http://www.theiia.org/intAuditor/itaudit/2011-articles/it-change-management/ Blogen-us Wed, 07 Nov 2012 02:41:58 PMWed, 07 Nov 2012 02:41:58 PM http://www.theiia.org/intAuditor/itaudit/2011-articles/it-change-management/2011-10-06A good article on the essentials of Change Management. Both in my career in IT Management and in audit I repeatedly have seen a weakness in Change Management audit plans. Many plans draw from the population of change requests but should be drawing from the population of changes. Of course determining the population of changes is far more difficult but changes made to the system that have not even entered the change management process pose a higher risk to system integrity and the business processes that rely on those systems. There are configuration monitoring tools available which will provide the overall change population. http://www.theiia.org/intAuditor/itaudit/2011-articles/it-change-management/2011-10-06Great article on the importance of the Change Management Process witin the Internal Audit Domain.