Is there a formal change management process in place?

Yes. DESelect maintains a change management process that covers both application and infrastructure changes. This process mandates documented steps for initiating, planning, and implementing changes in the environment. Where appropriate, a risk assessment must be performed including assessing the impact on confidentiality, integrity, or availability of the asset subject to change.