Discussions

ITIL Change Managment for sensitive business areas

+
0 Votes
Locked

ITIL Change Managment for sensitive business areas

peter
Hi,

We have been using an ITIL web based change management system for the past 6 months. We use 3 standard categories for our changes - BAU (Business As Usual for pre approved changes), Planned (For those changes requiring management approval) and Emergency (For when critical systems break and need to be fixed/rebooted ASAP).

Our Pay Office is treated as sacrosanct in this company and ANY change needs to ALWAYS be approved by 3 specific people. These 3 people only need to approve Pay Office Changes and are not otherwise involved in the Change Management Process.


My question is do you think it would be better to have a seperate category called something like 'Pay Office' for every pay office change and hard code the work flow to make sure these 3 people always evaluate these change requests.

OR

For the sake of keeping it simple should I just simply update the Change Process Policy and make it so that all planned changes must go must be approved by these 3 people.


I was wondering if anyone had a similar issue or had a different solution.

Cheers

Peter
  • +
    0 Votes
    SharonManuel

    Depending on the nature of the change and the technology involved plus the level of risk differentiate the approvers.. all the three approvers that you mentioned hope they are not of the same management level.

    Depending on the risk involved in the change increase the management level at the approver end. Not necessary that all three of them must be of same level. but their approvals should mean that they are directly responsible for those changes if anything were to go wrong. since they would best know what could come out of that change
    what do u mean by pay office changes??? is it some kind of business request which doesn't involve any technological change

  • +
    0 Votes
    SharonManuel

    Depending on the nature of the change and the technology involved plus the level of risk differentiate the approvers.. all the three approvers that you mentioned hope they are not of the same management level.

    Depending on the risk involved in the change increase the management level at the approver end. Not necessary that all three of them must be of same level. but their approvals should mean that they are directly responsible for those changes if anything were to go wrong. since they would best know what could come out of that change
    what do u mean by pay office changes??? is it some kind of business request which doesn't involve any technological change