NNT Recommended Change Control Program
Without our help, controlling changes can be one of the biggest challenges facing multi-functional IT Teams. The size of task, process, and coordination of effort often means that changes continue to occur outside of any planned change approvals and the IT team is unable to prevent this from continuing. The solution? NNT’s Managed Change Control Program.
NNT’s Change Control Program is an ongoing dedicated review of all changes conducted by a qualified NNT representative who through the use of NNT Change Tracker will be able to help better contain changes within either a ‘Forward Planned Change’ or an ‘Automated Intelligent Planned Change' using rules & logic to ensure that the changes taking place are fundamentally OK and non-harmful.
"If you allow changes to occur within your IT environment without any control, it is impossible to retain a secure and compliant state".
The purpose of this overview is not to replace existing best practice approaches to Change Management or in any way attempt to re-write existing sensible ITSM Change Management Process such as the formerly labeled ITIL.
In fact, however you chose to implement changes within your IT environment, we recommend at least some process outside of NNT Change Tracker is established to manage changes specifically within these standard change groups:
- Standard Change & Normal Change
- Emergency Change
Download the white paper
Change Control Program Summary
By implementing NNT’s Change Control Program your organization will have the rules & processes in place to capture changes that are either:
- Planned & detailed ahead of time, but not checked after the event for authenticity
- Planned ahead of time that will be checked for authenticity as the changes occur (Recommended)
- Not planned ahead of time, but are approved based on previous knowledge of the changes and their adherence to the criteria for which they were previously approved (Recommended)
If our planned change processes are tight and our rules for intelligently approving ad-hoc changes are in good shape, we should not see any unplanned changes at all unless they are either – Emergency Changes or Harmful/Potentially Harmful.
Protecting data stored in our SQL server app was an absolutely key requirement for us and NNT were able to provide a single solution that covered this together with other PCI requirements for configuration management, file integrity monitoring and logging. I think we really benefitted from NNT’s experience of helping other organizations to implement PCI Compliance measures, and definitely saved money compared to other options we considered
Carlos Parada, MIS Director, NAFSA