|
|
Process Warehouse
Index: (76-100)
The
following is a complete alphabetical listing of
process topics on QAI's Process
WarehouseSM |
|
|
Quality Materials -
Building a Library
- This process
explains why it is important to establish a
library of quality material and how build such a
library.
Quality – Improving
Quality Through the Use of Quality
Vocabulary
- This process emphasizes
that in order to understand you must understand
the vocabulary of quality, which needs to be
introduced and used by IT
professionals.
RARE Framework -
Measuring the Probability that a Software Project
Will Fail
- This process uses a
framework for perennial process maturity,
contributed by a QAI member, that identifies both
where process improvement can lead to a higher
maturity level and identifies the probability and
points where a software project may
fail.
Recommendations
-
A 4-step processes that uses the attributes of the
problem, including four different analysis methods
to develop a recommendation for
improvement.
Risk - Determining the
Magnitude
- This process identifies
four methods for identifying the magnitude of
risk, and proposes using the risk formula as a
preferred method.
Risk – Measuring
the Risk Associated with Effective Privacy
Procedures
- A 3-step process which
identifies the risk criteria associated with
privacy, then provides a method for determining
the magnitude of risk associated with assuring the
privacy in IT systems.
Risk –
Measuring the Risk Associated with Ineffective GUI
Procedures
- A 3-step process which
identifies the risk criteria associated with GUI,
then provides a method for determining the
magnitude of risk associated with assuring the GUI
in IT systems.
Risk - Measure and
Minimize SW Project Risk
- A 3-step
process that uses a risk assessment team and a
risk questionnaire to evaluate risk and take
appropriate action for those high risk attributes
of a software development
project.
Risk – A Systematic
Approach for Anticipating Failures
- A
12-step risk identification process, submitted by
a QAI Member, for identifying and dealing with
risks early in development in order to lessen
long-term costs and help prevent software
disasters.
Risk
Estimation
- A 2-step process for
organizations that want a quick estimate of the
magnitude of risk associated with an IT
project.
Security - Calculating the
Loss Associated with Threats
- Threats
are the triggers that cause a risk to turn into a
loss. This 3-step process uses the annual loss
expectation method for estimating the loss
associated with a threat.
Security
- Creating Enthusiasm for Security
- A
2-step process which encourages compliance to
security procedures by creating IT
organization-wide enthusiasm for complying to
those security procedures.
Security
- Developing a Disaster Recovery Strategy
- A 6-step process provides a risk
based approach for defining the actions to be
taken in the event a disaster occurs in an IT
organization.
Security - Identify
Weaknesses Using Penetration Point
- A
4-step process for identifying potential
perpetrators and the point where it is most likely
that an IT system would be
penetrated.
Security – Calculating
the Cost and Value of Security
Measures
- A 3-step process designed
to focus security efforts which are most cost
effective to implement.
Security
Services – Defining a Statement of
Work
- A 3-step process for defining a
statement of security services, such as developing
a security policy and security training in order
to minimize security
risks.
Security Services - Mission,
Roles, Responsibilities
- A 2-step
process designed to define the mission for IT
security services and then assign security
services roles and responsibilities to individuals
who will accomplish the
mission.
Security Services Life
Cycle
- This 6-step process discusses
each phase of the IT security services life cycle
to provide a starting point for evaluating and
selecting sound security
practices
Security – Building a
Plan to Test Network Security
- A
5-step process designed to provide guidance to
assist organizations in avoiding duplication of
effort by providing a consistant approach to
network security testing throughout the
organization’s networks.
Security –
Determining the Security for Testing
Security
- A 4-step process which
identifies the magnitude of a potential security
penetration, then determines the costs and
benefits of testing to develop a priority of what
aspects of security should be tested
first.
Security Testing
Techniques
- A 3-step process
beginning with understanding security testing
techniques, then selecting a specific technique
based on the strengths and weaknesses of that
technique and the frequency by which that
technique should be
used.
Self-Assessment – Measuring
the Effectiveness of a System to Meet
Objectives
- A 3-step process to
assess an information system after completion to
answer the question, “Did IT build the right
system?”
Self-Assessment –
Measuring the Effectiveness of a System’s
Architecture
- A 3-step process to
measure the technical quality of a completed
information system to answer the question, “Did IT
build the system
right?”
Self-Assessment - Malcolm
Baldrige Quality Award
- A 3-step
process that builds and trains an assessment team
to quickly calculate an approximate score for an
IT organization measured against the criteria of
the Malcolm Baldrige Quality
Award.
Self-Assessment – A Survey
to Enable End Users to Measure
Quality
- A 3-step process using a
survey to enable users of an information system to
measure their assessment of the quality of
delivered information systems. |
|
|
| |
|
| | | |
