IT Change Management

Change Management is part of Service management, according to ITIL.

IT Change Management Description

Change management is responsible for controlling the lifecycle of all changes to IT infrastructure and services, ensuring that they are properly evaluated, authorized, prioritized, planned, tested, implemented, documented, and reviewed in a controlled manner.

The goal of change management is to minimize the adverse impact of changes to IT services on business operations while maximizing the benefits of the changes.

IT Change Management Tasks

Change management tasks, according to CISSP:

  1. Request
  2. Review
  3. Approve/reject
  4. Test
  5. Schedule and implement
  6. Document

Request

Request are usually done from a Request for Change (RFC).

Review

Review of changes is usually done by a Change Advisory Board (CAB).

A backout plan or rollback plan allows to go back to the previous state in case the implementation does not work as intended. This plan should be approved as part of the

Approve/reject

Test

Approve Schedule and Implement

In case implementation does not work as intented, the backout plan is executed.

Document

IT Change Management Process Components

IT Change management process components, according to CISSP:

  • Request control
  • Change control
  • Release control

Request Control

Change Control

Release Control

Release control includes acceptance tests.

You might also be interested in…

External References

  • “CISSP Official Study Guide 9th edition”, pp. 787-788
  • Change Management Components
    • “CISSP Official Study Guide 9th Edition”, p. 964-965

Leave a Reply

Your email address will not be published. Required fields are marked *