Change Management
A change management process is used to change hardware, install software, and configure various network devices. This process includes approval, testing, scheduling, and rollback arrangements.
Any changes to the system or the process are likely to introduce new vulnerabilities. Hence, it is critical for a security manager to identify and address new risks.
Objectives of Change Management
The main objective of change management is to support the processing and traceability of changes made to a system. Change management ensures that any modification or updating of the system is carried out in a controlled manner.
Approval from the System Owner
A security manager should also ensure a structured change management process. While implementing a change, all relevant personnel should be kept informed, and specific approval should be obtained from the relevant information asset owners.
Regression Testing
Regression testing is a part of change management...