Description

This curriculum spans the full lifecycle of software asset management, equivalent in scope to a multi-phase advisory engagement, covering governance, discovery, compliance, and optimization across on-premises, cloud, and hybrid environments.

Module 1: Establishing the Software Asset Management (SAM) Foundation

Selecting and justifying a SAM tool based on integration capabilities with existing ITSM, procurement, and directory systems.
Defining ownership and accountability for SAM across IT, procurement, legal, and finance teams to avoid siloed operations.
Conducting a gap analysis between current software usage practices and ISO 19770-1 compliance requirements.
Creating a centralized software repository that includes approved publishers, license types, and version control policies.
Determining the scope of SAM coverage—whether to include cloud SaaS, on-premises, virtual environments, or development tools.
Establishing data quality rules for discovery tools to minimize false positives and ensure accurate software recognition.

Module 2: Discovery and Inventory Management

Configuring network-based and agent-based discovery tools to balance coverage, performance impact, and data accuracy.
Normalizing software titles across different publishers and versions to align with license entitlements.
Handling discovery in segmented or air-gapped networks where standard scanning methods are restricted.
Managing inventory data refresh cycles to reflect dynamic environments without overwhelming downstream processes.
Integrating discovery data with CMDB to maintain accurate configuration item relationships and dependencies.
Addressing shadow IT by identifying unauthorized SaaS applications through DNS and proxy log analysis.

Module 3: License Entitlement Management

Consolidating license contracts from multiple sources including direct vendors, resellers, and enterprise agreements.
Mapping complex licensing metrics such as core-based, processor-based, or user-based models to actual deployment data.
Tracking license mobility rights across physical and virtual environments under vendor-specific rules (e.g., Microsoft VL).
Managing license reassignment policies in response to hardware refreshes or cloud migrations.
Validating true-up obligations under volume licensing programs before submitting reports to vendors.
Handling expired, transferred, or sublicensed software rights in multi-entity or merged organizational structures.

Module 4: Compliance Risk Assessment and Reporting

Generating periodic reconciliation reports that compare installed software against entitlements by publisher and product.
Quantifying exposure risk in financial terms for unlicensed software, factoring in audit penalties and settlement history.
Defining thresholds for over- and under-licensing to trigger remediation workflows.
Producing audit-ready documentation packages that include inventory, procurement records, and deployment evidence.
Responding to vendor audit requests by validating the scope and providing only legally required data.
Using risk scoring models to prioritize remediation efforts based on vendor aggressiveness and software spend.

Module 5: Procurement Integration and Vendor Management

Embedding license review checkpoints into the procurement approval workflow for software purchases.
Negotiating license terms that support future scalability, virtualization, and cloud deployment flexibility.
Tracking purchase order data against received license keys and delivery confirmations to prevent procurement leakage.
Managing vendor consolidation initiatives that impact existing licensing agreements and downgrade rights.
Coordinating with legal to assess audit clauses, indemnification, and termination rights in software contracts.
Optimizing subscription renewals by analyzing utilization trends and forecasting future needs.

Module 6: Optimization and Cost Management

Identifying underutilized licenses for reharvesting or downgrading to lower-cost editions.
Implementing license pooling and check-out systems for floating or concurrent use licenses.
Right-sizing cloud SaaS subscriptions based on active user analytics and role-based access patterns.
Conducting license true-ups only after validating actual usage against soft metering data.
Applying Microsoft License Mobility through Software Assurance to reduce cloud licensing costs.
Forecasting license needs for upcoming projects using project intake and resource planning systems.

Module 7: Governance, Policy, and Continuous Improvement

Developing and enforcing software request and approval policies to prevent unauthorized installations.
Establishing a SAM steering committee with cross-functional stakeholders to review metrics and decisions.
Conducting quarterly SAM health checks to assess tool accuracy, process adherence, and risk exposure.
Integrating SAM KPIs into executive dashboards, including compliance ratio, cost avoidance, and risk exposure.
Updating SAM policies in response to changes in vendor licensing models or regulatory requirements.
Implementing automated remediation workflows for common issues such as unlicensed installs or expiring subscriptions.

Module 8: Cloud and Hybrid Environment Considerations

Extending discovery to public cloud instances (AWS, Azure, GCP) to capture software deployed in ephemeral environments.
Applying bring-your-own-license (BYOL) policies consistently across hybrid cloud and on-premises workloads.
Managing SaaS application sprawl by integrating SaaS management platforms with identity providers.
Tracking containerized software usage where traditional licensing models do not apply.
Addressing licensing for serverless computing and microservices based on execution time or invocation counts.
Aligning cloud cost management tools with SAM data to correlate software spend with infrastructure usage.