What is the primary objective of ITIL?

The primary objective of ITIL is to align IT services with business objectives through a set of best-practice guidelines for IT Service Management (ITSM). ITIL 4's Service Value System (SVS) drives value co-creation via guiding principles, governance, the Service Value Chain with six activities (Plan, Improve, Engage, Design & Transition, Obtain/Build, Deliver & Support), 34 practices (14 general management, 17 service management, 3 technical management), and continual improvement.

Who is legally or professionally required to comply with ITIL?

No organizations are legally required to comply with ITIL, as it is a voluntary best-practices framework for ITSM rather than a mandatory regulation. Professionally, IT leaders, service managers, and ITSM practitioners in enterprises adopt it for alignment, with 87% global IT organization usage; certifications via PeopleCert (Foundation to Strategic Leader) are recommended for roles like Service Owner and Process Owner.

Does ITIL require an external audit or third-party certification?

ITIL does not require external audits or third-party certification, being a flexible framework of guidelines rather than a certifiable standard. Organizations may pursue ISO/IEC 20000 certification, which aligns with ITIL practices, but ITIL itself focuses on internal adoption through assessments, tailored practices, and PeopleCert credentials like ITIL 4 Foundation.

How often should an assessment for ITIL be performed?

ITIL assessments should be performed continually as part of the SVS's continual improvement model, with formal gap analyses conducted during initial implementation and periodically thereafter. The seven-step Continual Service Improvement (CSI) process from ITIL v3, evolved in ITIL 4, mandates ongoing measurement of KPIs like incident resolution times and change success rates.

What are the consequences of non-compliance with ITIL?

There are no legal consequences for non-compliance with ITIL, as it imposes no regulatory penalties. Organizations risk operational inefficiencies, such as increased downtime, higher costs, and misaligned IT services; adopters report benefits like 38:1 ROI (DISA case) and 20% faster incident resolution, while non-adopters face challenges like poor business alignment.

An ITIL be mapped to other international frameworks?

Yes, ITIL can be mapped to other international frameworks through its flexible practices and SVS alignment. ITIL 4 integrates with Agile, DevOps, Lean, and Site Reliability Engineering (SRE), with historical ties to ISO/IEC 20000; mappings support hybrid models for high-velocity IT without mandating full replacement.

What is the first step to begin implementing ITIL?

The first step to implement ITIL is Project Preparation, securing executive sponsorship and defining scope via the ten-step roadmap. This includes developing a business case, conducting an ITIL assessment for gap analysis, and applying the guiding principle "Start Where You Are" to leverage existing processes before role definition and phased practice adoption.

What is the primary objective of EN 1090?

EN 1090 ensures controlled execution and conformity assessment of structural steel and aluminium components for CE marking under the Construction Products Regulation (CPR). It comprises EN 1090-1 for conformity assessment via certified Factory Production Control (FPC) and Declaration of Performance (DoP), EN 1090-2 for steel technical requirements (welding, tolerances, inspection), and EN 1090-3 for aluminium. Risk-based Execution Classes (EXC1–EXC4) scale requirements by consequence class (CC1–CC3), service category (SC1–SC2), and production category (PC1–PC2).

Who is legally or professionally required to comply with EN 1090?

Manufacturers of load-bearing steel and aluminium structural components and kits for permanent incorporation in EU construction works must comply with EN 1090 to affix CE marking. This includes fabricators, welding shops, and suppliers to construction projects like buildings, bridges, and stadia. Non-compliance bars market access in the EEA.

Oes EN 1090 require an external audit or third-party certification?

Yes, EN 1090-1 mandates certification of the FPC system by a Notified Body via AVCP systems, including initial inspection, ITT/ITC review, and certificate issuance. Ongoing surveillance audits ensure constancy of performance; certification enables legal CE marking and DoP issuance.

How often should an assessment for EN 1090 be performed?

FPC surveillance audits by Notified Bodies occur at intervals of one to three years, scaled by Execution Class (EXC1–EXC4) per EN 1090-1 Table B.3. Manufacturers must conduct internal audits continuously, with full reassessments triggered by major changes, non-conformities, or certificate conditions.

What are the consequences of non-compliance with EN 1090?

Non-compliance prevents CE marking, blocking EEA market access and risking product withdrawal, fines, and liability under CPR. Notified Bodies may suspend/revoke FPC certificates for major non-conformities, publicizing status; structural failures expose manufacturers to civil claims and reputational damage.

An EN 1090 be mapped to other international frameworks?

EN 1090 integrates with standards like ISO 3834 for welding quality, but no formal mappings to unrelated frameworks are specified. It aligns internally with Eurocodes for design and focuses solely on execution/conformity; organizations adapt FPC using ISO 9001 as a base where applicable.

What is the first step to begin implementing EN 1090?

Conduct a product scope assessment to confirm EN 1090 applicability and determine Execution Class (EXC) via CC/SC/PC matrix. Default to EXC2 if unspecified, then perform gap analysis against FPC requirements before Notified Body engagement.

Standards Comparison

ITIL vs EN 1090

ITIL

Voluntary

2019

Best-practices framework for IT service management

EN 1090

Mandatory

2009

EU standard for execution and CE marking of steel/aluminium structures

Quick Verdict

ITIL provides flexible ITSM best practices for global IT organizations to align services with business goals, while EN 1090 mandates CE marking conformity for EU steel/aluminium fabricators to ensure structural safety and market access.

IT Service Management

ITIL

ITIL 4 IT Service Management Framework

Cost

€€€

Complexity

High

Implementation Time

12-18 months

Key Features

Service Value System for holistic value co-creation
34 flexible practices across three management categories
Seven guiding principles enabling iterative progress
Four dimensions ensuring balanced service management
Continual improvement model embedded in all activities

Structural Metalwork

EN 1090

EN 1090 Execution of steel and aluminium structures

Cost

€€€€

Complexity

High

Implementation Time

6-12 months

Key Features

Risk-based Execution Classes EXC1-EXC4
Factory Production Control FPC certification
CE marking with Notified Body oversight
Welding quality via ISO 3834 alignment
Materials and processes full traceability

Detailed Analysis

A comprehensive look at the specific requirements, scope, and impact of each standard.

ITIL Details

What It Is

ITIL 4 is a standalone framework (formerly Information Technology Infrastructure Library) of best practices for IT Service Management (ITSM). Its primary purpose is aligning IT services with business objectives via a flexible, value-driven Service Value System (SVS) approach, evolved from 1980s UK government origins to support modern digital transformation.

Key Components

**SVSGuiding principles, governance, service value chain (6 activities), 34 practices, continual improvement.
Practices: 14 general, 17 service (e.g., incident, change), 3 technical.
7 Guiding Principles (e.g., Focus on Value, Progress Iteratively).
**4 DimensionsOrganizations/people, information/technology, partners/suppliers, value streams/processes.
PeopleCert-managed certifications (Foundation to Strategic Leader).

Why Organizations Use It

Drives cost savings, 87% adoption for quality/alignment, risk mitigation ($3M+ breaches), 20% faster resolutions, DevOps integration. Builds stakeholder trust, ROI (10:1-38:1), competitive edge in hybrid environments.

Implementation Overview

Phased 10-step roadmap: assessment, gap analysis, role definition, training, tool integration (e.g., CMDB). Tailored for all sizes/industries; 12-18 months typical. Voluntary, aligns ISO 20000; certifications recommended.

EN 1090 Details

What It Is

EN 1090 is the harmonized European standard family (EN 1090-1, -2, -3) for execution and conformity assessment of structural steel and aluminium components under the Construction Products Regulation (CPR). It ensures safe fabrication, assembly, and market placement via CE marking. Adopts a risk-based methodology through Execution Classes (EXC1–EXC4) scaling requirements by failure consequence, service, and production categories.

Key Components

**Factory Production Control (FPC)Certified internal system for traceability, inspection, and processes.
Technical rules (EN 1090-2/-3): Materials, welding (ISO 3834), tolerances, corrosion protection, NDT.
**AVCP systemsNotified Body certification, ITT/ITC, ongoing surveillance.
Declaration of Performance (DoP) and CE marking.

Why Organizations Use It

Mandatory for EU/EEA market access.
Mitigates liability, reduces rework, enables high-risk projects.
Builds stakeholder trust, competitive edge in tenders.

Implementation Overview

Phased: Gap analysis, FPC build, training, NB audits.
Applies to fabricators; 3-12 months typical; requires surveillance.

Key Differences

Aspect	ITIL	EN 1090
Scope	IT Service Management best practices, 34 practices, SVS	Structural steel/aluminium execution, conformity assessment
Industry	Global IT organizations, all sizes, ITSM focus	EU construction, steel/aluminium fabricators
Nature	Voluntary framework, certifications available	Mandatory harmonized standard for CE marking
Testing	Self-assessments, certifications, continual improvement	FPC certification, NB audits, surveillance
Penalties	No legal penalties, loss of certification	Market exclusion, fines, legal liability

Scope

ITIL

IT Service Management best practices, 34 practices, SVS

EN 1090

Structural steel/aluminium execution, conformity assessment

Industry

ITIL

Global IT organizations, all sizes, ITSM focus

EN 1090

EU construction, steel/aluminium fabricators

Nature

ITIL

Voluntary framework, certifications available

EN 1090

Mandatory harmonized standard for CE marking

Testing

ITIL

Self-assessments, certifications, continual improvement

EN 1090

FPC certification, NB audits, surveillance

Penalties

ITIL

No legal penalties, loss of certification

EN 1090

Market exclusion, fines, legal liability

Frequently Asked Questions

Common questions about ITIL and EN 1090

ITIL FAQ

EN 1090 FAQ

You Might also be Interested in These Articles...

SOC 2 for Fintech Startups: First 5 Steps to Compliance with Confidentiality Criterion Infographic

First 5 steps to SOC 2 compliance with Confidentiality for fintech SaaS. Infographic maps controls to risks like encryption & TPRM. Integrates GLBA/PCI DSS over

The NIS2 "FTE Trap": Why 5 Analysts for 24/7 Security is Actually 8 (and Why the Board Needs to Know)

Exposed: NIS2 FTE Trap math shows 5 analysts fail 24/7 coverage due to sickness, training, leave & 2026 churn. Line-by-line breakdown for compliance. Alert your

Real-World ISO 27701 Success: Synthesized Case Studies, Metrics, and Lessons for Privacy Resilience

Real-world ISO 27701 success from Tribeca, Kocho: DSAR efficiency gains, risk score reductions, certification ROI. Synthesized metrics prove privacy resilience

Run Maturity Assessments with GRADUM

Transform your compliance journey with our AI-powered assessment platform

Assess your organization's maturity across multiple standards and regulations including ISO 27001, DORA, NIS2, NIST, GDPR, and hundreds more. Get actionable insights and track your progress with collaborative, AI-powered evaluations.

100+ Standards & Regulations

AI-Powered Insights

Collaborative Assessments

Actionable Recommendations

Explore More Comparisons

See how ITIL and EN 1090 compare against other standards

Other ITIL Comparisons

Other EN 1090 Comparisons

What It Is

Key Components

**SVSGuiding principles, governance, service value chain (6 activities), 34 practices, continual improvement.

Practices: 14 general, 17 service (e.g., incident, change), 3 technical.

7 Guiding Principles (e.g., Focus on Value, Progress Iteratively).

**4 DimensionsOrganizations/people, information/technology, partners/suppliers, value streams/processes.

PeopleCert-managed certifications (Foundation to Strategic Leader).

What It Is

Key Components

**Factory Production Control (FPC)Certified internal system for traceability, inspection, and processes.

Technical rules (EN 1090-2/-3): Materials, welding (ISO 3834), tolerances, corrosion protection, NDT.

**AVCP systemsNotified Body certification, ITT/ITC, ongoing surveillance.

Declaration of Performance (DoP) and CE marking.

Aspect

ITIL

EN 1090

Scope

IT Service Management best practices, 34 practices, SVS

Structural steel/aluminium execution, conformity assessment

Industry

Global IT organizations, all sizes, ITSM focus

EU construction, steel/aluminium fabricators

Nature

Voluntary framework, certifications available

Mandatory harmonized standard for CE marking

Testing

Self-assessments, certifications, continual improvement

FPC certification, NB audits, surveillance

Penalties

No legal penalties, loss of certification

Market exclusion, fines, legal liability