technical committee and is accepted for publication if it is approved by 2/3 of the members of the committee casting a vote. An ISO/IEC TS is reviewed after three year
13、s in order to decide whether it will be confirmed for a further three years, revised to become an International Standard, or withdrawn. If the ISO/IEC TS is confirmed, it is reviewed again after a further three years, at which time it must either be transformed into an International Standard or be w
14、ithdrawn. Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. ISO/IEC TS 15504-9 was prepared by Joint Technical Committee ISO/IEC JTC 1, Informa
15、tion technology, Subcommittee SC 7, Software and systems engineering. ISO/IEC 15504 consists of the following parts, under the general title Information technology Process assessment: Part 1: Concepts and vocabulary Part 2: Performing an assessment Part 3: Guidance on performing an assessment Part 4
16、: Guidance on use for process improvement and process capability determination Part 5: An exemplar Process Assessment Model Part 6: An exemplar system life cycle process assessment model Technical Report Part 7: Assessment of organizational maturity Technical Report Part 9: Target process profiles T
17、echnical Specification Part 10: Safety extension Technical Report ISO/IEC TS 15504-9:2011(E) ISO/IEC 2011 All rights reserved vThe following part is under preparation: Part 8: An exemplar process assessment model for IT service management Technical Report ISO/IEC TS 15504-9:2011(E) vi ISO/IEC 2011 A
18、ll rights reservedIntroduction ISO/IEC 15504 provides a framework for process assessment and sets out the minimum requirements for performing an assessment in order to ensure consistency and repeatability of assessment results. Process assessment is applicable in the following circumstances: by or o
19、n behalf of an organization with the objective of understanding the state of its own processes for process improvement; by or on behalf of an organization with the objective of determining the capability of another organizations processes for a particular contract or class of contracts, or to determ
20、ine the capability of its own processes for a particular requirement or class of requirements. Process assessment has two dimensions, a process dimension and a capability dimension. ISO/IEC 15504-2 specifies the measurement framework within the capability dimension. The process dimension is provided
21、 by an external process reference model, which describes a set of processes, each characterized by defined process purpose and process outcomes. ISO/IEC 15504-4:2004 describes the need for a target capability using the capability dimension in ISO/IEC 15504-2 for each process, in a process reference
22、model, appropriate to the specified requirements. This part of ISO/IEC 15504 provides guidance on how to create and utilize target process profiles to meet this need for a target capability. This part of ISO/IEC 15504 is being developed as a Technical Specification to enable experience to be gained
23、in the use of the approach to setting Target Process Profiles. In future revisions of ISO/IEC 15504, it is likely that the content of this part will be integrated with ISO/IEC 15504-4. This part of ISO/IEC 15504 provides guidelines for creating and using a target process profile. These guidelines co
24、ver the following aspects: a) the defined purpose of the target process profile as a process improvement initiative or for process capability determination; b) the community of use, such as automotive, aerospace; c) the business requirement; d) the domain of application, such as systems, software, I
25、T services management; e) the characterization of the domain of application, such as safety critical systems; f) applicable processes or process reference models (in whole or part), processes from one or more process reference models or defined process for the domain of application; g) the data and
26、information to be collected to ensure the profile is relevant to the community of use, business requirements, domain of application and characterization scheme; h) the factors that, when analysed, transform the collected data or information into processes and process capability (process attributes a
27、nd process attribute rating) to create a target process profile for a process at the defined characterization of domain of application of the business requirement for the community of use; i) the expression of results, i.e. a target process profile for each required process, with data and notes that
28、 allow traceability and interpretation for assessment and improvement guidance purposes. TECHNICAL SPECIFICATION ISO/IEC TS 15504-9:2011(E) ISO/IEC 2011 All rights reserved 1Information technology Process assessment Part 9: Target process profiles 1 Scope This part of ISO/IEC 15504 documents guideli
29、nes for target process profiles for capability determination and improvement purposes. This part of ISO/IEC 15504 provides guidance for establishing target process profiles for the following purposes: by or on behalf of an organization with the objective of specifying a target process profile to mee
30、t specified needs; by or on behalf of an organization with the objective of specifying a target process profile against which to assess the actual ability of the organization to meet that target; by or on behalf of an organization with the objective of specifying a target process profile against whi
31、ch to assess the actual ability of another organization to meet that target; by or on behalf of an organization with the objective of determining the need for improvement based upon any capability gap between the actual capability and the target process profile. 2 Normative references The following
32、referenced documents are indispensable for the application of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendment) applies. ISO/IEC 15504-1:2004, Information technology Process assessment
33、Part 1: Concepts and vocabulary ISO/IEC15504-2:2003, Information technology Process assessment Part 2: Performing an assessment 3 Terms and definitions For the purposes of this document, the terms and definitions given in ISO/IEC 15504-1 and the following apply. 3.1 target process profile process at
34、tributes and process attribute ratings required for a process or process capability level and process capability level rating required for a process, with the rationale for the ratings ISO/IEC TS 15504-9:2011(E) 2 ISO/IEC 2011 All rights reserved3.2 target capability set of target process profiles,
35、subject to an acceptable process related risk, which meet the specified requirement for process capability determination or the business goals for process improvement NOTE This definition is based upon ISO/IEC 15504-4:2004, 7.2.2. 4 Overview 4.1 Introduction Within ISO/IEC 15504, process assessment
36、can be utilized: by or on behalf of an organization with the objective of understanding its processes for process improvement purposes; by or on behalf of an organization with the objective of determining the capability of another organizations processes for a particular contract or class of contrac
37、ts, or to determine the capability of its own processes for a particular requirement or class of requirements. Within a process improvement context, process assessment provides a means of characterizing an organizational unit in terms of the capability of selected processes. Analysis of the output o
38、f a conformant process assessment against an organizational units business goals identifies strengths, weaknesses and risks related to the processes. This, in turn, can help determine whether the processes are effective in achieving business goals, and provide the drivers for making improvements. Pr
39、ocess capability determination is concerned with analysing the output of one or more conformant process assessments to identify the strengths, weaknesses and risks involved in undertaking a specific project using the selected processes within a given organisational unit. A Process Capability Determi
40、nation can provide a fundamental input to supplier selection, in which case it is often termed a “supplier capability determination”. Process Capability Determination requires a target profile. A target process profile is derived from the defined business requirements, traceable to one or more proce
41、ss practice indicators and one or more process capability indicators that meet these requirements and can be used for process improvement or process capability determination. 4.2 Target process profiles sponsors and users Target process profiles will usually be required and resourced by a target pro
42、cess profile sponsor for the purpose of process capability determination or process improvement as described in ISO/IEC 15504-1:2004. The sponsor has the authority and responsibility to ensure that the target process profiles, the process assessment and any agreed actions are carried out effectively
43、 to meet the intended use, as described in ISO/IEC 15504-2:2003 (see note). For process capability determination, the Process Capability Determination sponsor should deploy a process capability determination process as outlined in ISO/IEC 15504-4:2004, 4.5. For process improvement, the Process Impro
44、vement sponsor should deploy a process improvement process as outlined in ISO/IEC 15504-4:2004, 4.4. Defining target process profiles requires skill and experience of a nature similar to that required for an experienced lead assessor and assessment model developer. In order to correctly define a tar
45、get process profile the sponsor, or sponsor appointed individual or team, should meet the following education and experience criteria: be a competent assessor (see ISO/IEC 15504-3); be able to demonstrate competence in using the selected documented process to create target process profiles under sup
46、ervision of an experienced user of the documented process. ISO/IEC TS 15504-9:2011(E) ISO/IEC 2011 All rights reserved 3A well defined target process profile set should provide guidance so that users of the profiles should only require minimal training and experience in order to be effective. In ord
47、er to correctly use a target process profile, the sponsor or sponsor appointed user: has successfully selected a set of target process profiles under supervision of an experienced sponsor. The selected set of target process profiles correctly covers the intended use. is conversant with using ISO/IEC
48、 15504 for process improvement or capability determination purposes. NOTE The target process profiles sponsor may be independent of or may also be a process assessment sponsor. 4.3 Target process profiles purpose The purpose of target process profiles is to identify the desired or required process c
49、apability for selected processes with respect to a particular intended use. Clause 5 of this part of ISO/IEC 15504 describes the detailed content of a set of target process profiles. As a result of successful establishment, a target process profile ensures the following criteria are met: the purpose is defined; the community of use is defined; the business requirement is defined; the intended domain of application is defined; the characterization required for t