3-page generic policy about the management of changes, including IT configurations.
 
This policy lays out the principles for managing and controlling changes, primarily to IT systems and business processes, in order to minimize organization’s information risks.
 
Delivered as an editable MS Word document, easily customized for your organization's specific needs.