Scribd Logo
Upload

Welcome to Scribd!

  • Change Management Policy

    Uploaded by

    Oluwatobi Edith Ojo
    129 views5 pages
    The document outlines an IT department's change management policies and procedures. It defines what constitutes a change, the primary steps in the change management process which include requesting a change, categorizing/prioritizing it, analyzing/justifying it, approving/scheduling it, implementing it, and conducting a post-implementation review. It details the approval levels needed based on change priority/impact, as well as testing, validation, acceptance, and monitoring procedures to ensure changes are successfully implemented.

    Original Description:

    Original Title

    Change management Policy.docx

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document outlines an IT department's change management policies and procedures. It defines what constitutes a change, the primary steps in the change management process which include requesting a change, categorizing/prioritizing it, analyzing/justifying it, approving/scheduling it, implementing it, and conducting a post-implementation review. It details the approval levels needed based on change priority/impact, as well as testing, validation, acceptance, and monitoring procedures to ensure changes are successfully implemented.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    129 views5 pages

    Change Management Policy

    Uploaded by

    Oluwatobi Edith Ojo
    The document outlines an IT department's change management policies and procedures. It defines what constitutes a change, the primary steps in the change management process which include requesting a change, categorizing/prioritizing it, analyzing/justifying it, approving/scheduling it, implementing it, and conducting a post-implementation review. It details the approval levels needed based on change priority/impact, as well as testing, validation, acceptance, and monitoring procedures to ensure changes are successfully implemented.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as docx, pdf, or txt
    of 5

    CHANGE MANAGEMENT POLICIES AND

    PROCEDURES GUIDELINE
    IT DEPARTMENT
    October 2020.
    CHANGE MANAGEMENT POLICIES AND PROCEDURES GUIDELINE
    INTRODUCTION
    The main aim of the IT change management policy is to carry out IT changes in the most efficient
    manner while minimizing the business impact, costs, and risks. It is the responsibility of the IT
    department to manage the Life cycle of all business applications and IT infrastructure and as such all
    the processes and procedures involving change control and management will be defined in this
    document.

    Change is defined as anything that transforms, changes, or modifies the standard operating
    procedures of a system or service and has the potential to affect the stability and reliability of our IT
    application or infrastructure or disrupt the business of the company.

    Changes may be required for many reasons

     User request
     Vendor recommendations
     Changes In regulation
     Hardware and software upgrades/failures
     Unforeseen events etc.

    The Change Management process begins with the creation of a Change Request either via an email
    or within the IT support help desk system, and ends with the satisfactory implementation of the
    change and the communication of the result of that change to all interested parties.

    To accomplish this, the change management process includes the following primary steps:

    • A Formal Request for a Change.

    • Categorizing and Prioritizing the Change.

    • Analyzing and Justifying the Change.

    • Approve and Schedule the Change.

    • Plan and Complete the Implementation of the Change.

    • Post-Implementation Review.

    A Formal Request for a Change.


    Whenever a Change on the IT infrastructure is recognized by a department or an employee. Anyone
    identifying the need for a change is the ‘Change Initiator’ and is responsible for providing all
    necessary information and requirements needed to implement the change.

    The Change Management Process must be consistent in quality and completeness and discards
    irrelevant requests.

    The change request can be submitted either via an email or through the IT support help desk and will
    be reviewed by the IT Department manager and IT unit manager (the manager who is responsible in
    ensuring that the change request is implemented and fit all stated requirement) within the

    2|Page
    appropriate IT unit. The change task assignee will determine if the information provided is sufficient
    to initiate the change and will contact the change initiator if additional information is required.

    Categorizing and Prioritizing the Change.


    The IT manager and the IT unit manager responsible for the change implementation must assign an
    impact and priority level of the change. The different impact level for the change is identified below.

    IMPACT LEVELS
    LOW- routine changes fall within this impact level as these type of changes poses low risk to system
    availability, easy implementation,

    MEDIUM- the component of a medium impact level change request involves IT resources from more
    than one unit of the IT department and has moderate risk to system availability i.e. system/service
    downtime during business hours

    HIGH- a change request is considered to have high impact on the business application when it
    involves more than one unit of the IT department and external consultants, high risk to system
    availability i.e. system/service downtime during business hours, complex implementation process,
    may affect security of data on infrastructure.

    The change request can be grouped into four priority groups which is to be defined by the change
    initiator.

    Emergency priority change request.

    Urgent priority change request.

    Routine priority change request.

    Low priority change request.

    Analyzing and Justifying the Change.


    During this process, the IT unit manager captures all relevant information about the proposed
    change in a request for change document (RFC). The IT unit manager will work with the Change
    Initiators to identify as much of the following information as possible:

     The Change Initiator’s details.


     An accurate description of the change required. including the specific request, reason for the
    change and the expected timeframe need for the change to be implemented.
     The priority and category of the change based on the information available. (Low, Medium,
    High)
     A cost-benefit analysis of the change and budgetary approval, if required.
     Business impact and resource assessment.
     Timeline for the implementation of change
     Impact on business continuity and contingency plans.
     Technical impact on the system for effecting the change (Performance/Capacity/Security,
    Operability.)
     Risk category involved in making the change. (High/Medium/Low)

    3|Page
    Approve and Schedule the Change.
    After the requirements for the change has been identified, whether a minor, major or significant
    change, and has been correctly prioritized, categorized, and analyzed by the IT unit manager, the
    change must be approved before implementation. The process of authorizing a change request
    depends on the priority and category of the change.

    Emergency priority change request are escalated to the Finance/IT director or IT Department
    manager, the IT Department manager then channels the request to the IT unit manager in charge of
    implementing the request.

    Approval - All emergency change request should be requested for either via an email or within the
    IT support help desk system and should be approved by the Finance/IT director or IT manager.

    Routine/maintenance changes are approved by the Finance/IT director or IT Department Manager,


    the IT manger channels the request to the IT unit manager in charge of implementing the routine
    change request. The IT unit manager goes ahead to carry out the routine change.

    Minor changes can be approved by the IT unit Manger or the IT Department Manager or the
    manager or director of the change initiator.

    Major and significant changes should be approved by the Director of the change initiators
    department, the Finance/IT director or the M.D

    NOTE: The Approval authority level is dependent on the change category.

    In each of the cases mentioned above, the appropriate person or body decides on whether the
    change should be implemented based on the information provided in the Request for Change
    document. If the Request for change is not approved, the Change Initiator is informed of the
    decision, and the reasons for the rejection made known to the change initiator and documented.

    Change Implementation
    The IT team in charge of implementing the change should do so in accordance with the change
    request requirement and strive to work within the agreed time. Significant changes within the
    business applications or IT infrastructure that may need program development or change in
    configurations should follow the requirement which all change implementation must follow:

     Developing an implementation project plan.


     Carry out proper testing on a test environment and ensure testing of all possible scenarios are
    successful.
     Apply the changes to the Live/production environment and ensure the environment is updated
    with the change.
     Resolve any issue caused by the change.
     Give a summary of the result of the change.

    Testing, Validation, and Acceptance

    4|Page
    After the change has been implemented, the IT team responsible for the change and the
    end users who will be using the change will carry out testing based on the agreed test
    period in the implementation project plan. The end users will then need to give either of the
    feedback below.

     Accept the changes with no comments (change has been satisfactorily implemented)
     Accept the changes with minor exceptions i.e. the exceptions will be fixed
     Reject the change if it does not meet the requirement requested for.
    If the change is rejected it should be thoroughly reviewed to identify the root cause of the
    failure and this may probably result to the initiation of a new change request.

    Monitor Change in Production Environment.


    If the change has been accepted, the change will be updated and monitored on the
    production environment. These may include checking on the desired functionality and
    ensuring that it performs optimally as requested, it can also include regular monitoring of
    network, server, event logs or performance data and making sure that they are in the ideal
    state. Once the change has meet all requirement successfully on the Life environment the IT
    unit manager sends an update on the change to the change initiator and other interested
    stakeholders via email or using the IT support help desk that the change has been
    implemented successfully and the change request is now closed and marked as completed.

    5|Page

    You might also like