A tool for IT process construction

doi:10.1016/j.infsof.2009.10.011

Information and Software Technology

Volume 52, Issue 4, April 2010, Pages 397-410

https://doi.org/10.1016/j.infsof.2009.10.011 Get rights and content

Abstract

Context

The field of IT processes lacks a scientifically-based tool that constructs organisation-specific IT processes according to the organisation’s socio-technical characteristics.

Objective

In this paper we propose a solution to this problem in the form of IT process engineering (ITPE). ITPE is based on established method engineering principles which we have adapted to IT process construction.

Method

The tool was demonstrated by having three organisations use ITPE to each construct two IT processes.

Results

ITPE provided useful guidance in all three cases.

Conclusions

The study demonstrates that method engineering principles can be applied in research fields other than information system development.

Introduction

IT processes deliver to the enterprise the required information by using IT resources [1]. Control objectives for information and related technology (COBIT) [1] has identified 34 IT processes that are generally used (e.g. manage service desk and incidents, manage problems, manage quality – please refer to [1] for the complete list). Business processes in organisations (as well as IT processes) are defined by the following interrelated factors: organisational structure, culture, technology, and people [2], which together constitute a complex sociological and technological system. Practice shows that it is impossible to define universal IT processes suitable for any organisation. ITIL, the world-wide de facto standard in IT service management, states that every activity should not be cast in stone, since methods and requirements differ from organisation to organisation [3]. Therefore, IT processes should be constructed that provide acceptable service in a particular organisation and at the same time make optimal use of available resources.

When designing IT processes, several standards, guidelines, and best practices may be consulted depending on the environment (e.g. COBIT, ITIL, ISO/IEC 20,000). Although these documents describe IT processes from different points of view, none of them explicitly defines which IT process elements are suitable for the organisations according to their socio-technical characteristics. In addition, the tacit knowledge plays an important role in this activity. Many important decisions about the structure of an IT process are made according to the process consultant’s subjective opinion. This field lacks a scientifically based systematic tool for IT process construction. Hence, the goal of our research is to develop a tool for IT process construction and test it in real organisations.

The tool presented in this paper is called IT Process Engineering (ITPE). ITPE is a systematic, scientifically-based tool that constructs organisation-specific IT processes according to the organisation’s socio-technical characteristics. ITPE uses Holistic IT processes (HITP) as a starting point (in Fig. 1 an excerpt of HITP is presented in the upper left corner – marked with Label A), i.e. IT processes that include IT process elements (e.g. subprocesses, activities, applications, roles, and artifacts) identified in literature or previously implemented in organisations. We typically create HITPs by examination of different standards and best practices (e.g. ITIL, COBIT). Based on the analysis of the technical and social characteristics of a particular organisation, ITPE than tailors HITPs into organisation-specific IT processes. The conditions that define which HITP elements to consider according to the organisation’s socio-technical characteristics are important components of HITPs (marked with black diamond in HITP – Fig. 1, Label A). The results of ITPE are presented as: (1) an activity diagram in which each activity suggests an IT process element to implement or improve (Fig. 1, Label B); (2) likelihood of unsuccessful implementation of the suggested IT process elements (Fig. 1, Labels C₁ and C₂); and (3) suggested scenarios for reducing it (Fig. 1, Labels D₁ and D₂). In order to apply ITPE in an organisation for a particular IT process, two activities must be performed: (1) identification of organisation’s socio-technical characteristics, which is done by interviews and questionnaires, and (2) generation of ITPE results by the use of our tool. The results of ITPE serve as a guideline for improving the IT process under consideration (Fig. 1).

The paper is organised as follows. In Section 2, related work is presented. Section 3 introduces the background and theoretical foundations of our research. The core of the paper consists of Section 4, where the details of ITPE are introduced, and Section 5, where the validity of ITPE is tested in three real organisations for two selected IT processes. Concluding remarks are presented in Section 6.

Section snippets

Related work

In order to develop the ITPE an extensive literature review of the fields referring to the design/improvement of business processes was performed. These fields can roughly be divided into two groups: group one dealing with the design/improvement of an arbitrary business process, and group two dealing with the design/improvement of a software development process.

O’Neil and Sohal [4] state that many authors refer to design/improvement of an arbitrary business process with variations on terms:

Background and theoretical foundations

ITPE is based on PCA. In order to understand ITPE, the PCA and the COBIT’s maturity model are briefly introduced (Subsections 3.1 Process configuration approach (PCA), 3.2 COBIT’s maturity model).

IT process engineering (ITPE)

In the same way different ME approaches construct tailored software development methods by considering different characteristics (i.e. project, organisation, SW development team characteristics), ITPE creates organisation-specific IT processes according to the organisation’s socio-technical characteristics. In order to understand the details of ITPE a running example is presented in Fig. 1.

ITPE is based on PCA, presented in Subsection 3.1. Thus, established ME principles are used for IT process

Case studies

In order to test ITPE in real organisations we employed case studies combined with direct observation and interviews [42].

Conclusion and further work

ITPE introduces scientific rigour to the field of IT process construction and provides a valid reference for IT process consultants, IT managers, and IT process owners. The ITPE results provide useful information for IT process improvement to the organisation.

A successful application of ME principles in the field of IT process construction is another important result relevant to the field of ME. It demonstrates that established ME principles can also be applied in research fields other than

Acknowledgement

This research has been supported by the Slovene Research Agency ARRS within the research program P2-0359.

References (43)

P. O’Neill et al.
Business process reengineering: a review of recent literature
Technovation
(1999)
P. Völkner et al.
A simulation-based decision support system for business process planning
Fuzzy Sets and Systems
(2002)
J. Gingele et al.
A modelling technique for re-engineering business processes controlled by ISO 9001
Computers in Industry
(2002)
J.M. Faure et al.
Business process engineering with partial models
Computers in Industry
(1995)
A.J.R. Zwegers et al.
Managing re-engineering with the CIMOSA architectural framework
Computers in Industry
(1995)
S. Brinkkemper
Method engineering: engineering of information systems development methods and tools
Information and Software Technology
(1996)
F. Karlsson et al.
Method configuration: adapting to situational characteristics while creating reusable assets
Information and Software Technology
(2004)
M. Bajec et al.
Practice-driven approach for creating project-specific software development methods
Information and Software Technology
(2007)
M. Rosemann et al.
A configurable reference modelling language
Information Systems
(2007)
G.H. Subramanian et al.
Software quality and IS project performance improvements from software development process maturity and IS implementation strategies
Journal of Systems and Software
(2007)

R.T. Frambach et al.

Organizational innovation adoption – a multi-level framework of determinants and opportunities for future research

Journal of Business Research

(2002)

IT Governance Institute, COBIT 4.1 – control objectives, management guidelines, maturity models, IT Governance...

R.D. Galliers

IT and organizational change: where does BPR fit In?

Central Computer and Telecommunication Agency, service support (CCTA): ITIL managing IT Services, London Stationery...

A.W. Scheer

ARIS – Business Process Modeling

(2000)

P.Y. Cunin, The PIE Project: An Introduction (short paper), In EWSPT, in: R. Conradi (Ed.), Software Process...

J. Ralyte´, R. Deneckere, C. Rolland, Towards a generic model for situational method engineering, in: Proceedings of...

B. Henderson-Sellers et al.

Process construction and customization

Journal of Universal Computer Science

(2004)

B. Fitzgerald et al.

Software development method tailoring at Motorola

Communications of the ACM

(2003)

M.P. Ginsberg et al.

Process Tailoring and the Software Capability Maturity Model

(1995)

C. Rolland

A comprehensive view of process engineering

Cited by (9)

Knowledge management in requirement elicitation: Situational methods view
2018, Computer Standards and Interfaces
Citation Excerpt :
The question is how one can handle the method requirements process [14]. Method requirements are often formulated based on interviews with project members [22,23]. In this respect, one of the major constraints is the fact that these requirements are often vague, poorly understood, and difficult to express - which is true for requirements in general - and also they affect the methods that are used within system development projects [11].
In small-scale software development organizations, software engineers are beginning to realize the significance of adapting software development methods according to project conditions. There is a requirement to proliferate this know-how to other developers, who may be facing the same settings/context, so that they too can benefit from others’ experiences. In this paper, the application of situational method engineering in requirements elicitation phase is investigated. A novel, simple and dynamic web-based tool, Situational Requirement Method System (SRMS), is developed which can aid in conception/formulation, repository, and elicitation/derivation of methods related with this stage. The proposed approach and tool are validated by distributing a questionnaire among software professionals working in large software companies, and making SRMS accessible to them. The results indicate that a majority of the participants finds SRMS useful and provides various suggestions to improve it.
Implementing information security best practices on software lifecycle processes: The ISO/IEC 15504 Security Extension
2015, Computers and Security
Citation Excerpt :
In order to guide software organizations involved in process improvement programmes according to ISO/IEC 15504 in the implementation of the ISO/IEC 27000 standard, even obtaining a certification against ISO/IEC 27001 (ISO/IEC 2013a), it is necessary to adequately select and efficiently implement the appropriate security controls between all the controls provided by the ISO/IEC 27002 standard (ISO/IEC 2013b). During the last years, several initiatives relating quality and security best practices have emerged (Boynton, 2007; Da Veiga and Eloff, 2010; Knapp et al., 2009; Lepmets et al., 2012; Xiao-yan et al., 2011; Zvanut and Bajec, 2010). Barafort et al. (2006) developed a process reference model and a process implementation model which provide a framework for assessing and increasing process capability and organisational maturity in the field information security.
The ISO/IEC 15504 international standard can be aligned with the ISO/IEC 27000 information security management framework. During the research conducted all the existing relations between ISO/IEC 15504-5 software development base practices and ISO/IEC 27002 security controls have been analysed and the ISO/IEC 15504 Security Extension has been developed. This extension details the changes that software companies should make in the software lifecycle processes for the successful implementation of the related security controls. To attain our research objectives, we evaluate the ISO/IEC 15504 Security Extension through case studies in a sample of software development organizations. This study follows the design science research paradigm that is based on constructive research.
MC Sandbox: Devising a tool for method-user-centered method configuration
1970, Information and Software Technology
Citation Excerpt :
According to Henderson-Sellers and Ralyté [13] this is still a major challenge when working with situational methods: how to handle the method requirements process? Method requirements are often formulated based on interviews with project members [14,15]. The method engineer later uses these requirements to define a situational method, which is introduced to the project team.
Method engineering approaches are often based on the assumption that method users are able to explicitly express their situational method requirements. Similar to systems requirements, method requirements are often vague and hard to explicate. In this paper we address the issue of involving method users early in method configuration. This is done through borrowing ideas from user-centered design and prototyping, and implementing them on the method engineering layer.
We design a computerized tool, MC Sandbox, to capture method requirements through the use of method-user-centered method configuration, hence bridging the gap between systems developers’ and method engineers’ understanding of and expectations on a situational method.
The research method adopted can be characterized as multi-grounded action research. Our implementation of multi-grounded action research follows the traditional ‘canonical’ action research method, which has cycles of diagnosing, action planning, action taking, evaluating, and specifying learning. The research project comprised three such action research cycles where 10 action cases were performed.
MC Sandbox has proven useful in eliciting and negotiating method requirements in a continuously ongoing dialog between the method users and the method engineers during configuration workshops. The results also show that the method engineer role rotated among the systems developers and that they were indeed committed to the negotiated methods during the systems development projects.
It is possible for method users to actively participate and construct suitable situational methods if they are provided with appropriate high-level modelling concepts, such as method components, configuration packages and configuration templates. This way, the project members’ understanding of the current development practice develops incrementally, both in terms of understanding the needs and available method support. In addition, both method requirements and commitments are made explicit, which are important aspects when working with method configuration from a collaboration point of view.
Towards a method engineering approach for business process reengineering
2016, IET Software
Outsourcing as an Economic Development Tool in Transition Economies: Scattered Global Software Development
2015, Information Technology for Development
MIN-ITs: A framework for integration of IT management standards in mature environments
2014, International Journal of Software Engineering and Knowledge Engineering

View all citing articles on Scopus

¹: Tel.: +386 14768 814; fax: +386 14768 705.

View full text

A tool for IT process construction

Abstract

Context

Objective

Method

Results

Conclusions

Introduction

Section snippets

Related work

Background and theoretical foundations

IT process engineering (ITPE)

Case studies

Conclusion and further work

Acknowledgement

Technovation

Fuzzy Sets and Systems

Computers in Industry

Computers in Industry

Computers in Industry

Information and Software Technology

Information and Software Technology

Information and Software Technology

Information Systems

Journal of Systems and Software

Journal of Business Research

IT and organizational change: where does BPR fit In?

ARIS – Business Process Modeling

Process construction and customization

Journal of Universal Computer Science

Software development method tailoring at Motorola

Communications of the ACM

Process Tailoring and the Software Capability Maturity Model

A comprehensive view of process engineering