We support a validated multi site ERP-system which runs on a server maintained by a data center. The data center installs on a regular basis ptf?s and cum-packs. Currently we follow a rather ?heavy? process to ask the system VRB to approve these changes. We would like to introduce a risk-based approach. Any other suggestions to facilitate the process to install ptf?s and cum-packs in a validated environment?