Gary Natwick Harris Corporation

Similar documents
Top 10 Signs You're Ready (or Not)

Debra J. Perry Harris Corporation. How Do We Get On The Road To Maturity?

SCAMPI V1.1 Method Overview

Changes to the SCAMPI Methodology and How to Prepare for a SCAMPI Appraisal

Highlights of CMMI and SCAMPI 1.2 Changes

CMMI for Services (CMMI -SVC) Process Areas

How to Develop Highly Useable CMMI Documentation

USING PILOTS TO ASSESS THE VALUE AND APPROACH OF CMMI IMPLEMENTATION. Goddard Space Flight Center (GSFC)

This resource is associated with the following paper: Assessing the maturity of software testing services using CMMI-SVC: an industrial case study

CMMI-DEV V1.3 CMMI for Development Version 1.3 Quick Reference Guide

SCAMPI Appraisal Methods A+B Process Group SCAMPI process v1.0

Project Selection for SCAMPI A

Buy:

CMMI for Technical Staff

Rational Software White Paper TP 174

The Process In-Execution Review (PIER) After Three Years

Using CMMI for Services for IT Excellence QUEST 2009 Conference Talk

CMMI-SVC V1.3 CMMI for Services Version 1.3 Quick Reference Guide

SCAMPI-B for Contract Monitoring A Case Study of the Mission Planning Enterprise Contractors

Software Process Assessment

Lockheed Martin Benefits Continue Under CMMI

Integrated Class C Process Appraisals (ICPA)

SCAMPI SM Maintenance Appraisals (SCAMPI M)

Using CMMI to Improve Earned Value Management

CERT Resilience Management Model Capability Appraisal Method (CAM) Version 1.1

SWEN 256 Software Process & Project Management

Agile and CMMI : Disciplined Agile with Process Optimization

What Functional Groups Are Included in the CMMI -SE/SW/IPPD/SS Model?

Project and Process Tailoring For Success

CMMI Project Management Refresher Training

Update Observations of the Relationships between CMMI and ISO 9001:2000

WORK PLAN AND IV&V METHODOLOGY Information Technology - Independent Verification and Validation RFP No IVV-B

Practical Application of the CMMI for Building a Strong Project Management Infrastructure

Voluntary Pilot Meeting Preview: How will CDRH apply assessments in the voluntary program?

Contents. Preface. Acknowledgments. Tables and Figures

PART THREE: Work Plan and IV&V Methodology (RFP 5.3.3)

NATURAL S P I. Critical Path SCAMPI SM. Getting Real Business Results from Appraisals

CMMI Version 1.2 and Beyond

A CASE STUDY ON THE CHALLENGES AND TASKS OF MOVING TO A HIGHER CMMI LEVEL

Management Principles to Accelerate Process Improvement

Process Innovation at the Speed of Life

Project Management Institute (PMI) Practice Standard for Configuration Management

National Aeronautics and Space Administration Washington, DC 20546

PART THREE - WORK PLAN AND IV&V METHODOLOGY WORK PLAN. FL IT IV&V Work Plan

Systems Engineering Processes Applied To Ground Vehicle Integration at US Army Tank Automotive Research, Development, and Engineering Center (TARDEC)

Leveraging Your Service Quality Using ITIL V3, ISO and CMMI-SVC. Monday Half-Day Tutorial

Evolutionary Differences Between CMM for Software and the CMMI

Introduction to Software Product Line Adoption

SCAMPI A Applied to Small Settings A Success Story

Independent Verification and Validation (IV&V)

CMMI Small Business Pilot Schedule

MEASURING PROCESS CAPABILITY VERSUS ORGANIZATIONAL PROCESS MATURITY

Process Improvement. Ian Sommerville 2004 Software Engineering, 7th edition. Chapter 28 Slide 1

Program Lifecycle Methodology Version 1.7

Lean CMMI: An Iterative and Incremental Approach to CMMI-Based Process Improvement

CMMI and FPA. the link and benefit of using FPA when rolling out CMMI. Christine Green IFPUG - Certified Function Point Specialist EDS

KM YOUR WAY TO CMMI. Abstract

Marilyn Ginsberg-Finner Northrop Grumman Corporation

Assessment Results using the Software Maintenance Maturity Model (S 3m )

CMMI v1.1 for a Service-Oriented Organization. By Steve Hall, Jeff Ricketts, Diane Simpson 16 November 2005

CMMI SCAMPI Distilled Using Appraisals for Process Improvement

Application of the CERT Resilience Management Model at Lockheed Martin

Lesson Learned from Cross Constellations and Multi Models Process Improvement Initiatives

Integration Mgmt / Initiating Process Group 4.1 Develop Project Charter

NAVAIR Process Resource Team

Release & Deployment Management PinkVERIFY

Process Maturity Profile

Presentation Outline. Introduction. Revitalization Effort using CMMI. Training. Summary

Question Paper Solution (75:25), April 2015 Subject : Software Project Management

The CMMI Value Proposition

Ten Years with TSP SM :

Practical Process Improvement: the Journey and Benefits

Passit4Sure.OG Questions. TOGAF 9 Combined Part 1 and Part 2

7. Model based software architecture

Large Federal Agency Leverages IV&V to Achieve Quality Delivery for Critical Modernization Initiative

CMM and CMMI : Show Me the Value!

3 PART THREE: WORK PLAN AND IV&V METHODOLOGY (SECTION 5.3.3)

Reaching Business Goals with Value Adding CMM-I Assessments

1.264 Lecture 5 System Process: CMMI, ISO

Sampling for Software Process Assessments, Evaluations, and Appraisals. Dr. Mark C. Paulk 13 October 2017

APPENDIX C Configuration Change Management Verification and Validation Procedures

The 9 knowledge Areas and the 42 Processes Based on the PMBoK 4th

Software Quality Management

Initiation Group Process. Planning Group Process

ECSS-Q-ST-80C. Space product assurance. Software product assurance. Training Course. Fernando Aldea Head of Section Jordi Duatis Manrico Fedi

Two Branches of Software Engineering

Systems Engineering Challenges for an Army Life Cycle Software Engineering Center

Process Improvement Is Continuous Improvement

Risk-Based Testing: Analysis and Strategy. Presented at Quality Assurance Institute QUEST Conference Chicago, Ill., 2009

Business Value and Customer Benefits Derived from High Maturity

Performance-Based Earned Value

Software Process Improvement and Product Line Practice: CMMI and the Framework for Software Product Line Practice

FAA s Experience with Process Improvement & Measurements

Work Plan and IV&V Methodology

COMPLIANCE WITH THIS PUBLICATION IS MANDATORY

YaSM and the YaSM Process Map. Introduction to YaSM Service Management

Contrasting CMMI and the PMBOK. Systems Engineering Conference October 2005

Report of the Reliability Improvement Working Group (RIWG) Volume II - Appendices

CMMI. Crash Course. What the SEI Won t t Teach You* *Nothing to hide, just not their style Entinex, Inc. ALL RIGHTS RESERVED ***PROPRIETARY***

Transcription:

Automated Monitoring of Compliance Gary Natwick Harris Corporation Gary Natwick - 1

Government Communications Systems Division DoD Programs Strategic Management and Business Development CMMI Technology Conference & User Group 2004 Civil Programs Homeland Security Programs assuredcommunications $1.5B in Sales > 6,500 Employees ISO 9001:2000 SEI CMM Level 4 National Programs Harris Technical Services Corporation Gary Natwick - 2

Integrated Compliance Approach CMMI Division Programs IPM XYZ PROGRAM PLAN Tailoring Compliance Evidence Improve Reuse Submit Command Media Organizational Learning Historical Data Best Practices Example Assets Improvement Requests Program s Compliance Metric Gary Natwick - 3

CMMI -SE/SW Staged Representation Maturity Level 5 Optimizing 4 Quantitatively Managed 3 Defined 2 Managed Focus Continuous Improvement Quantitative Management Standardization Basic Project Management Areas Organizational Innovation and Deployment Causal Analysis and Resolution Organizational Performance Quantitative Project Management Requirements Development Technical Solution Product Integration Verification Validation Organizational Focus Organizational Definition Organizational Training Integrated Project Management Risk Management Decision Analysis and Resolution Requirements Management Project Planning Project Monitoring and Control Supplier Agreement Management Measurement and Analysis and Product Quality Assurance Configuration Management 1 Initial Gary Natwick - 4

CMMI Area Categories CMMI Project Management Engineering Support Management Project Planning Project Monitoring and Control Supplier Agreement Management Integrated Project Management Risk Management Quantitative Project Management Requirements Management Requirements Development Technical Solution Product Integration Verification Validation Configuration Management and Product Quality Assurance Measurement and Analysis Decision Analysis and Resolution Causal Analysis and Resolution Organizational Focus Organizational Definition Organizational Training Organizational Performance Organizational Innovation and Deployment Maturity Level 2 Maturity Level 3 Maturity Level 4 Maturity Level 5 Gary Natwick - 5

Integrated Manual IPM Program Management es Program Life-Cycle es Program Support es Organizational es Program Planning Estimation Program Monitoring and Control Supplier Acquisition & Management Change Management Proposal Development Requirements Analysis System Architecting/Design Design Code and Unit Test Fabrication and Assembly Product Integration Verification Validation Production Field Support Requirements Management Risk Management Configuration and Data Management Program Metrics Decision Analysis and Resolution Peer Review Design Review Quality Assurance Integrated Logistics Support Improvement Training Division Metrics Gary Natwick - 6

Integrated Format Overview A brief description of the process intent Entry Criteria State, Prerequisites, Criteria Inputs Needed work products, resources Exit Criteria State, Criteria Outputs Resulting work products Required Activities Mandatory tasks to implement the process Measures performance against plans Organizational Improvement Information Metrics, reusable work products Verification compliance oversight Tailoring Approved tailoring, process specific Implementation Guidance Common implementation descriptions Program evidence needed to demonstrate IPM process compliance Supporting Documentation and Assets Applicable organizational references Gary Natwick - 7

Compliance Evidence Direct Artifacts Tangible outputs resulting directly from implementation of a practice e.g., plans, documents, products Indirect Artifacts Artifacts that are a side-effect or indicative of performing a practice e.g., meeting minutes, reviews, logs, reports, metrics Affirmations Oral or written statements confirming or supporting implementation of the practice e.g, interviews, questionnaires Required for: every applicable IPM practice every applicable program Optional for IPM compliance (expected, but not required). In formal CMMI appraisals (e.g., SCAMPI SM ), these are required to corroborate direct artifacts. Gary Natwick - 8

Compliance Integrated Manual Tailoring 1. Program Plans 2. Program process baseline 3. Program execution 4. Compliance evidence 5. QA verification 6. Non-compliance mitigation Program Start-up Program Phase Execution Program Appraisals Compliance Monitor (PCM) Gary Natwick - 9

PCM Integrates IPM & CMMI CMMI CMMI Areas CMMI Specific/ Generic Practices CMMI Typical Work Products SCAMPI SCAMPI Artifacts (Direct/Indirect) IPM IPM es IPM Statements IPM Expected Artifacts (Direct/Indirect) Compliance Monitor (PCM) Functional command media GCSD best practices Gary Natwick - 10

PCM Functionality Compliance Monitor System Management Project Management Appraisal Management Organizational Oversight Manage IPM content, traceability, versions (, section, statement, artifact, lifecycles, media x-ref) Manage CMMI content, traceability, versions (PA, Goal, Practice) Manage appraisal types, versions (QA Audits, SCAMPI*) Open/close project Manage user access Create/tailor project process baseline Add/modify evidence and location for process compliance Monitor project process compliance (IPM, CMMI*) Manage appraisal access (leaders, members) Create/close appraisals Score process compliance Approve/reject project process baseline Monitor project process compliance (IPM, CMMI) Monitor organizational process compliance (IPM, CMMI) Manage web page access Manage user roles Create/delete projects Monitor tool usage and performance Gary Natwick - 11

PCM Project Workflow Project request to DPG Create Project Close/Open Project Add/Modify Project Users Startup & Planning Baseline Create New Baseline Tailor New Baseline Submit New Baseline Approve/Reject New Baseline Evidence Add/Modify Evidence Execution Appraisal Create Appraisal Release New Baseline Score Appraisal Close Appraisal Monitoring Monitor Compliance Gary Natwick - 12

PCM Roles Users System Administrator General User Project Administrator Project Member Division Approver Appraisal Administrator Appraisal Leader Appraisal Member Global Reader Description Administer all functionality of tool, access to all features of the system, create new projects, monitor tool usage/performance Read-only access to example projects Project-specific: close/open project, add/modify users, create/tailor/submit new process baseline, add/modify evidence, monitor process compliance Project-specific: tailor new process baseline, add/modify evidence, view appraisal scores, monitor process compliance Project-specific: approve/reject new process baseline Add/remove appraisal leaders, release process baseline, create/close appraisal, add/remove appraisal member, monitor process compliance Release new process baseline, create/close appraisal, add/remove appraisal member, score appraisal, add/modify evidence, monitor process compliance Score appraisal, add/modify evidence, monitor process compliance Monitor all projects & organization process compliance Gary Natwick - 13

Project Administration Create Project Close/Open Project Add/Modify Project Users Roles: System Administrator: add/remove projects, project administrators, division approvers, appraisal administrators Project Administrator: add/remove project administrators, project members Gary Natwick - 14

Project Administration Edit project information; close/open project Edit project user access Gary Natwick - 15

Baseline Create New Baseline Tailor New Baseline Submit New Baseline Approve/Reject New Baseline Roles: Project Administrator: create/tailor/submit new process baseline Project Member: tailor new process baseline Division Approver: approve/reject new process baseline Appraisal Administrator: view new process baseline Appraisal Leader: view new process baseline Appraisal Member: view new process baseline Global Reader: view new process baseline New Baseline Filters process, phase, artifact, tailored statements Gary Natwick - 16

Recording Tailored es IPM tailoring is documented in the PCM tool during initial program planning Specify the planned compliance and implementation of each IPM statement and expected artifacts (optionally) Tailoring codes: Waiver approval required Code A T D N Description Accept IPM statement as written (no changes) Tailored; description of tailoring must be specified (e.g., modifications meeting intent of IPM statement) Deviation; program alternative to IPM statement(s), or not implemented Not applicable; specify rationale The documented tailoring is called the program s defined process, establishing the approved baseline against which process compliance audits are performed Gary Natwick - 17

Tailoring IPM es 1 To tailor CDR, expand IPM statement and Edit Tailoring Code (TC) Accept (default) Tailor (modified; no waiver) Deviation (waiver) Not applicable (outside scope) Gary Natwick - 18

Tailoring IPM es 2 Tailoring Code (TC) Accept (default) Tailor (modified; no waiver) Deviation (waiver) Not applicable (outside scope) IPM Tailoring Enter statement of IPM tailoring, rationale, and approach to be followed Reference the waiver (H-2634), if outside IPM tailoring guidelines Artifact Tailoring (Optional) Identify artifacts that will be used to demonstrate compliance with program processes (tailored or not) Gary Natwick - 19

PCM Filters Baselines & Tailoring Limit PCM displays to selected IPM processes Constrain or expand IPM content for context of tailoring Filter IPM statements by an artifact expected as evidence (e.g., WBS, PWA, ECMD) Tailored statements only Limit display to those IPM statements fully completed prior to program transition (i.e., no evidence needed; consensus scoring) Changes to the process baseline (deltas) Gary Natwick - 20

Evidence Add/Modify Evidence Stakeholders: Project Administrator add/modify process evidence Project Member add/modify process evidence Appraisal Administrator view process evidence Appraisal Leader add/modify process evidence Appraisal Member add/modify process evidence Global Reader view process evidence Current baseline Add/modify evidence and locations Filters process, phase, artifact, appraisal Gary Natwick - 21

Project Artifact Requirements The PCM identifies expected artifacts produced or available as a result of following IPM practices Many expected artifacts are explicit in the IPM process statement (e.g., documentation, forms); IPM tailoring or waivers needed to deviate Other artifacts are derived from division best practices or common usage Project alternatives are acceptable, as long as IPM intent is satisfied Tailored artifacts can optionally be identified during program planning QA judges compliance with the approved project process baseline by inspecting the identified artifacts Artifact exists and has appropriate content (e.g., required by IPM, compliant with templates or checklists) Coverage of associated program process statement Compliance is scored at the process statement level Individual artifacts are not scored Gary Natwick - 22

Entering Project Artifacts Select Add to specify artifacts for a program process statement. Gary Natwick - 23

PCM Filters Evidence Filter by IPM processes applicable to current life cycle phase Filter by expected or actual artifacts for copy/paste across applicable IPM processes (e.g., WBS, PWA, BOE, H-2517) Constrain or expand IPM content for context of process/evidence entry Gary Natwick - 24

Appraisal Create Appraisal Release New Baseline Score Appraisal Close Appraisal Stakeholders: Appraisal Administrator add/remove appraisal leaders, release process baseline, create/close appraisal, add/remove appraisal member Appraisal Leader release new process baseline, create/close appraisal, score appraisal, add/remove appraisal member Appraisal Member score appraisal Current baseline When a new process baseline is released, then evidence and scores roll forward Score process statements Filters process, phase, artifact, statements to be re-scored, scored statements Gary Natwick - 25

Appraising es compliance and process strengths/ weaknesses are assessed in many ways: IPM QA process audits Development Cycle Readiness Reviews (phase transitions) CMMI mini-assessments Formal CMMI SCAMPI assessments ISO 9001 audits Independent program management audits Risk assessments Metrics appraisal results are used to characterize, measure, and improve process effectiveness and compliance with standards Action plans to address appraisal findings Gary Natwick - 26

Compliance Scores ASSESSMENT STATUS COLORS NY NA NS Not Yet Not Applicable Not Scored To be appraised at a later date (i.e., the process has not yet been executed by the process and cannot be appraised) Not applicable to the project (e.g., Code and Unit Test is not applicable to a production-type program) Pending an appraisal PROCESS COMPLIANCE COLORS FI LI PI NI Fully Implemented Largely Implemented Partially Implemented Not Implemented Direct artifacts are present and appropriate No substantial weaknesses Direct artifacts are present and appropriate One or more substantial weaknesses Direct artifact is absent or inadequate Substantiated by indirect artifact/affirmation One or more substantial weaknesses Any situation not covered by the above Gary Natwick - 27

Score Appraisal Score process statement; optionally, enter date valid thru and/or update artifact. A comment MUST BE entered if not FI Gary Natwick - 28

Compliance Scoring Rollup -level Compliance Scores Description of non-compliance statement compliance score assigned by QA Gary Natwick - 29

PCM Filters Appraisals Filter by IPM processes applicable to current life cycle phase Filter by expected or actual artifacts for copy/paste across applicable IPM processes (e.g., WBS, PWA, BOE, H-2517) Constrain or expand IPM content for context of process/evidence entry Review improvement progress over time Filter by statements needing evidence or pending appraisal Filter by appraisal scores to help establish improvement actions Gary Natwick - 30

Monitoring Monitor Compliance Stakeholders: Project Administrator monitor process compliance Project Member monitor process compliance Appraisal Administrator monitor process compliance Appraisal Leader monitor process compliance Appraisal Member monitor process compliance Global Reader monitor process compliance Current or historical baselines Scoring aggregation, bands, and counts Filters process, phase, artifact, appraisal, scored statements Gary Natwick - 31

Program Compliance Represents overall process compliance score for program Based on lowest color score harsh, but in keeping with CMMI standards Depicts scoring distribution over all process items More insight on the overall project score (A) A B Depicts score for each process executed or being executed by this program 3 columns identify types of processes In PCM, point+click on underlined acronym drills down to scoring details for the process C Gary Natwick - 32

Lessons Learned Establish an implementation guide for how the CMMI is implemented in organizational/project processes Internal users (projects, managers, DPG/EPG) External users (customers, appraisal teams) Trade-off how much projects must understand CMMI details Organization/project process knowledge vs. model knowledge Facilitate efficient on-line access and review baseline tailoring Evidence entry and appraisal Compliance monitoring References to evidence must be very specific Expected evidence Project evidence and location (hyperlinked files/directories) Gary Natwick - 33

Contact Information Gary Natwick gnatwick@harris.com SEI-Authorized CMMI Instructor SEI-Authorized SCAMPI SM Lead Appraiser SEI-Authorized SCAMPI SM B&C Team Leader Harris Corporation http://www.harris.com/ P.O. Box 37 Melbourne, Florida 32902-0037 Licensed by the Software Engineering Institute (SEI) to provide: SEI Introduction to CMMI courses SEI SCAMPI SM Appraisal Services Capability Maturity Model Integration and CMMI are registered with the U.S. Patent and Trademark Office. SCAMPI is a service mark of Carnegie Mellon University. Gary Natwick - 34

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback