Pertemuan 14 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.

Slides:



Advertisements
Similar presentations
1 Dr. Ashraf El-Farghly SECC. 2 Level 3 focus on the organization - Best practices are gathered across the organization. - Processes are tailored depending.
Advertisements

Quality Assurance/Quality Control Plan Evaluation February 16, 2005.
Software Quality Assurance Plan
By: MSMZ. Objective After completing this chapter, you will be able to: Explain 2 contract review stage List the objective of each stage of the contract.
1.Quality-“a characteristic or attribute of something.” As an attribute of an item, quality refers to measurable characteristics— things we are able to.
CIP Cyber Security – Security Management Controls
Chapter 7: Key Process Areas for Level 2: Repeatable - Arvind Kabir Yateesh.
More CMM Part Two : Details.
Stepan Potiyenko ISS Sr.SW Developer.
Quality Assurance Copyright, 2002 © Jerzy R. Nawrocki Quality Management Auxiliary.
Pertemuan 5-6 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
PROCESS AND PRODUCT QUALITY ASSURANCE
Pertemuan 16 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Pertemuan 25 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
IS Audit Function Knowledge
Internal Control Pertemuan 05 s.d 06 Matakuliah: F0712 / Lab Sistem Informasi Akuntansi Tahun: 2007.
Pertemuan 7-8 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Pertemuan 20 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
University of Sunderland CIFM03Lecture 1 1 Quality Management of IT CIFM03 Introduction.
1 Pertemuan 9 Department Organization Matakuliah:A0274/Pengelolaan Fungsi Audit Sistem Informasi Tahun: 2005 Versi: 1/1.
Pertemuan Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Quality evaluation and improvement for Internal Audit
Pertemuan 15 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Purpose of the Standards
ISO 9000 Certification ISO 9001 and ISO
1 Performance Auditing  In IT Environment  Evidence Gathering & Analysis Techniques  Computer Assisted Techniques  Use of IDEA.
REVIEW AND QUALITY CONTROL
SE513 Software Quality Assurance Lecture04: Contract Review Galin, SQA from Theory to Education Limited 2004.
CMM Level 3 KPA’s CS4320 Fall Organizational Process Focus (Goals) Software process development and improvement activities are coordinated across.
Chapter 16 Software Quality Assurance
Challenges Faced in Developing Audit Plans and Programs 21 st March, 2013.
The Key Process Areas for Level 2: Repeatable Ralph Covington David Wang.
Introduction to Software Quality Assurance (SQA)
Software Quality Assurance Activities
Lec#3 Project Quality Management Ghazala Amin. 2 Quality Specialist-Job responsibility Responsibilities Reports monitoring and measurement of processes.
CMM Level 2 KPA’s CS 4320 Fall Requirements Management 1 Goals: – System requirements allocated to software are controlled using a baseline for.
Chapter 5 Contract review Contract review process and stages
Project Tracking. Questions... Why should we track a project that is underway? What aspects of a project need tracking?
Soft Tech Development Inc. 1 Software Project Tracking A CMM Level 2 Key Process Area Soft Tech Development Inc.
Software Quality Assurance Lecture #2 By: Faraz Ahmed.
S Q A.
Building Capability.  In order to successfully operate an architecture function within an enterprise, it is necessary to put in place appropriate organization.
Product Documentation Chapter 5. Required Medical Device Documentation  Business proposal  Product specification  Design specification  Software.
Private & Confidential1 (SIA) 13 Enterprise Risk Management The Standard should be read in the conjunction with the "Preface to the Standards on Internal.
CMM Level 2: Repeatable Copyright, 2000 © Jerzy R. Nawrocki Quality Management.
Georgia Institute of Technology CS 4320 Fall 2003.
普 华 永 道 Phase 1: Project Preparation Phase 1: Project Preparation Phase Overview Phase Overview.
QUALITY ASSURANCE MANAGEMENT CONTROLS Chapter 9. Quality Assurance (QA) Management is concerned with ensuring: 1) The information system produced by the.
Programme Performance Criteria. Regulatory Authority Objectives To identify criteria against which the status of each element of the regulatory programme.
Pertemuan 3-4 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
Pertemuan 26 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
Evaluate Phase Pertemuan Matakuliah: A0774/Information Technology Capital Budgeting Tahun: 2009.
1 Lecture 12: Chapter 16 Software Quality Assurance Slide Set to accompany Software Engineering: A Practitioner’s Approach, 7/e by Roger S. Pressman Slides.
Project Management Strategies Hidden in the CMMI Rick Hefner, Northrop Grumman CMMI Technology Conference & User Group November.
Quality Assurance at CMM Level 2 Copyright, 2000 © Jerzy R. Nawrocki Requirements.
SEN 460 Software Quality Assurance. Bahria University Karachi Campus Waseem Akhtar Mufti B.E(C.S.E) UIT, M.S(S.E) AAU Denmark Assistant Professor Department.
SOLGM Wanaka Retreat Health and Safety at Work Act 2015 Ready? 4 February 2016 Samantha Turner Partner DDI: Mob:
Multitude of source of errors - various style of source of errors will affect the SQA components * The environment in which software development & maintenance.
Organization and Implementation of a National Regulatory Program for the Control of Radiation Sources Program Performance Criteria.
Presenter: Igna Visser Date: Wednesday, 18 March 2015
Software Quality Assurance
Software Quality Control and Quality Assurance: Introduction
Chapter 10 Software Quality Assurance& Test Plan Software Testing
Software and Systems Integration
CMMI – Staged Representation
ISO/IEC IEEE/EIA Software Life Cycle Processes Supporting Life Cycle Processes IEEE Supporting Processes.
How to conduct Effective Stage-1 Audit
Engineering Processes
Software Reviews.
Presentation transcript:

Pertemuan 14 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007

Bina Nusantara QUALITY MANAGEMENT

Bina Nusantara The Auditor’s Role in the Development Process Review user requirements Review manual and application controls Check all technical specifications for compliance with company standards Perform design walkthroughs at the end of each development phase Submit written recommendations for approval after each walkthrough Ensure implementation of recommendation before beginning the next phase Review test plans Present findings to management Maintain independence to remain objective

Bina Nusantara Risk Assessment Process Risks – Lack of strategic direction – Lack of development standards – Lack of a formal systems development process – Negative organizational climate Application Risks – Application complexity and magnitude – Inexperienced staff – Lack of end user involvement – Lack of management commitment

Bina Nusantara Audit Plan Compliance with standards and procedure Efficient and economical operation Conform systems to legal requirements Include the controls necessary to protect against loss or serious error Provide the controls and audit trails needed for management, auditor, and operational review Document the system : provide an understanding of the system that is required for appropriate maintenance and auditing

Bina Nusantara Software Development Controls Review Development standards Testing strategy Implementation and training Problem management Change management

Bina Nusantara SDLC Auditor influence is significantly increased when there are formal procedures and required guidelines identifying each phase and project deliverable in the SDLC and the extent of auditor involvement Auditors will be able to review all relevant areas and phases of the SDLC, identify any missing areas for the development team, and report independently to management on the adherence to planned objectives and procedures Auditors can identify selected parts of the system and become involved in the technical aspects based upon their skills and abilities Auditors can provide an evaluation of the methods and techniques applied in the systems development process, as defined earlier

Bina Nusantara Auditing Quality Assurance Goals – Quality Assurance Activities are planned and documented – Adherence of project activities and products to applicable standards, procedures and requirements is verified objectively – All impacted groups are aware of and corporative with Quality Assurance activities – Noncompliance issues are addressed with senior management

Bina Nusantara Auditing Quality Assurance Commitments – The SQA functions are in place on all software projects – The SQA group has a reporting channel to senior management that is independent of all project related groups – Senior management periodically reviews SQA activities and results

Bina Nusantara Auditing Quality Assurance Abilities – The SQA group exists and is active – Adequate resources and funding are provided – SQA personnel are adequately trained – Project team members understand and support the SQA function within their project.

Bina Nusantara Auditing Quality Assurance Activities – An SQA plan is prepared according to a documented procedure – The SQA plan is reviewed by all impacted groups – The SQA plan is managed and controlled – SQA activities are performed according to the SQA plan that covers responsibilities and authority, resource requirements, schedule and funding, role in establishing software development plans, standards, and procedures, evaluations to be performed, audits and reviews to be conducted, project standards and procedures to be used in audits, and procedures for documenting and reviewing finding

Bina Nusantara Auditing Quality Assurance Activities – The SQA function participates in the preparation and reviews of the project development plan, standards, and procedures – The SQA function reviews the software engineering activities to verify compliance – The SQA function audits designated software work products to verify compliance with standards, procedures, and contractual obligations and identifies, documents, and tracks deviations and corrections – The SQA function periodically reviews its findings with the customer SQA function and IT senior management

Bina Nusantara Auditing Quality Assurance Measurements – Measurement are devised and utilized to determine the cost, schedule, and effectiveness of SQA activities Verification – SQA activities are reviewed periodically with senior management – Subcontractor management activities are reviewed periodically with project management – Independent experts periodically review Quality Assurance activities and work products

Bina Nusantara Audit Report Depending on the audit scope and the length of the project, interim reports may be needed at the completion of major phases in the development process. Key reporting points include: – Planning – Design – Testing – Implementation – Post Implementation

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.