Change management is a formalized process. Its purpose is to control modifications made to systems and programs, and to analyze the request, examine its feasibility and impact, and develop a timeline to implement approved changes. The change-management process gives all concerned parties an opportunity to voice opinions and concerns before changes are made.
These are the six steps for change management:
1. |
Define change-management processes and practices. |
2. |
Receive change requests. |
3. |
Plan and document the implementation of changes. |
4. |
Implement and monitor the changes. Develop a means of backing out of proposed changes, if necessary. |
5. |
Evaluate and report on implemented changes. |
6. |
Modify the change-management plan, if necessary. |
The CISSP Cram Sheet
A Note from Series Editor Ed Tittel
About the Author
Acknowledgments
We Want to Hear from You!
Introduction
Self-Assessment
The CISSP Certification Exam
Physical Security
Security-Management Practices
Access-Control Systems and Methodology
System Architecture and Models
Telecommunications and Network Security
Applications and Systems-Development Security
Operations Security
Business Continuity Planning
Law, Investigations, and Ethics
Cryptography
Practice Exam 1
Answers to Practice Exam 1
Practice Exam 2
Answers to Practice Exam 2