Which TWO of the following are consequences of neglecting one of the four dimensions?
Fixing issues later can be costly.
Why this answer
Neglecting a dimension can lead to service quality issues and inefficiencies.
1040 questions total · 14pages · All types, answers revealed
Which TWO of the following are consequences of neglecting one of the four dimensions?
Fixing issues later can be costly.
Why this answer
Neglecting a dimension can lead to service quality issues and inefficiencies.
An organisation's IT service desk is receiving a high volume of calls about users being unable to log in to the payroll system following a scheduled maintenance window. According to ITIL 4, what type of record should be raised?
An unplanned interruption or degradation of an IT service is an incident. The immediate goal is service restoration.
Why this answer
Option B is correct because an unplanned interruption to a service is an incident. Even though it occurred after maintenance, users are now unable to access the service, which constitutes a loss of service — the definition of an incident. Option A is wrong because a problem is the underlying cause of incidents, which is investigated after incidents are logged.
Option C is wrong because a change request is used to modify IT infrastructure, not to record service disruptions. Option D is wrong because a service request is for pre-approved, routine fulfilments.
An IT service desk analyst receives a call that users cannot access the CRM system. According to ITIL 4, what should they do FIRST?
The immediate action is to log and categorize the incident to initiate the resolution process.
Why this answer
The first step in Incident Management is to log and categorize the incident. This ensures that the issue is recorded and can be properly prioritized and escalated. Option A is incorrect because root cause analysis belongs to Problem Management, which occurs after incidents are logged.
Option C is incorrect because a change request would be appropriate only after a solution is identified. Option D is incorrect because service requests are for pre-approved, routine needs.
An organization wants to implement a new CRM system. According to ITIL 4, which type of change would this typically be considered?
Normal changes go through a defined approval process.
Why this answer
New system implementations are significant and require approval, typically via a normal change.
An organization wants to improve customer satisfaction when users contact the service desk. Which metric is most appropriate to measure?
Correct. CSAT directly measures user satisfaction.
Why this answer
CSAT (Customer Satisfaction) directly measures user satisfaction with service desk interactions.
In ITIL 4, which practice is primarily responsible for managing the lifecycle of all IT assets?
Correct. ITAM manages the entire lifecycle of assets.
Why this answer
IT Asset Management (ITAM) manages the lifecycle of IT assets from acquisition to disposal.
Which THREE of the following are typical risks that can be transferred from a service consumer to a service provider when using a cloud-based email service?
The provider manages the hardware.
Why this answer
Hardware failure, software licensing, and security breaches are risks transferred. User training and internet connectivity remain the consumer's responsibility.
According to ITIL 4, which of the following is NOT one of the four dimensions of service management?
Governance is a component of the Service Value System, not a dimension.
Why this answer
The four dimensions are Organizations and People, Information and Technology, Partners and Suppliers, and Value Streams and Processes. Governance is part of the Service Value System but not a dimension.
A company is designing a new service and wants to ensure that all IT services are described in a consistent manner. Which practice provides the framework for documenting service descriptions, including their functional and operational characteristics?
Service Catalog Management ensures the service catalog contains accurate and consistent information about all services.
Why this answer
Service Catalog Management is the correct practice because it provides the single source of consistent information on all agreed services, ensuring that every service is described with its functional and operational characteristics in a standardized format. This practice defines the service catalog structure, which includes service descriptions, service level agreements, and operational details, enabling consistent documentation across the IT organization.
Exam trap
The trap here is that candidates often confuse Service Catalog Management with Service Configuration Management, thinking that documenting service characteristics is about managing configuration items, but the key distinction is that the catalog describes the service as a product, while configuration management tracks the underlying components.
How to eliminate wrong answers
Option B (Service Configuration Management) is wrong because it focuses on managing the configuration items (CIs) that support services, not on documenting the service descriptions themselves; it deals with relationships and attributes of CIs, not the functional/operational characteristics of services. Option C (Service Level Management) is wrong because it is concerned with negotiating, agreeing, and monitoring service level targets, not with the consistent documentation of service descriptions; it uses service descriptions but does not provide the framework for creating them. Option D (IT Asset Management) is wrong because it manages the lifecycle of tangible and intangible assets (e.g., hardware, software licenses), not the documentation of service characteristics; it tracks financial and contractual aspects, not functional or operational service details.
A service desk wants to improve first contact resolution (FCR) rate. Which practice should be primarily involved in defining and monitoring this metric?
FCR is a key performance indicator for the service desk.
Why this answer
Service Desk practice is responsible for FCR and other service desk metrics.
In ITIL 4, what is defined as 'a means of enabling value co-creation by facilitating outcomes that customers want to achieve, without the customer having to manage specific costs and risks'?
This matches the ITIL 4 definition of a service.
Why this answer
This is the ITIL 4 definition of a service. A service enables value co-creation by helping customers achieve outcomes while managing costs and risks.
A user requests a new laptop because their current one is slow. The IT department has a standard procedure for laptop replacements. According to ITIL 4, what type of request is this?
Service requests are for routine, pre-approved requests like hardware replacements.
Why this answer
Option C is correct because a service request is a pre-defined, standard request. Option A is wrong because an incident is an unplanned disruption. Option B is a change; but standard changes are pre-approved, and this request is a standard service request, not a change.
Option D is a problem.
Which ITIL guiding principle states that services should be treated as complex systems where changes in one area can affect the whole?
Correct. This principle recognizes services as complex systems.
Why this answer
Think and work holistically emphasizes the interconnectedness of components.
Which type of change is typically pre-approved and follows a predefined procedure?
Correct. Standard changes are pre-approved and follow a predefined procedure.
Why this answer
Standard changes are pre-approved and follow a predefined procedure because they are low-risk, routine, and well-understood. ITIL 4 defines a standard change as one that is implemented through a documented, repeatable process, such as applying a security patch or provisioning a new user account, without requiring additional authorization each time.
Exam trap
The trap here is that candidates confuse a service request with a standard change, but ITIL 4 explicitly separates them: service requests are for predefined user needs (e.g., password reset), while standard changes are for predefined infrastructure or application modifications.
How to eliminate wrong answers
Option A is wrong because a normal change requires assessment and approval from the Change Authority before implementation, as it involves moderate to high risk and does not follow a predefined procedure. Option B is wrong because an emergency change is implemented urgently to resolve a major incident or security breach, but it still requires expedited approval and is not pre-approved. Option C is wrong because a service request is a formal request from a user for something like information or access, which may follow a predefined procedure but is not a type of change; it is handled through the service request management process, not change management.
A company is implementing a new IT service to support its customer relationship management (CRM) system. The service owner wants to ensure that the service is designed to meet customer needs and deliver value. According to the ITIL Service Value System, which guiding principle should be applied first?
This principle ensures that the service is designed to deliver value to customers and stakeholders, which is the primary goal.
Why this answer
The 'Focus on value' guiding principle is the correct first step because the service owner must define what value means for the CRM system's customers and stakeholders before any design or implementation begins. In ITIL 4, value is co-created with customers, and all other activities—such as iterative progress, simplification, or leveraging existing assets—must be aligned to that value definition. Without first establishing the desired outcomes and value, subsequent decisions risk delivering a technically sound service that fails to meet business needs.
Exam trap
The trap here is that candidates often choose 'Start where you are' because they assume reusing existing CRM components is the most efficient first step, but ITIL 4 emphasizes that value definition must precede any assessment of current state to avoid optimizing for the wrong outcomes.
How to eliminate wrong answers
Option A is wrong because 'Progress iteratively with feedback' is an operational principle that guides how work is done after value objectives are set; applying it first would risk iterating on the wrong requirements without a clear value target. Option B is wrong because 'Keep it simple and practical' addresses solution complexity but assumes the value goals are already understood; starting with simplification before defining value can lead to a minimal service that doesn't deliver the required business outcomes. Option C is wrong because 'Start where you are' focuses on leveraging existing processes and technologies, but without first identifying the value to be delivered, the service owner might reuse components that are misaligned with customer needs, wasting effort on non-value-adding assets.
A change request to replace a server is categorized as a 'standard change'. What does this mean?
Standard changes are well-understood, low-risk, and pre-authorized.
Why this answer
A standard change is pre-approved and follows a low-risk, predefined procedure. Option B is correct. Option A describes a normal change.
Option C describes an emergency change. Option D is incorrect because standard changes still require assessment but are pre-authorized.
An organization is implementing a new IT service. They have purchased software from a vendor, trained their staff, and designed workflows. However, they have not defined how data will be secured and stored. Which ITIL 4 dimension is being neglected?
Data security and storage are key concerns of this dimension.
Why this answer
Data and information security are part of the Information and Technology dimension.
A user requests a new laptop because their current one is slow. After investigation, the service desk determines the laptop is under warranty and a replacement can be ordered. According to ITIL 4, how should this request be classified?
Service requests are pre-approved and typically involve standard changes.
Why this answer
This is a service request because it is a pre-defined, pre-approved request for a new laptop (fulfillment of a standard change). It is not an incident because the laptop is still functional, just slow.
An IT service desk analyst receives a call that users cannot access the CRM system. What should they do FIRST?
Incident Management focuses on restoring normal service operation.
Why this answer
Option B is correct because restoring service as quickly as possible is the primary goal of Incident Management. Option A is the function of Problem Management (find root cause). Option C is a Service Request.
Option D is a Change Request, which may come later.
Which THREE of the following are dimensions of service management?
Partners and suppliers is a dimension.
Why this answer
Partners and suppliers is a correct dimension because ITIL 4 defines it as one of the four dimensions of service management, covering relationships with external organizations that provide services or components. This dimension ensures that dependencies on third parties are managed to maintain service quality and continuity.
Exam trap
The trap here is that candidates often confuse operational processes or functional areas (like finance or security) with the four core dimensions, leading them to select options that are not part of the ITIL 4 framework.
A service provider is planning to implement a new IT service management tool. The project manager insists on a phased rollout with feedback after each phase. Which guiding principle is the project manager applying?
Correct. Phased rollout with feedback loops is a clear example of progressing iteratively with feedback.
Why this answer
The project manager is applying the 'Progress iteratively with feedback' guiding principle by breaking the rollout into phases and incorporating feedback after each phase. This approach allows the service provider to validate each step, adjust based on real-world results, and reduce the risk of large-scale failure in the IT service management tool implementation.
Exam trap
The trap here is that candidates may confuse 'Progress iteratively with feedback' with 'Start where you are' because both involve assessing the current state, but the key distinction is the explicit emphasis on phased rollout and feedback loops versus leveraging existing assets.
How to eliminate wrong answers
Option A is wrong because 'Think and work holistically' focuses on understanding the entire system and its interdependencies, not on phased delivery with feedback loops. Option B is wrong because 'Start where you are' emphasizes leveraging existing processes and tools rather than implementing a new tool in stages. Option D is wrong because 'Focus on value' prioritizes delivering outcomes that matter to stakeholders, but does not specifically address the iterative, feedback-driven rollout method described.
A company's IT service desk is experiencing high turnover. According to ITIL 4, which dimension should be reviewed to address this issue?
High turnover relates to culture, roles, and skills.
Why this answer
High turnover is a people issue, part of the Organisations and People dimension.
Which ITIL 4 concept describes the idea that value is created jointly by the service provider and service consumer?
Value co-creation is the joint activity of provider and consumer to create value.
Why this answer
Value co-creation is the concept that value is created through the active participation of both provider and consumer.
Which of the following is a component of the ITIL 4 Service Value System?
Guiding principles are a component of SVS.
Why this answer
The ITIL 4 Service Value System (SVS) is a holistic framework that describes how all components and activities of an organization work together to facilitate value creation. The Guiding Principles are a core component of the SVS, providing universal recommendations that guide an organization in all its work, regardless of changes in its goals, strategies, or management approaches.
Exam trap
The trap here is that candidates often confuse operational components (like the Service Desk or CMDB) with the high-level, structural components of the SVS, leading them to select a tangible tool or document instead of the abstract Guiding Principles.
How to eliminate wrong answers
Option A is wrong because a Configuration Management Database (CMDB) is a tool used within the Service Configuration Management practice, not a component of the ITIL 4 Service Value System; the SVS comprises the Guiding Principles, Governance, Service Value Chain, Practices, and Continual Improvement. Option B is wrong because Service Level Agreements (SLAs) are outputs of the Service Level Management practice, not a structural component of the SVS; they are agreements, not foundational elements. Option C is wrong because the Service Desk is a functional capability within the Service Desk practice, not a component of the SVS; the SVS is a high-level operating model, not a specific support function.
Which TWO of the following are true about a service request?
Correct. Service requests are typically predefined.
Why this answer
Option A is correct because a service request is defined as a standardized, pre-defined request from a user for something that is already approved as part of normal service delivery. ITIL 4 states that service requests are typically low-risk, frequently recurring, and do not require additional authorization because they are pre-approved by the service provider. This allows for efficient fulfillment without the need for a formal change approval process.
Exam trap
The trap here is that candidates often confuse a service request with an incident or a change, mistakenly thinking that all user requests require formal approval or are caused by errors, when in fact service requests are predefined, low-risk, and pre-approved by design.
Which THREE of the following are consequences of neglecting the Partners and Suppliers dimension in service management?
Poor partner management can cause disputes.
Why this answer
Neglecting partners and suppliers can lead to dependency risks, contract disputes, and supply chain issues. Option C is a consequence of neglecting People dimension, and Option D is from Information and Technology.
A change request to upgrade the email server is assessed and authorized by the Change Advisory Board (CAB). After testing, it is scheduled for the next weekend. What type of change is this?
Correct: A normal change follows the full assessment and authorization process.
Why this answer
Normal changes require assessment and authorization by the CAB, unlike standard (pre-approved) or emergency (urgent) changes.
An organization decides to outsource its IT support to reduce operational costs. Which ITIL 4 concept best describes the costs that the organization transfers to the service provider?
Costs transferred to the provider are removed from the consumer's responsibility.
Why this answer
When using a service, the consumer may transfer certain costs (like IT infrastructure costs) to the provider. These are costs removed from the consumer. The option that says 'costs removed from the consumer' correctly reflects this transfer.
A company wants to automate password resets to reduce service desk workload. According to ITIL 4, which guiding principle should they apply FIRST?
This principle directly addresses reducing manual work and using automation to free people for more complex tasks.
Why this answer
The 'Optimise and automate' guiding principle is the correct first choice because the scenario explicitly targets reducing service desk workload through automation of password resets. ITIL 4 directs that automation should only be applied after the process has been optimized; otherwise, you risk automating inefficiencies. This principle ensures that the password reset workflow is streamlined and validated before implementing any self-service or automated tool, such as an identity management system with Active Directory integration.
Exam trap
The trap here is that candidates often pick 'Focus on value' because they think reducing workload is about delivering value, but ITIL 4 specifically requires optimization before automation to ensure the automated process is efficient and not just a faster version of a flawed manual process.
How to eliminate wrong answers
Option A is wrong because 'Collaborate and promote visibility' focuses on stakeholder communication and transparency, not on the technical decision to automate a specific process. Option C is wrong because 'Focus on value' ensures the service delivers business outcomes, but it does not provide the immediate technical guidance for deciding whether to automate password resets. Option D is wrong because 'Keep it simple and practical' advocates for minimal complexity, but it does not address the sequential need to optimize a process before automating it, which is the core technical requirement here.
A company wants to improve its incident resolution time. Which practice would be most relevant to analyze recurring incidents and identify underlying causes?
Problem Management identifies root causes and can lead to permanent fixes that reduce incident recurrence.
Why this answer
Problem Management is the ITIL practice specifically designed to analyze recurring incidents by performing root cause analysis (RCA) and identifying underlying causes. By using techniques such as trend analysis, Kepner-Tregoe, or 5 Whys, Problem Management proactively reduces incident volume and resolution time, directly addressing the company's goal.
Exam trap
The trap here is confusing Incident Management (which restores service quickly) with Problem Management (which finds and fixes root causes), leading candidates to pick Incident Management because they focus on 'resolution time' rather than 'analyzing recurring incidents.'
How to eliminate wrong answers
Option B (Continual Improvement) is wrong because it focuses on overall service improvement through the CSI approach (Plan-Do-Check-Act) and does not specialize in analyzing recurring incidents or performing root cause analysis. Option C (Incident Management) is wrong because its primary goal is to restore normal service operation as quickly as possible, not to investigate underlying causes; it handles symptoms, not root causes. Option D (Change Enablement) is wrong because it manages the lifecycle of changes (RFCs, CAB approvals) to minimize risk, not to analyze incident patterns or identify root causes.
A service desk receives multiple reports of a recurring network issue. Analysts restore service each time by rebooting a router. According to ITIL 4, what should happen next?
Recurring incidents indicate a problem; root cause analysis is needed.
Why this answer
Since incidents recur, a problem record should be raised to find the root cause and prevent recurrence. Rebooting restores service but doesn't address the underlying cause.
A user contacts the service desk to request a new laptop because their current one is broken. The service desk analyst creates a ticket and arranges for a replacement. According to ITIL 4, what type of record should be raised?
The user is requesting a standard item (replacement laptop) that is pre-approved and can be fulfilled via a service request.
Why this answer
This is a service request because it is a pre-defined, pre-approved request for a standard item (replacement laptop for a broken one).
An organization has implemented a new CRM system. The project team delivers the system on time and within budget, but end-users find it difficult to use and productivity drops. Which statement best describes this situation in terms of ITIL 4 concepts?
The system was delivered (output), but the result for users was poor (negative outcome).
Why this answer
In ITIL 4, 'output' refers to the tangible deliverable (the CRM system delivered on time and within budget), while 'outcome' refers to the actual business value or result achieved (improved productivity and user satisfaction). Here, the output succeeded, but the outcome was negative because users found the system difficult to use and productivity dropped. This aligns with option B.
Exam trap
The trap here is that candidates often confuse 'output' with 'outcome' and assume that delivering a project on time and within budget automatically means success, ignoring the critical ITIL 4 principle that value is only realized when the service is actually used effectively by the customer.
How to eliminate wrong answers
Option A is wrong because it claims both output and outcome failed, but the output (delivering the CRM system on time and within budget) clearly succeeded. Option C is wrong because it claims both were successful, but the outcome was negative due to the drop in productivity and user difficulty. Option D is wrong because it claims the outcome was successful while the output failed, but the output succeeded and the outcome failed.
According to ITIL 4, which practice is responsible for ensuring that services are available as agreed with the customer?
Availability Management is responsible for ensuring services are available as agreed.
Why this answer
Availability Management ensures that services are available as agreed, managing planned and unplanned downtime.
What is the PRIMARY purpose of the Incident Management practice?
This is the primary purpose of Incident Management.
Why this answer
Incident Management aims to restore normal service operation as quickly as possible and minimize adverse impact on business operations.
A service desk team is implementing a 'shift-left' strategy. What is the PRIMARY goal of this approach?
Shift-left aims to handle issues at the service desk level, reducing escalation.
Why this answer
The primary goal of a 'shift-left' strategy in ITIL 4 is to resolve more incidents and service requests at the first point of contact (tier 0 or tier 1) without escalating to higher support levels. This reduces mean time to resolution (MTTR), lowers operational costs, and improves user satisfaction by minimizing handoffs. While automation and empathy can support shift-left, they are enablers, not the core objective.
Exam trap
The trap here is that candidates confuse the enablers (automation, empathy) with the primary goal, which is strictly about resolving incidents and requests at the first point of contact without escalation.
How to eliminate wrong answers
Option A is wrong because automating incident resolution with AI and chatbots is a tactic to enable shift-left, not its primary goal; the goal is resolution at first contact, not the tool used. Option B is wrong because logging all calls before escalation is a procedural requirement for tracking, but shift-left focuses on avoiding escalation altogether, not just logging. Option D is wrong because increasing empathy and customer satisfaction is a desired outcome of shift-left, but the primary goal is operational: resolving incidents and requests without escalation.
Which ITIL 4 guiding principle emphasizes the importance of focusing on stakeholder expectations and desired results?
This principle ensures value is central.
Why this answer
The 'Focus on value' guiding principle is correct because it directly states that all activities and services should be directed toward delivering value to stakeholders, ensuring that their expectations and desired outcomes are the primary drivers. This principle underpins the ITIL Service Value System by requiring that every decision, from service design to improvement, is evaluated against the value it creates for customers and users.
Exam trap
The trap here is that candidates often confuse 'Focus on value' with 'Start where you are' because both involve assessing current state, but 'Focus on value' is specifically about aligning with stakeholder expectations and desired results, not about leveraging existing assets.
How to eliminate wrong answers
Option A is wrong because 'Keep it simple and practical' emphasizes minimizing complexity and unnecessary steps, not specifically focusing on stakeholder expectations or desired results. Option B is wrong because 'Collaborate and promote visibility' focuses on teamwork, communication, and transparency, not directly on aligning with stakeholder value expectations. Option C is wrong because 'Start where you are' advocates for leveraging existing processes and capabilities rather than re-engineering from scratch, which does not inherently prioritize stakeholder value or desired outcomes.
In ITIL 4, which of the following is the BEST example of 'utility' in a service?
Why this answer
Utility is 'fit for purpose' – the functionality that meets a user's need. Option A describes warranty (fit for use). Option B is an outcome.
Option C is part of warranty.
An IT service provider offers a payroll processing service. The consumer avoids the cost of hiring payroll staff and buying software. These avoided costs are an example of:
The consumer no longer incurs those costs; they are transferred to the provider.
Why this answer
By using the service, the consumer transfers costs (staff, software) to the provider, which is a key benefit of using services.
A company is implementing a new IT service management tool. According to the Four Dimensions, which dimension is MOST directly concerned with the tool itself?
Why this answer
The Information and Technology dimension includes tools, data, and technology. The other dimensions cover people, partners, and processes.
A service desk analyst receives a call that users cannot access the CRM system. According to ITIL 4, what should the analyst do FIRST?
Why this answer
According to ITIL 4, when users cannot access a system like the CRM, the first priority is to restore normal service operation as quickly as possible. The analyst must log an incident (an unplanned interruption or reduction in quality) and attempt to restore service, such as by restarting the CRM application server or checking network connectivity. This aligns with the incident management practice, which focuses on minimizing impact rather than immediately investigating root causes or submitting changes.
Exam trap
The trap here is that candidates confuse incident management with problem management, assuming the first step is to find the root cause (Option B), but ITIL 4 explicitly states that incident management's primary goal is to restore service as soon as possible, not to investigate underlying causes.
How to eliminate wrong answers
Option A is wrong because submitting a change request to modify the CRM is a reactive, unauthorized action that bypasses the change control process; the immediate need is to restore service, not to alter the system. Option B is wrong because initiating a problem investigation to find the root cause is part of problem management, which occurs after service is restored or when incidents are recurring; it is not the first step during an active outage. Option C is wrong because creating a service request for user access assumes the issue is a pre-approved access request, but the symptom 'cannot access' indicates a potential system failure or connectivity problem, not a standard access request.
An organization has a change policy that requires all changes to be assessed and authorized by the Change Authority. A pre-approved change that has a low risk and follows a defined procedure is known as which type of change?
Standard changes are pre-approved, low risk, and follow a defined procedure.
Why this answer
A standard change is a pre-approved, low-risk change that follows a defined procedure, such as a password reset or server patch cycle. The ITIL 4 framework defines it as a change that does not require individual assessment or authorization by the Change Authority because its risk is well-understood and the implementation steps are documented in a standard operating procedure (SOP). This matches the description in the question exactly.
Exam trap
The trap here is that candidates confuse 'pre-approved' with 'normal change' because they think all changes need individual authorization, but ITIL 4 explicitly separates standard changes as pre-approved by definition, not requiring per-change authorization.
How to eliminate wrong answers
Option A is wrong because a normal change is any change that is not standard or emergency, and it requires assessment and authorization by the Change Authority on a case-by-case basis, not pre-approved. Option B is wrong because an emergency change is a high-risk, urgent change that must be implemented quickly to resolve a major incident or security threat, and it follows a separate expedited authorization process, not a low-risk pre-approved procedure. Option C is wrong because a service request is a formal request from a user for something to be provided (e.g., access, information), not a change to an IT service, and it is handled through the service request management process, not the change management process.
Which ITIL 4 dimension ensures that activities are coordinated to deliver value through workflows?
Why this answer
Value Streams and Processes dimension focuses on how activities work together in a sequence to create value.
How many guiding principles are defined in ITIL 4?
The 7 guiding principles are a core part of the SVS.
Why this answer
ITIL 4 defines exactly 7 guiding principles, which are universal and enduring recommendations that guide an organization in all circumstances, regardless of changes in its goals, strategies, type of work, or management structure. These principles are derived from the ITIL 4 Service Value System (SVS) and are designed to be adopted and adapted by any organization. The correct answer is A because the ITIL 4 Foundation syllabus explicitly states that there are 7 guiding principles.
Exam trap
The trap here is that candidates often confuse the 7 guiding principles with the 5 components of the Service Value System or the 34 ITIL 4 practices, leading them to select 5 or 12, respectively.
How to eliminate wrong answers
Option B (5) is wrong because ITIL 4 does not define 5 guiding principles; that number corresponds to the 5 components of the ITIL Service Value System (Governance, Service Value Chain, Practices, Continual Improvement, and Guiding Principles themselves), not the count of guiding principles. Option C (12) is wrong because 12 is the number of ITIL 4 management practices (e.g., Incident Management, Problem Management, Change Enablement), not the guiding principles. Option D (9) is wrong because 9 is not a count associated with any core ITIL 4 element; it may be confused with the 9 guiding principles from the earlier ITIL Practitioner guidance, which is not part of ITIL 4.
A project manager is planning a service improvement initiative. She decides to break the work into two-week sprints and hold a review meeting at the end of each sprint to adjust priorities. Which principal is she applying?
Working in sprints and reviewing at the end to adjust is iterative progress with feedback.
Why this answer
'Progress iteratively with feedback' is characterized by timeboxed iterations and feedback loops. The two-week sprints and review meetings are textbook examples.
An organization has a CMDB that contains information about all configuration items (CIs) and their relationships. Which practice is primarily responsible for maintaining this information?
This practice is responsible for the CMDB, CIs, and configuration baselines.
Why this answer
Service Configuration Management is responsible for maintaining the CMDB and ensuring accurate CI data. Option B is correct. Option A manages the lifecycle of assets, but the CMDB is focused on configuration.
Option C manages services. Option D manages deployments.
An IT service desk analyst receives a call that users cannot access the CRM system. What should they do FIRST according to ITIL 4?
Incidents are unplanned interruptions; first step is to log and restore.
Why this answer
The first step is to log an incident to track the disruption and begin restoration efforts.
A problem has been identified and root cause analysis is underway. According to ITIL 4, which phase of Problem Management is this?
Problem control includes root cause analysis.
Why this answer
Problem control involves root cause analysis and resolution.
Which statement correctly distinguishes between a service request and an incident?
This is the key distinction.
Why this answer
Service requests are for pre-defined, pre-approved services (standard changes or information requests), while incidents are unplanned interruptions or reductions in service quality.
A team is using the ITIL continual improvement model. After defining the vision, what is the NEXT step?
After defining vision, the next step is to assess the current state (Where are we now?).
Why this answer
The ITIL continual improvement model defines a sequence of steps: 'What is the vision?', 'Where are we now?', 'Where do we want to be?', 'How do we get there?', 'Take action', 'Did we get there?', and 'How do we keep the momentum?'. After defining the vision (step 1), the next step is to assess the current state (step 2) to establish a baseline before setting measurable targets or creating an improvement plan.
Exam trap
The trap here is that candidates often confuse the order of the ITIL continual improvement model steps, mistakenly thinking that identifying improvement opportunities or setting targets comes immediately after defining the vision, rather than assessing the current state first.
How to eliminate wrong answers
Option A is wrong because defining measurable targets occurs after assessing the current state, as you need a baseline to set meaningful targets. Option B is wrong because creating an improvement plan comes later in the model, after you have identified where you want to be and how to get there. Option C is wrong because identifying improvement opportunities is part of the 'Where do we want to be?' step, which follows the current state assessment.
Which practice is responsible for being the single point of contact (SPOC) between the service provider and users?
The service desk acts as the SPOC for users.
Why this answer
The service desk is the single point of contact for users to report incidents, submit service requests, and seek guidance.
Which THREE of the following are types of events in Monitoring and Event Management?
Informational events indicate normal operation.
Why this answer
In ITIL 4, Monitoring and Event Management categorizes events into three types: Informational, Warning, and Exception. An Informational event (Option B) is a routine notification that indicates normal operation, such as a scheduled task completion or a configuration change log entry, requiring no immediate action.
Exam trap
The trap here is that candidates often confuse event types with incident priority levels (like Emergency) or change categories (like Standard), leading them to select options that are valid in other ITIL practices but not in Monitoring and Event Management.
An organization is experiencing repeated incidents due to a software bug. The problem manager has identified the root cause and documented a known error with a workaround. According to ITIL 4, in which phase of problem management are they operating?
Error control manages known errors, including workarounds and planning permanent fixes.
Why this answer
Error control is the phase where known errors are managed, workarounds are documented, and resolution is pursued. Problem identification is the first phase, and problem control involves root cause analysis.
According to ITIL 4, what is the definition of 'utility'?
Utility is about what the service does (fit for purpose).
Why this answer
Utility refers to 'fitness for purpose'—the functionality offered by a product or service to meet a specific need.
A service provider uses customer feedback surveys to identify areas for improvement. Which SVS component ensures that improvements are systematically implemented?
Continual Improvement is the practice and component dedicated to ongoing improvement.
Why this answer
Continual Improvement is the component that ensures ongoing improvement activities are managed and implemented systematically.
Which THREE of the following are key activities of Problem Management?
Correct.
Why this answer
Problem identification (B) is a key activity of Problem Management because it involves detecting and logging problems before they cause major incidents. This proactive approach relies on analyzing incident trends, monitoring alerts, and reviewing known error data to identify underlying issues. Without problem identification, the process cannot initiate root cause analysis or create known error records.
Exam trap
The trap here is confusing the activities of Problem Management with those of Incident Management or Change Enablement, as candidates often mistakenly select 'restoring service' (an Incident Management goal) or 'authorizing changes' (a Change Enablement task) as Problem Management activities.
Which TWO of the following are key activities of Service Level Management?
Key activity.
Why this answer
Option A is correct because Service Level Management (SLM) is responsible for monitoring actual service performance against agreed targets and producing reports to demonstrate compliance or identify gaps. This activity ensures that both the service provider and the customer have visibility into whether service levels are being met, enabling informed decisions about improvements or corrective actions.
Exam trap
The trap here is that candidates confuse the monitoring and reporting activities of Service Level Management with the reactive, restoration-focused activities of Incident Management or the diagnostic work of Problem Management, leading them to select options that describe other ITIL practices.
A user requests a new software license for a standard application. The IT team processes this through a pre-defined procedure. What type of change is this?
Standard changes are pre-approved and routine.
Why this answer
Standard changes are pre-approved, low-risk, and follow a procedure.
Which type of change is pre-approved and follows a defined procedure with minimal risk?
Standard changes are pre-approved and low-risk, following a defined procedure.
Why this answer
A standard change is pre-approved by the change authority and follows a defined, low-risk procedure. It does not require a separate change advisory board (CAB) meeting for each occurrence, as its risk is well-understood and the implementation steps are documented and repeatable.
Exam trap
The trap here is that candidates confuse 'standard change' with 'normal change' because both are routine, but standard change is the only one that is pre-approved and follows a low-risk, predefined procedure without requiring a new CAB decision each time.
How to eliminate wrong answers
Option A is wrong because a normal change requires approval from the change authority (e.g., CAB) and is not pre-approved; it follows a full assessment and authorization process. Option B is wrong because an urgent change is not a recognized ITIL 4 category; the correct term for a high-priority, time-sensitive change is 'emergency change'. Option C is wrong because an emergency change is implemented urgently to resolve a major incident or critical issue, carries higher risk, and requires expedited approval (often via an emergency CAB), not pre-approval.
An organization wants to improve its incident handling. According to ITIL 4, which dimension should be addressed FIRST to ensure effective workflow?
This dimension defines the sequence of activities for incident management.
Why this answer
To ensure effective workflow in incident handling, the Value Streams and Processes dimension must be addressed first because it defines the sequence of steps, roles, and handoffs required to resolve incidents efficiently. Without a clear process workflow, other dimensions like technology or people cannot be effectively aligned to support the incident management lifecycle.
Exam trap
The trap here is that candidates often assume 'Organisations and People' is the first dimension to address because incident handling relies on skilled staff, but ITIL 4 emphasizes that process workflow must be defined before assigning people or tools to execute it.
How to eliminate wrong answers
Option A is wrong because focusing on Organizations and People first would address roles and skills, but without a defined process workflow, those roles lack a structured sequence of activities to follow. Option B is wrong because Partners and Suppliers are external entities that support specific process steps, but they cannot define or optimize the core incident workflow itself. Option C is wrong because Information and Technology provides tools and data to enable the process, but implementing technology before defining the workflow often leads to automation of inefficient or broken processes.
Which of the following BEST describes the difference between an output and an outcome in ITIL 4?
Why this answer
An output is a tangible deliverable, while an outcome is the result for stakeholders. Option B correctly distinguishes them; the others confuse the terms.
An IT team is implementing a new change management process. They decide to automate notifications and approvals to reduce delays. Which guiding principle is being applied?
This principle encourages maximizing efficiency through automation.
Why this answer
The guiding principle 'Optimize and automate' directly applies because the team is automating notifications and approvals to streamline the change management process and reduce delays. Automation of repetitive tasks like approvals removes manual bottlenecks, aligning with the principle's goal of maximizing efficiency through technology. This is not about iterative feedback, simplicity, or value definition—it's specifically about using automation to optimize workflow throughput.
Exam trap
The trap here is that candidates confuse 'automation' with 'simplicity' (Option C), not realizing that automation can introduce complexity if not preceded by optimization, and the principle explicitly pairs optimization with automation as a distinct concept.
How to eliminate wrong answers
Option A is wrong because 'Progress iteratively with feedback' focuses on incremental delivery and continuous improvement through feedback loops, not on automating existing manual steps like approvals. Option C is wrong because 'Keep it simple and practical' emphasizes minimizing complexity and avoiding over-engineering, but automating notifications and approvals does not inherently simplify—it may add technical overhead if not carefully designed. Option D is wrong because 'Focus on value' centers on ensuring every activity delivers measurable value to stakeholders, but the question describes a tactical automation decision rather than a value-driven prioritization or outcome definition.
A company provides a training service that includes course materials and instructor-led sessions. Participants gain new skills. Which two ITIL 4 concepts differentiate the deliverables from the results?
Output is what is produced; outcome is the effect on stakeholders.
Why this answer
Output is the deliverable (course materials, sessions). Outcome is the result (new skills). This question asks to differentiate them; the correct answer identifies output and outcome as the distinguishing concepts.
What is the PRIMARY purpose of the Incident Management practice?
This is the definition of Incident Management's purpose.
Why this answer
The primary purpose of Incident Management is to restore normal service operation as quickly as possible and minimize the adverse impact on business operations. This practice focuses on resolving incidents (unplanned interruptions or reductions in quality) to return the service to its agreed service level, rather than analyzing root causes or handling routine requests.
Exam trap
The trap here is confusing Incident Management with Problem Management, as both deal with incidents, but Incident Management focuses on speed of restoration, not root cause analysis.
How to eliminate wrong answers
Option A is wrong because identifying root causes and preventing recurrence is the purpose of Problem Management, not Incident Management, which deals with immediate restoration. Option C is wrong because handling predefined, pre-approved service requests is the purpose of Service Request Management, which covers standard changes and user requests, not unplanned incidents. Option D is wrong because assessing, authorizing, and scheduling changes is the purpose of Change Enablement, which manages the lifecycle of changes to IT services, not incident resolution.
A service desk agent resolves a password reset request within 5 minutes. The customer is satisfied. Which two metrics are most relevant to measure this?
FCR and CSAT are key service desk metrics.
Why this answer
First Call Resolution (FCR) measures whether the issue is resolved on the first contact, and Customer Satisfaction (CSAT) measures satisfaction. MTTR is for incidents, not service requests. Mean time between failures (MTBF) is an availability metric.
Mean time to respond is not a standard ITIL metric.
An IT service desk analyst receives a call that users cannot access the CRM system. What should they do FIRST according to ITIL 4?
The first action is to log and categorize the incident to begin the incident management process.
Why this answer
According to ITIL 4, the first action for any incident is to log and categorize it. This ensures the incident is formally recorded, prioritized, and routed correctly. Without logging, no structured resolution, escalation, or reporting can occur.
Option D is correct because it follows the ITIL 4 incident management practice's initial step.
Exam trap
The trap here is that candidates often think resolving the incident immediately (Option C) is the first priority, but ITIL 4 mandates logging and categorization before any diagnostic or resolution action to ensure process compliance and data integrity.
How to eliminate wrong answers
Option A is wrong because escalating to problem management is premature; the incident must first be logged and categorized to determine if it requires problem management. Option B is wrong because promising a fix within 24 hours violates ITIL 4's principle of providing realistic, agreed-upon service targets and may breach SLAs. Option C is wrong because attempting a workaround without first logging and categorizing the incident bypasses the required process and risks missing critical information for root cause analysis.
An IT service desk analyst receives a call that users cannot access the CRM system. According to ITIL 4, what should the analyst do FIRST?
The immediate priority is to record the incident formally.
Why this answer
The first step in Incident Management is to log the incident. The analyst should record the details of the disruption before taking any further action. Option B is correct.
Option A (assign to problem management) is premature; Option C (search known errors) may be part of investigation but after logging; Option D (send a service request) is incorrect because this is an incident.
Based on the exhibit, which statement best describes the relationship between the incident and problem reports?
Problem management identified the root cause and implemented a permanent fix (automated patch testing).
Why this answer
Option A is correct because the exhibit shows that the problem report identified a permanent resolution (e.g., a code fix or configuration change) that was implemented, which should prevent recurrence of similar incidents. In ITIL 4, a problem report leads to a known error and a permanent fix, not just a workaround, aligning with the goal of incident prevention.
Exam trap
The trap here is that candidates confuse a workaround with a permanent resolution, assuming that any fix applied to an incident is a workaround, when in fact the problem report's resolution is a permanent change that prevents future incidents.
How to eliminate wrong answers
Option B is wrong because the problem report provided a permanent resolution, not a temporary workaround; a workaround is a temporary fix to restore service, not a permanent solution. Option C is wrong because the incident was resolved by the permanent resolution from the problem report, not by a workaround; a workaround would only temporarily mitigate the incident without addressing the root cause. Option D is wrong because the incident did not cause the problem; rather, the problem was identified from multiple incidents, and the problem was closed as resolved with a permanent fix, not as a duplicate.
A service provider wants to improve customer satisfaction by reducing the time to resolve incidents. Which element of the Service Value System directly addresses the sequence of steps needed to achieve this improvement?
The service value chain is a set of interconnected activities that guide the creation and delivery of services.
Why this answer
The service value chain is the correct answer because it defines the specific sequence of interconnected activities (Plan, Improve, Engage, Design & Transition, Obtain/Build, Deliver & Support) that a service provider must perform to create and deliver value. By mapping the steps from incident logging through resolution within the 'Deliver & Support' value chain activity, the provider can identify and optimize the exact workflow needed to reduce resolution time, directly addressing the sequence of steps required for improvement.
Exam trap
The trap here is that candidates confuse 'practices' (like Incident Management) with the sequential workflow of the value chain, not realizing that practices are the capabilities used within the value chain activities, not the sequence itself.
How to eliminate wrong answers
Option B is wrong because guiding principles (e.g., 'Focus on value', 'Start where you are') are universal recommendations that guide decision-making but do not prescribe a specific sequence of steps for incident resolution. Option C is wrong because practices (e.g., Incident Management, Problem Management) are sets of organizational resources and activities, but they are not structured as a sequential workflow; the value chain orchestrates how practices are applied in order. Option D is wrong because governance refers to the framework for directing and controlling the organization through policies and objectives, not the operational sequence of steps to resolve incidents.
What is the PRIMARY purpose of the Information and Technology dimension in ITIL 4?
Correct. This dimension includes data, knowledge, and technology.
Why this answer
The Information and Technology dimension focuses on the information and technology assets—such as applications, databases, and infrastructure—that are required to deliver and manage services. Its primary purpose is to manage these assets effectively, ensuring they support the service value chain and meet agreed service levels. This includes managing the technology itself, not just the processes or people around it.
Exam trap
The trap here is that candidates often confuse the Information and Technology dimension with processes or people, mistakenly selecting options that describe other dimensions (e.g., workflows or roles) instead of recognizing that this dimension is specifically about managing the technology and information assets themselves.
How to eliminate wrong answers
Option A is wrong because designing workflows and processes is the primary focus of the Service Value System and the 'Processes' dimension, not the Information and Technology dimension. Option C is wrong because managing relationships with external suppliers is the responsibility of the 'Partners and Suppliers' dimension, not the Information and Technology dimension. Option D is wrong because defining roles and responsibilities belongs to the 'Organizations and People' dimension, which addresses culture, roles, and competencies.
A service desk analyst resolves an incident by providing a workaround from the Known Error Database. According to ITIL 4, this activity is part of which practice?
Applying a workaround to restore service is an incident management activity.
Why this answer
Using a known error workaround during incident resolution is part of Incident Management. Option B is correct. Option A is incorrect because problem control identifies the root cause; Option C is incorrect as error control is about documenting known errors; Option D is incorrect.
An IT service desk analyst receives a call that users cannot access the CRM system. What should they do FIRST according to ITIL 4?
Why this answer
The first step in Incident Management is to log the incident. All details should be captured before proceeding with triage or escalation.
Which practice involves detecting and classifying events such as informational, warning, and exception?
This practice detects and classifies events.
Why this answer
Monitoring and Event Management is responsible for detecting and classifying events. Option D is correct.
Which ITIL concept represents the perceived benefits, usefulness, and importance of something?
Value is the perceived benefits, usefulness, and importance of something.
Why this answer
In ITIL 4, value is defined as the perceived benefits, usefulness, and importance of a service or product from the stakeholder's perspective. It is a core concept that drives all service management activities, emphasizing that value is co-created through the use of services and is subjective to the consumer.
Exam trap
The trap here is that candidates often confuse 'outcome' with 'value', but an outcome is a measurable result (e.g., reduced downtime) while value is the subjective perception of that outcome's importance to the business.
How to eliminate wrong answers
Option B is wrong because cost represents the amount of money, resources, or effort spent on a service, not the perceived benefits or importance. Option C is wrong because an outcome is a result or consequence of using a service, such as increased efficiency, but it is not the perception of usefulness itself. Option D is wrong because risk refers to the possibility of loss or negative impact, which is a separate concept from the positive perception of benefits and importance.
A medium-sized e-commerce company has implemented ITIL 4 and uses the Service Value System (SVS) to manage its services. The company recently experienced a major incident where the checkout service became unavailable for two hours due to a failed deployment. The incident was resolved by rolling back the deployment. The IT manager wants to prevent similar incidents by improving the deployment practice. According to the ITIL 4 SVS, which component should the IT manager focus on to systematically improve the deployment process?
The continual improvement practice provides a structured model for identifying and implementing improvements.
Why this answer
The continual improvement practice is the correct focus because ITIL 4's SVS explicitly designates continual improvement as the mechanism for identifying and implementing systematic enhancements to processes, including deployment. In this scenario, the failed deployment caused a major incident, and the IT manager needs a structured, iterative approach to analyze root causes, define improvement objectives, and embed changes into the deployment practice. Without continual improvement, the organization lacks a formal feedback loop to prevent recurrence.
Exam trap
The trap here is that candidates often confuse the 'improve' service value chain activity (which is a step in the operational workflow) with the 'continual improvement practice' (which is the dedicated management practice for systematic improvement), leading them to incorrectly select Option D.
How to eliminate wrong answers
Option B (Governance) is wrong because governance in ITIL 4 focuses on evaluating, directing, and monitoring the overall SVS, not on the tactical improvement of a specific practice like deployment. Option C (Guiding principles) is wrong because principles such as 'focus on value' or 'start where you are' provide high-level guidance but are not a systematic component for process improvement; they inform decisions but do not drive the iterative improvement cycle. Option D (The service value chain activities) is wrong because these activities (plan, improve, engage, design & transition, obtain/build, deliver & support) represent the operational workflow, not the dedicated practice for analyzing and improving a specific process like deployment.
Practice ITIL4F by domain
Target a specific domain to shore up weak areas.