ISO/IEC 19770-1: Not 'standard' enough?
There are some error(s). Please see each marked section below.
Required Question(s)
This survey is intended to determine attitudes toward the software asset management ISO/IEC standard 19770-1(and compliance and operational best practice standards in general) in the light of the new recessionary market conditions. Will the real value of 'best practice' approaches that incur extra operational overheads and immediate setup costs for longer term gain now be questioned and does the recession mean that a focus on a higher level IT governance standard such as ISO/IEC 38500 is a more appropriate place for organisations to invest? The ranking questions do not assume that a score of 'least importance' means that the activity will not be undertaken at all : the objective is to assess how opinions have changed given the current market conditions.
1.
In what country are you located?
50 character(s) left.
2.
What industry are you in?
Aerospace and defence
Aerospace and defence
Agriculture
Agriculture
Automotive
Automotive
Chemicals and Textiles
Chemicals and Textiles
Construction and Real Estate
Construction and Real Estate
Consumer goods and Retailing
Consumer goods and Retailing
Electronic and Electrical equipment
Electronic and Electrical equipment
Engineering and machinery
Engineering and machinery
Financial Services
Financial Services
Food, beverages and tobacco
Food, beverages and tobacco
Government and public services
Government and public services
Healthcare, pharmaceuticals and biotechnology
Healthcare, pharmaceuticals and biotechnology
Leisure,entertainment-
, media and publishing
Leisure,entertainment-
, media and publishing
Mining, oil and gas
Mining, oil and gas
Professional Services
Professional Services
Telecoms,software and computer services
Telecoms,software and computer services
Travel,tourism and transport
Travel,tourism and transport
Utilities
Utilities
Other
Other
Comment:
500 character(s) left.
3.
Which of the following best describes your area of responsibility?
Information Technology
Information Technology
Financial
Financial
Compliance
Compliance
Procurement
Procurement
Other
Other
Comment:
500 character(s) left.
4.
ISO/IEC 19770-1 relies on the prior implementation of core ITIL processes such as incident, change and configuration management. Would this represent a stumbling block for you organisation?
Yes, our ITIL processes are not mature enough
Yes, our ITIL processes are not mature enough
No, but we would need to improve our ITIL processes somewhat
No, but we would need to improve our ITIL processes somewhat
No, we have mature ITIL processes
No, we have mature ITIL processes
5.
ISO/IEC 19770-1 defines a set of controls for 'best practice' in software asset management. These controls are mainly operational in nature and often require changes to working practices and extra resource. In 2009, how likely is your organisation to invest in the achievement of operational standards such as ISO/IEC 19770-1
Less likely than 2008
Less likely than 2008
No change
No change
More likely than 2008
More likely than 2008
6.
Software asset management (SAM) broadly covers the following areas: Meeting regulatory and licence obligations Mitigating operational risk (e.g. via effective patch management and avoiding malware) Strengthening internal controls (ensuring only approved software is deployed) Controlling costs (through effective vendor negotiation and reducing waste) Reducing costs (by assessing software use and exploring best value alternatives including open source) Rank how important these areas will be to your organisation in 2009: (where 5 is most important and 1 is least important)
1
2
3
4
5
Meeting regulatory and licence obligations
Mitigating operational risk
Strengthening internal controls
Controlling costs
Reducing costs
Comment:
500 character(s) left.
7.
In 2009 are you more likely to focus on the most important areas you have chosen for SAM (in question 6) or to continue developing a full SAM program covering all aspects?
More likely to focus on just a few key areas
More likely to focus on just a few key areas
We would be more likely to develop an holistic SAM program
We would be more likely to develop an holistic SAM program
8.
Rank the following items in order of importance to your organisation in 2009 when selecting the adoption of IT best practice activities and programs (where 5 is most important and 1 is the least important).
1
2
3
4
5
Speed of return on investment
Savings through operational efficiency
Performance improvement
Improvements in management control
Meeting compliance and legislative requirements
9.
Does the arrival of the BSA's 'SAM Advantage program' ( a four tiered maturity model approach to SAM) mean you are more likely to undertake an internal SAM program?
Yes, because a tiered approach is sensible
Yes, because a tiered approach is sensible
Yes, because my organisation perceives a benefit from aligning with the BSA
Yes, because my organisation perceives a benefit from aligning with the BSA
No, because we have a SAM program already
No, because we have a SAM program already
No, because we do not have a budget for such operational programs
No, because we do not have a budget for such operational programs
No, because we do not perceive the benefit of such a program
No, because we do not perceive the benefit of such a program
10.
What is your experience of SAM programs to date?
SAM programs are designed to shift the responsibility from the software vendor to the end customer
SAM programs are designed to shift the responsibility from the software vendor to the end customer
SAM programs are too onerous and do not provide clear business benefits
SAM programs are too onerous and do not provide clear business benefits
SAM programs require more resource than I have available to be a success
SAM programs require more resource than I have available to be a success
SAM programs have saved my organisation money
SAM programs have saved my organisation money
SAM programs have postively influenced my organisation's operations
SAM programs have postively influenced my organisation's operations
11.
ISO/IEC 38500 is a recently published standard for IT Corporate Governance, aimed at helping IT managers and directors mitigate risk by meeting their corporate governance and legislative responsibilities. It focuses on the decision making processes and testing whether information technology is 'fit for purpose' and aligned with business requirements in order to maximise return on investment. Rank the importance of these features to your organisation:(where 5 is most important and 1 is the least important)
1
2
3
4
5
Meeting corporate governance and legislative responsibilities
Ensuring that IT is 'fit for purpose'
Maximising return on investment
Aligning IT decisions with business decisions
Mitigating business risk
12.
Which of the following best matches your opinion of the focus of IT over the coming year?
Cost savings will be the primary focus
Cost savings will be the primary focus
Performance improvements will be the primary focus
Performance improvements will be the primary focus
Return on investment will be the primary focus
Return on investment will be the primary focus