A document that provides evidence that the change was tested and approved in the production environment. The document must contain: reference to a Cyber Incident Response (CIR); identified deployment resources; deployment start date; deployment end date; expected results; actual results; approval signature; and approval date.