Change Management Policy



Similar documents
Change Management. Change Management Procedure. Table of Contents. (Revision Date: 1/30/2014)

Introduction Purpose... 4 Scope... 4 Manitoba ehealth Change Management... 4 Icons RFC Procedures... 5

INFORMATION TECHNOLOGY SERVICES IT CHANGE MANAGEMENT POLICY & PROCESS

How To Manage Change Management At Uni

User Guide for Submitters

Change Management Revision Date: October 10, 2014

Process Owner: Change Manager Version: 1.0

Change Submitter: The person or business requesting or filing the Request For Change (RFC) notice.

Business Continuity and Disaster Recovery Policy

CCIT Change Management Procedures & Documentation

Page 1 of 8. Any change, which meets the following criteria, will be managed using IM/IT Change Management Process.

hi Information Technologies Change Management Standard

Title: DESKTOP TICKET MANAGEMENT PROCEDURE

CCIT Change Management Policy

Infrastructure Change Management. The process and procedures for all changes to the live environment

ITIL Version 3.0 (V.3) Service Transition Guidelines By Braun Tacon

The purpose of this document is to define the Change Management policies for use across UIT.

SERVICE EXCELLENCE SUITE

HUIT Change Management with ServiceNow. September 2013

Yale University Change Management Process Guide

Change Management. Service Excellence Suite. Users Guide. Service Management and Service-now

HP Service Manager. Process Designer Content Pack Processes and Best Practices Guide

CA Nimsoft Service Desk

Georgia College & State University

Change Management Framework

The ITIL Foundation Examination

ITSM Maturity Model. 1- Ad Hoc 2 - Repeatable 3 - Defined 4 - Managed 5 - Optimizing No standardized incident management process exists

Process Description Change Management

Chris Day, Acting Director of IT Services C Day. Configuration Manager Change Manager Change Assessors Change Implementers

White Paper August BMC Best Practice Process Flows for ITIL Change Management

National Capital Region Interoperable Communications Infrastructure (NCR ICI)

Requirements Analysis/Gathering. System Requirements Specification. Software/System Design. Design Specification. Coding. Source Code.

Novo Service Desk Software

ICT Change Management Policy. 3 rd Party Support Guide

Software Quality Assurance (SQA) Testing

Release Management. ProPath. Office of Information and Technology

Change Management Process Document

ITSM Roles. 1.0 Overview

ITIL Example change management procedure

IT Optimization Consulting Services for Organizational Change Management (OCM)

Service Level Agreement (SLA)

Introduction Purpose... 2 Scope... 2 Icons Tasks and ehealth Processes Incident Management... 3 Change Management...

Operational Change Control Best Practices

ITIL v3. Service Management

Problem Management Overview HDI Capital Area Chapter September 16, 2009 Hugo Mendoza, Column Technologies

Rally Integration with BMC Remedy through Kovair Omnibus Kovair Software, Inc.

TechExcel. ITIL Process Guide. Sample Project for Incident Management, Change Management, and Problem Management. Certified

HP Change Configuration and Release Management (CCRM) Solution

Platform as a Service (PaaS) Policies and Procedures

CHG-11-G-001 Does the tool use ITIL 2011 Edition process terms and align to ITIL 2011 N/A. Edition workflows and process integrations?

DotNetNuke (DNN) Hosting Environment

Change Management Process

University of Waikato Change Management Process

Incident Management Best Practices Chris Pope. Global Service Delivery Manager Global Managed Services Column Technologies.

CHANGE MANAGEMENT PROCESS

The ITIL Foundation Examination

Health Sciences Compliance Plan

The ITIL Foundation Examination

Request for Proposals

ITIL Essentials Study Guide

Change Management Process. June 1, 2011 Version 2.7

Change Advisory Board Operating Guidelines

Policies of the University of North Texas Health Science Center

Change Management Living with Change

IT Service Management

Internal Audit Report ITS CHANGE MANAGEMENT PROCESS. Report No. SC-11-11

ITS Project Management

ITSM Process Description

G E N E R A L C L A I M I N G R U L E S of Telefónica O2 Czech Republic

Central Bank of Ireland Guidelines on Preparing for Solvency II Pre-application for Internal Models

Service Transition. ITIL is a registered trade mark of AXELOS Limited.. The Swirl logo is a trade mark of AXELOS Limited.. 1

U.S. DEPARTMENT OF TRANSPORTATION FEDERAL AVIATION ADMINISTRATION. Air Traffic Organization Policy

SapphireIMS Service Desk Feature Specification

SapphireIMS 4.0 Service Desk Feature Specification

NSSC Enterprise Service Desk Configuration Management Database (CMDB) Configuration Management Service Delivery Guide

I S O I E C I N F O R M A T I O N S E C U R I T Y A U D I T T O O L

Electronic Medical Record (EMR) Request for Proposal (RFP)

Problem Management: A CA Service Management Process Map

How To Create A Help Desk For A System Center System Manager

The Newcastle upon Tyne Hospitals NHS Foundation Trust. IT Change Management Policy and Process

HP Service Manager software

Cisco TelePresence Select Operate and Cisco TelePresence Remote Assistance Service

Voice Over IP Network Solution Design, Testing, Integration and Implementation Program Overview

ICS Operations & Policies Manual. For State Agencies Providing and Using Consolidated Services

Price quotes must be received no later than October 16, 2015 at 3:00 p.m. at the above address.

Change Management. Bizagi Suite

California Department of Technology, Office of Technology Services WINDOWS SERVER GUIDELINE

Gwinnett County Public Schools Information Management & Technology BMC FootPrints Service Core CHANGE MANAGEMENT User Guide

General Terms and Conditions for Ziviltechniker (Architects and Chartered Engineering Consultants) Services (hereafter: Terms)

SupportDesk ITSM: Quick Guide

Transcription:

Maine State Government Dept. of Administrative & Financial Services Office of Information Technology (OIT) Change Management Policy I. Statement Information Technology (I.T.) organizations require a process to manage changes to Information Assets in order to assure their highest performance, integrity, and availability. II. Purpose The purpose of the Change Management Policy is to manage changes to Information Assets in a predictable manner. Adequate planning is necessary to mitigate risk and to minimize the potential adverse impact of a change. III. Applicability This policy establishes directives intended to manage change to Information Assets that potentially could affect Stakeholder operations. This policy applies to all production I.T. changes. IV. Responsibilities A. Change Advisory Board (CAB) is responsible for reviewing all changes for risk of impact and scheduling conflicts. B. Change Advisory Board (CAB) Co-Chair is responsible for reviewing, monitoring, and authorizing changes. C. Change Implementer is responsible for executing the change according to the approved plan. D. Change Initiator is responsible for requesting a change, initiating an impact analysis for the change, and explicitly identifying the parties impacted by the change. The Change Initiator must also ensure that impacted parties are aware of and approve the change. Unless the Stakeholders requested the change, any change request requires, at a minimum, a two-week notice to the impacted Stakeholders. They may leverage Page 1 of 5

the TBCs or Application Development staff for Agency notification, yet the Change Initiator is ultimately responsible. If CTS resources are required to help implement the change, the Change Initiator must arrange with CTS. If any of these items are not fulfilled the change request will not be considered for authorization. E. Change Manager (or designee) is responsible for managing the change process, responding to emergency changes or unforeseen/unexpected changes, and communicating all changes. F. Change Validator: Tests change post-implementation to ensure that the change achieved the intended results and/or did not introduce any new faults. V. Directives A. The Change Initiator must submit all non-emergency RFCs via the Change Management Footprints Project, no later than noontime on the Wednesday immediately prior to the CAB meeting (Thursdays at 10:00am). In addition to the other required RFC elements, the Change Initiator will include in the RFC all actions (steps) germane to the requested change and the Back-Out Plan. The Change Initiator or their representative must also participate in the CAB meeting to answer any questions. B. The following must be included in the initial description, or as an added comment: - All Stakeholders have been provided, at a minimum, a two-week notice (unless they are the group who requested the change and they are the only ones impacted by it) and approve of this RFC. - Specification of whether additional resources (CTS, App Dev., etc.) are required. - Confirmation that coordination with additional required resources has occurred and that all required parties have affixed their confirmation to the Change Ticket. - If any of the above items are not in place prior to the Thursday CAB meeting, the RFC will not be considered. C. Recurring RFCs must have their status set back to Open or On-Hold after implementation. Each occurrence needs to be authorized by the CAB (deadlines for submission are the same as are listed in Directive A). D. The CAB reviews all RFC tickets (time permitting) with an Open status. The CAB also reviews Delayed and On-Hold RFC tickets, (time permitting). E. Emergency RFCs are for extenuating circumstances only. In addition to the other required RFC information, the Change Initiator must also set RFC priority to Emergency and identify why they need change authorization prior to the next CAB meeting and what the risk is if the change does not take place at the requested time. The Change Initiator must follow-up with the CAB Co-Chairs to obtain authorization prior to change implementation. Page 2 of 5

F. The Change Implementer must follow the RFC steps meticulously. G. Should it be revealed during execution that the actual execution deviates from the RFC steps, or that the risk was underestimated, then the Change Implementer stops the execution and notifies the Change Manager, who determines appropriate action. H. Should the Change Manager determine that a tested and proven remediation effort can safely resolve the issue; the Change Manager communicates the anticipated impact/duration to Stakeholder representatives and the RFC remains in IN PROCESS status until remediation is performed. I. Should the Change Manager determine to back-out the change, the Change Implementer executes the Back-Out Plan. The Change Manager (or designee) communicates with the CAB and Stakeholder representatives, per the Back-Out Plan, documents the deviation, and updates the RFC, so that the Change Implementer can dedicate their focus on backing-out the change. J. Should the change cause an unforeseen/unexpected outcome, and the Back-Out Plan does not succeed, then Major Incident Procedure applies. Immediate notification must take place to Stakeholder representatives, the help desk, and the CAB. VI. Definitions A. Back-Out Plan: Procedure to undo a change to return the system to the pre-change state. See V.A. B. Change Advisory Board (CAB): Standing committee of OIT personnel that reviews all RFCs for risk of impact and scheduling conflicts. C. Change Advisory Board (CAB) Co-Chair: Co-chairperson of the CAB. Focus is on mitigating risk and minimizing impact of RFCs. D. Change Implementer: Primary contact for RFC change execution. This person is most likely, but not always, identical to the Change Initiator. E. Change Initiator: The person who submits the change request and provides required RFC documentation. F. Change Manager: The OIT Director/Manager (CTS Hosting Manager or App Dev. Director, etc.) that is responsible for the section that includes the Change Implementer. G. Change Ticket (RFC Footprints Ticket; Project = OIT Change Management) Status: a. Active: All Change Tickets that are not in Closed status. b. Authorized: Change Ticket that contains all required information and has successfully completed the CAB review. c. Cancelled: Change Ticket is no longer required. Change will not take place. d. Closed: Change Ticket work is complete. Page 3 of 5

e. Completed: Change Ticket completed but not yet Closed. f. Delayed: Change Ticket postponed. g. Failed: Change Ticket has not been successful. h. In Progress: Change Ticket authorized and execution is underway. This category contains long-duration changes. i. Need More Info: Change Ticket does not contain enough information for authorization. The Change Ticket will be moved to Open status when this information is obtained j. On Hold: Change Ticket reviewed but put on hold because the change could not occur as scheduled. When the reason for the hold is resolved, the Change Ticket is will be moved back to Open status. k. Open: Change Ticket submitted for review. l. Recurring: Change Ticket scheduled for periodic (usually monthly) execution. m. Rejected: Change Ticket not authorized to proceed. n. Request: Automatic Footprints default. Not used. o. Past Implementation: Change Ticket authorized but is still outstanding and 30 days past the implementation date. If no response from the Change Initiator in seven (7) days, then the Change Ticket is Closed. p. Under Review: Change Ticket needs a higher level or special authorization. Also could be in an After Action Review. H. FootPrints: BMC-Numera application used by OIT for response tracking. I. Information Assets: Business applications, system software, development tools, utilities, hardware, infrastructure, etc. J. Production I.T. Changes: Any modification made to an OIT Production environment. K. RFC (Request for Change): This is the change lifecycle managed within the OIT Change Management Project of the Footprints application. L. Stakeholder: Any group potentially impacted by the change. This could be a business partner, hosting partner, OIT organizational unit, etc. VII. References VIII. Document Information Initial Issue Date: October 24, 2007 Latest Revision Date: July 12, 2015 Point of Contact: Henry Quintal, Architecture-Policy Administrator, OIT, 207-624-8836. Approved By: James R. Smith, Chief Information Officer, OIT, 207-624-7568. Enforced By: CAB Co-Chairs: Richard Hayward, Director of Applications, OIT, 207-624-8293; Sharon Horne, CTS Director, OIT, 207-624-9925; Sandra P. Saunders, Director of TBCs, OIT, 207-458-4388. Page 4 of 5

Legal Citation: Title 5, Chapter 163: Office of Information Technology 1 Waiver Process: See the Waiver Policy 2. 1 http://legislature.maine.gov/statutes/5/title5ch163sec0.html 2 http://maine.gov/oit/policies/waiver.htm Page 5 of 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information