Change Management Policy Template


The purpose of this policy is to manage the risk posed by changes in the company. Requests for change, change approval, changer register, change prioritisation, change classification, change risk assessment, change impact assessment, testing, version control, roll back, communicating change, change freeze, emergency change, unauthorised change are all covered in this policy.

For the document contents see the description below. A document extract is in the images to the left.

You may also like the full ISO 27001 policy template pack for all 26 ISO 27001 policies.


SKU: ISO27001POL14 Category: Tag:

Change Management Policy Template


The purpose of this policy is to manage the risk posed by changes in the company.


All company employees and external party users.

Change Management Policy Template Contents

Document Version Control 2
Document Contents Page 3
Purpose 5
Scope 5
Change Management Policy 5
A Request for Change 5
Change Request Approval 5
Change Register 5
Change Prioritisation / Classification 5
Change Risk Assessment 6
Change Impact Assessment 6
Testing 6
Version Control 6
Communicating Change 6
Roll Back 6
Change Freeze 7
Emergency Change 7
Unauthorised Changes 7
Policy Compliance 8
Compliance Measurement 8
Exceptions 8
Non-Compliance 8
Continual Improvement 8

High Table ISO 27001 Store

The High Table ISO 27001 store for ISO 27001 policies and ISO 27001 ISMS documents is built on 20 years of experience and real world usage, used to pass hundreds of ISO 27001 audits globally.

Customer reviews


There are no reviews yet.

Be the first to review “Change Management Policy Template”

You may also like…

Scroll to Top