ISO IEC 19770-1-2017 PDF

Full title and description

Information technology — IT asset management — Part 1: IT asset management systems — Requirements (ISO/IEC 19770-1:2017). This International Standard specifies requirements for establishing, implementing, maintaining and improving an IT asset management system (ITAMS) within the context of an organization, and can be applied to all types of IT assets and by organizations of any size.

Abstract

ISO/IEC 19770-1:2017 defines the requirements for an IT asset management system to support consistent, auditable IT asset management (ITAM) practices. It is intended to be used for managing hardware and software assets (and may be applied to other asset types where appropriate), to help organizations meet their ITAM objectives and to provide a basis for internal and external assessment of ITAM capability. The document clarifies that it does not prescribe financial, accounting or detailed technical requirements for specific asset types.

General information

• Status: Published (confirmed; current as of ISO review 2024).
• Publication date: December 2017 (published edition 3: 2017-12-07).
• Publisher: Joint ISO/IEC publication (International Organization for Standardization and International Electrotechnical Commission).
• ICS / categories: 35.080; 03.100.70 (IT and software engineering / IT asset management).
• Edition / version: 3rd edition (ISO/IEC 19770-1:2017).
• Number of pages: 37 pages (base publication).

Scope

The standard specifies requirements for an IT asset management system (ITAMS) that are additional to those in generic asset-management standards (it is a discipline-specific extension rather than a sector application). It is applicable across technologies and platforms and is designed to support management of executable and non-executable software as well as related assets needed to manage software. It is not intended to replace financial or accounting rules nor to manage information assets independent of the hardware/software context.

Key topics and requirements

• Requirements for establishing, implementing, maintaining and continually improving an IT asset management system (ITAMS).
• Application to all types and sizes of organizations and to a broad range of IT assets (hardware, software, firmware and related items).
• Alignment and discipline-specific extension relative to ISO 55001 (physical asset management), with additional ITAM-specific requirements.
• Use as a basis for internal and external assessment of an organization’s ITAM capability and conformance.
• Explicit exclusions and limitations (does not set out financial/accounting rules or detailed technical specs for particular asset types).
• Recent amendment (2024) adding climate-action related changes to the published text.

Typical use and users

Adopted by organizations seeking a formal management-system approach to ITAM: IT asset managers, IT governance and compliance teams, internal/external auditors, procurement and license management teams, IT service management practitioners, and consultants delivering ITAM implementations or assessments. The standard is also referenced by tool vendors and service providers as a framework for capability statements and conformance assessment.

Related standards

ISO/IEC 19770 is a multi-part family. Notable related parts include: - Part 2 (ISO/IEC 19770-2:2015) — Software identification tag (SWID) specification; - Part 3 (ISO/IEC 19770-3:2016) — Entitlement schema (software entitlements); - Part 5 — Overview and vocabulary. These parts are complementary: part 1 addresses ITAM system requirements while parts 2 and 3 provide standardized data structures for identification and entitlement information.

Keywords

IT asset management, ITAM, software asset management (SAM), IT asset management system (ITAMS), SWID (software identification tag), entitlement schema, ISO/IEC 19770, asset lifecycle, license management, conformance, ISO 55001.

FAQ

Q: What is this standard?

A: An International Standard that specifies requirements for an IT asset management system to manage and govern IT assets across an organization (ISO/IEC 19770-1:2017).

Q: What does it cover?

A: It covers the requirements to establish, implement, maintain and improve an ITAMS, including governance, planning, processes and continual improvement for IT asset lifecycle management. It is not a financial/accounting standard and does not prescribe technical specs for particular asset types.

Q: Who typically uses it?

A: IT asset managers, IT governance and compliance teams, auditors, procurement and license-management professionals, ITSM practitioners, consultants and vendors who build or assess ITAM capabilities.

Q: Is it current or superseded?

A: ISO/IEC 19770-1:2017 (3rd edition) is the current published edition; it was reviewed and confirmed in 2024 and has an amendment published in 2024 addressing climate-action changes. Earlier editions (2012, 2006) have been superseded.

Q: Is it part of a series?

A: Yes — ISO/IEC 19770 is a family of standards for IT asset/software asset management. Part 1 defines ITAMS requirements; other parts (notably Part 2 and Part 3) define software identification (SWID) and entitlement schemas that are commonly used together with Part 1.

Q: What are the key keywords?

A: IT asset management, ITAMS, SAM, SWID, entitlement schema, conformance, lifecycle, ISO/IEC 19770-1:2017.