Presentation is loading. Please wait.

Presentation is loading. Please wait.

Change Management Chapter 21

Published byBenedict Stevens Modified over 5 years ago

Similar presentations

Presentation on theme: "Change Management Chapter 21"— Presentation transcript:

1 Change Management Chapter 21
It is not the strongest of the species that survive, nor the most intelligent, but the one most responsive to change. —CHARLES DARWIN Chapter 21

2 Objectives Use change management as an important enterprise management tool. Institute the key concept of separation of duties. Identify the essential elements of change management. Implement change management. Use the concepts of the Capability Maturity Model Integration.

3 Key Terms Baseline Capability Maturity Model Integration (CMMI)
Change management Change control board (CCB) Computer software configuration items Configuration auditing Configuration control Configuration identification Baseline – This is a system or software as it is built and functioning at a specific point in time. It serves as a foundation for comparison or measurement, providing the necessary visibility to control change. Capability Maturity Model Integration (CMMI) – This is a structured methodology, helping organizations improve the maturity of their software processes by providing an evolutionary path from ad hoc processes to disciplined software management processes. It was developed at Carnegie Mellon University’s Software Engineering Institute (SEI). Change management – This is a standard methodology for performing and recording changes during software development and operation. Change control board (CCB) – This is a body that oversees the change management process, and enables management to oversee and coordinate projects. Computer software configuration items - See configuration item. Configuration auditing - This is the process for verifying that configuration items are built and maintained according to requirements, standards, or contractual agreements. Configuration control – This is the process of controlling changes to items that have been baselined. Configuration identification – This is the process of identifying which assets need to be managed and controlled.

4 Key Terms (continued) Configuration items Configuration management
Configuration status accounting Separation of duties System problem report (SPR) Configuration items – Data or software (or other asset) that is identified and managed as part of the software change management process (also known as computer software configuration item). Configuration management – This is considered synonymous with change management and, in a more limited manner, version control or release control. Configuration status accounting – These are procedures for tracking and maintaining data relative to each configuration item in the baseline. Separation of duties – Good business control practices require that duties be assigned to individuals in such a way that no one individual can control all phases of a process or the processing and recording of a transaction (also called segregation of duties). System problem report (SPR) – This is used to track changes through the change control board. The SPR documents changes or corrections to a system. It reflects who requested the change and why, what analysis must be done and by whom, and how the change was corrected or implemented.

5 Why Change Management? Should be used in all phases of a system’s life: Development, testing, quality assurance (QA), and production. Manage system development and maintenance processes effectively: Introducing discipline and structure that helps to conserve resources and enhance effectiveness. Change management is an essential part of creating a viable governance and control structure and critical to compliance with the Sarbanes-Oxley Act. Types of Changes The Information Technology Infrastructure Library’s ITIL v3 Glossary of Terms, Definitions and Acronyms ( com/moodle/mod/glossary/view.php?id=166?) defines the following types of changes (with examples added in parentheses): ■ Change The addition, modification or removal of anything that could have an effect on IT Services. (For example, the modification to a module to implement a new capability.) ■ Standard Change A is a preapproved change that is low risk, relatively common and follows a procedure or work instruction. (For example, each month finance must make a small rounding adjustment to reconcile the General Ledger to account for foreign currency calculations.) ■ Emergency Change A is a change that must be introduced as soon as possible. For example, to resolve a major incident or implement a security patch. The change management process will normally have a specific procedure for handling emergency changes. See for more information. The Sarbanes-Oxley Act of 2002, officially entitled, the Public Company Accounting Reform and Investor Protection Act of 2002, was enacted July 30, 2002 to help ensure management establishes viable governance environments and control structures to ensure accuracy of financial reporting. Section 404 outlines the requirements most applicable to information technology.

6 Change Management Scenarios
The following scenarios exemplify the need for appropriate change management policy and for procedures over software, hardware, and data: The developers can’t find the latest version of the production source code. A bug corrected a few months ago mysteriously reappears. Fielded software was working fine yesterday but does not work properly today. Development team members overwrote each other’s changes. A programmer spent several hours changing the wrong version of the software. Below are the scenarios and the suggested Change Management implementations: ■The developers can’t find the latest version of the production source code. Change management practices support versioning of software changes. ■ A bug corrected a few months ago mysteriously reappears. Proper change management ensures developers always use the most-recently changed source code. ■ Fielded software was working fine yesterday but does not work properly today. Good change management controls access to previously modified modules so that previously corrected errors aren’t reintroduced into the system. ■ Development team members overwrote each other’s changes. Today’s change management tools support collaborative development. ■ A programmer spent several hours changing the wrong version of the software. Change management tools support viable management of previous software versions. ■ A customer record corrected by the call center yesterday shows the old, incorrect information today. Good change management applies to databases as well and ensures recent changes are not lost. ■ New tax rates stored in a table have been overwritten with last year’s tax rates. Change control prevents inadvertent overwriting of critical reference data. ■ An application runs fine at some overseas locations but not at other locations. Change management can simplify localization efforts. ■ A network administrator inadvertently brings down a server as he incorrectly punched down the wrong wires. Just like a blueprint shows key electrical paths, data center connection paths can be version-controlled. ■ A newly installed server is hacked soon after installation because it is improperly configured. Network and system administrators use change management to ensure configurations consistently meet security standards, Just about anyone with more than a year’s experience in software development or system operations can relate to at least one of the preceding scenarios. However, each of these scenarios can be controlled, and impacts mitigated, through proper change management procedures.

7 The Key Concept: Separation of Duties
A foundation for change management is the recognition that involving more than one individual in a process can reduce risk. Good business control practices require that duties be assigned to individuals in such a way that no one individual can control all phases of a process or the processing and recording of a transaction. Also referred to as segregation of duties. It is an important means by which errors and fraudulent or malicious acts can be discouraged and prevented. Separation of duties can be applied in many organizational scenarios because it establishes a basis for accountability and control. Proper separation of duties can safeguard enterprise assets and protect against risks. They should be documented, monitored, and enforced. A well-understood business example of separation of duties is in the management and payment of vendor invoices. If a person can create a vendor in the finance system, enter invoices to payment, and then authorize a payment check to be written, it is apparent that fraud could be perpetrated because the person could write a check to himself for services never performed. Separating duties by requiring one person to create the vendors and another person to enter invoices and write checks makes it more difficult for someone to defraud an employer. Information technology (IT) organizations should design, implement, monitor, and enforce appropriate separation of duties for the enterprise’s information systems and processes.

8 The Key Concept: Separation of Duties (continued)
Some of the best practices for ensuring proper separation of duties in an IT organization are as follows: Separation of duties among departments should be documented in written procedures and implemented by software or manual processes. Developer and program testing should be conducted with “test” data only, safeguarding production data. End users should not have access to source code. All access should be based on principle of least privilege. Change management policies and procedures should be enforced throughout the enterprise. Managers at all levels should review existing and planned processes and systems to ensure proper separation of duties. Smaller business entities may not have the resources to implement all of the preceding practices fully, but other control mechanisms, including hiring qualified personnel, bonding contractors, and using training, monitoring, and evaluation practices, can reduce any organization’s exposure to risk. The establishment of such practices can ensure that enterprise assets are properly safeguarded and can also greatly reduce error and the potential for fraudulent or malicious activities. Change management practices implement and enforce separation of duties by adding structure and management oversight to the software development and system operation processes. Change management techniques can ensure that only correct and authorized changes, as approved by management or other authorities, are allowed to be made, following a defined process. Steps to Implement Separation of Duties 1. Identify an indispensable function that is potentially subject to abuse. 2. Divide the function into separate steps, each containing the power that enables the function to be abused. 3. Assign each step to a different person or organization.

9 Elements of Change Management
Commonly referred to as configuration management, which includes four general phases: Configuration identification Configuration control Configuration status accounting Configuration auditing Change Management The ITIL v3 Glossary defines change managements as “The process responsible for controlling the lifecycle of all changes. The primary objective of change management is to enable beneficial changes to be made, with minimum disruption to IT services.” See Most of today’s software and hardware change management practices derive from long-standing system engineering configuration management practices. For example, automakers know that a certain amount of configuration management is necessary to build safe cars efficiently and effectively. Bolts and screws with proper strengths and qualities are used on every car, in specific places—employees don’t just reach into a barrel of bolts, pull one out that looks about right, and bolt it on. The same applies to aircraft—for an aircraft to fly safely, it must be built of parts of the right size, shape, strength, and so on. Computer hardware and software development have also evolved to the point that proper management structure and controls must exist to ensure the products operate as planned.

10 Configuration Identification
The process of identifying which assets need to be managed and controlled. Assets could be software modules, test cases or scripts, table or parameter values, servers, major subsystems, or entire systems. Identified assets are called: Configuration items Or computer software configuration items Configuration identification results in a baseline. Related to configuration identification, and the result of it, is the definition of a baseline. A baseline serves as a foundation for comparison or measurement. It provides the necessary visibility to control change. For example, a software baseline defines the software system as it is built and running at a point in time.

11 Configuration Control
The process of controlling changes to items that have been baselined. Ensures that only approved changes to a baseline are allowed to be implemented. Also ensures proper use of assets and avoids unnecessary downtime due to the installation of unapproved changes.

12 Configuration Status Accounting
Consists of the procedures for tracking and maintaining data relative to each configuration item in the baseline. Closely related to configuration control. Involves gathering and maintaining information relative to each configuration item. For example, it documents what changes have been requested; what changes have been made, when, and for what reason; who authorized the change; who performed the change; and what other configuration items or systems were affected by the change. Returning to our example of servers being baselined, if the operating system of those servers is found to have a security flaw, then the baseline can be consulted to determine which servers are vulnerable to this particular security flaw. Those systems with this weakness can be updated (and only those that need to be updated). Configuration control and configuration status accounting help ensure that systems are more consistently managed and, ultimately in this case, the organization’s network security is maintained.

13 Configuration Auditing
The process of verifying that the configuration items are built and maintained according to the requirements, standards, or contractual agreements. Ensures that policies and procedures are being followed, that all configuration items (including hardware and software) are being properly maintained, and that existing documentation accurately reflects the status of the systems in operation. Configuration auditing takes on two forms: -functional -physical A functional configuration audit verifies that the configuration item performs as defined by the documentation of the system requirements. A physical configuration audit confirms that all configuration items to be included in a release, install, change, or upgrade are actually included, and that no additional items are included—no more, no less.

14 Implementing Change Management
The change management function is scalable from small to enterprise-level projects. It can be adapted to small organizations by having the developer perform work only on her workstation (never on the production system) and having the system administrator serve in the buildmaster function. The buildmaster is usually an independent person responsible for compiling and incorporating changed software into an executable image. Release Management The ITIL v3 Glossary defines release management as “The process responsible for planning, scheduling and controlling the movement of releases to test and live environments. The primary objective of release management is to ensure that the integrity of the live environment is protected and that the correct components are released.” See

15 Software Change Control Workflow
This figure shows that developers never have access to the production system or data. It also demonstrates proper separation of duties between developers, QA and test personnel, and production. It implies that a distinct separation exists between development, testing and QA, and production environments. This workflow is for changes that have a major impact on production or the customer’s business process.

16 Change Management Workflow
The change management workflow proceeds as follows: 1. The developer checks out source code from the code-control tool archive to the development system. 2. The developer modifies the code and conducts unit testing of the changed modules. 3. The developer checks the modified code into the code-control tool archive. 4. The developer notifies the buildmaster that changes are ready for a new build and testing/QA. 5. The buildmaster creates a build incorporating the modified code and compiles the code.

17 Change Management Workflow (continued)
6. The buildmaster notifies the system administrator that the executable image is ready for testing/QA. 7. The system administrator moves the executables to the test/QA system. 8. QA tests the new executables. If tests are passed, test/QA notifies the manager. If tests fail, the process starts over. 9. Upon manager approval, the system administrator moves the executable to the production system. (Some of the steps may be omitted for minor changes) Identifying Separation of Duties Using Figure 21-1, observe the separation of duties between development, test/QA, and production. The functions of creating, installing, and administrating are assigned to different individuals. Note also appropriate management review and approval. This implementation also ensures that no compiler is necessary on the production system. Indeed, compilers should not be allowed to exist on the production system.

18 The Purpose of a Change Control Board (CCB)
Oversee the change management process Facilitate better coordination between projects The figure shows the process for implementing and properly controlling hardware or software during changes. The CCB convenes on a regular basis, usually weekly or monthly, and can be convened on an emergency or as-needed basis as well. The CCB’s membership should consist of development project managers, network administrators, system administrators, test/QA managers, an information security manager, an operations center manager, and a help desk manager. Others can be added as necessary, depending on the size and complexity of the organization.

19 Incident Management The ITIL v3 Glossary defines incident management as “The process responsible for managing the lifecycle of all incidents. The primary objective of incident management is to return the IT service to users as quickly as possible.” A system problem report (SPR) is used to track changes through the CCB. The SPR documents changes or corrections to a system. It reflects who requested the change and why, what analysis must be done and by whom, and how the change was corrected or implemented. The figure shows a sample SPR. Most large enterprises cannot rely on a paper-based SPR process and instead use one of the many software systems available to perform change management functions. While this example shows a paperbased SPR, it contains all the elements of change management: it describes the problem and who reported it, it outlines resolution of the problem, and it documents approval of the change.

20 The Change Management Process
The figure shows the entire change management process and its relationship to incident management and release management.

21 Code Integrity One benefit of adequate change management is the assurance of code consistency and integrity. Whenever a modified program is moved to the production source-code library, the executable version should also be moved to the production system. Automated change management systems greatly simplify this process and are better controls for ensuring executable and source-code integrity. Remember that at no time should the user or application developer have access to production source and executable code libraries in the production environment.

22 The Capability Maturity Model Integration (CMMI)
Developed at Carnegie Mellon University’s Software Engineering Institute (SEI). The CMMI replaces the older Capability Maturity Model (CMM). The SEI’s web page defines six capability levels: Level 0: Initial Level 1: Performed Level 2: Managed Level 3: Defined Level 4: Quantitatively Managed Level 5: Optimizing One area that is likely to be covered on the Security+ test is the Capability Maturity Model Integration (CMMI). Exam Tip: To complete your preparations for the Security+ exam, it is recommended that you consult SEI’s web site ( for specific CMMI definitions. Be sure that you understand the differences between capability levels and maturity levels as defined in CMMI. Six capability levels: ■ Level 0: Initial The software process is partially performed or not performed. ■ Level 1: Performed The process satisfies the goals of the process area but may not be sustainable because it is not institutionalized. ■ Level 2: Managed The process is a performed process (as defined in level 1) and has a supporting infrastructure in place, such as policies and qualified personnel, and it is monitored, controlled, reviewed, and evaluated. Most important, the processes are disciplined enough to remain intact during times of stress. ■ Level 3: Defined The process is managed (as defined in level 2) but is tailored from the organization’s standard set of processes, according to the organization’s tailoring guidelines. ■ Level 4: Quantitatively Managed The process is a defined process (see level 3) and uses statistical evaluation and quantitative objectives to control and manage the process. ■ Level 5: Optimizing Key business processes are quantitatively managed (as defined in level 4) and improved by understanding root causes of variation. Improvements can be both incremental and innovative. Change management is a key process to implementing the CMMI in an organization. For example, if an organization is at CMMI level 0, it probably has no formal change management processes in place. At level 3, an organization has a defined change management process that is followed and tailored to the specific project needs. At level 5, the change management process is a routine, quantitatively evaluated part of improving software products and implementing innovative ideas. In order for an organization to effectively manage software development, operation, and maintenance, it should have effective change management processes in place.

23 Chapter Summary Use change management as an important enterprise management tool. Institute the key concept of separation of duties. Identify the essential elements of change management. Implement change management. Use the concepts of the Capability Maturity Model Integration.

Download ppt "Change Management Chapter 21"

Similar presentations

Software change management

Software change management
Configuration management

Configuration management
Configuration Management

Configuration Management
Configuration Management

Configuration Management
Software Quality Assurance Plan

Software Quality Assurance Plan
Control and Accounting Information Systems

Control and Accounting Information Systems
Chapter 7: Key Process Areas for Level 2: Repeatable - Arvind Kabir Yateesh.

Chapter 7: Key Process Areas for Level 2: Repeatable - Arvind Kabir Yateesh.
More CMM Part Two : Details.

More CMM Part Two : Details.
ITIL: Service Transition

ITIL: Service Transition
CPIS 357 Software Quality & Testing I.Rehab Bahaaddin Ashary Faculty of Computing and Information Technology Information Systems Department Fall 2010.

CPIS 357 Software Quality & Testing I.Rehab Bahaaddin Ashary Faculty of Computing and Information Technology Information Systems Department Fall 2010.
Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.

Chapter 7 Control and AIS Copyright © 2012 Pearson Education, Inc. publishing as Prentice Hall 7-1.
Software Configuration Management

Software Configuration Management
Software Configuration Management

Software Configuration Management
CSSE 375 Software Construction and Evolution: Configuration Management

CSSE 375 Software Construction and Evolution: Configuration Management
Capability Maturity Model

Capability Maturity Model
Chapter 7 Database Auditing Models

Chapter 7 Database Auditing Models
The Key Process Areas for Level 2: Repeatable Ralph Covington David Wang.

The Key Process Areas for Level 2: Repeatable Ralph Covington David Wang.
Introduction to Software Quality Assurance (SQA)

Introduction to Software Quality Assurance (SQA)
N By: Md Rezaul Huda Reza n

N By: Md Rezaul Huda Reza n
Project Tracking. Questions... Why should we track a project that is underway? What aspects of a project need tracking?

Project Tracking. Questions... Why should we track a project that is underway? What aspects of a project need tracking?

Similar presentations

Ads by Google