This Is How to Use ITIL, DevOps, and SRE Best Practices
When someone asks what type of “shop” your organization is, can you answer that it’s ITIL, DevOps, or SRE? Some people can, but if you’re a large enterprise, the answer is likely a combination of these operating models. ITIL can work alongside DevOps and SRE principles, though they appear to be different. The trick is to ensure that regardless of your organizations’ different operating models or toolchains, you have shared visibility, communication, and collaboration across teams. This will allow you to stay aligned while using the best practices from each method.
What’s ITIL? If you’re not familiar…
ITIL (information technology infrastructure library) is a method developed to create a single source of best practices for information technology. According to CIO writers Sarah K. White and Lynn Greiner, “Developed by the British government's Central Computer and Telecommunications Agency (CCTA) during the 1980s, the ITIL first consisted of more than 30 books, developed and released over time, that codified best practices in information technology accumulated from many sources (including vendors' best practices) around the world.”
ITIL is in its fourth version now, and the approach condensed to nine books. While these books reflect the modern technological era, they still focus on ITIL’s original core ideals. Ideals include “automating processes, improving service management and integrating the IT department into the business.” ITIL is a very top-down, structured, and process-driven method. It remains one of the most adopted IT frameworks today.
Some of the key practices of ITIL include service catalog and design, monitoring and event management, incident and problem management, release management, configuration management, and more. These practices hold regardless of operating model. Yet, you can alter implementation depending on your organization's needs. These practices are valuable even for organizations that identify as DevOps/SRE shops.
What’s the relationship between ITIL and ITSM?
ITSM is the process for how a company manages its IT services. This process is very customer oriented and contains 5 steps:
Continual Service Improvement
ITIL is a framework for implementing ITSM practices. This framework is organization neutral. It's applicable to almost all businesses, even if the customers that IT focuses on are internal. According to itiltraining.com, “There’s a big emphasis on continual improvement. This involves consistently measuring and improving processes, IT services, and IT infrastructure. Doing so maximizes their efficiency, effectiveness, and cost effectiveness.”
How ITIL works with DevOps
With the ITIL process, your focus is on aligning IT with your organization’s business goals. This dovetails well with the DevOps philosophy of breaking down silos in the organization. By breaking down these silos, you can prevent bottlenecks in communication. This allows teams to ship features that customers want faster while abiding by the CAMS model (culture, automation, measurement, sharing) more closely. But how does this actually look when applied to an organization?
When to use which?
Your organization will rely on ITIL and DevOps for different situations. For example, it may make sense to leverage DevOps best practices between development and operations teams. These teams need to align on workflows, code pushes, automation, and monitoring. But, when communicating between different parts of the organization, ITIL practices might come in handy This graph gives a few examples of how the two methodologies are applicable in differing situations.
Alignment between IT and the rest of your organization
The result of employing a mixture of ITIL and DevOps best practices is better alignment on organization-wide goals. When IT and the rest of an organization function as totally independent entities, one side will likely always feel overworked and under-supported. In “The Phoenix Project,” a novel looking at a fictional organization’s struggles with IT integration, this becomes a central conflict.
In the book, IT was partially responsible for R&D and sales initiatives succeeding. R&D required accurate data and inventory reporting to replenish inventory and go to market with new products. Sales required a CRM, phone/voicemail, and MRP system that was effective. Without cross-functional communication, there was no way to plan for these necessary changes. Instead, departments made unreasonable demands on each other, and the company revenue tanked.
At the end of the book, IT aligned and communicated with the rest of the organization. By breaking down silos and working together, many of these issues were resolved.
Sometimes, the timing of IT initiatives and business initiatives seem asynchronous. But, by using ITIL and DevOps best practices, organizations can create a cohesive timeline. Below is a graph that shows how these processes can help the whole organization.
Shared ownership and continuous improvement
Alignment between DevOps and ITIL frameworks also leads to another benefit: a shift in mindset. DevOps brings innovations to the ITIL framework by encouraging shared ownership and continuous improvement.
Without silos, the goals of the organization become the goals of individuals. Everyone owns the success and failure of the business. They’re all members of the same team, oriented around the same outcomes. Departments are no longer pitted against one another. Continuous improvement becomes a part of the company culture. Teams celebrate failure and recognize it as a learning opportunity.
How ITIL works with SRE
Now that we’ve covered how DevOps and ITIL align, it’s time to talk about how SRE and ITIL align. As SRE is an implementation of DevOps, many of these alignments are similar. It's possible to use the best practices from all three methodologies.
In practice, ITIL and SRE can actually make for a great combination. The first reason why is simple. Every organization wants happy customers, and ITIL and SRE can make that a reality. Embedding reliability throughout the software lifecycle ensures a higher rate of customer happiness. The newest revision of ITIL introduces seven guiding principles, further aligning SRE and ITIL.
The seven tenets of ITIL 4
Start Where You Are: Adopting SRE best practices is not one size-fits-all. Everyone starts somewhere. Taking the first steps and implementing and iterating as you go is what matters most.
Keep it Simple and Practical: In the Google SRE book’s chapter on simplicity, it states “Unlike just about everything else in life, ‘boring’ is actually a positive attribute when it comes to software! We don’t want our programs to be spontaneous and interesting; we want them to stick to the script and predictably accomplish their business goals.” Simplicity in both software and business operations streamlines communication and increases velocity. This helps ensure that reliability isn’t compromised. Less is more.
Optimize and Automate: One of the goals of SRE is to automate toil-heavy processes. This frees up developer time to focus innovation, allowing features to ship faster.
Progress Iteratively with Feedback: SREs set alerts for the most important and user-centric metrics. The metrics, alerts, and SLOs they’re tied to are all iterated upon to meet customer needs.
Collaborate and Promote Visibility: SRE is collaborative. It focuses on a blameless work culture that values learning from failure. Each team member is doing what he or she thinks is best for the organization.
Focus on Value: Without customers, there is no value in software. Business value is created when customers want, and are getting what they need, from a product. SRE ensures that the product is reliable enough to provide value to the customers. Thus providing value to the organization.
Think and Work Holistically: By breaking down silos and focusing on scalability and reliability on a holistic level, SREs are able to provide significant benefits in maturing the organization. Business-wide success is in the hands of every team member. SREs make sure that the company’s product, systems, and procedures are resilient.
Flexible and rapid change management
One of ITIL’s best practices is coordinated change management overseen by the change authorization board (CAB). But, as noted by partner at Mindbridge Kaimar Karu, “Having the CAB review every single change request isn't efficient, and it's definitely not common sense, especially when their costs can run to tens of thousands of deployments per hour in some organizations. However, having the CAB review change requests of unknown risk, when parts of the business need to be consulted because they might be impacted, makes a lot of sense.”
SRE can help with this. Its core principles help codify far more flexible and rapid change management. On-call practices empower teams to be more accountable for code in production. Rollbacks can be automated as part of rapid fixes. Incident retrospectives facilitate critical learning insights. SLOs help teams to align on what matters. Error budgets create a guideline for development teams on when it’s safe to ship a new feature.
This added flexibility is also inspired by the SRE leadership mindset. Instead of the command-and-control philosophy, SRE recognizes the need for flexibility in a constantly changing environment and focuses on context over control. This means that if a business-critical feature must be shipped, it will be shipped.
The ITIL, DevOps, and SRE dream team
While some organizations operate with only one of these methodologies, many find that a mixture of the three is best. Below is a graph of the strengths of each method. You'll see the methodologies are in fact different, and very complementary.
By identifying which practices make the most sense for your team, and with some trial and error, you can find the ultimate combination that ensures your organization will operate at maximum efficiency.
If you liked this article, you might also enjoy these:
Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please fill out and submit a data subject access request to firstname.lastname@example.org.