Approaches for Auditing Software Vendors
|
|
- Eric Griffith
- 6 years ago
- Views:
Transcription
1 Approaches for Auditing Software Vendors Chris Wubbolt, QACV Consulting, LLC IVT Validation Week October 20, /20/
2 Objectives Understanding impact of vendor processes on validation Review of Agile SDLC processes New approaches to auditing software vendors Understanding how SDLC and test tools are used by vendors How SaaS vendors impact your company s validation approaches and data integrity controls. 10/20/
3 Impact of Vendor Practices on Validation Internal Validation vs. SaaS-based Internal Validation Vendor Validation Plan User Requirements Functional Specifications Configuration Specification Installation Qualification System Testing User Acceptance Testing Traceability Matrix Validation Summary Report Standard Operating Procedures SDLC Deliverables Software 10/20/
4 Saas-based vs. Internal Validation SaaS Validation Vendor Validation Plan User Requirements Functional User Acceptance Specifications Testing Configuration Traceability Matrix Specification Installation Validation Summary Qualification Report System Standard Testing Operating Procedures User Quality Acceptance Agreement Testing Traceability Matrix Validation Summary Report Standard Operating Procedures Software SDLC Deliverables Functional Specifications Configuration Specification Installation Qualification System Testing Traceability Matrix SOPs Release Management 10/20/
5 Software Vendor Truisms Software vendors develop and maintain software. All software vendors are software developers. Quality software development is essential to the validation of a system. 21 CFR Part (a): Validation of systems to ensure accuracy, reliability, consistent intended performance, and the ability to discern invalid or altered records. 10/20/
6 Software Quality Truisms Quality cannot be tested into a system. Quality must be designed into a system. 10/20/
7 Software Development Software Development Life Cycle (SDLC) The set of activities that constitute the processes that are mandatory for the development and maintenance of software. The management and support processes that continue throughout the entire life cycle, as well as all aspects of the software life cycle from concept exploration through retirement, are covered. Utilization of the processes and their component activities maximizes the benefits to the user when the use of this standard is initiated early in the software life cycle. (1) (1) IEEE Standard for Developing Software Life Cycle Processes, /20/
8 SDLC Methodologies Waterfall Prototyping Incremental Development Spiral Rapid Application Development Agile Code and Fix (Cowboy Coding) 10/20/
9 Elements of an SDLC Design Testing (unit, module, system, etc.) Bug Fixes Requirements Configuration Management SQA Testing Release Management Maintenance (Customer Support) 10/20/
10 Vendor Quality System Elements Quality Manual Document Management Training Program Quality Assurance Supplier Management CAPAs / Investigations SDLC Procedures Customer Support 10/20/
11 Waterfall Methodology Requirements Analysis Requirements Analysis Design Design Implementation Implementation Verification / Verification / Testing Testing Operation / Operation / Maintenance Maintenance 10/20/
12 SDLC Agile Methodology 10/20/
13 SDLC Agile Methodology 10/20/
14 SDLC Agile Methodology Focus on short iterations of development Delivery of minimum viable product within short periods of time (2-3 weeks) Collaboration between end user and development team Continuous end user involvement is critical 10/20/
15 Agile - Scrum An iterative and incremental agile development framework. A flexible, holistic strategy where a development team works as a unit to reach a common goal. Enables teams to self-organize by encouraging physical co-location or close online collaboration and daily face-to-face communication among all team members and disciplines in the project. 10/20/
16 Agile - Scrum A key recognition is that during end users can change their minds about the system requirements. Scrum adopts an approach to deliver quickly and respond to emerging requirements. 10/20/
17 Software Vendor Truisms All software vendors are software developers. The software development life cycle methodology is arguably the most important process for a software vendor. Requirements Backlog User Stories Design/Development Unit Testing SQA Testing Release Management Code Reviews Design Documents 10/20/
18 Why is this important? Requirements Backlog User Stories Design/Development SQA Testing Unit Testing Code Reviews Design Documents Release Management 1. The vendors SDLC determines the quality of the software. 2. For SaaS vendors, the SDLC documentation may also be used as validation deliverables. 3. The SDLC documentation is likely to be maintained within vendor SDLC tools. 10/20/
19 Use of SDLC and Test Tools Requirements Backlog User Stories Design/Development SQA Testing Release Management Creation and Management of Requirements & User Stories Documentation of Unit Testing, Code Reviews & Design Documentation SQA Test Documentation Often used as validation tests. Configuration / Source Code Management Management of Bugs and Customer Support Tickets 10/20/
20 SDLC/Vendor Tools Requirements Management Source Code Management Configuration Management Code Review and Unit Testing Testing including automated testing Issue Management Customer Support Document Management 10/20/
21 SDLC/Vendor Tools - Examples Team Foundation Server (TFS) HP Quality Center HP Load Runner Altassian (Jira) Subversion Test Stuff Test Track CoSign SharePoint Wiki Pages Salesforce.com 10/20/
22 SDLC Tools Team Foundation Server (TFS) Requirements Management Use Cases User Stories Design Code Review Unit Testing Traceability Testing Approvals Release Management 10/20/
23 SDLC Tools Questions to ask What do the tools do? Do the tools impact software quality? Do the vendor s procedures reflect the use of these tools? Are the tools controlled, qualified, or validated? How are the records maintained by the tools managed and controlled? How are records approved? 10/20/
24 SDLC Tools What can go wrong? Issue Management Vendor used a cloud hosted version of Jira, which was used for issue management and change control. The license was not renewed and all records were lost. Electronic Approval Vendor used a local implementation of CoSign for approval of records. When license expired the electronic signatures applied previously could not be validated. 10/20/
25 SDLC Tools What can go wrong? Document Management Vendor used SharePoint workflow for approval of quality documents. The SharePoint configuration was setup to delete workflows after 90 days. All workflows (and subsequent document approvals) were deleted for all quality documents. Testing Test Stuff testing records could not be located for SQA testing. 10/20/
26 SDLC Tools What can go wrong? Automated Testing Automated test tools passed failing results. Test tools were not qualified. Tool Upgrades / Replacements Inability to migrate records from legacy tools. Records Unable to present records of SDLC activities, including test results. 10/20/
27 Computerized Systems GxP Electronic Recordkeeping Program Standard Operating Procedures Trained Personnel (including IT) Qualified Infrastructure Validated Applications Data Integrity Data Availability Data Retention 10/20/
28 The Old Days Software Applications QMS LIMS 10/20/
29 The Old Days Software Applications QMS LIMS 10/20/
30 The Old Days Pharma AData Center Inc STILL NEED GxPElectronic Recordkeeping Controls Qualified Infrastructure Standard Operating Procedures Trained Personnel (including IT) Validated Applications 10/20/
31 Software as a Service Saas Provider Software Applications QMS LIMS Data Center Fail Over Site 10/20/
32 Software Software as a Service Vendor Provider Software Vendor Quality System Quality System SDLC Processes SDLC Processes Customer Support Customer Validation Support Data Integrity Controls Hosted Environment Typically Hosted Environment not directly regulated is used for a inspected direct GxPfunction by regulatory (record agencies. keeping) Audited and is more by clients likely to for be adherence inspected to by standards. regulatory agencies. Quality Audited of by SLC clients Documentation, for adherence Testing, to standards etc. varies (GxP, considerably Part 11). for each vendor. Quality of SDLC Documentation, Testing, etc. varies considerably for Sponsor each vendor. responsible for installation, validation, and electronic recordkeeping SaaS provider responsible controls at sponsor for some location. aspects of installation, validation, and electronic recordkeeping controls. 10/20/
33 SaaS Vendor Responsibilities Validation (with Pharma Company) Change Control Incident Management Maintenance Security (Physical and Logical) Electronic recordkeeping Backup and Restore Disaster Recovery 10/20/
34 Vendor Audit Observations - Considerations Specifications Not complete Not updated periodically after changes Test Records No pre-approved Test Plans Results not reviewed by second person Integrity of test results No approved summary reports Release Management 10/20/
35 Vendor Audit Observations Considerations Test Record Integrity Results and signatures/initials typed into Word document or Excel spreadsheet No failures documented Test dates and times do not correlate 10/20/
36 Vendor Audit Observations Record Integrity Considerations Lack of records to demonstrate successful backup Failed backups Lack of documentation of disaster recovery testing 10/20/
37 Summary Reviewed impact of vendor processes on validation Review of Agile SDLC processes Discussed new approaches to auditing software vendors Reviewed how SDLC and test tools are used by vendors Discussed ow SaaS vendors impact your company s validation approaches and data integrity controls. 10/20/
38 Questions Chris Wubbolt QACV Consulting, LLC Telephone:
Sparta Systems TrackWise Digital Solution
Systems TrackWise Digital Solution 21 CFR Part 11 and Annex 11 Assessment February 2018 Systems TrackWise Digital Solution Introduction The purpose of this document is to outline the roles and responsibilities
More informationSparta Systems TrackWise Solution
Systems Solution 21 CFR Part 11 and Annex 11 Assessment October 2017 Systems Solution Introduction The purpose of this document is to outline the roles and responsibilities for compliance with the FDA
More informationSparta Systems Stratas Solution
Systems Solution 21 CFR Part 11 and Annex 11 Assessment October 2017 Systems Solution Introduction The purpose of this document is to outline the roles and responsibilities for compliance with the FDA
More informationAgilent Response to 21CFR Part11 requirements for the Agilent ChemStation Plus
Agilent Response to 21CFR Part11 requirements for the Agilent ChemStation Plus 1. Preface This document describes which requirements of the FDA s rule for electronic records and electronic signature (21
More informationAutomated Cloud Compliance. GxP and 21 CFR Part 11 Compliance
Automated Cloud Compliance GxP and 21 CFR Part 11 Compliance Solution Overview Sierra Labs has developed a set of tools to help companies with HIPAA compliance, 21 CFR Part 11 requirement, and GxP validation
More information"Charting the Course... Certified Information Systems Auditor (CISA) Course Summary
Course Summary Description In this course, you will perform evaluations of organizational policies, procedures, and processes to ensure that an organization's information systems align with overall business
More informationUniversity Information Technology Data Backup and Recovery Policy
University Information Technology Data Backup and Recovery Policy I. Purpose and Scope A. The purpose of this policy is to document the University of Utah Information Technology (UIT) data backup and recovery
More informationTouchstone Technologies, Inc. Course Catalog February 2017
Touchstone Technologies, Inc. Course Catalog February 2017 Angela Bazigos ANGELA BAZIGOS 1 HR Courses Course Duration Audience Speaker 1. Basics of Project Management Webinar 90 mins Management Bazigos
More informationISSUE N 1 MAJOR MODIFICATIONS. Version Changes Related Release No. PREVIOUS VERSIONS HISTORY. Version Date History Related Release No.
ISSUE N 1 MAJOR MODIFICATIONS Version Changes Related Release No. 01 First issue. 2.8.0 PREVIOUS VERSIONS HISTORY Version Date History Related Release No. N/A N/A N/A N/A APPROVAL TABLE Signatures below
More informationQuality Assurance and IT Risk Management
Quality Assurance and IT Risk Deutsche Bank s QA and Testing Transformation Journey Michael Venditti Head of Enterprise Testing Services, Deutsche Bank IT RISK - REGULATORY GOVERNANCE Major shifts in the
More informationCertified Information Systems Auditor (CISA)
Certified Information Systems Auditor (CISA) 1. Domain 1 The Process of Auditing Information Systems Provide audit services in accordance with IT audit standards to assist the organization in protecting
More information18-642: Software Development Processes
18-642: Software Development Processes 9/6/2017 Coding Is Essentially 0% of Creating Software http://e.ubmelectronics.com/2013embeddedstudy/index.html 2 Old-School Waterfall Development Cycle Bugs SPECIFY
More informationAgile Accessibility. Presenters: Ensuring accessibility throughout the Agile development process
Agile Accessibility Ensuring accessibility throughout the Agile development process Presenters: Andrew Nielson, CSM, PMP, MPA Ann Marie Davis, CSM, PMP, M. Ed. Cammie Truesdell, M. Ed. Overview What is
More information21 CFR PART 11 FREQUENTLY ASKED QUESTIONS (FAQS)
21 CFR PART 11 FREQUENTLY ASKED QUESTIONS (S) The United States Food and Drug Administration (FDA) defines the criteria under which electronic records and electronic signatures are considered trustworthy,
More information21 CFR Part 11 LIMS Requirements Electronic signatures and records
21 CFR Part 11 LIMS Requirements Electronic signatures and records Compiled by Perry W. Burton Version 1.0, 16 August 2014 Table of contents 1. Purpose of this document... 1 1.1 Notes to version 1.0...
More informationAdopting Agile Practices
Adopting Agile Practices Ian Charlton Managing Consultant ReleasePoint Software Testing Solutions ANZTB SIGIST (Perth) 30 November 2010 Tonight s Agenda What is Agile? Why is Agile Important to Testers?
More informationLeveraging ALCOA+ Principles to Establish a Data Lifecycle Approach for the Validation and Remediation of Data Integrity. Bradford Allen Genentech
Leveraging ALCOA+ Principles to Establish a Data Lifecycle Approach for the Validation and Remediation of Data Integrity Bradford Allen Genentech 1 Agenda Introduction Data Integrity 101 Review What is
More informationTopic 01. Software Engineering, Web Engineering, agile methodologies.
Topic 01 Software Engineering, Web Engineering, agile methodologies. 1 What is Software Engineering? 2 1 Classic Software Engineering The IEEE definition: Software Engineering is the application of a disciplined,
More informationImproved Database Development using SQL Compare
Improved Database Development using SQL Compare By David Atkinson and Brian Harris, Red Gate Software. October 2007 Introduction This white paper surveys several different methodologies of database development,
More informationData Integrity and the FDA AFDO Education Conference
Data Integrity and the FDA AFDO Education Conference June, 2018 OUR EXPERIENCE YOUR SUCCESS 1 Data Integrity What does it mean to you? 2 Data Integrity What does FDA say about data integrity No legal definition
More informationVersion v November 2015
Service Description HPE Quality Center Enterprise on Software-as-a-Service Version v2.0 26 November 2015 This Service Description describes the components and services included in HPE Quality Center Enterprise
More informationIntroduction To IS Auditing
Introduction To IS Auditing Instructor: Bryan McAtee, ASA, CISA Bryan McAtee & Associates - Brisbane, Australia * Course, Presenter and Delegate Introductions * Definition of Information Technology (IT)
More informationCompliance Matrix for 21 CFR Part 11: Electronic Records
Compliance Matrix for 21 CFR Part 11: Electronic Records Philip E. Plantz, PhD, Applications Manager David Kremer, Senior Software Engineer Application Note SL-AN-27 Revision B Provided By: Microtrac,
More informationProtecting Information Assets - Week 11 - Application Development Security. MIS 5206 Protecting Information Assets
Protecting Information Assets - Week 11 - Application Development Security MIS5206 Week 11 Team Presentations Application Development Security Test Taking Tip Quiz Application Development Security As applications
More informationSUPPLEMENTAL TERMS FOR LIFE SCIENCES SOLUTION SUITE PUBLIC CLOUD NOVEMBER 2016
EMC Suite Public Cloud SaaS Service Standards Supplemental Terms The SaaS Service Standards in this document apply (i) only between EMC and those organizations that procure the applicable SaaS Services
More informationHow Can a Tester Cope With the Fast Paced Iterative/Incremental Process?
How Can a Tester Cope With the Fast Paced Iterative/Incremental Process? by Timothy D. Korson Version 7.0814 QualSys Solutions 2009 1 Restricted Use This copyrighted material is provided to attendees of
More informationMaintain Data Control and Work Productivity
DATA SHEET CloudAlly Backup The Complete Microsoft 365 Solution: Office 365 Exchange, SharePoint, and OneDrive KEY CAPABILITIES CloudAlly s cloud-to-cloud backup solution for the complete Microsoft cloud
More information(Complete Package) We are ready to serve Latest Testing Trends, Are you ready to learn? New Batches Info
(Complete Package) WEB APP TESTING DB TESTING We are ready to serve Latest Testing Trends, Are you ready to learn? New Batches Info START DATE : TIMINGS : DURATION : TYPE OF BATCH : FEE : FACULTY NAME
More informationAppScan Deployment APPLICATION SECURITY SERVICES. Colin Bell. Applications Security Senior Practice Manager
APPLICATION SECURITY SERVICES AppScan Deployment Colin Bell Applications Security Senior Practice Manager Copyright 2017 HCL Products & Platforms www.hcltech.com The Evolution of Devops 2001 - Continuous
More informationCAPABILITY STATEMENT
CAPABILITY STATEMENT Trident Health Services OUR MISSION Our mission is to be the best holistic supplier of IT services, and provide quality systems and cost effective, integrated solutions to all our
More informationIndustry Guidelines for Computerized Systems Validation (GAMP, PDA Technical Reports)
Training Course Computerized System Validation in the Pharmaceutical Industry Istanbul, 16-17 January 2003 Industry Guidelines for Computerized Systems Validation (GAMP, PDA Technical Reports) Wolfgang
More informationWhen ITIL met Agile What can your ITIL implementation project learn from agile principles?
When ITIL met Agile What can your ITIL implementation project learn from agile principles? Kelvin Prescott Director Agenda Introductions Background to Agile in Software Development The Agile Manifesto
More informationApplication Lifecycle Management on Softwareas-a-Service
Service Description HPE Application Lifecycle Management on Software-as-a- Service Version v2.0 26 November 2015 This Service Description describes the components and services included in HPE Application
More informationStatement of 21 CFR Part 11 Validation Results
Statement of Validation Results Software application: Session Manager DB (TurboTag ) Sealed Air Corporation Version: 2.1.1.5 Status: Validated through version 2.1.1.5 (Original validation completed on
More information21 CFR Part 11 FAQ (Frequently Asked Questions)
21 CFR Part 11 FAQ (Frequently Asked Questions) and Roles and Responsibilities for Assessment of METTLER TOLEDO STAR e Software Version 16.00, including: - 21 CFR 11 Compliance software option for Compliance
More informationI-9 AND E-VERIFY VENDOR DUE DILIGENCE
I-9 AND E-VERIFY VENDOR DUE DILIGENCE WHITE PAPER I-9 and E-Verify Vendor Due Diligence Key questions to ask electronic I-9 vendors to ensure you are making the best choice for your business. 1. Vendor
More informationManaged Security Services - Endpoint Managed Security on Cloud
Services Description Managed Security Services - Endpoint Managed Security on Cloud The services described herein are governed by the terms and conditions of the agreement specified in the Order Document
More informationemarketeer Information Security Policy
emarketeer Information Security Policy Version Date 1.1 2018-05-03 emarketeer Information Security Policy emarketeer AB hereafter called emarketeer is a leading actor within the development of SaaS-service
More informationTesting in the Agile World
Testing in the Agile World John Fodeh Solution Architect, Global Testing Practice 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Outline
More informationSECURITY & PRIVACY DOCUMENTATION
Okta s Commitment to Security & Privacy SECURITY & PRIVACY DOCUMENTATION (last updated September 15, 2017) Okta is committed to achieving and preserving the trust of our customers, by providing a comprehensive
More informationREPORT 2015/149 INTERNAL AUDIT DIVISION
INTERNAL AUDIT DIVISION REPORT 2015/149 Audit of the information and communications technology operations in the Investment Management Division of the United Nations Joint Staff Pension Fund Overall results
More informationRecommendations for Implementing an Information Security Framework for Life Science Organizations
Recommendations for Implementing an Information Security Framework for Life Science Organizations Introduction Doug Shaw CISA, CRISC Director of CSV & IT Compliance Azzur Consulting Agenda Why is information
More informationBYTEGRIDR. in the GxP Context. Presentation to the FDA Cloud Working Group. Copyright 2014 ByteGrid. All Rights Reserved.
. FedRAMP in the GxP Context Presentation to the FDA Cloud Working Group Copyright 2014 ByteGrid. All Rights Reserved. WHAT IS FEDRAMP? The Federal Risk and Authorization Management Program (FedRAMP) is
More informationIntegration of Agilent OpenLAB CDS EZChrom Edition with OpenLAB ECM Compliance with 21 CFR Part 11
OpenLAB CDS Integration of Agilent OpenLAB CDS EZChrom Edition with OpenLAB ECM Compliance with 21 CFR Part 11 Technical Note Introduction Part 11 in Title 21 of the Code of Federal Regulations includes
More informationApplication Lifecycle Management Solutions using Microsoft Visual Studio 2013
1800 ULEARN (853 276) www.ddls.com.au Application Lifecycle Management Solutions using Microsoft Visual Studio 2013 Length 5 days Price $4477.00 (inc GST) Overview This five day course is designed to get
More informationAT FIRST VIEW C U R R I C U L U M V I T A E. Diplom-Betriebswirt (FH) Peter Konrad. Executive Partner Senior Consultant
Our Contact Details IT-SCAN GMBH c/o: DOCK3 Hafenstrasse 25-27 68159 Mannheim E: info@it-scan.de W: www.it-scan.de Nationalität Berufserfahrung C U R R I C U L U M V I T A E Diplom-Betriebswirt (FH) Peter
More informationSE420 - Software Quality Assurance
SE420 - Software Quality Assurance http://dilbert.com/strips/comic/2006-01-29/ Lecture 3 Unit Testing, Part-2 January 21, 2019 Sam Siewert Reminders Assignment #2 Posted Thursday [Unit Re-Use] Explore
More informationDevOps Agility in the Evolving Cloud Services Landscape
DevOps Agility in the Evolving Cloud Services Landscape Kiran Chitturi CTO Architect, Sungard Availability Services @nkchitturi Kiran Chitturi Architect in the Office of the CTO Focus on DevOps and cloud
More informationBusiness Continuity Management Standards A Side-by-Side Comparison
Business Continuity Standards A Side-by-Side Comparison By Brian Zawada (CBCP) & Jared Schwartz (CBCP) Whether your organization has begun a grassroots initiative to develop a business continuity plan
More informationSelling Improved Testing
Selling Improved Testing Reducing Customer Pain Technology Advance Partners Technology Advance Partners is a software services consulting firm with deep experience in Information Technology management,
More informationMcAfee Product Security Practices
McAfee Product Security Practices 12 October 2017 McAfee Public Page 1 of 8 12 October 2017 Expires 12 Apr 2018 Importance of Security At McAfee (formerly Intel Security) we take product security very
More informationVersion v November 2015
Service Description HPE Project and Portfolio Management on Software-as-a- Service Version v2.0 26 November 2015 This Service Description describes the components and services included in HPE Project and
More informationWHITE PAPER- Managed Services Security Practices
WHITE PAPER- Managed Services Security Practices The information security practices outlined below provide standards expected of each staff member, consultant, or customer staff member granted access to
More informationAccelerate Your Enterprise Private Cloud Initiative
Cisco Cloud Comprehensive, enterprise cloud enablement services help you realize a secure, agile, and highly automated infrastructure-as-a-service (IaaS) environment for cost-effective, rapid IT service
More informationEU Annex 11 Compliance Regulatory Conformity of eve
White Paper EU Annex 11 Compliance Regulatory Conformity of eve Franco Berz, Head of Quality Management INFORS HT Dr. Britta Abellan, Computer System Validation Manager INFORS HT 1. Introduction More and
More informationVeritas SaaS Backup for Office 365
Veritas SaaS Backup for Office 365 Documentation version: 1.0 Legal Notice Copyright 2018 Veritas Technologies LLC. All rights reserved. Veritas and the Veritas Logo are trademarks or registered trademarks
More informationStruggling to Integrate Selenium into Your Ice Age Test Management Tools?
WWW.PLUTORA.COM SOLUTION BRIEF Struggling to Integrate Selenium into Your Ice Age Test Management Tools? You want Selenium. Your team wants Selenium. But your outdated testing tools don t work with it.
More informationChapter 8: SDLC Reviews and Audit Learning objectives Introduction Role of IS Auditor in SDLC
Chapter 8: SDLC Reviews and Audit... 2 8.1 Learning objectives... 2 8.1 Introduction... 2 8.2 Role of IS Auditor in SDLC... 2 8.2.1 IS Auditor as Team member... 2 8.2.2 Mid-project reviews... 3 8.2.3 Post
More informationNASCIO Recognition Award Nomination. Title: Central Issuance of State Drivers Licenses. Category: Digital Government Government to Citizen
NASCIO Recognition Award Nomination Title: Central Issuance of State Drivers Licenses Category: Digital Government Government to Citizen State: North Carolina Executive Summary The NCDMV wanted to reduce
More informationAny observations not included in this report were discussed with your staff at the informal exit conference and may be subject to follow-up.
Larry Mandel Vice Chancellor and Chief Audit Officer Audit and Advisory Services 401 Golden Shore, 4th Floor Long Beach, CA 90802-4210 562-951-4430 562-951-4955 (Fax) lmandel@calstate.edu October 10, 2018
More informationSDA COMPLIANCE SOFTWARE For Agilent ICP-MS MassHunter Software
SDA COMPLIANCE SOFTWARE For Agilent ICP-MS MassHunter Software Part 11 in Title 21 of the US Code of Federal Regulations (commonly referred to as 21 CFR Part 11) governs food and drugs in the US, and includes
More informationAgile Manifesto & XP. Topics. Rapid software development. Agile methods. Chapter ) What is Agile trying to do?
Topics 1) What is trying to do? Manifesto & XP Chapter 3.1-3.3 2) How to choose plan-driven vs? 3) What practices go into (XP) development? 4) How to write tests while writing new code? CMPT 276 Dr. B.
More informationAdapt your tes-ng approach for Agile
Adapt your tes-ng approach for Agile Emma Armstrong @EmmaATester www.taoo;es-ng.,co,uk Emma.armstrong@towerswatson.com Today s Session So;ware development methodologies Tes-ng in those methodologies Agile
More informationCMMI Version 1.2. Josh Silverman Northrop Grumman
CMMI Version 1.2 Josh Silverman Northrop Grumman Topics The Concept of Maturity: Why CMMI? CMMI Overview/Aspects Version 1.2 Changes Sunsetting of Version 1.1 Training Summary The Concept of Maturity:
More informationCurriculum Catalog
2017-2018 Curriculum Catalog Career and Technical Education Series: Information Technology Introduction to Information Technology Support 2017 Glynlyon, Inc. Table of Contents INTRODUCTION TO INFORMATION
More informationData Governance Quick Start
Service Offering Data Governance Quick Start Congratulations! You ve been named the Data Governance Leader Now What? Benefits Accelerate the initiation of your Data Governance program with an industry
More informationVeritas SaaS Backup for Salesforce
Veritas SaaS Backup for Salesforce Documentation version: 2.0 Legal Notice Copyright 2018 Veritas Technologies LLC. All rights reserved. Veritas and the Veritas Logo are trademarks or registered trademarks
More informationHCL GRC IT AUDIT & ASSURANCE SERVICES
HCL GRC IT AUDIT & ASSURANCE SERVICES Overview The immense progress made in information and communications technology offers enterprises outstanding benefits. However this also results in making the risk
More informationSystem Development Life Cycle Methods/Approaches/Models
Week 11 System Development Life Cycle Methods/Approaches/Models Approaches to System Development System Development Life Cycle Methods/Approaches/Models Waterfall Model Prototype Model Spiral Model Extreme
More informationIT SECURITY RISK ANALYSIS FOR MEANINGFUL USE STAGE I
Standards Sections Checklist Section Security Management Process 164.308(a)(1) Information Security Program Risk Analysis (R) Assigned Security Responsibility 164.308(a)(2) Information Security Program
More informationDATA BACKUP AND RECOVERY POLICY
DATA BACKUP AND RECOVERY POLICY 4ITP04 Revision 01 TABLE OF CONTENTS 1. REVISION RECORD... 3 2. PURPOSE... 4 3. SCOPE AND APPLICABILITY... 4 4. DEFINITIONS AND ABBREVIATIONS... 4 5. POLICY STATEMENTS...
More informationUse Guide STANDARD JIRA CLIENT. (Practical Case)
Use Guide STANDARD JIRA CLIENT (Practical Case) Version 3.0 Madrid, July 2018 1 OBJECTIVE 4 2 BASIC STANDARD SOLUTION 4 2.1 User Profiles 4 2.2 Types of issue 2.2.1 Functional Support 2.2.2 Corrective
More informationRequirements and Design Overview
Requirements and Design Overview Robert B. France Colorado State University Robert B. France O-1 Why do we model? Enhance understanding and communication Provide structure for problem solving Furnish abstractions
More informationCloud solution consultant
Cloud solution consultant Role brief Directorate Jisc technologies Base location Harwell or Bristol Grade B Job level 18 Job family Professional services Date 23/10/2017 Reports to Cloud services group
More informationVeritas System Recovery 18 Management Solution Administrator's Guide
Veritas System Recovery 18 Management Solution Administrator's Guide Documentation version: 18 Legal Notice Copyright 2018 Veritas Technologies LLC. All rights reserved. Veritas and the Veritas Logo are
More informationWipro s Endur Test Automation Framework (W-ETAF) Reduces time and effort for the implementation and maintenance of an automated test solution.
Wipro s Endur Test Automation Framework (W-ETAF) Reduces time and effort for the implementation and maintenance of an automated test solution. Introduction: Commodity trading, transaction and risk a changing
More informationWhat is JIRA? software development tool. planning and tracking the projects progress and supporting the team collaboration
Jakub Sykora What is JIRA? software development tool planning and tracking the projects progress and supporting the team collaboration supports both Agile (Scrum & Kanban) and waterfall methodologies What
More informationBusiness continuity management and cyber resiliency
Baker Tilly refers to Baker Tilly Virchow Krause, LLP, an independently owned and managed member of Baker Tilly International. Business continuity management and cyber resiliency Introductions Eric Wunderlich,
More informationGXP, E-RAW DATA AND E-ARCHIVE QA PERSPECTIVE
GXP, E-RAW DATA AND E-ARCHIVE QA PERSPECTIVE GIQAR Feedback of GxP & Electronic Archive Round Table (March 21 st 2016) Dott.ssa Ilaria Enrietto RBM SpA Merck Biopharma Parma - May 18th 2016 1 1 HOW THE
More informationSkyhook designs and deploys high performance mobile location solutions, and exists to make location faster, more precise and practical.
CLEARVISION CASE STUDY INDUSTRY: Computer Software EST: 2003 COMPANY SIZE: 150-200 HEADQUARTERS Boston MA About Skyhook Skyhook designs and deploys high performance mobile location solutions, and exists
More informationElectronic Records and Signatures with the Sievers M9 TOC Analyzer and DataPro2 Software
Water Technologies & Solutions fact sheet 21 CFR Part 11 Electronic Records and Signatures with the Sievers M9 TOC Analyzer and DataPro2 Software introduction Part 11 of Title 21 of the Code of Federal
More informationSoftware Testing
Ali Complex, 2nd block, Kormangala, Madiwala, Bengaluru-560068 Page 1 What is Software Testing? Software Testing is the process of testing software with the purpose of finding bugs and ensuring that it
More informationOptimisation drives digital transformation
January 2017 Executive summary Forward-thinking business leaders are challenging their organisations to achieve transformation by harnessing digital technologies with organisational, operational, and business
More informationCIP Cyber Security Recovery Plans for BES Cyber Systems
A. Introduction 1. Title: Cyber Security Recovery Plans for BES Cyber Systems 2. Number: CIP-009-6 3. Purpose: To recover reliability functions performed by BES Cyber Systems by specifying recovery plan
More informationWill your application be secure enough when Robots produce code for you?
SESSION ID: ASD-W02 Will your application be secure enough when Robots produce code for you? Hasan Yasar Technical Manager, Faculty Member SEI CMU @securelifecycle With the speed of DevOps It is me! I
More informationTesting in an Agile Environment Understanding Testing role and techniques in an Agile development environment. Just enough, just in time!
Testing in an Agile Environment Understanding Testing role and techniques in an Agile development environment. Just enough, just in time! Today s Topics How the Tester s Role Changes in Agile Testing in
More informationBrooke Roecker, Kristen Ward, Chris Mickle, Sarah Wright & Shauna McKellar
Brooke Roecker, Kristen Ward, Chris Mickle, Sarah Wright & Shauna McKellar Overview of ICEDM, BMP and path forward Synergies with other organizations White paper overview Data Management Plan Valid Values
More informationBCS Level 3 Certificate in Software Development Context and Methodologies Syllabus QAN 603/1191/5
Making IT good for society BCS Level 3 Certificate in Software Development Context and Methodologies Syllabus QAN 603/1191/5 Version 3.1 March 2018 This is a United Kingdom government regulated qualification
More informationPracticing Agile As a BA
2014 BA Convention Practicing Agile As a BA Presented by: Jagruti Shah Associate Business Consultant Mastek Ltd 2014 BA Convention 2 Role of BA in Agile What is Agile? What does Agile mean for a Business
More informationA company built on security
Security How we handle security at Flywheel Flywheel was founded in 2012 on a mission to create an exceptional platform to help creatives do their best work. As the leading WordPress hosting provider for
More informationLevel 5 Diploma in Computing
Level 5 Diploma in Computing 1 www.lsib.co.uk Objective of the qualification: It should available to everyone who is capable of reaching the required standards It should be free from any barriers that
More informationSystems Analysis and Design in a Changing World, Fourth Edition
Systems Analysis and Design in a Changing World, Fourth Edition Systems Analysis and Design in a Changing World, 4th Edition Learning Objectives Explain the purpose and various phases of the systems development
More informationSpiraTeam Feature Comparison
SpiraTeam Feature omparison P X urrently Supported Planned Functionality Not Applicable Not Supported SpiraTeam A Rally ollabnet V1 ollabnet TeamForge TargetProcess Microsoft Team Services HP ALM General
More informationBPS Suite and the OCEG Capability Model. Mapping the OCEG Capability Model to the BPS Suite s product capability.
BPS Suite and the OCEG Capability Model Mapping the OCEG Capability Model to the BPS Suite s product capability. BPS Contents Introduction... 2 GRC activities... 2 BPS and the Capability Model for GRC...
More informationSolutions Technology, Inc. (STI) Corporate Capability Brief
Solutions Technology, Inc. (STI) Corporate Capability Brief STI CORPORATE OVERVIEW Located in the metropolitan area of Washington, District of Columbia (D.C.), Solutions Technology Inc. (STI), women owned
More informationSERVICE DESCRIPTION MANAGED BACKUP & RECOVERY
Contents Service Overview.... 3 Key Features... 3 Implementation... 4 Validation... 4 Implementation Process.... 4 Internal Kick-Off... 4 Customer Kick-Off... 5 Provisioning & Testing.... 5 Billing....
More informationVeritas System Recovery 16 Management Solution Administrator's Guide
Veritas System Recovery 16 Management Solution Administrator's Guide Documentation version: 2017 Legal Notice Copyright 2017 Veritas Technologies LLC. All rights reserved. Veritas and the Veritas Logo
More informationAgilent ICP-MS ChemStation Complying with 21 CFR Part 11. Application Note. Overview
Agilent ICP-MS ChemStation Complying with 21 CFR Part 11 Application Note Overview Part 11 in Title 21 of the Code of Federal Regulations includes the US Federal guidelines for storing and protecting electronic
More informationHIPAA Compliance and OBS Online Backup
WHITE PAPER HIPAA Compliance and OBS Online Backup Table of Contents Table of Contents 2 HIPAA Compliance and the Office Backup Solutions 3 Introduction 3 More about the HIPAA Security Rule 3 HIPAA Security
More informationINFORMATION. Guidance on the use of the SM1000 and SM2000 Videographic Recorders for Electronic Record Keeping in FDA Approved Processes
INFORMATION No. INF02/70 Issue 3 Date: October 2007 Product SM1000 and SM2000 Videographic Recorders Manuals IM/SM1000 and IM/SM2000 Guidance on the use of the SM1000 and SM2000 Videographic Recorders
More information