Change Management and Control Policy

Download 85.34 Kb.
Size85.34 Kb.
1   ...   5   6   7   8   9   10   11   12   13

Risk Management

  1. A risk assessment shall be performed for all changes and dependant on the outcome, an impact assessment should be performed.

  2. The impact assessment shall include the potential effect on other information resources and potential cost implications. The impact assessment should, where applicable consider compliance with legislative requirements and standards.

  • Change Classification

    1. All change requests shall be prioritised in terms of benefits, urgency, effort required and potential impact on operations.

  • Testing

    1. Changes shall be tested in an isolated, controlled, and representative environment (where such an environment is feasible) prior to implementation to minimise the effect on the relevant business process, to assess its impact on operations and security and to verify that only intended and approved changes were made. (For more information see System Development Life Cycle [citation here]).

  • Download 85.34 Kb.

    Share with your friends:
  • 1   ...   5   6   7   8   9   10   11   12   13

    The database is protected by copyright © 2022
    send message

        Main page