Configuration Management

ISO 10007:2017, “Quality management – Guidelines for configuration management”, provides guidance on the use of configuration management within an organization. It is applicable to the support of products and services from concept to disposal.

The purpose of this third edition of ISO 10007 is to enhance understanding of the subject, promote the use of configuration management, and assist organizations applying configuration management to improve their performance.

ISO 10007 outlines the responsibilities and authorities before describing the configuration management process that includes configuration management planning, configuration identification, change control, configuration status accounting, and configuration audit.

Configuration management is a management activity that applies technical and administrative direction over the life cycle of a product and service, its configuration identification and status, and related product and service configuration information.

Configuration management documents the product or service configuration. It provides identification and traceability, the status of achievement of its physical and functional requirements, and access to accurate information in all phases of the life cycle.

Configuration management can be implemented based on the size of the organization and the complexity and nature of the product or service and reflects the needs of specific lifecycle phases.

Configuration management can be used to meet the product and service identification and traceability requirements specified in ISO 9001:2015, 8.5.2.

This third edition cancels and replaces the second edition (ISO 10007:2003), which has been technically revised. This edition aligns ISO 10007 with ISO 9000:2015 and ISO 9001:2015.

Table of Contents

1. Scope
2. Normative references
3. Terms and definitions

4. Configuration management responsibilities
4.1 Responsibilities and authorities
4.2 Dispositioning authority

5 Configuration management process
5.1 General
5.2 Configuration management process
5.3 Configuration identification
5.3.1 Product structure or service capability and selection of configuration items
5.3.2 Configuration information
5.3.3 Configuration baselines
5.4 Change control
5.4.1 General
5.4.2 Initiation, identification, and documentation of the need for change
5.4.3 Evaluation of change
5.4.4 Disposition of change
5.4.5 Implementation and verification of change
5.5 Configuration status accounting
5.5.1 General
5.5.2 Documented Information
5.5.3 Reports
5.6 Configuration audit

Annex A: Structure and content of a configuration management plan
A.1 General
A.2 Introductory section
A.3 Policies
A.4 Configuration identification
A.5 Change control
A.6 Configuration status accounting
A.7 Configuration audit

Ordering Information

You can order ISO 10007:2017 at this ISO web page for about $58. You can order it at this ANSI web page for $68, or $54.40 at the ANSI member price.