ISO/IEC 17998:2012 Information technology – SOA Governance Framework

ISO/IEC 17998:2012 describes a framework that provides context and definitions to enable organizations to understand and deploy service-oriented architecture (SOA) governance.

ISO/IEC 17998:2012 defines:

• SOA Governance, including its relationship between Business, IT, and EA governance; this assists organizations in understanding the impact that the introduction of SOA into an organization has on governance;
• ISO/IEC 17998:2012 depicts a system that gives setting and definitions to empower associations to comprehend and convey administration situated engineering (SOA) administration.
  ISO/IEC 17998:2012 characterizes:
  SOA Administration, including its connection between Business, IT, and EA administration; this helps associations in understanding the effect that the presentation of SOA into an association has on administration;
  a SOA Administration Reference Model (SGRM) and its constituent parts, which helps associations in determining their fitting administration systems; and catching best practice as a reason for a typical methodology;
  the SOA Administration Essentialness Technique (SGVM) which helps associations in redoing the SGRM and understanding their SOA Administration Routine.
  ISO/IEC 17998:2012 isn’t expected to be utilized as given; it is planned to be redone to make suitable SOA administration for the association. Large numbers of the rundowns are non-standardizing and commendable and planned to be separated and as contribution to the customization cycle.

  ISO/IEC 17998:2012 does exclude a clarification of the basics and worth of SOA, which is significant for having the option to comprehend and apply SOA administration. It records a portion of the numerous different details and books that are accessible on SOA rudiments.ISO/IEC 17998:2012 is a standard titled “Information technology – SOA Governance Framework.” This standard provides guidelines and best practices for governing Service-Oriented Architecture (SOA) implementations within organizations. SOA is an architectural approach that enables the creation of software systems composed of interoperable, loosely coupled services.

  The governance of SOA involves managing and controlling various aspects of service development, deployment, and operation to ensure that they align with the organization’s goals, standards, and policies. Effective governance helps organizations derive maximum value from their SOA investments while minimizing risks.

  ISO/IEC 17998:2012 typically covers the following key areas related to SOA governance:

  1. Governance Structures: Establishing roles, responsibilities, and decision-making processes related to SOA within the organization.
  2. Policies and Standards: Defining policies, standards, and guidelines for service development, deployment, security, and other relevant aspects.
  3. Lifecycle Management: Managing the entire lifecycle of services, including design, development, testing, deployment, operation, and retirement.
  4. Quality Assurance: Ensuring the quality of services through testing, monitoring, and continuous improvement practices.
  5. Risk Management: Identifying and mitigating risks associated with SOA implementations, such as security vulnerabilities, performance issues, and compliance concerns.
  6. Compliance and Audit: Ensuring that SOA initiatives comply with relevant regulations, standards, and contractual obligations through regular audits and assessments.
  7. Metrics and Reporting: Defining metrics and KPIs (Key Performance Indicators) to measure the effectiveness and performance of SOA initiatives, and reporting on them to stakeholders.

  By adhering to the principles outlined in ISO/IEC 17998:2012, organizations can establish robust governance frameworks that enable them to realize the benefits of SOA while managing associated risks and ensuring alignment with business objectives.