R Systems International Ltd.

C-40, Sector 59
Noida 201 307
(U.P.), India
http://www.rsystems.com/

Change Management Policy

Document Id.: ISPolicy040

Version No. : 3.6

Released on : 31/07/22

This document of R Systems International Ltd. is for internal circulation. No part of this publication may be
reproduced, stored in a retrieval system, or transmitted in any from or by any means – recording, photocopying,
electronics and mechanical without prior written permission of R Systems International Ltd.
 Review History

S No. Release Reviewed By Remarks

Date
1 16/02/07 ISMS Forum Doc Changed and DCR raised
2 01/06/09 ISMS Forum Doc Changed and DCR raised
3 07/04/11 ISMS Forum No Changes
4 01/06/12 ISMS Forum No Changes
5 09/08/12 ISMS Forum Doc Changed and DCR raised
6 01/01/14 Manager QAG Doc Changed and DCR raised
7 15/06/15 Manager QAG Doc Changed and DCR raised
8 22/06/16 Manager QAG Doc Changed and DCR raised

9 18/07/17 AVP IT Infrastructure Doc Changed and DCR raised

10 18/07/18 AVP IT Infrastructure Doc Changed and DCR raised

11 30/07/19 AVP IT Infrastructure Doc Changed and DCR raised

12 28/07/20 Head- IT Infrastructure Doc Changed and DCR raised

13 19/07/21 Head- IT Infrastructure No Change

14 19/07/22 Head- IT Infrastructure Doc Changed and DCR raised
 DOCUMENT CONTROL SHEET

Document History
Ver. Release DCR Description of Authored/ Reviewed By Approv
No. Date Ref. Change Revised By ed By
1.0 16/02/07 DCR/IS Release version Implement ISMS Forum CISO
MS006 ation Team
2.0 01/06/09 DCR/IS ISMS Periodic QAG ISMS Forum CISO
MS/067 Review
2.0 07/04/11 NA ISMS Periodic QAG ISMS Forum CISO
Review
2.0 01/06/12 NA ISMS Periodic QAG ISMS Forum CISO
Review
2.1 09/08/12 DCR/IS Classification QAG ISMS Forum CISO
MS/105 changed to Internal
2.2 01/01/14 DCR/IS RSI Logo Updated ISMS Manager CISO
MS/112 Team QAG
3.0 15/06/15 DCR/IS Document revised ISMS Manager CISO
MS/122 and updated as per Team QAG
ISO 27001:2013
3.1 22/06/16 DCR/IS Annual Review- ISMS Manager CISO
MS/132 Updated the Team QAG
Section 4. Policy

3.2 18/07/17 DCR/IS Annual Review- ISMS AVP IT CISO

MS/136 Section 4:Policy Team Infrastructure
updated for
applications (IT and
BPO both)
3.3 18/07/18 DCR/IS Annual Review- ISMS AVP IT CISO
MS/141 Review Date Team Infrastructure
18/06/18
Section 4. Policy
updated replacing
CAB by HOD IT
and Head BPO
3.4 31/07/19 DCR/IS Annual Review- ISMS AVP IT CISO
MS/144 Review Date Team Infrastructure
30/07/19
BPO was replaced
with Knowledge
Services
3.5 31/07/20 DCR/IS Annual Review- ISMS Head- IT CISO
MS/145 Review Date Team Infrastructure
28/07/20
Head-Network
added as approving
authority.
3.6 31/07/22 DCR/IS Annual Review- ISMS Head- IT CISO
MS/151 Review Date Team Infrastructure
19/07/22 Sec-4
updated.
Notes:
 Only controlled hardcopies of the document shall have signatures on them.
 This is a company internal document. Unauthorized access or copying is prohibited.
 Uncontrolled when printed unless signed by approving authority.

© R Systems International Limited 2022

 Table of Contents

1. Overview .................................................................................................................. 6
2. Purpose.................................................................................................................... 6
3. Scope ....................................................................................................................... 6
4. Policy ....................................................................................................................... 6
©R Systems International Ltd internal ISPolicy040

Change Management Policy

1. Overview
The Information Resources infrastructure at R Systems International Limited is
expanding and the dependency on the network & communication devices is increasing
day by day. As the interdependency between Information Resources infrastructure
grows, the need for a strong change management process is essential.
From time to time each Information Resource element requires an outage for planned
upgrades, maintenance or fine-tuning. Additionally, unplanned outages may occur that
may result in upgrades, maintenance or fine-tuning.
Managing and tracking these changes is a critical part of providing a robust and valuable
Information Resources infrastructure.

2. Purpose
The purpose of the Change Management Policy is to manage changes in a rational and
predictable manner so that staff and clients can plan accordingly. Changes require
serious forethought, careful monitoring, and follow-up evaluation to reduce negative
impact to the user community and to increase the value of Information Resources.

3. Scope
R Systems International Limited Change Management Policy applies to all individuals
that install, operate or maintain Information Resources.

4. Policy
 The critical (the changes which can affect the mass users) change to an R
System International Limited Information Resources resource such as: Network
Architecture, Servers, Desktops and applications (In house developed and/or
maintained) is subject to the Change Management Policy and must follow the
Change Management Procedure.
 Changes to the software Applications being developed/maintained for customers
are out of the scope of this policy.
 The Change Request must be recorded during initiation in Change Control Form
(ISForm012) or http://helpdesk.india.rsystems.com/ or both based on the
requirement of change . Also ticket reference must be appended in every email
communication done for respective change request.
 All the history and communication of change request must be recorded in the
respective ticket opened for it.
 Also the change request must be submitted for the review and approval to Head-
IT Infrastructure/ Knowledge Services/Network both scheduled and unscheduled.
 All scheduled change requests must be submitted in accordance with change
management procedure so to review the request, determine and review potential
failures, and make the decision to allow or delay the request.
 The Head-IT Infrastructure/ Knowledge Services/Network may deny a scheduled
or unscheduled change for reasons including, but not limited to, inadequate

Version No: 3.6 Page 6 of 7 Release Date: 31/07/22

©R Systems International Ltd internal ISPolicy040

planning, inadequate blackout plans, the timing of the change will negatively
impact a key business process such as year end accounting, or if adequate
resources cannot be readily available
 Customer notification must be completed for each scheduled or unscheduled
change following the steps contained in the Change Management Procedure.
 A Change Review must be completed for each change, whether scheduled or
unscheduled, and whether successful or not.
 A Change Management Log must be maintained for all changes. The log must
contain, but is not limited to:
a) Date of submission and date of change
b) Owner and custodian contact information
c) Nature of the change
d) Indication of success or failure

All RSI information systems must comply with a Change Management Procedure
ISProc001.

Version No: 3.6 Page 7 of 7 Release Date: 31/07/22