1、BS ISO/IEC 30105-2:2016Information technology IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processesPart 2: Process assessment model (PAM)BSI Standards PublicationWB11885_BSI_StandardCovs_2013_AW.indd 1 15/05/2013 15:06BS ISO/IEC 30105-2:2016 BRITISH STANDARDNational forewor
2、dThis British Standard is the UK implementation of ISO/IEC 30105-2:2016.The UK participation in its preparation was entrusted to T e c h n i c a l C o m m i t t e e I S T / 6 0 / 3 , I T - e n a b l e d S e r v i c e s / B u s i n e s s P r o c e s s Outsourcing.A list of organizations represented o
3、n this committee can be obtained on request to its secretary.This publication does not purport to include all the necessary provisions of a contract. Users are responsible for its correct application. The British Standards Institution 2016.Published by BSI Standards Limited 2016ISBN 978 0 580 84646
4、5 ICS 35.080 Compliance with a British Standard cannot confer immunity from legal obligations.This British Standard was published under the authority of the Standards Policy and Strategy Committee on 30 November 2016.Amendments/corrigenda issued since publicationDate T e x t a f f e c t e dBS ISO/IE
5、C 30105-2:2016Information technology IT Enabled Services-Business Process Outsourcing (ITES-BPO) lifecycle processes Part 2: Process assessment model (PAM)Technologies de linformation Processus du cycle de vie de la dlocalisation du processus daffaires des services activs par IT Partie 2: Modle dval
6、uation du processus (PAM)INTERNATIONAL STANDARDISO/IEC30105-2Reference numberISO/IEC 30105-2:2016(E)First edition2016-11-15 ISO/IEC 2016BS ISO/IEC 30105-2:2016ii ISO/IEC 2016 All rights reservedCOPYRIGHT PROTECTED DOCUMENT ISO/IEC 2016, Published in SwitzerlandAll rights reserved. Unless otherwise s
7、pecified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below o
8、r ISOs member body in the country of the requester.ISO copyright officeCh. de Blandonnet 8 CP 401CH-1214 Vernier, Geneva, SwitzerlandTel. +41 22 749 01 11Fax +41 22 749 09 47copyrightiso.orgwww.iso.orgISO/IEC 30105-2:2016(E)BS ISO/IEC 30105-2:2016ISO/IEC 30105-2:2016(E)Foreword ivIntroduction v1 Sco
9、pe . 12 Normative references 13 Terms and definitions . 13.1 General . 23.2 Structure of the ITES-BPO process assessment model 23.2.1 Relationship to process reference model . 23.2.2 Process categories and processes . 23.2.3 Process dimension . 43.2.4 Capability dimension . 43.3 Assessment indicator
10、s 63.3.1 Overview . 63.3.2 Process capability indicators (PCI) 73.3.3 Process performance indicators (PPI) 93.4 Measuring process capability . 94 Processes and process performance indicators (level 1) .114.1 General 114.2 Base practices (BPs) and work products (WPs) for ITES-BPO lifecycle processes
11、114.2.1 Strategic enablement processes 114.2.2 Relationship processes 144.2.3 Solution processes .174.2.4 Transition in processes .194.2.5 Service delivery processes . 284.2.6 Transition out process .334.2.7 Tactical enablement processes . 354.2.8 Operational enablement processes 445 Process capabil
12、ity indicators (levels 1 to 5) .545.1 General 545.2 Process capability levels and process attributes 545.2.1 Process capability level 0: Incomplete process 555.2.2 Process capability level 1: Performed process 555.2.3 Process capability level 2: Managed process 555.2.4 Process capability level 3: Es
13、tablished process .605.2.5 Process capability level 4: Predictable process 645.2.6 Process capability level 5: Innovating process .68Annex A (informative) Conformity of the process assessment model 73Annex B (informative) Work product characteristics 77Annex C (informative) Correlation between ISO/I
14、EC 20000 and ISO/IEC 30105 .111Bibliography . 115 ISO/IEC 2016 All rights reserved iiiContents PageBS ISO/IEC 30105-2:2016ISO/IEC 30105-2:2016(E)ForewordISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for wo
15、rldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate
16、 in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.The procedures used to develop
17、 this document and those intended for its further maintenance are described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of document should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Dir
18、ectives, Part 2 (see www.iso.org/directives). Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during
19、the development of the document will be in the Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents). Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement.For an explanation on the meanin
20、g of ISO specific terms and expressions related to conformity assessment, as well as information about ISOs adherence to the WTO principles in the Technical Barriers to Trade (TBT) see the following URL: Foreword - Supplementary information The committee responsible for this document is ISO/IEC JTC
21、1, Information technology, SC 40, IT Service Management and IT Governance.A list of all parts in the ISO/IEC 30105 series can be found on the ISO website.iv ISO/IEC 2016 All rights reservedBS ISO/IEC 30105-2:2016ISO/IEC 30105-2:2016(E)IntroductionITES-BPO services encompass the delegation of one or
22、more IT enabled business processes to a service provider who uses an appropriate technology to deliver a service. Such a service provider manages, delivers, improves and administers the outsourced business processes in accordance with predefined and measurable performance metrics. This covers divers
23、e business process areas such as finance, human resource management, administration, health care, banking and financial services, supply chain management, travel and hospitality, media, market research, analytics, telecommunications, manufacturing, etc. These services provide business solutions to c
24、ustomers across the globe and form the part of the core service delivery chain for customers.ISO/IEC 30105 (all parts) specifies the lifecycle processes requirements involved in the ITES-BPO industry. It provides an overarching standard for all aspects of ITES-BPO industry from the view of the servi
25、ce provider that performs the outsourced business processes. This is applicable for any ITES-BPO service provider providing services to customers through contracts and in industry verticals. It covers the entire outsourcing lifecycle and defines the processes that are considered to be good practices
26、. It is an improvement standard that enables risk determination and improvement for service providers performing outsourced business processes. It also serves as a process reference model for service providers. It focuses on IT enabled business processes which are outsourced. It is generic and can b
27、e applied to all IT enabled business process outsourced services, regardless of type, size and the nature of the services delivered. Process improvement implemented using ISO/IEC 30105 (all parts) can lead to a clear return on investment for customers and service providers. Alignment to ISO/IEC 3010
28、5 (all parts) can improve consistency, delivery quality and predictability in delivery of services.Figure 1 illustrates the key entities and relationships involved in an ITES-BPO service. It includes the customer, the ITES-BPO service provider and various levels of suppliers. This is in line with th
29、e supply chain relationship depicted in ISO/IEC 20000-1:2011, 7.2.Figure 1 ITES-BPO key entitiesThis document details the process assessment model (PAM). This PAM contains process definitions of ITES-BPO lifecycle defined in ISO/IEC 30105-1 and a model suitable for assessing a specified process qual
30、ity characteristic. The outcomes in the PAM are clearly defined observable results, aligned to the business benefits derived by the customer and service provider. ISO/IEC 2016 All rights reserved vBS ISO/IEC 30105-2:2016ISO/IEC 30105-2:2016(E)This document defines a process assessment model that is
31、an improvement standard that enables risk determination and improvement for ITES-BPO service providers. ISO/IEC 20000-1 is a service management system standard which defines the criteria for a conformity assessment. Whilst there is potential for overlaps between this document and ISO/IEC 20000-1, in
32、 fact, they complement each other. Annex C describes the potential overlaps and differences, and their complementary nature.vi ISO/IEC 2016 All rights reservedBS ISO/IEC 30105-2:2016INTERNATIONAL STANDARD ISO/IEC 30105-2:2016(E)Information technology IT Enabled Services-Business Process Outsourcing
33、(ITES-BPO) lifecycle processes Part 2: Process assessment model (PAM)1 ScopeISO/IEC 30105 specifies the lifecycle process requirements performed by the IT enabled business process outsourcing service provider for the outsourced business processes. It defines the processes to plan, establish, impleme
34、nt, operate, monitor, review, maintain and improve its services. This document: covers IT enabled business processes that are outsourced; is not intended to cover IT services but includes similar, relevant process for completeness; is applicable to the service provider, not to the customer; is appli
35、cable to all lifecycle processes of ITES-BPO; serves as a process assessment model for organizations providing ITES-BPO services that: conforms to the requirements of ISO/IEC 33004; supports the performance assessment by providing indicators for the interpretation of the process purposes and outcome
36、s, as defined in ISO/IEC 24774, and the process attributes, as defined in ISO/IEC 33020.A process assessment model consists of a set of indicators for process performance and process capability. The indicators are used as a basis for collecting the objective evidence that enables an assessor to dete
37、rmine ratings. The set of indicators included in this document is not intended to be an all-inclusive set nor is it intended to be applicable in its entirety. Supersets and subsets that are appropriate to the context and scope of the assessment should be selected.The process assessment model in this
38、 document is directed at assessment sponsors and competent assessors who wish to select a model, and associated documented assessment process, for the ITES-BPO lifecycle processes, for risk determination or process improvement.2 Normative referencesThe following documents are referred to in the text
39、 in such a way that some or all of their content constitutes requirements of this document. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies.ISO/IEC 33004:2015, Information technology Proces
40、s assessment Requirements for process reference, process assessment and maturity modelsISO/IEC 30105-3, Information Technology IT enabled services-business process outsourcing (ITES-BPO) lifecycle processes Part 3: Measurement framework (MF) and organization maturity model (OMM)3 Terms and definitio
41、nsFor the purpose of this document, the terms and definitions given in ISO/IEC 30105-4, ISO/IEC 33001 and ISO/IEC TR 20000-10 apply. ISO/IEC 2016 All rights reserved 1BS ISO/IEC 30105-2:2016ISO/IEC 30105-2:2016(E)For the purposes of this document, the following terms and definitions apply.ISO and IE
42、C maintain terminological databases for use in standardization at the following addresses: IEC Electropedia: available at http:/www.electropedia.org/ ISO Online browsing platform: available at http:/www.iso.org/obp3.1 GeneralIn ISO/IEC 33001, the process assessment model is described as a model suit
43、able for the purpose of assessing a specified process quality characteristic, based on one or more process reference models.The process reference model defined in ISO/IEC 30105-1, associated with the process attributes defined in this document, establishes a process assessment model that provides a
44、common basis for performing assessments on ITES-BPO lifecycle processes, enabling the results to be reported using a common rating scale. A.2 in Annex A provides the requirements for process assessment models.The process assessment model defines a two-dimensional model of process capability. Process
45、 dimension: Processes are defined and classified into process categories. Capability dimension: A set of process attributes grouped into capability levels is defined.The process attributes provide the measurable characteristics of process capability.The ITES-BPO process reference model defined in IS
46、O/IEC 30105-1 and the capability dimension defined in ISO/IEC 33020 cannot be used alone as the basis for conducting reliable and consistent assessments of process capability, since the level of detail available is not sufficient. The process assessment model defined in this document has been derive
47、d from the measurement framework defined in ISO/IEC 30105-3, adapted to be suitable for ITES-BPO service providers.3.2 Structure of the ITES-BPO process assessment model3.2.1 Relationship to process reference modelThe ITES-BPO process assessment model extends the process reference model provided in
48、ISO/IEC 30105-1 with the definition of the ITES-BPO assessment indicators and their use. Assessment indicators are indicators of process performance and process capability. They are defined to objectively support an assessors objective judgment of the performance and capability of an implemented pro
49、cess. The ITES-BPO process descriptions meet the following requirements: a process is described in terms of its purpose and process outcomes; the set of process outcomes will be necessary and sufficient to achieve the purpose of the process; process descriptions shall not contain or imply aspects of the process quality characteristic beyond the lowest level of its intended measurement scale.3.2.2 Process categories and processesFigure 2 lists the processes from ISO/IEC 30105-1 that are included in the process