Skip to main content

3.11B System Migration & Changeover (Go-live) Techniques

3.11B System Migration & Changeover (Go-live) Techniques

Changeover (Go-live) Techniques


Following are three changeover techniques for moving to new system:

Parallel Changeover


  • In parallel changeover, both new systems and old systems are operated simultaneously.

· 

  • Objective of parallel changeover is to test the reliability and performance of a new system before discontinuing the old system.

·

  • Parallel changeover reduced the risk of failed changeover.

· 

  • It allows the staff to get acquainted and trained on a new system.

· 

  • Main disadvantage of parallel changeover is the cost of running both the systems and ensuring data is consistent between the two systems.


Phased Changeover


  • In phased changeover, new modules are implemented in a phased manner.


  • This addresses the risk of complete system failure as new modules are tested and implemented in a gradual manner.


  • Following are some of the challenges of phased changeover:


  • Requirement of distinct hardware, OS, database etc. to maintain two unique environments.

  • To ensure consistency of data between new and old modules.


Abrupt Changeover 


  • In an abrupt changeover, a new system is implemented and the old system is taken off immediately.


  • It is the riskiest kind of changeover as a full system needs to be rolled back if changeover is failed.


  • Abrupt changeover is feasible where rollback is relatively easy and there is minimum impact of business processes.


Challenges related to Data Migration


  • Process of migration possesses high risk for data integrity and availability. Migration process should be thoroughly reviewed by the risk practitioner.


  • Risk practitioner should consider following points while reviewing system migration process:


  • To ensure correctness and completeness of the data transferred from old system to new system.


  • To ensure that data integrity is being maintained and there is no transcription or transposition error by transfer of data.


  • To ensure that appropriate backup is available for transferred data to address the risk of data corruption.


  • To ensure that the field/record/index and other data schema is consistent between old system and new system.


Fall back (Rollback)



  • Organization should have a structured fallback plan in place to address the risk of failure of system changeover or system migration.


  • Objective of a fallback plan is to roll back and return to the prior system.


  • Organization should have all required capability for roll back of the system before starting the changeover process



Key aspects from CRISC exam perspective

Below table covers important aspect from CRISC exam perspective:



CRISC Questions 

Possible Answer 

Who has responsibility for signing off on the accuracy and completeness of data migration of new system ?

Data owner/ User

Benefit of Parallel Cutover

Assurance that new system is working as per user requirement before discarding old system

Which system migration method has the greatest risk?

Direct cutover or Abrupt cutover


Which system migration method has the greatest redundancy?

Parallel Change


What is the greatest concern about the Direct Cutover Method?

Lack of backout plan



Self-Assessment Questions


Practice Questions - 3.11B System Migration  & Changeover (Go-live) Techniques

Popular posts from this blog

1.1 Risk Capacity, Risk Appetite and Risk Tolerance

1.1   Risk Capacity, Appetite and Tolerance First step of any risk management learning is to understand following three important terms: Risk Capacity Risk Tolerance  Risk Appetite  Let us understand the difference between Risk Capacity, Risk Appetite and Risk Tolerance:   Parameter Descriptions Risk Capacity Maximum risk an organization can afford to take. Risk Tolerance Risk tolerance levels are acceptable deviations from risk appetite. They are always lower than risk capacity. Risk Appetite Amount of risk an organization is willing to take.   Let us understand this with an practical example: Mr. A’s total saving is $1000. He wants to invest in equities to earn some income. Being risk conscious, he decides to invest only up to $700.  If the markets are good he is willing to further invest  $50.  Risk Capacity: Total amount available i.e. $1000 RIsk Appetite: His willingness to take risk i.e. $700 Risk Tolerance: A...
Read more

Welcome to first ever Web Book on CRISC (Certified Risk & Information System Control)

We welcome you to access this web book on CRISC (Certified Risk & Information System Control) by ISACA.   Features of this web book are as follow:  This web book is designed on the basis of official resources of ISACA.  Web book is designed specifically for candidates from non-technical background. Topics are arranged segment wise and aligned with latest CRISC Review Manual.  500 + Exam oriented practice questions.  Start your preparation here: Chapter 1   Chapter 2   Chapter 3   Chapter 4   CRISC - Recorded Lectures  We are happy to announce that CRISC lectures is now made available in Udemy in recorded form. You can access them at any time as per your convenience. You will have life time access for the recorded lectures.  Following are the salient features of the lecture: This course is designed on the basis of official resources of ISACA. Course is designed specifically for candidates from non-technical backgrou...
Read more

2.7 Risk Analysis Methodologies

2.7 Risk Analysis Methodologies Risk analysis is the process of ranking of various risk so that areas of high can be prioritized for treating them.   Risk can be measured and ranked by use of any of the following methods:   Quantitative Risk Assessment Qualitative Risk Assessment Semi-quantitative Risk Assessment   Factor that influence the selection for above technique is availability of accurate data for risk assessment. When data source is accurate and reliable, organization will prefer quantitative risk assessment as it will give risk value in some numeric terms like monitory values. Monetary value is easy to evaluate to determine the risk response. Quantitative Risk Assessment In quantitative risk assessment, risk is measured on the basis on numerical values. This helps in cost benefit analysis as risk in monetary term can be easily compared to cost of various risk responses.   In quantitative risk assessment, various statist...
Read more