Change management policy
I am looking for a definition and examples of change under a change management policy
Assign topic to the user
ISO does not have a definition for change, but from ITIL, a world-recognized framework for managing IT services, you can have this one: "The addition, modification or removal of anything that could have an effect on IT Services.”
Considering ISO 27001, examples of change can be:
- Replacement of a server
- Adding a new technology (e.g., VPN for remote access)
- Updating a document (e.g., policy or procedure)
To see how a change management policy look like, see this free demo: Change Management Policy https://advisera.com/27001academy/documentation/change-management-policy/
This article will provide you a further explanation about the change management:
- How to manage changes in an ISMS according to ISO 27001 A.12.1.2 https://advisera.com/27001academy/blog/2015/09/14/how-to-manage-changes-in-an-isms-according-to-iso-27001-a-12-1-2/
Comment as guest or Sign in
May 08, 2020