| 7 Support of the service management system 支持服务管理体系(SMS)/7.5 Documented information 文件化信息 |
7.5.1 General 总则 The organization’s SMS shall include: 组织的服务管理体系(SMS)应包括: a) documented information required by this document; a) 本文件要求的文件化信息; b) documented information determined by the organization as being necessary for the effectiveness of the SMS. b) 为服务管理体系(SMS)的有效性,组织所确定的必要的文件化信息。 NOTE The extent of documented information for an SMS can differ from one organization to another due to: 注,不同组织有关服务管理体系(SMS)文件化信息的详略程度可以是不同的,这是由于: — the size of organization and its type of activities, processes, products and services; — 组织的规模及其活动、过程、产品和服务的类型; — the complexity of processes, services and their interfaces; — 过程,服务及其相互作用的复杂性; — the competence of persons. — 人员能力。 7.5.2 Creating and updating documented information 创建和更新文件化信息 When creating and updating documented information, the organization shall ensure appropriate: 创建和更新文件化信息时,组织应确保适当的: a) identification and description (e.g. a title, date, author or reference number); a) 标识和描述(例如标题、日期、作者或引用编号); b) format (e.g. language, software version, graphics) and media (e.g. paper, electronic); b) 格式(例如语言、软件版本、图表)和介质(例如纸质的、电子的); c) review and approval for suitability and adequacy. c) 对适宜性和充分性的评审和批准。 7.5.3 Control of documented information 文件化信息的控制 7.5.3.1 Documented information required by the SMS and by this document shall be controlled to ensure: 7.5.3.1 服务管理体系(SMS)及本文件所要求的文件化信息应得到控制,以确保: a) it is available and suitable for use, where and when it is needed; a) 在需要的场合和时机,均可获得并适用; b) it is adequately protected (e.g. from loss of confidentiality, improper use or loss of integrity). b) 得到充分的保护(如避免保密性损失、不恰当使用、完整性损失等)。 7.5.3.2 For the control of documented information, the organization shall address the following activities, as applicable: 7.5.3.2 为控制文件化信息,适用时,组织应应对以下活动: a) distribution, access, retrieval and use; a) 分发,访问,检索和使用; b) storage and preservation, including preservation of legibility; b) 存储和保护,包括保持可读性; c) control of changes (e.g. version control); c) 控制变更(例如,版本控制); d) retention and disposition. d) 保留和处置。 Documented information of external origin determined by the organization to be necessary for the planning and operation of the SMS shall be identified as appropriate and controlled. 对于组织确定的策划和运行服务管理体系(SMS)所必需的来自外部的文件化信息,组织应进行适当识别,并予以控制。 NOTE Access can imply a decision regarding the permission to view the documented information only, or the permission and authority to view and change the documented information. 注,对文件化信息的“访问”可能意味着仅允许查阅,或者意味着允许查阅并授权修改。 7.5.4 Service management system documented information 服务管理体系(SMS)文件化信息 The documented information for the SMS shall include: 服务管理体系(SMS)文件化信息应包括: a) scope of the SMS; a) 服务管理体系(SMS)的范围; b) policy and objectives for service management; b) 服务管理方针和目标; c) service management plan; c) 服务管理规划; d) change management policy, information security policy and service continuity plan(s); d) 变更管理方针,信息安全方针和服务连续性计划; e) processes of the organization’s SMS; e) 组织服务管理体系(SMS)的过程; f) service requirements; f) 服务要求; g) service catalogue(s); g) 服务目录; h) service level agreement(s) (SLA); h) 服务级别协议(SLA); i) contracts with external suppliers; i) 与外部供应商的合同; j) agreements with internal suppliers or customers acting as a supplier; j) 与内部供应商或顾客充当的供应商的协议; k) procedures that are required by this document; k) 本文件要求的程序; l) records required to demonstrate evidence of conformity to the requirements of this document and the organization’s SMS. l) 证实符合本文件和组织服务管理体系(SMS)要求的证据要求的记录; NOTE Clause 7.5.4 provides a list of the key documents for an SMS. There are other specified requirements in this document for information to be held as documented information, to be documented or to be recorded. ISO/IEC 20000-2 provides additional guidance. 注,条款7.5.4为服务管理体系(SMS)提供了关键文件的列表。本文件有其他要求对信息保持文件化的要求,对信息进行文件化或记录。ISO/IEC 20000-2提供了附加的指南。 |
【标准理解】
(1)为符合ISO/IEC 20000要求和确保服务管理体系(SMS)的有效性,组织规划体系文件,并保留文件化信息。
欲阅读更多内容,需要前往该链接购买付费合集:
