3.1 The Four Dimensions (1): Organizations and People + Information and Technology

Key Takeaways

  • The four dimensions are organizations and people, information and technology, partners and suppliers, and value streams and processes; the Four Dimensions area is 10% of the ITIL Foundation (Version 5) exam.
  • The four dimensions are simultaneous lenses, not sequential steps; weakness in any one can reduce value even when the other three look strong.
  • Organizations and people covers structure, culture, capabilities, roles, responsibilities, leadership, staffing, and communication.
  • Information and technology covers the data and knowledge a service uses plus the applications, infrastructure, integrations, and AI that deliver it, including security, compliance, and fit.
  • ITIL rejects a technology-only view: a strong application still fails if skills, culture, or governance are weak.
Last updated: July 2026

The Four Dimensions and Why They Exist

ITIL Foundation (Version 5) keeps the four dimensions of product and service management — four perspectives an organization must consider together to co-create value. They are organizations and people, information and technology, partners and suppliers, and value streams and processes. The four dimensions are not sequential steps or a maturity ladder; they are lenses that apply to every product, every service, and every lifecycle activity at the same time. Because products and services are complex systems, weakness in any one dimension can reduce value even when the other three look strong.

This Four Dimensions area is worth 10% of the exam, so expect at least one question asking you to name all four, and one or two that assign a concern to the correct dimension.

All four dimensions are also shaped by external factors the organization does not control, commonly summarized by the mnemonic PESTLE (political, economic, social, technological, legal, environmental). Those factors are covered in section 3.2, but keep in mind throughout this chapter that they constrain every dimension. A single external event, such as a new privacy law, can reshape all four dimensions at once.

Dimension 1 - Organizations and People

The organizations and people dimension covers the human and structural side of managing services. It includes organizational structure, culture, required capabilities and competencies, roles and responsibilities, staffing and skills, leadership and management style, and communication. A service is only as good as the people who design, deliver, support, and improve it, so this dimension asks whether the organization has the right structure, the right skills, a healthy culture, and clear accountability.

A common Foundation trap is to treat a service as a purely technical asset. Imagine a team deploying a new GenAI (generative AI) chat support tool: even a best-in-class model fails if agents are not trained to supervise it, if roles for reviewing AI answers are undefined, or if a blame-heavy culture discourages people from flagging bad responses. The technology is fine; the organizations-and-people dimension was neglected.

Typical failure symptoms when this dimension is ignored include skills gaps, unclear roles, resistance to change, poor communication, and a culture that does not support collaboration or continual improvement.

Watch the wording on exam questions. "Roles, skills, culture, structure, leadership, and communication" points squarely at organizations and people. Distractors such as encryption algorithms (information and technology), contract exit clauses (partners and suppliers), or the sequence of steps in a workflow (value streams and processes) are placed to test whether you can separate the dimensions cleanly.

Dimension 2 - Information and Technology

The information and technology dimension covers two related things: the information and knowledge a service needs, and the technologies used to manage and deliver it. On the information side it includes the data the service creates, manages, and uses; the relationships between different pieces of information; and considerations such as availability, security, confidentiality, integrity, compliance, and how information is stored and exchanged. On the technology side it includes applications, databases, communication systems, infrastructure, integrations, and increasingly AI and automation.

This dimension also asks whether a given technology is a good fit. Factors include compatibility with the existing architecture, the organization's culture and capacity to absorb new technology, regulatory or security constraints, and cost. A cutting-edge tool that clashes with the organization's skills or its compliance obligations is not automatically the right choice. When information and technology is neglected, symptoms include poor data quality, security and privacy gaps, incompatible or unsupported systems, technical debt, and information that decision-makers cannot trust.

Note the exam's careful phrasing: "Data, knowledge, architecture, applications, infrastructure, integrations, and technology capabilities" is the information-and-technology answer, while "a supplier's negotiation strategy" or "a team's reporting line" belong to other dimensions.

Why Balance Matters

The reason ITIL insists on all four dimensions is holism - the guiding principle think and work holistically. A strong application (information and technology) still fails if the people lack skills (organizations and people), if a critical vendor is unreliable (partners and suppliers), or if the workflow has broken handoffs (value streams and processes). The dimensions should be considered throughout the lifecycle - during discover, design, build, transition, operate, and improve - not only after an incident.

If a question offers "only technology matters" or "consider the dimensions only after a major incident," those are wrong by design.

DimensionFocusExample concernFailure if neglected
Organizations and peopleStructure, culture, skills, roles, leadership, communicationAre support agents trained to supervise an AI assistant?Skills gaps, unclear roles, resistance to change
Information and technologyData, knowledge, applications, infrastructure, security, AIIs customer data stored securely and to a compliant standard?Data quality issues, security gaps, technical debt
Partners and suppliersExternal relationships, contracts, sourcing, integrationIs a critical SaaS vendor reliable and well-integrated?Over-dependence, misaligned contracts, poor integration
Value streams and processesWorkflows, activities, handoffs, controls, flow of valueDoes work flow from demand to outcome without bottlenecks?Undefined workflows, delays, rework, no measurement

Memorize the four together and practice assigning concerns. The exam rarely asks for a textbook definition; it more often gives a scenario and asks which dimension is most affected, so drilling the boundaries between the four is the highest-value preparation for this 10% area.

Test Your Knowledge

A company installs a powerful new incident-management platform, but resolution times get worse because staff were never trained on it and no one owns the new escalation roles. Which dimension was most neglected?

A
B
C
D
Test Your Knowledge

Which concern belongs most directly to the information and technology dimension?

A
B
C
D
Test Your Knowledge

Why does ITIL insist that all four dimensions be considered together?

A
B
C
D