SlideShare uma empresa Scribd logo

Sdlc checklist

M
Mwandayi
1 de 4
Baixar para ler offline
Systems Development Life Cycle Checklists The System Development Life Cycle (SDLC) process applies to information system development projects ensuring that all functional and user requirements and agency strategic goals and objectives are met. The SDLC provides a structured and standardized process for all phases of any system development effort. These phases track the development of a system through several development stages from feasibility analysis, system planning and concept development; to acquisition and requirements definition; design; development; integration and testing; deployment and acceptance; though deployment and production; and finally to system retirement. The Records Management (RM) Profile1 recommends that agencies embed records management requirements in the earliest stages of the SDLC. The following document is a checklist to assist agencies to integrate RM into the SDLC. The checklist identifies certain points in the SDLC process where the agency may propose to establish records management review and approval to ensure that sound RM practices are incorporated into the development of its proposed IT systems. While the attached SDLC diagram demonstrates these stages in a linear “waterfall” systems development methodology, the checklist can be used with other systems development methodologies as well, such as “spiral,” “parallel,” “rapid application development (RAD)” and “prototyping” by modifying the checklist to fit the phases of the preferred SDLC method used. The checklist provides three to five basic questions about records management and recordkeeping for each phase of the SDLC lifecycle process. The checklist questions are intended to begin a more detailed discussion with agency records managers, IT and CPIC staff, and program managers and staff that will help identify recordkeeping requirements in each phase, with a great emphasis on identifying records management requirements at the earliest stages of project planning, initiation and requirements gathering. Because individual agency SDLC processes and policies vary widely, the checklist is not designed to be used as the only checklist an agency might need, or even a “one size fits all” approach to identifying recordkeeping requirements within an individual agency’s SDLC policies. Rather, the checklist demonstrates a widely used methodology to plan and develop new IT systems that can be used as a model or template that individual agencies can revise or tailor to their own unique SDLC process, IT and systems development policies and procedures to identify their unique records management and recordkeeping requirements. For instance, some agencies use a five-step SDLC process, and others use a ten-step process, and they should revise or modify checklist to meet their specific SDLC policy and business needs. For more information please contact your agency’s records management point of contact at NARA at http://www.archives.gov/records- mgmt/appraisal/work-group-all.html. 1 Refer to Federal Enterprise Records Management Profile, Sections 4.1.1 through 4.1.6; http://www.archives.gov/records-mgmt/policy/rm-profile.html.
Integrating RM into the SDLC # RM Integration into the SDLC Y, Comments N, NA Phase 1: Concept Development 1 Is the agency Records Officer included from the beginning in the system design process? 2 Are records identified that support the business process? 3 a. Do current record schedules apply to the new system? b. Is a new record schedule required because of changes in the records? 4 Is the agency Records Officer signature on the agency Investment Summary Proposal? Phase 2: Requirements Document 5 Are all records-related requirements identified and incorporated into the final CONOPS Report and Business Requirements Document? 6 Are new records schedules being drafted, if needed? 7 Is the agency Records Officer signature on the requirements document? Phase 3: Design 8 Are all records management requirements incorporated into the system design document? 9 Is the agency Records Officer signature on the system design document? Phase 4: Detailed Design 10 Is the agency records management staff included in project status meetings as needed? Phase 5: Development 11 Is the agency records management staff included in project status meetings as needed? 12 Are proposed records schedules submitted to the NARA? Phase 6: Integration & System Testing 13 Are records management requirements incorporated into the system? 14 Is the agency Records Officer signature on the Systems Test Report? Phase 7: Deployment & Acceptance 15 Is the agency records management staff included in project status meetings as needed? 16 Is the agency Records Officer signature on the document approving deployment of the system? Phase 8: Production 17 Is the Mid-Cycle Review complete? (Review to occur 3 years after going to production to validate records management requirements and records schedules.) 18 Are disposition authorities being implemented in accordance with appropriate dispositions? 19 Is the Mid-Cycle Review report sent to the agency records management staff for review? 20 Is the agency Records Officer signature on the Mid-Cycle Review certification document? 2
Phase 9: Retirement & Rollover 21 At the time of retirement or rollover of the system, are records preserved, retained, and fully accessible for the full retentions in accordance with appropriate dispositions? 22 At the time of retirement or rollover of the system, are temporary records destroyed in accordance with appropriate dispositions? 23 At the time of retirement or rollover of the system, are permanent records transferred to NARA in accordance with the appropriate dispositions? 3
Systems Development Life Cycle Method Product Plan Based on needs identified in BPD and approved in CPIC Includes creation points for records Phase Deliverables Concept Development Requirements Definition Preliminary Design Detail Design Development Integration & System Test To next phase Development & Acceptance Testbeds and prototypes To next Production Pilots phase Production and evolutionary releases Another Yes New Phase Phase? Planning No Retirement & Roll Over

Recomendados

Splunk Webinar: Full-Stack End-to-End SAP-Monitoring mit Splunk
Splunk Webinar: Full-Stack End-to-End SAP-Monitoring mit SplunkSplunk Webinar: Full-Stack End-to-End SAP-Monitoring mit Splunk
Splunk Webinar: Full-Stack End-to-End SAP-Monitoring mit SplunkSplunk
 
ITU Cybersecurity Capabilities
ITU Cybersecurity CapabilitiesITU Cybersecurity Capabilities
ITU Cybersecurity CapabilitiesITU
 
QRadar, ArcSight and Splunk
QRadar, ArcSight and Splunk QRadar, ArcSight and Splunk
QRadar, ArcSight and Splunk M sharifi
 
Bsi iso27001-mapping-guide
Bsi iso27001-mapping-guideBsi iso27001-mapping-guide
Bsi iso27001-mapping-guidefloora_jj
 
Understanding Multitenancy and the Architecture of the Salesforce Platform
Understanding Multitenancy and the Architecture of the Salesforce PlatformUnderstanding Multitenancy and the Architecture of the Salesforce Platform
Understanding Multitenancy and the Architecture of the Salesforce PlatformSalesforce Developers
 
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdf
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdfMicrosoft-CISO-Workshop-Security-Strategy-and-Program (1).pdf
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdfParishSummer
 
Learn Togaf 9.1 in 100 slides!
Learn Togaf 9.1 in 100 slides!Learn Togaf 9.1 in 100 slides!
Learn Togaf 9.1 in 100 slides!Sam Mandebvu
 
Complete Endpoint protection
Complete Endpoint protectionComplete Endpoint protection
Complete Endpoint protectionxband
 

Recomendados

Splunk Webinar: Full-Stack End-to-End SAP-Monitoring mit Splunk
Splunk Webinar: Full-Stack End-to-End SAP-Monitoring mit SplunkSplunk Webinar: Full-Stack End-to-End SAP-Monitoring mit Splunk
Splunk Webinar: Full-Stack End-to-End SAP-Monitoring mit SplunkSplunk
 
ITU Cybersecurity Capabilities
ITU Cybersecurity CapabilitiesITU Cybersecurity Capabilities
ITU Cybersecurity CapabilitiesITU
 
QRadar, ArcSight and Splunk
QRadar, ArcSight and Splunk QRadar, ArcSight and Splunk
QRadar, ArcSight and Splunk M sharifi
 
Bsi iso27001-mapping-guide
Bsi iso27001-mapping-guideBsi iso27001-mapping-guide
Bsi iso27001-mapping-guidefloora_jj
 
Understanding Multitenancy and the Architecture of the Salesforce Platform
Understanding Multitenancy and the Architecture of the Salesforce PlatformUnderstanding Multitenancy and the Architecture of the Salesforce Platform
Understanding Multitenancy and the Architecture of the Salesforce PlatformSalesforce Developers
 
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdf
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdfMicrosoft-CISO-Workshop-Security-Strategy-and-Program (1).pdf
Microsoft-CISO-Workshop-Security-Strategy-and-Program (1).pdfParishSummer
 
Learn Togaf 9.1 in 100 slides!
Learn Togaf 9.1 in 100 slides!Learn Togaf 9.1 in 100 slides!
Learn Togaf 9.1 in 100 slides!Sam Mandebvu
 
Complete Endpoint protection
Complete Endpoint protectionComplete Endpoint protection
Complete Endpoint protectionxband
 
SOC Architecture - Building the NextGen SOC
SOC Architecture - Building the NextGen SOCSOC Architecture - Building the NextGen SOC
SOC Architecture - Building the NextGen SOCPriyanka Aash
 
Forget Big Data. It's All About Smart Data
Forget Big Data. It's All About Smart DataForget Big Data. It's All About Smart Data
Forget Big Data. It's All About Smart DataAlan McSweeney
 
Data-Ed Slides: Best Practices in Data Stewardship (Technical)
Data-Ed Slides: Best Practices in Data Stewardship (Technical)Data-Ed Slides: Best Practices in Data Stewardship (Technical)
Data-Ed Slides: Best Practices in Data Stewardship (Technical)DATAVERSITY
 
IMPLEMENTATION BEST PRACTICES Sep 22.pdf
IMPLEMENTATION BEST PRACTICES Sep 22.pdfIMPLEMENTATION BEST PRACTICES Sep 22.pdf
IMPLEMENTATION BEST PRACTICES Sep 22.pdfudayabhaskar42
 
Enterprise Architecture Management (EAM) I Best Practices I NuggetHub
Enterprise Architecture Management (EAM) I Best Practices I NuggetHubEnterprise Architecture Management (EAM) I Best Practices I NuggetHub
Enterprise Architecture Management (EAM) I Best Practices I NuggetHubRichardNowack
 
IT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubIT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubKaushal Trivedi
 
Information Security Governance and Strategy
Information Security Governance and Strategy Information Security Governance and Strategy
Information Security Governance and Strategy Dam Frank
 
Salesforce Health Cloud – The Changing Face of Healthcare Data
Salesforce Health Cloud – The Changing Face of Healthcare DataSalesforce Health Cloud – The Changing Face of Healthcare Data
Salesforce Health Cloud – The Changing Face of Healthcare DataSuyati Technologies
 
Software Asset Management
Software Asset ManagementSoftware Asset Management
Software Asset ManagementHP Enterprise Italia
 
The Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelThe Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelSarah Moore
 
California Consumer Privacy Act (CCPA): Countdown to Compliance
California Consumer Privacy Act (CCPA): Countdown to ComplianceCalifornia Consumer Privacy Act (CCPA): Countdown to Compliance
California Consumer Privacy Act (CCPA): Countdown to ComplianceTinuiti
 
Data Governance — Aligning Technical and Business Approaches
Data Governance — Aligning Technical and Business ApproachesData Governance — Aligning Technical and Business Approaches
Data Governance — Aligning Technical and Business ApproachesDATAVERSITY
 
Secure Software Development Life Cycle
Secure Software Development Life CycleSecure Software Development Life Cycle
Secure Software Development Life CycleMaurice Dawson
 
Building a Center of Excellence for your Salesforce crm team
Building a Center of Excellence for your Salesforce crm teamBuilding a Center of Excellence for your Salesforce crm team
Building a Center of Excellence for your Salesforce crm teamBuyan Thyagarajan
 
Endpoint Protection
Endpoint ProtectionEndpoint Protection
Endpoint ProtectionSophos
 
IT OT Integration_Vishnu_Murali_05262016_UPDATED
IT OT Integration_Vishnu_Murali_05262016_UPDATEDIT OT Integration_Vishnu_Murali_05262016_UPDATED
IT OT Integration_Vishnu_Murali_05262016_UPDATEDVishnu Murali
 
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overviewEnterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overviewWinton Winton
 
Get Savvy with Snowflake
Get Savvy with SnowflakeGet Savvy with Snowflake
Get Savvy with SnowflakeMatillion
 
Effective Security Operation Center - present by Reza Adineh
Effective Security Operation Center - present by Reza AdinehEffective Security Operation Center - present by Reza Adineh
Effective Security Operation Center - present by Reza AdinehReZa AdineH
 
Security Baselines and Risk Assessments
Security Baselines and Risk AssessmentsSecurity Baselines and Risk Assessments
Security Baselines and Risk AssessmentsPriyank Hada
 
461361 1013243 chapter_2_dec__11
461361 1013243 chapter_2_dec__11461361 1013243 chapter_2_dec__11
461361 1013243 chapter_2_dec__11anup4704
 
His checklist for midsize indian hospitals
His checklist for midsize indian hospitalsHis checklist for midsize indian hospitals
His checklist for midsize indian hospitalsHIMSSIndia
 

Mais conteúdo relacionado

Mais procurados

SOC Architecture - Building the NextGen SOC
SOC Architecture - Building the NextGen SOCSOC Architecture - Building the NextGen SOC
SOC Architecture - Building the NextGen SOCPriyanka Aash
 
Forget Big Data. It's All About Smart Data
Forget Big Data. It's All About Smart DataForget Big Data. It's All About Smart Data
Forget Big Data. It's All About Smart DataAlan McSweeney
 
Data-Ed Slides: Best Practices in Data Stewardship (Technical)
Data-Ed Slides: Best Practices in Data Stewardship (Technical)Data-Ed Slides: Best Practices in Data Stewardship (Technical)
Data-Ed Slides: Best Practices in Data Stewardship (Technical)DATAVERSITY
 
IMPLEMENTATION BEST PRACTICES Sep 22.pdf
IMPLEMENTATION BEST PRACTICES Sep 22.pdfIMPLEMENTATION BEST PRACTICES Sep 22.pdf
IMPLEMENTATION BEST PRACTICES Sep 22.pdfudayabhaskar42
 
Enterprise Architecture Management (EAM) I Best Practices I NuggetHub
Enterprise Architecture Management (EAM) I Best Practices I NuggetHubEnterprise Architecture Management (EAM) I Best Practices I NuggetHub
Enterprise Architecture Management (EAM) I Best Practices I NuggetHubRichardNowack
 
IT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubIT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubKaushal Trivedi
 
Information Security Governance and Strategy
Information Security Governance and Strategy Information Security Governance and Strategy
Information Security Governance and Strategy Dam Frank
 
Salesforce Health Cloud – The Changing Face of Healthcare Data
Salesforce Health Cloud – The Changing Face of Healthcare DataSalesforce Health Cloud – The Changing Face of Healthcare Data
Salesforce Health Cloud – The Changing Face of Healthcare DataSuyati Technologies
 
The Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelThe Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelSarah Moore
 
California Consumer Privacy Act (CCPA): Countdown to Compliance
California Consumer Privacy Act (CCPA): Countdown to ComplianceCalifornia Consumer Privacy Act (CCPA): Countdown to Compliance
California Consumer Privacy Act (CCPA): Countdown to ComplianceTinuiti
 
Data Governance — Aligning Technical and Business Approaches
Data Governance — Aligning Technical and Business ApproachesData Governance — Aligning Technical and Business Approaches
Data Governance — Aligning Technical and Business ApproachesDATAVERSITY
 
Secure Software Development Life Cycle
Secure Software Development Life CycleSecure Software Development Life Cycle
Secure Software Development Life CycleMaurice Dawson
 
Building a Center of Excellence for your Salesforce crm team
Building a Center of Excellence for your Salesforce crm teamBuilding a Center of Excellence for your Salesforce crm team
Building a Center of Excellence for your Salesforce crm teamBuyan Thyagarajan
 
Endpoint Protection
Endpoint ProtectionEndpoint Protection
Endpoint ProtectionSophos
 
IT OT Integration_Vishnu_Murali_05262016_UPDATED
IT OT Integration_Vishnu_Murali_05262016_UPDATEDIT OT Integration_Vishnu_Murali_05262016_UPDATED
IT OT Integration_Vishnu_Murali_05262016_UPDATEDVishnu Murali
 
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overviewEnterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overviewWinton Winton
 
Get Savvy with Snowflake
Get Savvy with SnowflakeGet Savvy with Snowflake
Get Savvy with SnowflakeMatillion
 
Effective Security Operation Center - present by Reza Adineh
Effective Security Operation Center - present by Reza AdinehEffective Security Operation Center - present by Reza Adineh
Effective Security Operation Center - present by Reza AdinehReZa AdineH
 
Security Baselines and Risk Assessments
Security Baselines and Risk AssessmentsSecurity Baselines and Risk Assessments
Security Baselines and Risk AssessmentsPriyank Hada
 

Mais procurados (20)

SOC Architecture - Building the NextGen SOC
SOC Architecture - Building the NextGen SOCSOC Architecture - Building the NextGen SOC
SOC Architecture - Building the NextGen SOC
 
Forget Big Data. It's All About Smart Data
Forget Big Data. It's All About Smart DataForget Big Data. It's All About Smart Data
Forget Big Data. It's All About Smart Data
 
Data-Ed Slides: Best Practices in Data Stewardship (Technical)
Data-Ed Slides: Best Practices in Data Stewardship (Technical)Data-Ed Slides: Best Practices in Data Stewardship (Technical)
Data-Ed Slides: Best Practices in Data Stewardship (Technical)
 
IMPLEMENTATION BEST PRACTICES Sep 22.pdf
IMPLEMENTATION BEST PRACTICES Sep 22.pdfIMPLEMENTATION BEST PRACTICES Sep 22.pdf
IMPLEMENTATION BEST PRACTICES Sep 22.pdf
 
Enterprise Architecture Management (EAM) I Best Practices I NuggetHub
Enterprise Architecture Management (EAM) I Best Practices I NuggetHubEnterprise Architecture Management (EAM) I Best Practices I NuggetHub
Enterprise Architecture Management (EAM) I Best Practices I NuggetHub
 
IT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit ClubIT General Controls Presentation at IIA Vadodara Audit Club
IT General Controls Presentation at IIA Vadodara Audit Club
 
Information Security Governance and Strategy
Information Security Governance and Strategy Information Security Governance and Strategy
Information Security Governance and Strategy
 
Salesforce Health Cloud – The Changing Face of Healthcare Data
Salesforce Health Cloud – The Changing Face of Healthcare DataSalesforce Health Cloud – The Changing Face of Healthcare Data
Salesforce Health Cloud – The Changing Face of Healthcare Data
 
Software Asset Management
Software Asset ManagementSoftware Asset Management
Software Asset Management
 
The Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelThe Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity Model
 
California Consumer Privacy Act (CCPA): Countdown to Compliance
California Consumer Privacy Act (CCPA): Countdown to ComplianceCalifornia Consumer Privacy Act (CCPA): Countdown to Compliance
California Consumer Privacy Act (CCPA): Countdown to Compliance
 
Data Governance — Aligning Technical and Business Approaches
Data Governance — Aligning Technical and Business ApproachesData Governance — Aligning Technical and Business Approaches
Data Governance — Aligning Technical and Business Approaches
 
Secure Software Development Life Cycle
Secure Software Development Life CycleSecure Software Development Life Cycle
Secure Software Development Life Cycle
 
Building a Center of Excellence for your Salesforce crm team
Building a Center of Excellence for your Salesforce crm teamBuilding a Center of Excellence for your Salesforce crm team
Building a Center of Excellence for your Salesforce crm team
 
Endpoint Protection
Endpoint ProtectionEndpoint Protection
Endpoint Protection
 
IT OT Integration_Vishnu_Murali_05262016_UPDATED
IT OT Integration_Vishnu_Murali_05262016_UPDATEDIT OT Integration_Vishnu_Murali_05262016_UPDATED
IT OT Integration_Vishnu_Murali_05262016_UPDATED
 
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overviewEnterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
Enterprise Architecture for Dummies - TOGAF 9 enterprise architecture overview
 
Get Savvy with Snowflake
Get Savvy with SnowflakeGet Savvy with Snowflake
Get Savvy with Snowflake
 
Effective Security Operation Center - present by Reza Adineh
Effective Security Operation Center - present by Reza AdinehEffective Security Operation Center - present by Reza Adineh
Effective Security Operation Center - present by Reza Adineh
 
Security Baselines and Risk Assessments
Security Baselines and Risk AssessmentsSecurity Baselines and Risk Assessments
Security Baselines and Risk Assessments
 

Destaque

461361 1013243 chapter_2_dec__11
461361 1013243 chapter_2_dec__11461361 1013243 chapter_2_dec__11
461361 1013243 chapter_2_dec__11anup4704
 
His checklist for midsize indian hospitals
His checklist for midsize indian hospitalsHis checklist for midsize indian hospitals
His checklist for midsize indian hospitalsHIMSSIndia
 
Applicaiton Security - Building The Audit Program
Applicaiton Security - Building The Audit ProgramApplicaiton Security - Building The Audit Program
Applicaiton Security - Building The Audit ProgramMichael Davis
 
Tool Kit: Business Analysis product (artefact) checklist
Tool Kit: Business Analysis product (artefact) checklistTool Kit: Business Analysis product (artefact) checklist
Tool Kit: Business Analysis product (artefact) checklistdesigner DATA
 
An SDLC for SharePoint
An SDLC for SharePointAn SDLC for SharePoint
An SDLC for SharePointgvaughan
 
Audit Checklist for Information Systems
Audit Checklist for Information SystemsAudit Checklist for Information Systems
Audit Checklist for Information SystemsAhmad Tariq Bhatti
 

Destaque (6)

461361 1013243 chapter_2_dec__11
461361 1013243 chapter_2_dec__11461361 1013243 chapter_2_dec__11
461361 1013243 chapter_2_dec__11
 
His checklist for midsize indian hospitals
His checklist for midsize indian hospitalsHis checklist for midsize indian hospitals
His checklist for midsize indian hospitals
 
Applicaiton Security - Building The Audit Program
Applicaiton Security - Building The Audit ProgramApplicaiton Security - Building The Audit Program
Applicaiton Security - Building The Audit Program
 
Tool Kit: Business Analysis product (artefact) checklist
Tool Kit: Business Analysis product (artefact) checklistTool Kit: Business Analysis product (artefact) checklist
Tool Kit: Business Analysis product (artefact) checklist
 
An SDLC for SharePoint
An SDLC for SharePointAn SDLC for SharePoint
An SDLC for SharePoint
 
Audit Checklist for Information Systems
Audit Checklist for Information SystemsAudit Checklist for Information Systems
Audit Checklist for Information Systems
 

Semelhante a Sdlc checklist

Pm for application development
Pm for application developmentPm for application development
Pm for application developmentAbdelrahman Serag
 
Introduction to software quality assurance by QuontraSolutions
Introduction to software quality assurance by QuontraSolutionsIntroduction to software quality assurance by QuontraSolutions
Introduction to software quality assurance by QuontraSolutionsQUONTRASOLUTIONS
 
Introduction To Software Quality Assurance
Introduction To Software Quality AssuranceIntroduction To Software Quality Assurance
Introduction To Software Quality Assuranceruth_reategui
 
Configuration management
Configuration managementConfiguration management
Configuration managementKobi Vider
 
IFRS Implementation in Canada - February 2008
IFRS Implementation in Canada - February 2008IFRS Implementation in Canada - February 2008
IFRS Implementation in Canada - February 2008Antonello Dessanti
 
Module-4 PART-2&3.ppt
Module-4 PART-2&3.pptModule-4 PART-2&3.ppt
Module-4 PART-2&3.pptSharatNaik11
 
SYSTEM DEVELOPMENT LIFE CYCLE
SYSTEM DEVELOPMENT LIFE CYCLESYSTEM DEVELOPMENT LIFE CYCLE
SYSTEM DEVELOPMENT LIFE CYCLEayushisingh190
 
Managing IT Projects
Managing IT ProjectsManaging IT Projects
Managing IT ProjectsRhys Leong
 
SDLC Process_Document.pptx
SDLC Process_Document.pptxSDLC Process_Document.pptx
SDLC Process_Document.pptxSivakumar Pola
 
3.8 development methods
3.8 development methods3.8 development methods
3.8 development methodsmrmwood
 
Rational unified process lecture-5
Rational unified process lecture-5Rational unified process lecture-5
Rational unified process lecture-5MujiAhsan
 
STLC & SDLC-ppt-1.pptx
STLC & SDLC-ppt-1.pptxSTLC & SDLC-ppt-1.pptx
STLC & SDLC-ppt-1.pptxssusere4c6aa
 
Asap methodology sap Anilkumar chowdary
Asap methodology sap Anilkumar chowdaryAsap methodology sap Anilkumar chowdary
Asap methodology sap Anilkumar chowdaryANILKUMARPULIPATI1
 
SQA - chapter 13 (Software Quality Infrastructure)
SQA - chapter 13 (Software Quality Infrastructure)SQA - chapter 13 (Software Quality Infrastructure)
SQA - chapter 13 (Software Quality Infrastructure)uma sree
 
19701759 Project Report On Railway Reservation System By Amit Mittal
19701759 Project Report On Railway Reservation System By Amit Mittal19701759 Project Report On Railway Reservation System By Amit Mittal
19701759 Project Report On Railway Reservation System By Amit MittalCourtney Esco
 

Semelhante a Sdlc checklist (20)

Pm for application development
Pm for application developmentPm for application development
Pm for application development
 
Introduction to software quality assurance by QuontraSolutions
Introduction to software quality assurance by QuontraSolutionsIntroduction to software quality assurance by QuontraSolutions
Introduction to software quality assurance by QuontraSolutions
 
Introduction To Software Quality Assurance
Introduction To Software Quality AssuranceIntroduction To Software Quality Assurance
Introduction To Software Quality Assurance
 
SDLC
SDLCSDLC
SDLC
 
Configuration management
Configuration managementConfiguration management
Configuration management
 
IFRS Implementation in Canada - February 2008
IFRS Implementation in Canada - February 2008IFRS Implementation in Canada - February 2008
IFRS Implementation in Canada - February 2008
 
sop-plan-09
sop-plan-09sop-plan-09
sop-plan-09
 
Module-4 PART-2&3.ppt
Module-4 PART-2&3.pptModule-4 PART-2&3.ppt
Module-4 PART-2&3.ppt
 
SYSTEM DEVELOPMENT LIFE CYCLE
SYSTEM DEVELOPMENT LIFE CYCLESYSTEM DEVELOPMENT LIFE CYCLE
SYSTEM DEVELOPMENT LIFE CYCLE
 
Software process
Software processSoftware process
Software process
 
Managing IT Projects
Managing IT ProjectsManaging IT Projects
Managing IT Projects
 
SDLC Process_Document.pptx
SDLC Process_Document.pptxSDLC Process_Document.pptx
SDLC Process_Document.pptx
 
3.8 development methods
3.8 development methods3.8 development methods
3.8 development methods
 
Rational unified process lecture-5
Rational unified process lecture-5Rational unified process lecture-5
Rational unified process lecture-5
 
STLC & SDLC-ppt-1.pptx
STLC & SDLC-ppt-1.pptxSTLC & SDLC-ppt-1.pptx
STLC & SDLC-ppt-1.pptx
 
System requirements analysis
System requirements analysisSystem requirements analysis
System requirements analysis
 
Asap methodology sap Anilkumar chowdary
Asap methodology sap Anilkumar chowdaryAsap methodology sap Anilkumar chowdary
Asap methodology sap Anilkumar chowdary
 
Rup
RupRup
Rup
 
SQA - chapter 13 (Software Quality Infrastructure)
SQA - chapter 13 (Software Quality Infrastructure)SQA - chapter 13 (Software Quality Infrastructure)
SQA - chapter 13 (Software Quality Infrastructure)
 
19701759 Project Report On Railway Reservation System By Amit Mittal
19701759 Project Report On Railway Reservation System By Amit Mittal19701759 Project Report On Railway Reservation System By Amit Mittal
19701759 Project Report On Railway Reservation System By Amit Mittal
 

Sdlc checklist

  • 1. Systems Development Life Cycle Checklists The System Development Life Cycle (SDLC) process applies to information system development projects ensuring that all functional and user requirements and agency strategic goals and objectives are met. The SDLC provides a structured and standardized process for all phases of any system development effort. These phases track the development of a system through several development stages from feasibility analysis, system planning and concept development; to acquisition and requirements definition; design; development; integration and testing; deployment and acceptance; though deployment and production; and finally to system retirement. The Records Management (RM) Profile1 recommends that agencies embed records management requirements in the earliest stages of the SDLC. The following document is a checklist to assist agencies to integrate RM into the SDLC. The checklist identifies certain points in the SDLC process where the agency may propose to establish records management review and approval to ensure that sound RM practices are incorporated into the development of its proposed IT systems. While the attached SDLC diagram demonstrates these stages in a linear “waterfall” systems development methodology, the checklist can be used with other systems development methodologies as well, such as “spiral,” “parallel,” “rapid application development (RAD)” and “prototyping” by modifying the checklist to fit the phases of the preferred SDLC method used. The checklist provides three to five basic questions about records management and recordkeeping for each phase of the SDLC lifecycle process. The checklist questions are intended to begin a more detailed discussion with agency records managers, IT and CPIC staff, and program managers and staff that will help identify recordkeeping requirements in each phase, with a great emphasis on identifying records management requirements at the earliest stages of project planning, initiation and requirements gathering. Because individual agency SDLC processes and policies vary widely, the checklist is not designed to be used as the only checklist an agency might need, or even a “one size fits all” approach to identifying recordkeeping requirements within an individual agency’s SDLC policies. Rather, the checklist demonstrates a widely used methodology to plan and develop new IT systems that can be used as a model or template that individual agencies can revise or tailor to their own unique SDLC process, IT and systems development policies and procedures to identify their unique records management and recordkeeping requirements. For instance, some agencies use a five-step SDLC process, and others use a ten-step process, and they should revise or modify checklist to meet their specific SDLC policy and business needs. For more information please contact your agency’s records management point of contact at NARA at http://www.archives.gov/records- mgmt/appraisal/work-group-all.html. 1 Refer to Federal Enterprise Records Management Profile, Sections 4.1.1 through 4.1.6; http://www.archives.gov/records-mgmt/policy/rm-profile.html.
  • 2. Integrating RM into the SDLC # RM Integration into the SDLC Y, Comments N, NA Phase 1: Concept Development 1 Is the agency Records Officer included from the beginning in the system design process? 2 Are records identified that support the business process? 3 a. Do current record schedules apply to the new system? b. Is a new record schedule required because of changes in the records? 4 Is the agency Records Officer signature on the agency Investment Summary Proposal? Phase 2: Requirements Document 5 Are all records-related requirements identified and incorporated into the final CONOPS Report and Business Requirements Document? 6 Are new records schedules being drafted, if needed? 7 Is the agency Records Officer signature on the requirements document? Phase 3: Design 8 Are all records management requirements incorporated into the system design document? 9 Is the agency Records Officer signature on the system design document? Phase 4: Detailed Design 10 Is the agency records management staff included in project status meetings as needed? Phase 5: Development 11 Is the agency records management staff included in project status meetings as needed? 12 Are proposed records schedules submitted to the NARA? Phase 6: Integration & System Testing 13 Are records management requirements incorporated into the system? 14 Is the agency Records Officer signature on the Systems Test Report? Phase 7: Deployment & Acceptance 15 Is the agency records management staff included in project status meetings as needed? 16 Is the agency Records Officer signature on the document approving deployment of the system? Phase 8: Production 17 Is the Mid-Cycle Review complete? (Review to occur 3 years after going to production to validate records management requirements and records schedules.) 18 Are disposition authorities being implemented in accordance with appropriate dispositions? 19 Is the Mid-Cycle Review report sent to the agency records management staff for review? 20 Is the agency Records Officer signature on the Mid-Cycle Review certification document? 2
  • 3. Phase 9: Retirement & Rollover 21 At the time of retirement or rollover of the system, are records preserved, retained, and fully accessible for the full retentions in accordance with appropriate dispositions? 22 At the time of retirement or rollover of the system, are temporary records destroyed in accordance with appropriate dispositions? 23 At the time of retirement or rollover of the system, are permanent records transferred to NARA in accordance with the appropriate dispositions? 3
  • 4. Systems Development Life Cycle Method Product Plan Based on needs identified in BPD and approved in CPIC Includes creation points for records Phase Deliverables Concept Development Requirements Definition Preliminary Design Detail Design Development Integration & System Test To next phase Development & Acceptance Testbeds and prototypes To next Production Pilots phase Production and evolutionary releases Another Yes New Phase Phase? Planning No Retirement & Roll Over