Documentos de Académico
Documentos de Profesional
Documentos de Cultura
In This Lesson
Definition of an Incident
Incident
An unplanned interruption to an
IT service, reduction in quality of
an IT service, or a failure of a
configuraiton item that has not
yet impacted IT services
Definition of an Incident
Examples of incidents
– Failure of the payroll service
– A database lock that prevents data use by an application
– A failure of a disk in a mirrored set that has not yet impacted
services
Reduction in unplanned labor and cost for both the business and
IT support staff caused by incidents
Escalation
Resolution
Identification • Functional
identification
• Hierarchical
Initial Resolution/
Logging
diagnosis recovery
Incident
Categorization Prioritization
closure
Event
Web Interface Phone Call Email
Management
Management
Identificat ion
To Request
Is Incident? or SPM if
No Change
Proposal
Yes
Incident
Identification Logging
Logging
Incident
Categorization
Incident
Categorization
Prioritization
Major
Incident Major Incident?
Yes
Procedure
Prioritization No
Incident
Diagnosis
No No
Escalation Management
Escalation
Hierarchical
Escalation
Investigate and
Diagnose
No
Yes No
Yes
End
Incident Identification
All incidents
All relevant
must be logged
information
regardless of
should be
where they are
captured
raised
Incident Logging
Incident Logging
Incident status __
Related CI
Support group/person incident is allocated _
Related problem or known error
__
Resolution activities
_
Resolution date and time
_
Closure category
__
Closure date and time
Incident Categorization
or
System Impacted Server Impacted
Incident Prioritization
Impact
Target Resolution
Priority Code Description
Time
1 Critical 1 hour
2 High 8 hours
3 Medium 24 hours
4 Low 48 hours
5 Planning Planned
Initial Diagnosis
Incident Matching
Incident Matching
procedure
(part ofinitial
diagnosis)
Update incident
Extract resolution count on problem
or work around record
Match on KEDB?
action form KEDB Yes
No Yes
Update incident
record with ID of
Update incident problem
Match to
count on KE
existing
problem
record?
Update incident
No
record with
Update incident
classification data
record with ID of
KE
Routine incident?
Update incident
record with
classification data No Yes
Return toinitial
diagnosis
Incident Escalation
Escalation
Hierarchical escalation
– Escalation up the management chain (even if
only for informational purposes)
– Escalation hierarchically may be initiated by
users, customers, or support staff
Functional escalation
– Escalation to a technical specialist or support
group
– May be into the supplier community depending
upon its nature
Major Incidents
Examples
– A fire in the primary data center
– A security incident where confidential information is disclosed
Incident Closure
Business Priorities
Incorrectly assigned
Incorrectly categorized
Processed per service desk agent
Related to change and release
Challenges and Risks
Lack of information
What We Covered