ITIL 5 Foundation went live on February 12, 2026. The exam is 40 multiple-choice questions in 60 minutes with a 65% passing threshold, which means you need 26 correct answers. Pass rates for ITIL Foundation exams have historically sat around 80-85% for candidates who take accredited training, and closer to 65-70% for self-study. Those numbers suggest the exam is passable with the right preparation, but the self-study gap is real.

The difficulty isn't conceptual. Most of the ideas in ITIL are intuitive if you've worked in IT. The difficulty is terminological. ITIL has its own vocabulary for concepts you already understand, and the exam tests whether you know ITIL's specific word for each concept rather than the common one. "Incident" and "problem" mean different things. "Utility" and "warranty" mean different things. Get those backwards and you'll miss questions you otherwise could have answered.

What Changed from ITIL 4 to ITIL 5

ITIL 5 is an evolution of ITIL 4, not a replacement. If you've studied ITIL 4 material, most of it still applies. The Service Value System, guiding principles, and four dimensions of service management carry forward. But there are additions worth knowing.

The biggest structural change is four new core publications: ITIL Strategy, ITIL Product, ITIL Service, and ITIL Experience, plus two supplementary books on Transformation and AI Governance. At the Foundation level, you won't be tested on the full depth of these publications, but you need to know they exist and how they fit together.

ITIL 5 introduces the Product and Service Lifecycle Model with eight activities: Discover, Design, Build, Deliver, Operate, Support, Improve, and Retire. This replaces the less prescriptive approach of ITIL 4 with a more structured lifecycle that mirrors how digital products actually get built and maintained. AI governance and digital-first operating principles are now part of the framework, reflecting where enterprise IT has moved since ITIL 4 was published in 2019.

For exam purposes, your ITIL 4 Foundation certification still counts. PeopleCert recognizes it as a prerequisite for all higher-level ITIL 5 modules. You don't have to retake Foundation to progress. But if you're taking Foundation for the first time, you're taking the Version 5 exam.

The Service Value System

The SVS is the big-picture model that holds everything in ITIL together. Think of it as the answer to "how does an organization create value?" It contains five components: guiding principles, governance, the service value chain, practices, and continual improvement. Every Foundation question connects back to one of these.

The exam doesn't just ask you to list the components. It asks you to apply them. A typical question might describe a scenario where a company is making decisions about a new service and ask which SVS component is most relevant. You need to understand what each component does, not just what it's called.

The Seven Guiding Principles

These are tested heavily. Memorize all seven and be able to recognize each one in a scenario:

  1. Focus on value — Everything the organization does should link back to value for stakeholders. Not just customers; all stakeholders.
  2. Start where you are — Assess the current state before building something new. Don't assume you need to start from scratch.
  3. Progress iteratively with feedback — Work in small increments and use feedback to adjust. Resist the urge to do everything at once.
  4. Collaborate and promote visibility — Silos produce bad outcomes. Share information across teams and stakeholders.
  5. Think and work holistically — No service or practice exists in isolation. Consider the full system.
  6. Keep it simple and practical — If a process step doesn't add value, remove it. Fewer steps beats more steps.
  7. Optimize and automate — Optimize the process first, then automate. Automating a bad process just produces bad results faster.

The order matters for two reasons. First, some exam questions ask specifically about the sequence. Second, the order reflects a logical progression: understand value, assess current state, iterate, collaborate, think broadly, simplify, then automate.

Four Dimensions of Service Management

ITIL 5 carries forward the four dimensions from ITIL 4. Every service needs to be considered across all four:

  • Organizations and people — Roles, skills, culture, authority structures
  • Information and technology — The data and tools needed to manage services
  • Partners and suppliers — External relationships and contracts
  • Value streams and processes — How work actually gets done, step by step

Exam questions on the four dimensions usually present a scenario and ask which dimension is being described. A question about outdated monitoring software is testing "information and technology." A question about unclear team responsibilities is testing "organizations and people." The pattern is consistent.

The Service Value Chain

Six activities make up the service value chain: Plan, Improve, Engage, Design & Transition, Obtain/Build, and Deliver & Support. These are not sequential steps. They're interconnected activities that can be combined in different orders depending on the value stream.

The distinction between value chain activities and value streams trips up a lot of candidates. The value chain is the set of activities. A value stream is a specific sequence of those activities for a particular purpose, like resolving an incident or onboarding a new service. Multiple value streams exist simultaneously, and each one uses the value chain activities in a different order.

Practices That Matter Most for the Exam

ITIL defines 34 management practices. The Foundation exam doesn't test all of them equally. Some appear frequently; others are barely mentioned. Here are the ones that carry the most weight.

Incident Management vs. Problem Management

This is the most commonly confused pair on the exam. An incident is an unplanned interruption or reduction in quality of a service. The goal of incident management is to restore normal service as quickly as possible. A problem is the underlying cause of one or more incidents. Problem management tries to prevent incidents from happening, or to minimize their impact when they do.

A server crashes and users can't access email. Restarting the server is incident management. Investigating why the server crashed and patching the memory leak that caused it is problem management. The exam will give you scenarios and ask which practice applies. If the focus is on restoring service quickly, it's incident management. If the focus is on root cause analysis and prevention, it's problem management.

Change Enablement

ITIL 4 renamed "change management" to "change enablement" to emphasize that the goal isn't to block changes but to enable them safely. ITIL 5 keeps this framing. Know the three types of changes: standard (pre-authorized, low risk), normal (requires assessment and authorization), and emergency (needs rapid authorization, typically through expedited procedures).

Service Level Management

This practice is about setting clear expectations with customers through Service Level Agreements (SLAs). The exam tests whether you understand that SLAs should be based on outcomes the customer cares about, not internal technical metrics. An SLA that says "99.9% server uptime" is less useful than one that says "email available during business hours with fewer than 2 unplanned outages per month."

Continual Improvement

This shows up both as a practice and as a component of the SVS. The continual improvement model has seven steps: What is the vision? Where are we now? Where do we want to be? How do we get there? Take action. Did we get there? How do we keep the momentum going? Expect at least 2-3 questions on this model.

Service Desk

The service desk is the single point of contact between the service provider and users. It's a practice, not just a function. The exam may ask about different service desk structures (local, centralized, virtual) and the service desk's relationship to incident management.

TechPrep ITIL 5

1,800 practice questions across all 7 exam domains. Explanations for every question distinguish between similar concepts the exam deliberately confuses. Coming Spring 2026. Learn more

Key Concepts to Memorize

Some definitions appear on the exam almost verbatim. Know these cold:

  • Service: A means of enabling value co-creation by facilitating outcomes that customers want to achieve, without the customer having to manage specific costs and risks.
  • Utility: The functionality offered by a product or service to meet a particular need. Think "what it does." Also called "fitness for purpose."
  • Warranty: Assurance that a product or service will meet agreed requirements. Think "how well it does it." Also called "fitness for use."
  • Value: The perceived benefits, usefulness, and importance of something. Always co-created between the provider and the consumer.
  • Outcome: A result for a stakeholder enabled by one or more outputs.
  • Output: A tangible or intangible deliverable of an activity.

The utility/warranty pair is tested in almost every version of the exam. If a question asks about whether a service meets the customer's needs, that's utility. If it asks about availability, capacity, continuity, or security of a service, that's warranty. Both are required for a service to create value.

How to Study

Most candidates who pass report 15-30 hours of total study time. That's roughly 2-3 weeks at an hour a day, or one intensive week if you already work in IT service management. The material isn't deep; it's wide. You're covering a lot of terminology and frameworks at a surface level.

The most effective method is to read through the material once to get the big picture, then switch to practice questions. Every wrong answer on a practice test tells you exactly what to review. Keep a list of terms you confuse and drill those specifically. Flashcards with spaced repetition work well for the vocabulary-heavy content.

Two things to avoid: First, don't try to memorize all 34 practices. The exam focuses on about a dozen. Learn those well, and know the names of the rest. Second, don't rely only on memorization. The exam includes scenario-based questions where you have to apply concepts to a described situation. Understanding why a guiding principle matters is more useful than reciting its name.

Test Day

Sixty minutes for 40 questions gives you 90 seconds per question. That's generous for a multiple-choice exam. If you've prepared, you'll finish with time to spare. Use the extra time to review flagged questions.

The exam is closed book, administered through PeopleCert. You can take it at a testing center or proctored online from home. If you choose online proctoring, make sure your space meets their requirements: clean desk, working webcam, stable internet connection, no one else in the room.

Wrong answers don't carry penalties. Never leave a question blank. If you can eliminate one or two options, your odds improve considerably on the remaining choices.

One pattern to watch for: the exam sometimes includes answer options that are true statements but don't answer the specific question being asked. Read the question twice before selecting. "Which guiding principle is MOST relevant" is asking for one best answer, not a list of applicable ones.

Anthony C. Perry

M.S. Computer Science, M.S. Kinesiology. USAF veteran and founder of Meridian Labs. ORCID