Mais conteúdo relacionado Semelhante a Independent Software Assessments (20) Independent Software Assessments2. ©2013 David Consulting Group
• Software Productivity
– Always a focus for organizations with significant software development
operations (in-house and/or outsourced)
– Many drivers of software productivity – can be grouped as:
• People
• Processes
• Project Management
• Potential of the software
– Potential of the software is its ability to support that next enhancement
regardless of all the other productivity factors. It’s a combination of:
• The quality of the current code (also drives maintenance productivity)
• The complexity of the current code
Introduction:
Why Independent Software Assessments?
1
3. ©2013 David Consulting Group
Reality Sandwich [Bite #1]
2
Software’s Great Equalizer!
Schedule Compression = Software Being Shipped to a Date
4. ©2013 David Consulting Group
Based on 2010 Census Data (U.S. Department of Labor)
•There are 1,362,790 Computer Software Professionals in the U.S.
•There are 319,000 Mechanical & Electrical Engineers in the U.S.
2010 Revenue for Companies Marketing to Each:
•The top 4 CAD/CAM software companies total $4B in revenue
•The top 4 Software Tools companies total $850M in revenue
What’s the “So What?”
One could conclude there’s a much lower adoption of automation in the software industry.
Interesting Factoid…
3
5. ©2013 David Consulting Group
Reality Sandwich [Bite #2]
4
It’s the DATA, not the tools.
Automation adoption is still immature in our industry because the focus is on
the right tools versus a sound data management strategy.
6. ©2013 David Consulting Group
DETECT
Focus is on Software Quality
PROTECT
Focus is on Software Security
OPTIMIZE
Focus is on Software Performance
All services can be customized to internal, industry or
customer compliance requirements.
(C/C++, Java, C#)
Service Capabilities – Independent Software Inspections
5
7. ©2013 David Consulting Group
CHECK-UP – [General physical for your software]
Broad and general analysis including, but not limited to, Architecture Review, Inspection Attributes, Structural Metrics, Code
Completeness, Complexity & Security and a Statistical (10% - 15%) Quality Analysis.
DEEP DIVE – [100% Bug Hunt]
A 100% Quality Analysis of Instances that have escaped the code inspection & testing processes.
MEMORY LEAK DETECTION – [Memory Management Profile]
Targets and identifies memory issues within the software leading to crashes.
TARGETED – [Custom Tuned to Your Risks]
Custom analysis techniques & methods identify categories of software errors difficult to find and are outside the scope of
standard software automation products.
VERIFY – [Ensure Fixes Have Been Correctly Implemented]
Re-examines code that has been changed since the last review to determine defects previously identified have been
corrected in the “new” code base.
ITERATE – [Ensure Team is Not Introducing More Risks]
Examines the “additive” or new code against the code-base originally delivered for a prior assessment service.
DETECT [QUALITY]
6
8. ©2013 David Consulting Group
BREACH POINT – [Software Security Threats & Vulnerabilities]
Analyzes software source for vulnerabilities, whether accidental or intentional, and for potential interaction with other
software and hardware products in the execution environment.
PROTECT [SECURITY]
7
ACCELERATE – [Speed Up Your Software]
Identifies modifications in the software application which improve the performance and response times. Recommendations
are made based upon high value modifications with minimal architectural impacts.
TEST ATLAS – [Test Coverage Analysis]
Maps the customer’s current inventory of tests to the percentage of the software system’s source code covered, identifying
redundancy and insufficient testing.
OPTIMIZE [PERFORMANCE]
9. ©2013 David Consulting Group
Customer Profiles – Who Benefits
8
Brand
Protection Compliance
M & A
Schedule
Compression
Code Red
Rapid
Prototyping
Legacy
Systems
Tomato Truck Mega Trends
Data
Overload
10. ©2013 David Consulting Group
Sample Reports
9
Comparative Data by Industry & Sector
Defect Categories
Defined
All Defects Are Identified
to Their Location within
the System Down to the
Line of Code
11. ©2013 David Consulting Group
QuickCheck Service [sales process]
10
Capabilities
Brief
QuickCheck
Service
Contracts
You Are
Here
ProposalBusiness
Case
Proposal Contents:
•Statement of Work
•Price Quotation for Services
•PSC’s Services Agreement
Contracting:
•Firm Fix Price (FFP)
•Net 30 Payment
•Milestone(s)
Results
Delivery
Business Case Development
•Which Profile Are You?
Determine Longer Term
Relationship
Delivery Meetings:
•Review Analysis Results
•Executive Meeting
•Engineering Meeting
•Executive Wrap-up Meeting
•Discuss Software Process Implications
•Follow on Service Engagements
Discuss Strategies:
•Proactive Risk Management
•Technology Partnership
•Better, Cheaper, Faster
QuickCheck Service (Requirements)
•Who’s the Economic Buyer/Decision Maker
•Budget Confirmation
•Timeframe Established for Decision
•Yes or No
•Non-Disclosure Agreement Signed
•QuickCheck Service Feedback
12. ©2013 David Consulting Group
Benefits – EXECUTIVE SUMMARY
• Historical ROI is 9.5x
• 3:1 cost savings of doing identical work using internal resources to achieve same results
• PSC guarantees the data
• Independent & objective analysis
• Fast project times
• Process does not distract project teams
• All services can be customized to meet your company’s specific needs and objectives
• Leverage state-of-the-art multiple technologies in parallel for all services
• Management visibility into software risk data (Quality, Security, Testability, Maintainability…)
• PSC provides all of the benefits of automation without any of the headaches
• Increase your engineering productivity
• Free upfront QuickCheck analysis (no risk)
• High security environment to protect client intellectual property
• Professional, courteous and partners
11
CLIENTS
Juniper Networks, Chrysler, Boeing, Motorola Mobility, JPMorgan, U.S. Army, U.S. Air Force, AT&T
14. ©2013 David Consulting Group
Next Steps
• QuickCheck [Superior Intelligence, Superior Solutions]
PROCESS
– Sign a Non-Disclosure Agreement
– Upload Code or Snail Mail
– 24-48 Hour Report Turn Around
BENEFITS
– It’s Free @ No Risk
– Pricing is based on your system’s specific risks, not lines of code
– Report displays risks at a high-level
– PSC will provide multiple price quotes for data assessment
– Pricing is massively flexible to accommodate most budgets
– Report is available for purchase (without assessment), along with its data
– Provides powerful information on your system’s accrued technical debt
13
15. ©2013 David Consulting Group
Contact Us
Email: m.harris@davidconsultinggroup.com
Phone: +1.610/644.2856
14
@DavidConsultGrp
/DavidConsultGrp
/company/David-Consulting-Group
Measure. Optimize. Deliver.
Phone +1.610.644.2856