Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

How to structure a service agreement that best suits your organization's needs

IT Advocate: Thanks to the rise of cloud computing, CIOs are increasingly being confronted with service agreements that relate to abstract concepts like software functionality or remote hardware capacity.
David Downie, Partner, McCullough Robertson.

David Downie, Partner, McCullough Robertson.

Page:

CIOs spend a lot of time negotiating IT services agreements. Traditionally these have been for the acquisition of services such as consulting or development services, although more recently with Cloud Computing (formerly known as Software-as-a-Service or ASP) CIOs have been confronted with services agreements that relate to more abstract concepts such as software functionality or remote hardware capacity.

By their nature these services contracts often have broad descriptions of the services required to be provided under them. For example, a hosting agreement might provide that the ISP is to host the customer's Web site, or a desktop services agreement might oblige the provider to make desktops available for use during the term.

All well and good, but the expectations of both CIO and supplier when it comes to performance of the obligation to provide the services may not always be aligned. What does it mean exactly to say that a Web site will be hosted? Does that mean that it will always be available, or that some outages are acceptable? When will the supplier be in breach of the agreement?

While services agreements often contain warranties as to service quality, specifying service levels with respect to certain aspects of the services provides the parties with certainty as to the level of performance required with respect to those aspects of the services. To be effective, service levels must be:

(a) important to you; and

(b) capable of measurement.

Outcomes based measurement

Service levels are often outcomes based. For example, in a hosting context, as well as the obligation to provide the hosting services described in a schedule with due care and skill or to best industry practice the supplier might also have to ensure that over each specified period:

(a) the Web site is available a certain percentage of the time;

(b) the Web site has no more than a certain number of outages;

(c) the supplier responds to an outage within a certain timeframe; and

(d) the supplier resolves an outage within a certain timeframe.

Including service levels of this nature clarifies the expectation of the parties with respect to the aspects of the services that are subject to the service levels. To be meaningful the service levels have to be stated as being measured over a certain period e.g. to say that a Web site is to be available 99 per cent of the time is meaningless without an associated timeframe such as each month.

Although service levels are often technical and need to be drafted by experts in the relevant field, it is important that they be clearly expressed. Lawyers can assist by asking if this is the case, and particularly drawing attention to terms such as ‘availability' and ‘outage' , and what constitutes a ‘resolution' of an issue. For example, is a Web site available if it is operating at a reduced capacity, or can only accept a limited number of concurrent users?

An ‘outage' is generally defined in terms of something not being ‘available' (however available defined). Similarly, a problem may be resolved if the item that is the subject of the service level is available following an outage. Definitions for service levels have to be considered with as much care as any definitions in a binding agreement.

Page:

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: etwork
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: service level agreements, legal, IT advocate, cloud computing
Latest Blog Posts
Whitepapers
  • Lowering your IT Costs with Oracle Database 11g Release 2
    This white paper identifies the key capabilities in Oracle Database 11g Release 2 that enable IT professionals to successfully deliver more information, with higher quality of service, and at much lower cost, than they have been able to do in the past.
    Learn more »
  • Chapter 2: Protecting Enterprise VoIP Services
    The enterprise network is a complex system, and implementing VoIP brings a new level of complexity into the mix. In addition, security threats are real and many and assuring QoS delivery is a technical challenge. In deploying VoIP, you’re integrating voice technology with the critical data infrastructure. Building process and documentation controls into network operations provides the information about the corporate nervous system to manage a secure operating environment. You use this information to build a layered defense into the network. By gathering knowledge and applying it to defend the network in depth, you can deliver secure, reliable, available VoIP service across the enterprise.
    Learn more »
  • Book 2 - The Practical Guide to Securing Assets
    Keeping your information technology (IT) systems and information secure in the face of constant changes in hardware, software, threats, and regulations can seem like an impossible task. You must constantly monitor and evaluate asset security controls effectiveness in addition to monitoring regulatory and contractual security requirement compliance. To be effective, you must implement IT controls in context with your entire organisation assets. Read on.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments

HP and IDG news, product videos and resources