The Processes that Define SAM
The processes are categorized as inventory processes, verification and compliance and operations management in the ISO standard. Software assets have always been the most difficult to control, relating the intangible applications to the tangible documentation and media. The great variability in the labeling of component parts of a software application, the ways software can be licensed and the difficulty in tracking versions of software require focus on inventory first, to be followed by the actual uses for the information.
The following table provides an overview of the SAM processes outlined in the standard with some examples of the action items that organizations would need to have in place in order to be compliant.
| SAM Processes defined by ISO 19770 |
Highlights of the action items required to comply with ISO 19770 for each process |
| Software Asset Identification |
- Define the scope of software assets that should be managed
- Define the descriptive elements and license documentation that must be kept
|
| Software Asset Inventory Management |
- Maintain an inventory of the physical software to insure proper storage of media
- Maintain an inventory of installed software
- Quantify software license usage
|
| Software Asset Control |
- Build an audit trail of changes to software and changes that impact the software
|
| Software Asset Record Verification |
- Reconcile what is installed on each platform to the installations approved
- Perform a license review to verify that proofs are available and accurately counted
|
| Software licensing compliance |
- Conduct license reconciliation to confirm adequate licensing
|
| Software asset security compliance |
- Ensure that there are appropriate controls on masters and distribution copies of software
|
| Conformance verification for SAM |
- Confirm compliance to this standard through proper policies, procedures and documentation
|
| Relationship and contract management for SAM |
- Define responsibilities for supplier management
- Develop a supplier review procedure
- Ensure that contractual details are documented
|
| Financial management for SAM |
- Develop a formal budget for the acquisition of software
- Compare actual expenditure against budgeted amount
|
| Service level management for SAM |
- Service level agreements are developed for all steps in the software lifecycle
- Hold regular reviews of performance against service levels
|
| Security management for SAM |
- Secure information through access controls
- Document controls and procedures
|
|
2007 Eracent, Inc. All Rights Reserved
Webmaster