The college shall ensure the implementation of a robust change management program that includes defining procedures, responsibilities, and controls to facilitate efficient and secure handling of changes to the college's IT systems, applications, and network infrastructure. Compliance with the NIST 800-53r5 controls related to change management shall be a fundamental component of the college's cybersecurity posture.