Change Management

Question 1

What is a common way to make a change in IT?

Answer 1

Upgrade software, patch an application, change firewall configuration, modify switch ports.

Question 2

What is one of the most common risks in the enterprise regarding change?

Answer 2

Changes occur very frequently.

Question 3

Why are changes often overlooked or ignored?

Answer 3

People may not feel the immediate impact until it’s too late.

Question 4

What should be included in clear change management policies?

Answer 4

Frequency, duration, installation process, rollback procedures.

Question 5

Why can implementing change be extremely difficult?

Answer 5

It’s hard to change corporate culture.

Question 6

What is the purpose of a formal change approval process?

Answer 6

To avoid downtime, confusion, and mistakes.

Question 7

What is the first step in a typical change approval process?

Answer 7

Complete the request forms.

Question 8

What must be determined after completing the request forms in the approval process?

Answer 8

The purpose of the change.

Question 9

What should be identified in the change approval process?

Answer 9

The scope of the change.

Question 10

Why is it important to analyze the risk associated with a change?

Answer 10

To understand potential impacts and avoid negative outcomes.

Question 11

Who typically gets approval from the change control board?

Answer 11

The individual or team responsible for the change request.

Question 12

What does the owner of a change manage?

Answer 12

The overall process and ensures adherence to procedures.

Question 13

Who usually handles the actual change in a process?

Answer 13

The IT department.

Question 14

Why is it important to identify stakeholders in change management?

Answer 14

They are impacted by the change and may provide valuable input.

Question 15

What can happen when a single change affects multiple departments?

Answer 15

It can complicate the change management process significantly.

Question 16

How should risk values be categorized during impact analysis?

Answer 16

High, medium, low.

Question 17

What risks might arise from not making a change?

Answer 17

Security vulnerabilities, application unavailability, unexpected downtime.

Question 18

What is a sandbox testing environment?

Answer 18

A safe space to test changes without affecting production systems.

Question 19

What should be confirmed before making a change in production?

Answer 19

The backout plan.

Question 20

Why is it essential to have a backout plan?

Answer 20

To revert changes if something goes wrong.

Question 21

What is a crucial consideration when planning a maintenance window?

Answer 21

The timing of the change to minimize impact on operations.

Question 22

Why might overnight changes be preferable?

Answer 22

They minimize impact on production during business hours.

Question 23

What should be available on the Intranet regarding change management?

Answer 23

Well-documented standard operating procedures.

Question 24

How should changes to the change management process be handled?

Answer 24

They should be reflected in the standard operating procedures as a living document.