Open Access

Risk-based Vendor Audits of Agile Developed Software

by Dr. Byron Mattingly

Software supplier audits are often a weak spot in a validation and a HUGE hole in purchasing controls and supplier management. According to John W. Helgeson, “[t]he purpose of software quality audits is to monitor software development, the development process, and to help management obtain an independent view of the software development status” (The Software Audit Guide, ASQ Press 2010, p. xv). An audit program of vendor software developed using agile methodologies thus raises particular challenges because of the reliance of such methodologies on “hidden” software tools that sustain the validation environment. This session focuses on auditing software vendors that utilize Agile methodologies (e.g., “test-first,” “loose coupling,” etc.) and some of the newer quality tools and technologies in their software development processes: test-driven development, continuous integration, and continuous verification using automated testing: 1. How do you audit such software, including

  • Filetype: pdf
  • Publish date: 2014-10
  • Keywords:Risk-based, software, Agile, Audits Vendor Audits

ASQ News