Skip to main content
SpringerLink
Log in

A SPICE-Based Maturity Model for the Governance and Management of Green IT

  • Conference paper
  • First Online:
Software Process Improvement and Capability Determination (SPICE 2017)

Part of the book series: Communications in Computer and Information Science ((CCIS,volume 770))

Abstract

Organizations around the world are increasingly concerned about the environment, adopting sustainable practices in their business processes. In the field of Information Technologies (IT) several Green IT practices have been proposed, but in isolation, so a framework is needed if the Green IT is to be implemented and improved in an efficient and integrated way. In this paper, we propose a maturity model (based on SPICE) to help organizations to implement the governance and management of Green IT gradually, as well as to improve their maturity level in this area. The validation of this proposal by experts and a case study seems to indicate that the proposal can be useful for implementing and improving the Green IT processes in organizations.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Brundtland, G., Khalid, M., Agnelli, S., Al-Athel, S., Chidzero, B., Fadika, L., Okita, S.: Our Common Future (“Brundtland Report”). Oxford University Press (1987)

    Google Scholar 

  2. Calero, C., Piattini, M. (eds.): Green in Software Engineering. Springer, Cham (2015)

    Google Scholar 

  3. Patón-Romero, J.D., Piattini, M.: Indicators for Green in IT audits: a systematic mapping study. In: 3rd International Workshop on Measurement and Metrics for Green and Sustainable Software Systems (MeGSuS 216), pp. 4–12 (2016)

    Google Scholar 

  4. Patón-Romero, J.D., Piattini, M., García Rodríguez de Guzmán, I.: A Governance and Management Framework for Green IT. Sustainability (Submitted)

    Google Scholar 

  5. ISO: ISO/IEC 15504 (Information technology — Process assessment). International Organization for Standardization, Geneva, Switzerland (2003)

    Google Scholar 

  6. Cass, A., Volcker, C., Winzer, L., Carranza, J.M., Dorling, A.: SPiCE for SPACE: a process assessment and improvement method for space software development. ESA Bull. 107, 112–119 (2001)

    Google Scholar 

  7. Garzás, J., Pino, F.J., Piattini, M., Fernández, C.M.: A maturity model for the Spanish software industry based on ISO standards. Comput. Stand. Interfaces 35(6), 616–628 (2013)

    Article  Google Scholar 

  8. Gökalp, E., Demirörs, O.: Towards a process capability assessment model for government domain. In: Clarke, Paul M., O’Connor, Rory V., Rout, T., Dorling, A. (eds.) SPICE 2016. CCIS, vol. 609, pp. 210–224. Springer, Cham (2016). doi:10.1007/978-3-319-38980-6_16

    Google Scholar 

  9. Ivanyos, J., Sándor-Kriszt, E.: ECQA Governance SPICE assessor skills for evaluating integrated risk management scenarios. J. Softw. Evol. Process 27(8), 545–554 (2015)

    Article  Google Scholar 

  10. Automotive SIG: Automotive SPICE Process Assessment/ Reference Model. Version 3.0. VDA Quality Management Center, Berlin, Germany (2015)

    Google Scholar 

  11. Lami, G., Biscoglio, I., Falcini, F.: An empirical study on software testing practices in automotive. In: Clarke, Paul M., O’Connor, Rory V., Rout, T., Dorling, A. (eds.) SPICE 2016. CCIS, vol. 609, pp. 301–315. Springer, Cham (2016). doi:10.1007/978-3-319-38980-6_22

    Google Scholar 

  12. Mesquida, A.L., Mas, A.: Implementing information security best practices on software lifecycle processes: the ISO/IEC 15504 security extension. Comput. Secur. 48, 19–34 (2015)

    Article  Google Scholar 

  13. McCaffery, F., Dorling, A.: Medi SPICE development. J. Softw. Evol. Process 22(4), 255–268 (2010)

    Google Scholar 

  14. Söylemez, M., Tarhan, A.: The use of maturity/capability frameworks for healthcare process assessment and improvement. In: Clarke, Paul M., O’Connor, Rory V., Rout, T., Dorling, A. (eds.) SPICE 2016. CCIS, vol. 609, pp. 31–42. Springer, Cham (2016). doi:10.1007/978-3-319-38980-6_3

    Google Scholar 

  15. Varkoi, T., Nevalainen, R., Mäkinen, T.: Toward nuclear SPICE - Integrating IEC 61508, IEC 60880 and SPICE. J. Softw. Evol. Process 26(3), 357–365 (2014)

    Article  Google Scholar 

  16. ISO: ISO/IEC 33000 (Information technology — Process assessment). International Organization for Standardization, Geneva, Switzerland (2015)

    Google Scholar 

  17. Carretero, A.G., Gualo, F., Caballero, I., Piattini, M.: MAMD 2.0: Environment for data quality processes implantation based on ISO 8000-6X and ISO/IEC 33000. Comput. Stand. Interfaces (2016)

    Google Scholar 

  18. Carnegie Mellon University: CMMI for Development (Version 1.3). Carnegie Mellon University, Pittsburgh, PA, USA (2010)

    Google Scholar 

  19. ISACA: Maximizing the Combined Effects of COBIT 5 and CMMI: A Guide to Using the Practices Pathways Tool. ISACA, Rolling Meadows, IL, USA (2017)

    Google Scholar 

  20. ISACA: COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. ISACA, Rolling Meadows, IL, USA (2012)

    Google Scholar 

  21. Patón-Romero, J.D., Piattini, M.: Green IT maturity models: a systematic mapping study. In: 12th Iberian Conference on Information Systems and Technologies (CISTI 2017), pp. 2110–2115 (2017)

    Google Scholar 

  22. Buchalcevova, A.: Green ICT maturity model for Czech SMEs. J. Syst. Integr. 6(1), 24–36 (2015)

    Article  Google Scholar 

  23. Hankel, A., Oud, L., Saan, M., Lago, P.: A Maturity Model for Green ICT: The case of the SURF Green ICT Maturity Model. In: 28th EnviroInfo 2014 Conference (2014)

    Google Scholar 

  24. Curley, M., Kenneally, J., Carcary, M.: IT Capability Maturity Framework (IT-CMF). In: The Body of Knowledge Guide, 2nd edn. Van Haren Publishing, Zaltbommel, pp. 103–118 (2016)

    Google Scholar 

  25. ISO: ISO 14000 (Environmental management systems). International Organization for Standardization, Geneva, Switzerland (2015)

    Google Scholar 

Download references

Acknowledgements

This work is part of the project GINSENG (TIN2015-70259-C2-1-R) funded by the Spanish Ministerio de Economía y Competitividad and the FEDER Fund (Fondo Europeo de Desarrollo Regional); and GLOBALIA (PEII-2014-038-P), Consejería de Educación y Ciencia, Junta de Comunidades de Castilla-La Mancha.

Author information

Authors and Affiliations

  1. Alarcos Research Group, Institute of Technologies and Information Systems, University of Castilla-la Mancha (UCLM), Paseo de la Universidad, 4, 13071, Ciudad Real, Spain

    J. David Patón-Romero, Moisés Rodríguez & Mario Piattini

  2. AQCLab, Camino de Moledores, 13051, Ciudad Real, Spain

    Moisés Rodríguez

Authors
  1. J. David Patón-Romero
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Moisés Rodríguez
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Mario Piattini
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to J. David Patón-Romero .

Editor information

Editors and Affiliations

  1. University of the Balearic Islands, Palma, Spain

    Antonia Mas

  2. University of the Balearic Islands, Palma, Baleares, Spain

    Antoni Mesquida

  3. Dublin University, Dublin, Ireland

    Rory V. O'Connor

  4. Software Quality Institute, Griffith University, Brisbane, Queensland, Australia

    Terry Rout

  5. Impronova AB, Askim, Sweden

    Alec Dorling

Appendix A: Processes of the “Governance and Management Framework for Green IT” Organized by the SPICE Maturity Levels

Appendix A: Processes of the “Governance and Management Framework for Green IT” Organized by the SPICE Maturity Levels

A.1 Level 1

BAI09: Manage assets

  • Description of the process: Manage IT assets through their life cycle to make sure that their use delivers value at optimal cost, they remain operational (fit for purpose), they are accounted for and physically protected, and those assets that are critical to support service capability are reliable and available. Manage software licenses to ensure that the optimal number are acquired, retained and deployed in relation to required business usage, and the software installed is in compliance with license agreements.

  • Statement of the purpose of the process: Account for all IT assets and optimize the value provided by these assets.

DSS01: Manage operations

  • Description of the process: Co-ordinate and execute the activities and operational procedures required to deliver internal and outsourced IT services, including the execution of pre-defined standard operating procedures and the required monitoring activities.

  • Statement of the purpose of the process: Deliver IT operational service outcomes as planned.

A.2 Level 2

APO01: Manage the IT management framework

  • Description of the process: Clarify and maintain the governance of organization IT mission and vision. Implement and maintain mechanisms and authorities to manage information and the use of the organization IT in support of governance objectives in line with guiding principles and policies.

  • Statement of the purpose of the process: Provide a consistent management approach to enable the organization governance requirements to be met, covering management processes, organizational structures, roles and responsibilities, reliable and repeatable activities, and skills and competencies.

APO02: Manage strategy

  • Description of the process: Provide a holistic view of the current business and IT context, the future direction, and the initiatives required to migrate to the desired future context. Leverage organization architecture building blocks and components, including externally provided services and related capabilities to enable nimble, reliable and efficient response to strategic objectives.

  • Statement of the purpose of the process: Align strategic IT plans with business objectives. Clearly communicate the objectives and associated accountabilities so they are understood by all, with the IT strategic options identified, structured and integrated with the business plans.

APO06: Manage budget and costs

  • Description of the process: Manage the IT-related financial activities in both the business and IT functions, covering budget, cost and benefit management, and prioritization of spending through the use of formal budgeting practices and a fair and equitable system of allocating costs to the organization. Consult stakeholders to identify and control the total costs and benefits within the context of the IT strategic and tactical plans, and initiate corrective action where needed.

  • Statement of the purpose of the process: Foster partnership between IT and organization stakeholders to enable the effective and efficient use of IT-related resources and provide transparency and accountability of the cost and business value of solutions and services. Enable the organization to make informed decisions regarding the use of IT solutions and services.

APO08: Manage relationships

  • Description of the process: Manage the relationship between the business and IT in a formalized and transparent way that ensures a focus on achieving a common and shared goal of successful organization outcomes in support of strategic goals and within the constraint of budgets and risk tolerance. Base the relationship on mutual trust, using open and understandable terms and common language and a willingness to take ownership and accountability for key decisions.

  • Statement of the purpose of the process: Create improved outcomes, increased confidence, trust in IT and effective use of resources.

BAI02: Manage requirements definition

  • Description of the process: Identify solutions and analyze requirements before acquisition or creation to ensure that they are in line with organization strategic requirements covering business processes, applications, information/data, infrastructure and services. Co-ordinate with affected stakeholders the review of feasible options including relative costs and benefits, risk analysis, and approval of requirements and proposed solutions.

  • Statement of the purpose of the process: Create feasible optimal solutions that meet organization needs while minimizing risk.

BAI03: Manage solutions identification and build

  • Description of the process: Establish and maintain identified solutions in line with organization requirements covering design, development, procurement/sourcing and partnering with suppliers/vendors. Manage configuration, test preparation, testing, requirements management and maintenance of business processes, applications, information/data, infrastructure and services.

  • Statement of the purpose of the process: Establish timely and cost-effective solutions capable of supporting organization strategic and operational objectives.

A.3 Level 3

EDM01: Ensure governance framework setting and maintenance

  • Description of the process: Analyze and articulate the requirements for the IT governance of the organization, and put in place and maintain effective enabling structures, principles, processes and practices, with clarity of responsibilities and authority to achieve the organization’s mission, goals and objectives.

  • Statement of the purpose of the process: Provide a consistent approach integrated and aligned with the organization governance approach. To ensure that IT-related decisions are made in line with the organization’s strategies and objectives, ensure that IT-related processes are overseen effectively and transparently, compliance with legal and regulatory requirements is confirmed, and the governance requirements for board members are met.

EDM02: Ensure benefits delivery

  • Description of the process: Optimize the value contribution to the business from the business processes, IT services and IT assets resulting from investments made by IT at acceptable costs.

  • Statement of the purpose of the process: Secure optimal value from IT-enabled initiatives, services and assets; cost-efficient delivery of solutions and services; and a reliable and accurate picture of costs and likely benefits so that business needs are supported effectively and efficiently.

EDM05: Ensure stakeholder transparency

  • Description of the process: Ensure that organization IT performance and conformance measurement and reporting are transparent, with stakeholders approving the goals and metrics and the necessary remedial actions.

  • Statement of the purpose of the process: Make sure that the communication to stakeholders is effective and timely and the basis for reporting is established to increase performance, identify areas for improvement, and confirm that IT-related objectives and strategies are in line with the strategy of the organization.

MEA03: Monitor, evaluate and assess compliance with external requirements

  • Description of the process: Evaluate that IT processes and IT-supported business processes are compliant with laws, regulations and contractual requirements. Obtain assurance that the requirements have been identified and complied with, and integrate IT compliance with overall organization compliance.

  • Statement of the purpose of the process: Ensure that the organization is compliant with all applicable external requirements.

A.4 Level 4

MEA01: Monitor, evaluate and assess performance and conformance

  • Description of the process: Collect, validate and evaluate business, IT and process goals and metrics. Monitor that processes are performing against agreed-on performance and conformance goals and metrics and provide reporting that is systematic and timely.

  • Statement of the purpose of the process: Provide transparency of performance and conformance and drive achievement of goals.

A.5 Level 5

EDM03: Ensure risk optimization

  • Description of the process: Ensure that the organization’s risk appetite and tolerance are understood, articulated and communicated, and that risk to organization value related to the use of IT is identified and managed.

  • Statement of the purpose of the process: Ensure that IT-related organization risk does not exceed risk appetite and risk tolerance, the impact of IT risk to organization value is identified and managed, and the potential for compliance failures is minimized.

EDM04: Ensure resource optimization

  • Description of the process: Ensure that adequate and sufficient IT-related capabilities (people, process and technology) are available to support organization objectives effectively at optimal cost.

  • Statement of the purpose of the process: Ensure that the resource needs of the organization are met in the optimal manner, IT costs are optimized, and there is an increased likelihood of benefit realization and readiness for future change.

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Patón-Romero, J.D., Rodríguez, M., Piattini, M. (2017). A SPICE-Based Maturity Model for the Governance and Management of Green IT. In: Mas, A., Mesquida, A., O'Connor, R., Rout, T., Dorling, A. (eds) Software Process Improvement and Capability Determination. SPICE 2017. Communications in Computer and Information Science, vol 770. Springer, Cham. https://doi.org/10.1007/978-3-319-67383-7_11

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-67383-7_11

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-67382-0

  • Online ISBN: 978-3-319-67383-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation