Useful References

The following publications may be useful guides when applying for the Standard, but are not mandatory. These publications cover the General Expectations only:

British Standards

• BS 6079-1:2002, Project management – Part 1: Guide to project management

• BS 6079-3:2000, Project management – Part 3: Guide to the management of business related project risk

• BS 7000-3:1994, Design management systems – Part 3: Guide to managing service design

• BS 7083:1996, Guide to the accommodation and operating environment for information technology (IT) equipment

• BS 7738-1:1994, Specification for information systems products using SSADM (Structured Systems Analysis and Design Method) – Part 1: Implementation of SSADM version 4

• BS 7858:2006, Security screening of individuals employed in a security environment — Code of practice

• BS 8444-3:1996, IEC 60300-3-9:1995, Risk management – Part 3: Guide to risk analysis of technological systems

• BS 8800:2004, Occupational health and safety management systems – Guide

• BS 8900:2006, Guidance for managing sustainable development

• BS 8463:2005, Specification for customer billing practice

• BS 25999-1:2006, Business continuity management – Part 1: Code of practice

• BS EN 61508-1:2002, Functional safety of electrical / electronic / programmable electronic safety-related systems – Part 1: General requirements

• BS EN 82045-1:2001, IEC 82045-1:2001, Document management – Part 1 :Principles and methods

• BS EN ISO 9001:2000, Quality management systems — Requirements

• BS ISO 10002:2004, Quality management – Customer satisfaction – Guidelines for complaints handling in organizations

• BS ISO 10006:2003, Quality management systems – Guidelines for quality management in projects

• BS ISO 15489-1:2001, Information and documentation – Records management – Part 1 : General

• BS ISO/IEC 9126-1:2001, Information technology – Software product quality – Part 1: Quality model

• BS ISO/IEC 12207:1995, Information technology – Software life cycle processes

• BS ISO/IEC 13236:1998, Information technology – Quality of service: Framework

• BS ISO/IEC 14598-2:2000, Information technology – Software production evaluation – Part 2: Planning and management

• BS ISO/IEC 14598-1:1999, Information technology – Software production evaluation – Part 1: General overview

• BS ISO/IEC 14598-4:1999, Information technology – Software production evaluation – Part 4: Process for acquirers

• BS ISO/IEC 15288:2002, Systems engineering – System life cycle processes

• BS ISO/IEC 15408-2:2005, Information technology – Security techniques – Evaluation criteria for IT security – Part 2: Security functional requirements

• BS ISO/IEC 15504-1:2004, Information technology — Process assessment — Part 1: Concepts and vocabulary

• BS ISO/IEC 17799:2005, Information technology – Security techniques – Code of practice for information security management  )

• BS ISO/IEC 20000-1:2005, Information technology – Service management – Part 1: Specification

• BS ISO/IEC 20000-2:2005, Information technology – Service management – Part 2: Code of practice

• BS ISO/IEC 27001:2005, Information Technology – Security techniques – Information security management systems – Requirements

• BS ISO/IEC TR 12382:1992, Permuted index of the vocabulary of information technology

• PAS 78:2006, Guide to good practice in commissioning accessible websites (Available to download for free from the Disability Rights Commission website at www.drc-gb.org/pas)

• PD 6668:2000, Managing risk for corporate governance

• PD ISO/IEC TR 18044:2004, Information Technology – Security techniques – Information security incident management

BIP Publications

• BIP 0005:2006, A Manager’s guide to service management. 2nd edition

• BIP 0015:2006, IT service management. Self-assessment workbook. 2nd Edition

• BIP 0051:2004, ITIL. Service support

• BIP 0052:2004, ITIL. Service delivery

• BIP 0053:2004, ITIL. Security Management

• BIP 0054:2004, ITIL. The Business perspective

• BIP 0055:2004, ITIL. ICT Infrastructure Management

• BIP 0056:2004, ITIL. Application Management

• BIP 0057:2004, ITIL. Planning to implement service management

• BIP 0080:2005, ITSMF. IT service management pocketbook

• BIP 0081:2005, ITSMF. Application management pocketbook

• BIP 0082:2005, ITSMF. A dictionary of IT service management terms

• BIP 0083:2005, ITSMF. ICT infrastructure management pocketbook

• BIP 0084:2005, ITSMF. Planning to implement service management

The National Computing Centre Publications

• The National Computing Centre, Guideline 269: Managing Risk - a Practical Guide, 2002

• The National Computing Centre, Guideline 275: Desert Island Standards, 2003

• The National Computing Centre, Guideline 283: Business Continuity Planning for SMEs, 2004

• The National Computing Centre, Guideline 224: Ethics and Information Systems, 1997

• The National Computing Centre, Legal Guidance Notes Issue 1   Principles in data protection compliance, 2003

• The National Computing Centre, Legal Guidance Notes Issue 3   Alternative Dispute Resolution, 2004

• The National Computing Centre, Legal Guidance Notes Issue 5   ICT Legal Compliance: A bright future or a marriage of convenience?, 2005

• The National Computing Centre, STARTS Purchasers Handbook, 1989

Other publications

CWA 13620 (all parts), ESCROWGUIDE – Guidance for acquirers, developers, escrow agents and quality assessors – An introduction to source code escrow

CWA 14661:2003, Guidelines to standardisers of ICT products and services in the CEN ICT domain

Intellect Organisational Professionalism Guidelines

Intellect IT Supplier Code of Best Practice