Appendix A – Types of Changes and Definitions
Types of Changes
There are three types of changes:
1. Standard Change – A repeatable change that has been pre-authorized by the Change
Authority by means of a documented procedure that controls risk and has predictable
outcomes.
2. Normal Change – A change that is not an Emergency change or a Standard change.
Normal changes follow the defined steps of the change management process. Low,
Medium, or High priority is determined by Unit Directors or delegates according to the
Risk Assessment Instrument included as Appendix B.
a. Normal Low Changes must be reviewed and approved by the Unit Director or
delegate as Change Authority.
b. Normal Medium Changes must be reviewed and approved by the Change
Advisory Board as Change Authority.
c. Normal High changes must be approved by the IT Executive Team as Change
Authority.
3. Emergency Change – A change that must be introduced as soon as possible due to
likely negative service impacts. There may be fewer people involved in the change
management process review, and the change assessment may involve fewer steps due
to the urgent nature of the issue; however, any Emergency Change must still be
authorized by a manager and reviewed by the Change Advisory Board retroactively.
Definitions
Definitions adapted from Information Technology Infrastructure Library (ITIL). See
http://en.wikipedia.org/wiki/Information_Technology_Infrastructure_Library.
Change - The addition, modification or removal of approved, supported or baselined hardware,
network, software, application, environment, system, or associated documentation.
Change Advisory Board - A group of people that support the assessment, prioritization,
authorization, and scheduling of changes.
Change Authority -The person or group authorizing a change. This role is designated for a
non-classified position.
Change Control - The procedure to ensure that all changes are controlled, including the
submission, analysis, decision making, approval, implementation and post implementation of
the change.
Change History - Auditable information that records, for example, what was done, when it was
done, by whom and why.
Change Log - Auditable log of who, what, why, and when for all changes. This may be system
specific as certain systems have the ability to automatically log changes in this manner.