Change control

Within quality management systems (QMS) and information technology (IT) systems, change control is a process—either formal or informal[1]—used to ensure that changes to a product or system are introduced in a controlled and coordinated manner. It reduces the possibility that unnecessary changes will be introduced to a system without forethought, introducing faults into the system or undoing changes made by other users of software. The goals of a change control procedure usually include minimal disruption to services, reduction in back-out activities, and cost-effective utilization of resources involved in implementing change. According to the Project Management Institute, change control is a "process whereby modifications to documents, deliverables, or baselines associated with the project are identified, documented, approved, or rejected."[2]

Change control is used in various industries, including in IT,[3] software development,[1] the pharmaceutical industry,[4] the medical device industry,[5] and other engineering/manufacturing industries.[6] For the IT and software industries, change control is a major aspect of the broader discipline of change management. Typical examples from the computer and network environments are patches to software products, installation of new operating systems, upgrades to network routing tables, or changes to the electrical power systems supporting such infrastructure.[1][3]

Certain portions of ITIL cover change control.[7]

  1. ^ a b c Hall, P.A.V.; Ramil, J.C.F. (2007). Managing the Software Enterprise: Software Engineering and Information Systems in Context. Cengage Learning. pp. 318–325. ISBN 9781844803545. Retrieved 20 May 2018.
  2. ^ Project Management Institute 2021, Glossary §3 Definitions.
  3. ^ a b Matteson, S. (7 July 2017). "10 essential elements of change control management". TechRepublic. CBS Interactive, Inc. Retrieved 20 May 2018.
  4. ^ Turner, S.G. (15 December 2003). Pharmaceutical Engineering Change Control. Taylor & Francis. pp. 200. ISBN 9780849320613.
  5. ^ Teixeira, M.B. (2013). Design Controls for the Medical Device Industry (2nd ed.). CRC Press. p. 205. ISBN 9781466503557.
  6. ^ Monahanm E. (1995). Engineering Documentation Control Practices & Procedures. CRC Press. p. 280. ISBN 9780824795740.
  7. ^ Herzig, T.W.; Walsh, T.; Gallagher, L.A. (2013). Implementing Information Security in Healthcare: Building a Security Program. Healthcare Information and Management Systems Society. pp. 204–205. ISBN 9781938904356. Retrieved 20 May 2018.