Software QA Template/Guidelines for deliverable Software

optomist1

A Sea of Statistics
Super Moderator
Hi To All,

I am in need of a template or guidelines for assessing or auditing a suppliers software development activities relating to deliverable software, which is part of a larger system. Your help or guidance will be appreciated.......

optomist1
 

yodon

Leader
Super Moderator
That's a pretty sizable topic and would be difficult to cover extensively in this forum.

I guess the first question is whether they (you) are subject to any particular standards or regulations? If so, that may drive a lot of what you should do.

Presuming not, here's a quick touch on what I would consider best practices throughout the life cycle.

Do they have a standardized approach; i.e., a well-defined software development life cycle? Is there evidence they are following it? A defined SDLC in itself won't result in better software but if they have one and have the discipline to follow it, it's a pretty good indication they can consistently deliver good results.

Do they have requirements established for the software? If so, how are they managed? Do they take changes through the life cycle or do they cut corners when developing new requirements? Will they be developing a release specific for your use or is this more "shrink-wrapped" software that is purchased as is? You mention it's going to be a part of a larger system so how is the integration going to be managed (this goes on your side as much as theirs!).

What do they do for design? Depending on the type of software, this may be less relevant. If they have anything, how do they maintain it?

When they develop the software, do they have an experienced development team or do they contract it out or use "guns for hire"? Having an experienced development team ensures consistency. You might look to see if software development is in their 'core' business. If not, you can still get good software but it may warrant looking deeper.

Do they have a defined software development environment? This would include all commercial software used, all Integrated Development Environments (IDEs), a Configuration Management (CM) system, and an issue tracking system (hopefully integrated with the CM system and/or the IDE)?

What do they do for testing the software? Can they show that all requirements are thoroughly verified? Do they use appropriate methods (unit, integration, white box, black box) when testing? (I realize that would be difficult to fully assess from your side but if they do things right, they can talk you through it and demonstrate the logic / rationale for what they're doing.)

How do they manage changes? Do they have formal change tracking in place? Do they prioritize changes (with your inputs) and have a solid update / roll-out approach?

How do they manage releases? What information do they provide with each release? You should expect to be able to see all open issues with the release as well as a summary of changes that are incorporated in the release. How do they coordinate releases with you or do they just throw them out and expect you to pick them up? This is more critical if you're in a regulated environment.

Everything mentioned above touches the Configuration Management (CM) process. If they have a good CM processes, they should be able to demonstrate all of this. Thus, I would start by asking them if they have a defined CM process and use that to drive the audit.

Like I said, it's a huge topic and the above is just brushing the surface. You'd be well advised to use some expert help when auditing.
 

michellemmm

Quest For Quality
Hi To All,

I am in need of a template or guidelines for assessing or auditing a suppliers software development activities relating to deliverable software, which is part of a larger system. Your help or guidance will be appreciated.......

optomist1

To get you started, please review these two simple checklists and customized it based on your requirements.

I am not sure about the complexity of the software modules.

If you want a complex system audit sheet, use NASA's document. Search Google or SOI (Stage of Involvement) audit checklists for DO178B or use AS9115 or CMMI.


Happy Auditing!

Michelle

View attachment Development Audit Checklist.docx

View attachment PDQA–Planning Audit.docx
 

optomist1

A Sea of Statistics
Super Moderator
Michelle,

Thank you, I finally have an opportunity to review you attachments, I am attempting to establish the SQA mission and guidelines with a Supplier Quality environment in the automotive field.....I am certain to have follow up questions.....
 

optomist1

A Sea of Statistics
Super Moderator
Yodon,

Thank you for the great input, I will put it to good use, I have found the CMMi site to be very informative as well......my requirment is for deliverable software for Supplier Quality Audits within the automotive field...thanks again....
 
Top Bottom