SlideShare ist ein Scribd-Unternehmen logo

Audit maturity model

C
csandit

Today it is crucial for organizations to pay even greater attention on quality management as the importance of this function in achieving ultimate business objectives is increasingly becoming clearer. Importance of the Quality Management (QM) Function in achieving basic need by ensuring compliance with Capability Maturity Model Integrated (CMMI) / International Organization for Standardization (ISO) is a basic demand from business nowadays. However, QM Function and its processes need to be made much more mature to prevent delivery outages and to achieve business excellence through their review and auditing capability. Many organizations now face challenges in determining the maturity of the QM group along with the service offered by them and the right way to elevate the maturity of the same. The objective of this whitepaper is to propose a new model –the Audit Maturity Model (AMM) which will provide organizations with a measure of their maturity in quality management in the perspective of auditing, along with recommendations for preventing delivery outage, and identifying risk to achieve business excellence. This will enable organizations to assess QM maturity higher than basic hygiene and will also help them to identify gaps and to take corrective actions for achieving higher maturity levels. Hence the objective is to envisage a new auditing model as a part of organisation quality management function which can be a guide for them to achieve higher level of maturity and ultimately help to achieve delivery and business excellence.

TechnologieBusiness
1 von 7
Downloaden Sie, um offline zu lesen
AUDIT MATURITY MODEL Bhattacharya Uttam, Rahut Amit Kumar, De Sujoy Cognizant Technology Solutions, Kolkata, India uttam.bhattacharya@cognizant.com / amit.rahut@cognizant.com / sujoy.de@cognizant.com ABSTRACT Today it is crucial for organizations to pay even greater attention on quality management as the importance of this function in achieving ultimate business objectives is increasingly becoming clearer. Importance of the Quality Management (QM) Function in achieving basic need by ensuring compliance with Capability Maturity Model Integrated (CMMI) / International Organization for Standardization (ISO) is a basic demand from business nowadays. However, QM Function and its processes need to be made much more mature to prevent delivery outages and to achieve business excellence through their review and auditing capability. Many organizations now face challenges in determining the maturity of the QM group along with the service offered by them and the right way to elevate the maturity of the same. The objective of this whitepaper is to propose a new model –the Audit Maturity Model (AMM) which will provide organizations with a measure of their maturity in quality management in the perspective of auditing, along with recommendations for preventing delivery outage, and identifying risk to achieve business excellence. This will enable organizations to assess QM maturity higher than basic hygiene and will also help them to identify gaps and to take corrective actions for achieving higher maturity levels. Hence the objective is to envisage a new auditing model as a part of organisation quality management function which can be a guide for them to achieve higher level of maturity and ultimately help to achieve delivery and business excellence. KEYWORDS Audit; Software Quality Assurance; Risk Management; Engagement Maturity; Business Excellence 1. INTRODUCTION For any world class organization, quality compliance to its standard software process [1] is considered as a basic hygiene factor. ISO [2] and CMMI [3] are official certification/assessment for this which each business unit must ensure. In today’s business scenario, focus of the Quality Assurance (QA) function needs to be elevated from traditional compliance related aspects to more value added services to justify its presence to meet business objectives. Audit function, instead of ensuring mere compliance needs to be much more matured to prevent delivery outage and to achieve business excellence which are the call of the day for survival and to prove oneself best in class in the industry. To keep the quality function as one of the essential business functions, the focus of Quality Assurance activities (audit, review etc.) should be elevated towards higher quality of deliverables and higher performance by strengthening process maturity and quality of data. That way, David C. Wyld et al. (Eds) : CST, ITCS, JSE, SIP, ARIA, DMS - 2014 pp. 155–161, 2014. © CS & IT-CSCP 2014 DOI : 10.5121/csit.2014.4115
156 Computer Science & Information Technology (CS & IT) prevention of delivery outage can be achieved through proactive identification of the risks associated with delivery management, product quality and process adherence. Furthermore, focusing on business excellence by business risk assessment along with management of client’s expectation will help in reaching highest maturity. 2. AUDIT MATURITY MODEL (AMM) Audit Maturity Model (AMM) framework will provide organizations with an assessment of the maturity of audit and review processes / capabilities in the perspective of auditing capability, along with recommendations for achieving higher levels of maturity. This will ensure assessment of not only the basic hygiene factors but also of engagement maturity and business excellence. At the bottom level, audit / review activities are informal, chaotic and adhoc. Reviews and audits are carried out mainly on reactive basis to understand and correct burning project issues. Hence success of the reviews and audits depends on the skill of the people conducting the reviews & audits. There is no Software Quality Assurance (SQA) group defined to assess the audit process. This level can be called as Level 1 initial. There is no formal auditing team to meet the basic objective. At level 2, localized standards of reviews and audits have been recognized, best practices for different reviews and audits are identified and software quality assurance group formed to make it more manageable. At this level, reviews and the audit activities are much more disciplined than level 1 and meet all basic need by focusing on setting up of a standard / compliant process. At this level, SQA Team exists and the objective of audits is to ensure verbatim compliance to meet all basic hygiene. This type of audit can be called as Disciplined Audit, and are carried out by members of the SQA group. At the next level, the audit activities are completely standardized and consistent. Reviews and audits are now much more compliant to many international standards. The audit function now focuses on process maturity through repeatable results and increasing scope of audits. Sets of well-defined and documented standard processes are established and the auditing activities are now formal. The main objective of audits at this level is to ensure process maturity, and audits are carried out by experienced members of the SQA group. Level 4 is much more matured and now the focus of audits shifts to proactive risk identification to ensure product quality and maturity. Delivery management with stable product quality and process adherences are key aspects to prevent delivery outage at this level. Audits here are carried out by senior members of the SQA team along with seasoned project and delivery managers. At the level 5, there is a paradigm shift audits focus on business excellence rather than process maturity or delivery maturity. Assessment of business risks in the area of Finance, Customer Relations, Employee, Infrastructure, and Security are the main objective at this level. At this level, audits are carried out by senior management team members.
Computer Science & Information Technology (CS & IT) 157 Fig. 1. Audit Maturity Model (AMM) 3. CHARACTERISTICS OF THE AUDIT MATURITY MODEL (AMM) In Audit Maturity Model, lower levels of maturity form the basis of a higher maturity level. Hence, it is not possible to achieve higher maturity level if a lower level is skipped. Hence assessment of reviews / audit maturity can be achieved stage wise from level 2 to upwards. Followings are few characteristics of Audit Maturity Model: • • • • This audit model automatically helps to ensures process compliance. Organizations assessed at CMMI level 2 or certified in ISO, AMM helps to ensure compliance to the organization standard software process, thereby confirming basic hygiene. At lower maturity level, basic risks are identified and mitigation actions are planned so that the higher maturity level can focus on more vital aspects and identify more businesscritical risks. Delivery management, product quality and process adherences risks are proactively identified till maturity level 4 which help in enhancing execution maturity. Maturity Level 5 reinforces client expectations by identifying and mitigating business risks in the area of Finance, Customer Relations, Employee, Infrastructure, and Security. 4. IMPLEMENTATION APPROACH OF AUDIT MATURITY MODEL (AMM) The assessment of maturity reviews / audit activities is an examination of different goals defined at different levels by a trained team of professionals using Audit Maturity Model framework as a basis for determining strengths and weaknesses of an organization. This will help to identify gaps at different levels in the framework. Weaknesses can be analyzed and proper action items can be implemented to close the gaps and thus achieve maturity of a particular level, as also proceed to higher maturity levels. The relationship between the different audits to be conducted and focus area of Audit Maturity Model (AMM) is demonstrated in the figure below. At the bottom of sharp end of V, there is no formal audit or risk assessment. At the next level, the audit is called Discipline Audit to check compliance of level 2 goals of focusing on process compliance and data quality. This can be done through desktop audit by auditing, collecting and analyzing the data for projects of the
158 Computer Science & Information Technology (CS & IT) organisation. In a mature organization, this can also be performed remotely by extracting necessary data from defined tools. The risk of non-compliance of process and data quality needs to be shared with the corresponding stakeholders to identify and implement further corrective and preventive actions. Fig. 2. Implementation Approach of Audit Maturity Model (AMM) At the next level, different types of audit are executed like Process Audit which focuses on process maturity, Work Product Audit which ensures quality of all deliverables; and finally Delivery Audit which controls quality of the delivered product or services. These standard and consistent audits can focus on quality of deliverables with process maturity by identifying risks of product quality. Once the focus has shifted completely from process compliance to process maturity, and quality of deliverables are assured by level 2 and level 3 audit capability of AMM implementation, audits now need to focus on product quality and maturity by identifying proactive risks of delivery management. This Execution Maturity Audit includes product quality with delivery management aspects to prevent delivery outage. At the highest level, the objective is to identify and assess business risks associated with financial performance, the relationship between various groups in the program / project, customer relationship, staffing, infrastructure, business continuity and security, etc. through Engagement Maturity Audit. At this level, execution maturity transforms to engagement maturity so as to achieve business excellence. The Quality Assurance function aided by senior management must also work proactively at this stage to align the vendors / suppliers, the organization and its customers. The audit function must identify the aforesaid risks proactively and escalate through defined path to the stakeholders in coordination with project senior team members. The risks must be identified and mitigated proactively before they affect the business or customer. Detailed audit checklists can be made based on different goals and these can be used to dig to a granular level to make the audits more stringent. The appraisal process also needs to be mature enough to produce consistent results through these audits for elevating themselves to the next level. When planning an audit of the AMM framework, the scope of the disciplines to be included needs to be determined. Other considerations include whether the audit team will consist of members
Computer Science & Information Technology (CS & IT) 159 internal or external to the organization; individuals to be interviewed; and the type or class of maturity necessary. 5. BENEFIT • • • • • • • • A Maturity Level rating assessment of quality assurance function in the perspective of auditing capability will be available Helps to comply with basic hygiene factor like ISO and CMMI once audit maturity level 2 is achieved Findings that describe the strengths and weaknesses of organisation relative to the AMM Consensus regarding the organization's key quality management area. An appraisal database in quality assurance area that the organization can continue to use to monitor quality assurance process improvement progress and to support future appraisals A proactive risk identification and mitigation for all projects of organisation in the area of delivery management, process, product and business area Engagement to execution level maturity of organization Align the vendors / suppliers, the organization and its customers as part of a single to reap maximum efficiencies and thus achieve business excellence 6. CHALLENGES Followings are identified challenges to implement Audit Maturity Model (AMM) framework: • • • • The commitment from higher management (required for conducting level 5 audits) will be a key challenge as they need to understand the maturity assessment value addition based on their business objective. Identifying each aspect of audit checklist for each level would be crucial as this is cost effective in terms of technology, resource and training. The level of manual expertise at the internal or external organization level would be crucial. Identified findings or risks logging will be a true challenge. Coordination and further risk mitigation, in all levels, need to be synchronized to meet the business objective. 7. CONCLUSION The Audit Maturity Model (AMM) and its implementation is a new concept in the area of quality assurance to unveil maturity assessment at different levels. Here a lower maturity level forms the basis of the next higher maturity level and hence it is not possible to achieve maturity of a higher level if a lower level is skipped. Hence audit maturity can be achieved stage wise from level 2 upwards. This model strengthens the organization standard process compliance at level 2 with all basic hygiene of process compliance and data quality. Level 3 focuses on process maturity and quality of deliverables by unearthing risk of product quality. At the next level, delivery outage has been prevented by proactive risk identification of delivery management area and finally, at the top level, business risks in the area of finance, customer relations, employee, infrastructure, and security. Based on the impact of business risks, varied levels of rigor are also implemented to check aspects in bottom three levels. Hence, it is a synchronized pre-emptive method of enrichment from a conventional to more business focused state. Proper mitigation of these risks can ensure success of the project and ensures customer satisfaction. The benefits identified for this framework far outweighs the challenges identified.
160 Computer Science & Information Technology (CS & IT) REFERENCES [1] [2] [3] Richard H. Thayer, Merlin Dorfman, “Software Engineering, Volume 2, The Supporting Processes, 3rd Edition”, ©2005, Wiley-IEEE Computer Society Pres, August 2005, pp.280-281. David I. Levine, Michael W. Toffel, “Quality Management and Job Quality: How the ISO 9001Standard for Quality Management Systems Affects Employees and Employers,” Copyright Harvard Business School© 2008, 2009, 2010 IEEE, January 18, 2010, pp.3-18. CMMI for development, version 1.2, CMMI-DEV, V1.2, Carnegie Mellon, Software Engineering Institute, 2006, pp. 116. Authors Bhattacharya Uttam is a Senior Consulting Manager of Cognizant Technology Solutions having 19 Years of experience in the field of strategic assessment, process definition, implementation and process improvement in CMMI, Six Sigma, and ISO 9001. Mr. Bhattacharya was born in Kolkata, India on 2nd August, 1970 and obtained his engineering graduation (Bachelor in Technology) in the year 1993 from Calcutta University, India. Mr. Bhattacharya has also completed his MBA (part time) from Calcutta University, India in 2001. He had played the role of Quality manager for Cognizant and was responsible for ensuring quality of deliverables of the projects. He has implemented CMMI, Six Sigma, ISO 9001 framework, metrics definition for various business units in Cognizant. He has also led the CMMI assessment for Cognizant. He has wide experience in the field of consulting with direct interfacing with many clients for Strategic assessment, Process definition, implementation, improvement and maintaining their Quality Management System for the client organizations spread across geographies. He has also led a number of Six Sigma projects. He has wide experience in organization wide implementation of various processes in different types of projects and has an in-depth understanding of SDLC concepts, continual improvements and high maturity process areas. Mr. Bhattacharya is a certified Project Management Professional (PMP®) from PMI, USA and has cleared the ITIL® version 3 Foundation Examination from Quint. He is also a certified Six Sigma Black Belt Certification form BMG, and is a certified internal auditor of ISO 9000. Mr. Bhattacharya is a certified Scrum master from Scrum Alliance and is a member of Project Management Institute (PMI), USA. He is also an eminent writer in the Cognizant Process Quality Consulting newsletter and is part of the editorial board. Rahut Amit Kumar is a consultant of Cognizant Technology Solutions having 11 Years of experience in the field of process definition, implementation and process improvement with CMMI, Six Sigma, and ISO 9001 model. Mr. Rahut was born in Kolkata, India on 31st October, 1977 and became an engineering graduate (Bachelor in Technology) in the year 2002 from Calcutta University, India. He has wide experience in the field of consulting with direct interfacing for many clients for process definition, implementation, and process improvement and maintaining their Quality Management System. He has implemented CMMI, Six Sigma, ISO 9001 framework, metrics definition for a client organization. He has worked as a Configuration Manager in the IT division of the largest private bank in Europe. He has experience in organization wide implementation of process management applications for application development and maintenance projects and has an in-depth understanding of SDLC concepts, continual improvements and high maturity process areas. He has worked as a Quality Lead for process benchmarking and implementation for a big manufacturing organization and had implemented Theory of Constraint project resulting in increased profitability. Mr. Rahut is certified Project Management Professional (PMP®) from PMI, USA, A PRINCE2® Practitioner from APMG, UK and certified in ITIL® version 3 Foundation from APMG, UK. He is also an eminent writer in the Cognizant Process Quality Consulting newsletter and is part of the editorial board.
Computer Science & Information Technology (CS & IT) 161 De Sujoy is a consultant of Cognizant Technology Solutions having 8 years of experience in various fields of Software Quality and Tool Implementation. Mr. De was born in Bankura, India on 28th of July, 1981 and received his engineering degree (Bachelor in Computer Science & Engineering) in the year 2004 from Burdwan University, India, and Diploma in Business Administration in the year 2009 from Pune University, India. He has wide experience in various fields of software quality like Process definition & implementation, process improvement and maintaining the Quality Management System. He has also experience in CMMI Level 3 implementation, ISO 9001 framework and metrics definition. He has worked as a Configuration Manager for the IT division of one of the largest private banks in Europe. He has experience in organization wide implementation of process management applications for application development and maintenance projects and has an in-depth understanding of SDLC concepts, continual improvements and high maturity process areas. In his previous organization, he was instrumental in the organization's achieving the ISO 9001:2000 recertification and its preparation for ISO 140001 certification.

Empfohlen

Manano 2
Manano 2Manano 2
Manano 2johnsonoke
 
CMMI Certification (Level 1-5)
CMMI Certification (Level 1-5)CMMI Certification (Level 1-5)
CMMI Certification (Level 1-5)Akshat Gupta
 
Capability Maturity Model Integration (CMMI)
Capability Maturity Model Integration (CMMI)Capability Maturity Model Integration (CMMI)
Capability Maturity Model Integration (CMMI)MariamKhan120
 
Total Quality Management
Total Quality ManagementTotal Quality Management
Total Quality ManagementZia Mohi U Din
 
Cmmi
CmmiCmmi
CmmiKumar Kunal
 
What is capability maturity model
What is capability maturity modelWhat is capability maturity model
What is capability maturity modelShivam Rathi
 
Capability Maturity Model Integration
Capability Maturity Model IntegrationCapability Maturity Model Integration
Capability Maturity Model IntegrationAAKASH S
 
Unit 3 ce547
Unit 3 ce547Unit 3 ce547
Unit 3 ce547zishanrkiul
 

Empfohlen

Manano 2
Manano 2Manano 2
Manano 2johnsonoke
 
CMMI Certification (Level 1-5)
CMMI Certification (Level 1-5)CMMI Certification (Level 1-5)
CMMI Certification (Level 1-5)Akshat Gupta
 
Capability Maturity Model Integration (CMMI)
Capability Maturity Model Integration (CMMI)Capability Maturity Model Integration (CMMI)
Capability Maturity Model Integration (CMMI)MariamKhan120
 
Total Quality Management
Total Quality ManagementTotal Quality Management
Total Quality ManagementZia Mohi U Din
 
Cmmi
CmmiCmmi
CmmiKumar Kunal
 
What is capability maturity model
What is capability maturity modelWhat is capability maturity model
What is capability maturity modelShivam Rathi
 
Capability Maturity Model Integration
Capability Maturity Model IntegrationCapability Maturity Model Integration
Capability Maturity Model IntegrationAAKASH S
 
Unit 3 ce547
Unit 3 ce547Unit 3 ce547
Unit 3 ce547zishanrkiul
 
SSCG Insight: Agile Automotive Quality Governance and Oversight
SSCG Insight: Agile Automotive Quality Governance and OversightSSCG Insight: Agile Automotive Quality Governance and Oversight
SSCG Insight: Agile Automotive Quality Governance and OversightEugene Nizeyimana
 
Cmmi Dev 2
Cmmi Dev 2Cmmi Dev 2
Cmmi Dev 2kmpeter
 
Why Cmmi
Why CmmiWhy Cmmi
Why CmmiIndranil Das
 
Quality assurance-in-bpo
Quality assurance-in-bpoQuality assurance-in-bpo
Quality assurance-in-bpoPuneet B
 
A Simple Introduction To CMMI For Beginer
A Simple Introduction To CMMI For BeginerA Simple Introduction To CMMI For Beginer
A Simple Introduction To CMMI For BeginerManas Das
 
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TRDr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TRDr. Mustafa Değerli
 
From 'Zero Defect Software' to 'First Time Right with Business'
From 'Zero Defect Software' to 'First Time Right with Business'From 'Zero Defect Software' to 'First Time Right with Business'
From 'Zero Defect Software' to 'First Time Right with Business'Cognizant
 
Integrated View Of Qai - Induction ppt
Integrated View Of Qai - Induction ppt Integrated View Of Qai - Induction ppt
Integrated View Of Qai - Induction pptQAIites
 
QMV Super Solutions Product & Service Areas
QMV Super Solutions Product & Service AreasQMV Super Solutions Product & Service Areas
QMV Super Solutions Product & Service AreasQMV Super Solutions
 
Cqe preparation | supplier management
Cqe preparation | supplier managementCqe preparation | supplier management
Cqe preparation | supplier managementEng. Hosam Abd Al-Galeil (CMQ/OE)
 
A Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementA Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementVERSE Solutions
 
CMMI an Overview
CMMI an OverviewCMMI an Overview
CMMI an OverviewGaurav Ahluwalia
 
Overview of CMMI
Overview of CMMI Overview of CMMI
Overview of CMMI Certification Consultant
 
Introduction to CMMI-DEV v1.3 - Day 1
Introduction to CMMI-DEV v1.3 - Day 1Introduction to CMMI-DEV v1.3 - Day 1
Introduction to CMMI-DEV v1.3 - Day 1Sherif Salah, MBA, ITIL, CMMI, MCSA, TQM
 
What is CMMI appraisal?
What is CMMI appraisal?What is CMMI appraisal?
What is CMMI appraisal?Sri Kala
 
Agile & pmi project management mapping maveric systems
Agile & pmi project management mapping maveric systemsAgile & pmi project management mapping maveric systems
Agile & pmi project management mapping maveric systemsMaveric Systems
 
CMMI
CMMICMMI
CMMIHoang Nguyen
 
Adopting the Right Software Test Maturity Assessment Model
Adopting the Right Software Test Maturity Assessment ModelAdopting the Right Software Test Maturity Assessment Model
Adopting the Right Software Test Maturity Assessment ModelCognizant
 
Total quality management
Total quality managementTotal quality management
Total quality managementAbdullah Al Noman Faraji
 
The Process Audit
The Process AuditThe Process Audit
The Process AuditYucika Kalvari
 
Sitesddnew
SitesddnewSitesddnew
SitesddnewMartin Nymen Soufor
 
Edtech demo (week 4)
Edtech demo (week 4)Edtech demo (week 4)
Edtech demo (week 4)Patrik Carabuena
 

Weitere ähnliche Inhalte

Was ist angesagt?

SSCG Insight: Agile Automotive Quality Governance and Oversight
SSCG Insight: Agile Automotive Quality Governance and OversightSSCG Insight: Agile Automotive Quality Governance and Oversight
SSCG Insight: Agile Automotive Quality Governance and OversightEugene Nizeyimana
 
Cmmi Dev 2
Cmmi Dev 2Cmmi Dev 2
Cmmi Dev 2kmpeter
 
Quality assurance-in-bpo
Quality assurance-in-bpoQuality assurance-in-bpo
Quality assurance-in-bpoPuneet B
 
A Simple Introduction To CMMI For Beginer
A Simple Introduction To CMMI For BeginerA Simple Introduction To CMMI For Beginer
A Simple Introduction To CMMI For BeginerManas Das
 
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TRDr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TRDr. Mustafa Değerli
 
From 'Zero Defect Software' to 'First Time Right with Business'
From 'Zero Defect Software' to 'First Time Right with Business'From 'Zero Defect Software' to 'First Time Right with Business'
From 'Zero Defect Software' to 'First Time Right with Business'Cognizant
 
Integrated View Of Qai - Induction ppt
Integrated View Of Qai - Induction ppt Integrated View Of Qai - Induction ppt
Integrated View Of Qai - Induction pptQAIites
 
QMV Super Solutions Product & Service Areas
QMV Super Solutions Product & Service AreasQMV Super Solutions Product & Service Areas
QMV Super Solutions Product & Service AreasQMV Super Solutions
 
A Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementA Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementVERSE Solutions
 
What is CMMI appraisal?
What is CMMI appraisal?What is CMMI appraisal?
What is CMMI appraisal?Sri Kala
 
Agile & pmi project management mapping maveric systems
Agile & pmi project management mapping maveric systemsAgile & pmi project management mapping maveric systems
Agile & pmi project management mapping maveric systemsMaveric Systems
 
Adopting the Right Software Test Maturity Assessment Model
Adopting the Right Software Test Maturity Assessment ModelAdopting the Right Software Test Maturity Assessment Model
Adopting the Right Software Test Maturity Assessment ModelCognizant
 

Was ist angesagt? (20)

SSCG Insight: Agile Automotive Quality Governance and Oversight
SSCG Insight: Agile Automotive Quality Governance and OversightSSCG Insight: Agile Automotive Quality Governance and Oversight
SSCG Insight: Agile Automotive Quality Governance and Oversight
 
Cmmi Dev 2
Cmmi Dev 2Cmmi Dev 2
Cmmi Dev 2
 
Why Cmmi
Why CmmiWhy Cmmi
Why Cmmi
 
Quality assurance-in-bpo
Quality assurance-in-bpoQuality assurance-in-bpo
Quality assurance-in-bpo
 
A Simple Introduction To CMMI For Beginer
A Simple Introduction To CMMI For BeginerA Simple Introduction To CMMI For Beginer
A Simple Introduction To CMMI For Beginer
 
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TRDr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
Dr. Mustafa Degerli - 2019 - CMMI Model V2 Development - PMI TR
 
From 'Zero Defect Software' to 'First Time Right with Business'
From 'Zero Defect Software' to 'First Time Right with Business'From 'Zero Defect Software' to 'First Time Right with Business'
From 'Zero Defect Software' to 'First Time Right with Business'
 
Integrated View Of Qai - Induction ppt
Integrated View Of Qai - Induction ppt Integrated View Of Qai - Induction ppt
Integrated View Of Qai - Induction ppt
 
QMV Super Solutions Product & Service Areas
QMV Super Solutions Product & Service AreasQMV Super Solutions Product & Service Areas
QMV Super Solutions Product & Service Areas
 
Cqe preparation | supplier management
Cqe preparation | supplier managementCqe preparation | supplier management
Cqe preparation | supplier management
 
A Best Practices Guide to Quality Management
A Best Practices Guide to Quality ManagementA Best Practices Guide to Quality Management
A Best Practices Guide to Quality Management
 
CMMI an Overview
CMMI an OverviewCMMI an Overview
CMMI an Overview
 
Overview of CMMI
Overview of CMMI Overview of CMMI
Overview of CMMI
 
Introduction to CMMI-DEV v1.3 - Day 1
Introduction to CMMI-DEV v1.3 - Day 1Introduction to CMMI-DEV v1.3 - Day 1
Introduction to CMMI-DEV v1.3 - Day 1
 
What is CMMI appraisal?
What is CMMI appraisal?What is CMMI appraisal?
What is CMMI appraisal?
 
Agile & pmi project management mapping maveric systems
Agile & pmi project management mapping maveric systemsAgile & pmi project management mapping maveric systems
Agile & pmi project management mapping maveric systems
 
CMMI
CMMICMMI
CMMI
 
Adopting the Right Software Test Maturity Assessment Model
Adopting the Right Software Test Maturity Assessment ModelAdopting the Right Software Test Maturity Assessment Model
Adopting the Right Software Test Maturity Assessment Model
 
Total quality management
Total quality managementTotal quality management
Total quality management
 
The Process Audit
The Process AuditThe Process Audit
The Process Audit
 

Andere mochten auch

mi primer pagina prueba
mi primer pagina pruebami primer pagina prueba
mi primer pagina pruebaoliverqueenci4
 
Citations UCEM (Texte 31.V.14.3)
Citations UCEM (Texte 31.V.14.3)Citations UCEM (Texte 31.V.14.3)
Citations UCEM (Texte 31.V.14.3)Pierrot Caron
 
план вомс на 2014
план вомс на 2014план вомс на 2014
план вомс на 2014Tamara Emec
 
مساق ريادة الأعمال من هو عميلك؟
مساق ريادة الأعمال من هو عميلك؟مساق ريادة الأعمال من هو عميلك؟
مساق ريادة الأعمال من هو عميلك؟Hamza Al-Jaghbeer
 
Dictionary based concept mining an application for turkish
Dictionary based concept mining an application for turkishDictionary based concept mining an application for turkish
Dictionary based concept mining an application for turkishcsandit
 
III Forks Recommendation Letter
III Forks Recommendation LetterIII Forks Recommendation Letter
III Forks Recommendation LetterErica Herr
 
Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...
Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...
Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...Cisco Russia
 
La pratique de développement durable au sein du campus
La pratique de développement durable au sein du campusLa pratique de développement durable au sein du campus
La pratique de développement durable au sein du campussafrida fatmawati
 

Andere mochten auch (16)

Sitesddnew
SitesddnewSitesddnew
Sitesddnew
 
Edtech demo (week 4)
Edtech demo (week 4)Edtech demo (week 4)
Edtech demo (week 4)
 
mi primer pagina prueba
mi primer pagina pruebami primer pagina prueba
mi primer pagina prueba
 
Citations UCEM (Texte 31.V.14.3)
Citations UCEM (Texte 31.V.14.3)Citations UCEM (Texte 31.V.14.3)
Citations UCEM (Texte 31.V.14.3)
 
TranscriptsPg2
TranscriptsPg2TranscriptsPg2
TranscriptsPg2
 
план вомс на 2014
план вомс на 2014план вомс на 2014
план вомс на 2014
 
مساق ريادة الأعمال من هو عميلك؟
مساق ريادة الأعمال من هو عميلك؟مساق ريادة الأعمال من هو عميلك؟
مساق ريادة الأعمال من هو عميلك؟
 
TranscriptsPg1
TranscriptsPg1TranscriptsPg1
TranscriptsPg1
 
Sitesddnew
SitesddnewSitesddnew
Sitesddnew
 
Dictionary based concept mining an application for turkish
Dictionary based concept mining an application for turkishDictionary based concept mining an application for turkish
Dictionary based concept mining an application for turkish
 
علِّم بثقة
علِّم بثقةعلِّم بثقة
علِّم بثقة
 
III Forks Recommendation Letter
III Forks Recommendation LetterIII Forks Recommendation Letter
III Forks Recommendation Letter
 
SHANKAR DYES & CHEMICALS, Delhi, India
SHANKAR DYES & CHEMICALS, Delhi, IndiaSHANKAR DYES & CHEMICALS, Delhi, India
SHANKAR DYES & CHEMICALS, Delhi, India
 
Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...
Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...
Многоуровневая интеллектуальная плоскость управления – Cisco nLight Control P...
 
La pratique de développement durable au sein du campus
La pratique de développement durable au sein du campusLa pratique de développement durable au sein du campus
La pratique de développement durable au sein du campus
 
Stay Up To Date on the Latest Happenings in the Boardroom: Recommended Summer...
Stay Up To Date on the Latest Happenings in the Boardroom: Recommended Summer...Stay Up To Date on the Latest Happenings in the Boardroom: Recommended Summer...
Stay Up To Date on the Latest Happenings in the Boardroom: Recommended Summer...
 

Ähnlich wie Audit maturity model

AUDIT MATURITY MODEL
AUDIT MATURITY MODELAUDIT MATURITY MODEL
AUDIT MATURITY MODELcscpconf
 
Insights-Model-Validation
Insights-Model-ValidationInsights-Model-Validation
Insights-Model-ValidationMike Wilkinson
 
Elements of Quality Management System
Elements of Quality Management SystemElements of Quality Management System
Elements of Quality Management SystemShahzeb Pirzada
 
Project Quality - Chapter 1.pptx
Project Quality - Chapter 1.pptxProject Quality - Chapter 1.pptx
Project Quality - Chapter 1.pptxBscCS1
 
Validating your-model
Validating your-modelValidating your-model
Validating your-modelGuy VdB
 
1819_AM_apr13_supply Qualidoc (2)
1819_AM_apr13_supply Qualidoc (2)1819_AM_apr13_supply Qualidoc (2)
1819_AM_apr13_supply Qualidoc (2)Jean White
 
Quality Management System ISO 9001 Interpretation and Internal Audit
Quality Management System ISO 9001 Interpretation and Internal AuditQuality Management System ISO 9001 Interpretation and Internal Audit
Quality Management System ISO 9001 Interpretation and Internal AuditDinar Surtikarani
 
Decoding Quality Management Systems
Decoding Quality Management SystemsDecoding Quality Management Systems
Decoding Quality Management SystemsCognizant
 
22317-DIPLOMA_SEM4_software_engg-chap-06.ppt
22317-DIPLOMA_SEM4_software_engg-chap-06.ppt22317-DIPLOMA_SEM4_software_engg-chap-06.ppt
22317-DIPLOMA_SEM4_software_engg-chap-06.pptDeepgaichor1
 
Software quality models
Software quality modelsSoftware quality models
Software quality modelsONKAR PANDE
 
Running head QUALITY TRAINING MANUAL .docx
Running head QUALITY TRAINING MANUAL .docxRunning head QUALITY TRAINING MANUAL .docx
Running head QUALITY TRAINING MANUAL .docxtoltonkendal
 
DHL Quality Control Manual Quality Management (BADM370).docx
DHL Quality Control Manual Quality Management (BADM370).docxDHL Quality Control Manual Quality Management (BADM370).docx
DHL Quality Control Manual Quality Management (BADM370).docxmariona83
 
TQM (Total Quality Management)
TQM (Total Quality Management)TQM (Total Quality Management)
TQM (Total Quality Management)amarchand
 
Product Development Capability Maturity Model PowerPoint Presentation Slides
Product Development Capability Maturity Model PowerPoint Presentation SlidesProduct Development Capability Maturity Model PowerPoint Presentation Slides
Product Development Capability Maturity Model PowerPoint Presentation SlidesSlideTeam
 

Ähnlich wie Audit maturity model (20)

AUDIT MATURITY MODEL
AUDIT MATURITY MODELAUDIT MATURITY MODEL
AUDIT MATURITY MODEL
 
CMMI.pdf
CMMI.pdfCMMI.pdf
CMMI.pdf
 
Quality mgt.
Quality mgt.Quality mgt.
Quality mgt.
 
CMMI PPT.pptx
CMMI PPT.pptxCMMI PPT.pptx
CMMI PPT.pptx
 
Insights-Model-Validation
Insights-Model-ValidationInsights-Model-Validation
Insights-Model-Validation
 
Elements of Quality Management System
Elements of Quality Management SystemElements of Quality Management System
Elements of Quality Management System
 
Quality principles and concepts
Quality principles and conceptsQuality principles and concepts
Quality principles and concepts
 
Project Quality - Chapter 1.pptx
Project Quality - Chapter 1.pptxProject Quality - Chapter 1.pptx
Project Quality - Chapter 1.pptx
 
Validating your-model
Validating your-modelValidating your-model
Validating your-model
 
1819_AM_apr13_supply Qualidoc (2)
1819_AM_apr13_supply Qualidoc (2)1819_AM_apr13_supply Qualidoc (2)
1819_AM_apr13_supply Qualidoc (2)
 
Achieve cmmi level 5 maturity
Achieve cmmi level 5 maturityAchieve cmmi level 5 maturity
Achieve cmmi level 5 maturity
 
Quality Management System ISO 9001 Interpretation and Internal Audit
Quality Management System ISO 9001 Interpretation and Internal AuditQuality Management System ISO 9001 Interpretation and Internal Audit
Quality Management System ISO 9001 Interpretation and Internal Audit
 
Decoding Quality Management Systems
Decoding Quality Management SystemsDecoding Quality Management Systems
Decoding Quality Management Systems
 
22317-DIPLOMA_SEM4_software_engg-chap-06.ppt
22317-DIPLOMA_SEM4_software_engg-chap-06.ppt22317-DIPLOMA_SEM4_software_engg-chap-06.ppt
22317-DIPLOMA_SEM4_software_engg-chap-06.ppt
 
Vinolie profile new
Vinolie profile newVinolie profile new
Vinolie profile new
 
Software quality models
Software quality modelsSoftware quality models
Software quality models
 
Running head QUALITY TRAINING MANUAL .docx
Running head QUALITY TRAINING MANUAL .docxRunning head QUALITY TRAINING MANUAL .docx
Running head QUALITY TRAINING MANUAL .docx
 
DHL Quality Control Manual Quality Management (BADM370).docx
DHL Quality Control Manual Quality Management (BADM370).docxDHL Quality Control Manual Quality Management (BADM370).docx
DHL Quality Control Manual Quality Management (BADM370).docx
 
TQM (Total Quality Management)
TQM (Total Quality Management)TQM (Total Quality Management)
TQM (Total Quality Management)
 
Product Development Capability Maturity Model PowerPoint Presentation Slides
Product Development Capability Maturity Model PowerPoint Presentation SlidesProduct Development Capability Maturity Model PowerPoint Presentation Slides
Product Development Capability Maturity Model PowerPoint Presentation Slides
 

Kürzlich hochgeladen

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 

Kürzlich hochgeladen (20)

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 

Audit maturity model

  • 1. AUDIT MATURITY MODEL Bhattacharya Uttam, Rahut Amit Kumar, De Sujoy Cognizant Technology Solutions, Kolkata, India uttam.bhattacharya@cognizant.com / amit.rahut@cognizant.com / sujoy.de@cognizant.com ABSTRACT Today it is crucial for organizations to pay even greater attention on quality management as the importance of this function in achieving ultimate business objectives is increasingly becoming clearer. Importance of the Quality Management (QM) Function in achieving basic need by ensuring compliance with Capability Maturity Model Integrated (CMMI) / International Organization for Standardization (ISO) is a basic demand from business nowadays. However, QM Function and its processes need to be made much more mature to prevent delivery outages and to achieve business excellence through their review and auditing capability. Many organizations now face challenges in determining the maturity of the QM group along with the service offered by them and the right way to elevate the maturity of the same. The objective of this whitepaper is to propose a new model –the Audit Maturity Model (AMM) which will provide organizations with a measure of their maturity in quality management in the perspective of auditing, along with recommendations for preventing delivery outage, and identifying risk to achieve business excellence. This will enable organizations to assess QM maturity higher than basic hygiene and will also help them to identify gaps and to take corrective actions for achieving higher maturity levels. Hence the objective is to envisage a new auditing model as a part of organisation quality management function which can be a guide for them to achieve higher level of maturity and ultimately help to achieve delivery and business excellence. KEYWORDS Audit; Software Quality Assurance; Risk Management; Engagement Maturity; Business Excellence 1. INTRODUCTION For any world class organization, quality compliance to its standard software process [1] is considered as a basic hygiene factor. ISO [2] and CMMI [3] are official certification/assessment for this which each business unit must ensure. In today’s business scenario, focus of the Quality Assurance (QA) function needs to be elevated from traditional compliance related aspects to more value added services to justify its presence to meet business objectives. Audit function, instead of ensuring mere compliance needs to be much more matured to prevent delivery outage and to achieve business excellence which are the call of the day for survival and to prove oneself best in class in the industry. To keep the quality function as one of the essential business functions, the focus of Quality Assurance activities (audit, review etc.) should be elevated towards higher quality of deliverables and higher performance by strengthening process maturity and quality of data. That way, David C. Wyld et al. (Eds) : CST, ITCS, JSE, SIP, ARIA, DMS - 2014 pp. 155–161, 2014. © CS & IT-CSCP 2014 DOI : 10.5121/csit.2014.4115
  • 2. 156 Computer Science & Information Technology (CS & IT) prevention of delivery outage can be achieved through proactive identification of the risks associated with delivery management, product quality and process adherence. Furthermore, focusing on business excellence by business risk assessment along with management of client’s expectation will help in reaching highest maturity. 2. AUDIT MATURITY MODEL (AMM) Audit Maturity Model (AMM) framework will provide organizations with an assessment of the maturity of audit and review processes / capabilities in the perspective of auditing capability, along with recommendations for achieving higher levels of maturity. This will ensure assessment of not only the basic hygiene factors but also of engagement maturity and business excellence. At the bottom level, audit / review activities are informal, chaotic and adhoc. Reviews and audits are carried out mainly on reactive basis to understand and correct burning project issues. Hence success of the reviews and audits depends on the skill of the people conducting the reviews & audits. There is no Software Quality Assurance (SQA) group defined to assess the audit process. This level can be called as Level 1 initial. There is no formal auditing team to meet the basic objective. At level 2, localized standards of reviews and audits have been recognized, best practices for different reviews and audits are identified and software quality assurance group formed to make it more manageable. At this level, reviews and the audit activities are much more disciplined than level 1 and meet all basic need by focusing on setting up of a standard / compliant process. At this level, SQA Team exists and the objective of audits is to ensure verbatim compliance to meet all basic hygiene. This type of audit can be called as Disciplined Audit, and are carried out by members of the SQA group. At the next level, the audit activities are completely standardized and consistent. Reviews and audits are now much more compliant to many international standards. The audit function now focuses on process maturity through repeatable results and increasing scope of audits. Sets of well-defined and documented standard processes are established and the auditing activities are now formal. The main objective of audits at this level is to ensure process maturity, and audits are carried out by experienced members of the SQA group. Level 4 is much more matured and now the focus of audits shifts to proactive risk identification to ensure product quality and maturity. Delivery management with stable product quality and process adherences are key aspects to prevent delivery outage at this level. Audits here are carried out by senior members of the SQA team along with seasoned project and delivery managers. At the level 5, there is a paradigm shift audits focus on business excellence rather than process maturity or delivery maturity. Assessment of business risks in the area of Finance, Customer Relations, Employee, Infrastructure, and Security are the main objective at this level. At this level, audits are carried out by senior management team members.
  • 3. Computer Science & Information Technology (CS & IT) 157 Fig. 1. Audit Maturity Model (AMM) 3. CHARACTERISTICS OF THE AUDIT MATURITY MODEL (AMM) In Audit Maturity Model, lower levels of maturity form the basis of a higher maturity level. Hence, it is not possible to achieve higher maturity level if a lower level is skipped. Hence assessment of reviews / audit maturity can be achieved stage wise from level 2 to upwards. Followings are few characteristics of Audit Maturity Model: • • • • This audit model automatically helps to ensures process compliance. Organizations assessed at CMMI level 2 or certified in ISO, AMM helps to ensure compliance to the organization standard software process, thereby confirming basic hygiene. At lower maturity level, basic risks are identified and mitigation actions are planned so that the higher maturity level can focus on more vital aspects and identify more businesscritical risks. Delivery management, product quality and process adherences risks are proactively identified till maturity level 4 which help in enhancing execution maturity. Maturity Level 5 reinforces client expectations by identifying and mitigating business risks in the area of Finance, Customer Relations, Employee, Infrastructure, and Security. 4. IMPLEMENTATION APPROACH OF AUDIT MATURITY MODEL (AMM) The assessment of maturity reviews / audit activities is an examination of different goals defined at different levels by a trained team of professionals using Audit Maturity Model framework as a basis for determining strengths and weaknesses of an organization. This will help to identify gaps at different levels in the framework. Weaknesses can be analyzed and proper action items can be implemented to close the gaps and thus achieve maturity of a particular level, as also proceed to higher maturity levels. The relationship between the different audits to be conducted and focus area of Audit Maturity Model (AMM) is demonstrated in the figure below. At the bottom of sharp end of V, there is no formal audit or risk assessment. At the next level, the audit is called Discipline Audit to check compliance of level 2 goals of focusing on process compliance and data quality. This can be done through desktop audit by auditing, collecting and analyzing the data for projects of the
  • 4. 158 Computer Science & Information Technology (CS & IT) organisation. In a mature organization, this can also be performed remotely by extracting necessary data from defined tools. The risk of non-compliance of process and data quality needs to be shared with the corresponding stakeholders to identify and implement further corrective and preventive actions. Fig. 2. Implementation Approach of Audit Maturity Model (AMM) At the next level, different types of audit are executed like Process Audit which focuses on process maturity, Work Product Audit which ensures quality of all deliverables; and finally Delivery Audit which controls quality of the delivered product or services. These standard and consistent audits can focus on quality of deliverables with process maturity by identifying risks of product quality. Once the focus has shifted completely from process compliance to process maturity, and quality of deliverables are assured by level 2 and level 3 audit capability of AMM implementation, audits now need to focus on product quality and maturity by identifying proactive risks of delivery management. This Execution Maturity Audit includes product quality with delivery management aspects to prevent delivery outage. At the highest level, the objective is to identify and assess business risks associated with financial performance, the relationship between various groups in the program / project, customer relationship, staffing, infrastructure, business continuity and security, etc. through Engagement Maturity Audit. At this level, execution maturity transforms to engagement maturity so as to achieve business excellence. The Quality Assurance function aided by senior management must also work proactively at this stage to align the vendors / suppliers, the organization and its customers. The audit function must identify the aforesaid risks proactively and escalate through defined path to the stakeholders in coordination with project senior team members. The risks must be identified and mitigated proactively before they affect the business or customer. Detailed audit checklists can be made based on different goals and these can be used to dig to a granular level to make the audits more stringent. The appraisal process also needs to be mature enough to produce consistent results through these audits for elevating themselves to the next level. When planning an audit of the AMM framework, the scope of the disciplines to be included needs to be determined. Other considerations include whether the audit team will consist of members
  • 5. Computer Science & Information Technology (CS & IT) 159 internal or external to the organization; individuals to be interviewed; and the type or class of maturity necessary. 5. BENEFIT • • • • • • • • A Maturity Level rating assessment of quality assurance function in the perspective of auditing capability will be available Helps to comply with basic hygiene factor like ISO and CMMI once audit maturity level 2 is achieved Findings that describe the strengths and weaknesses of organisation relative to the AMM Consensus regarding the organization's key quality management area. An appraisal database in quality assurance area that the organization can continue to use to monitor quality assurance process improvement progress and to support future appraisals A proactive risk identification and mitigation for all projects of organisation in the area of delivery management, process, product and business area Engagement to execution level maturity of organization Align the vendors / suppliers, the organization and its customers as part of a single to reap maximum efficiencies and thus achieve business excellence 6. CHALLENGES Followings are identified challenges to implement Audit Maturity Model (AMM) framework: • • • • The commitment from higher management (required for conducting level 5 audits) will be a key challenge as they need to understand the maturity assessment value addition based on their business objective. Identifying each aspect of audit checklist for each level would be crucial as this is cost effective in terms of technology, resource and training. The level of manual expertise at the internal or external organization level would be crucial. Identified findings or risks logging will be a true challenge. Coordination and further risk mitigation, in all levels, need to be synchronized to meet the business objective. 7. CONCLUSION The Audit Maturity Model (AMM) and its implementation is a new concept in the area of quality assurance to unveil maturity assessment at different levels. Here a lower maturity level forms the basis of the next higher maturity level and hence it is not possible to achieve maturity of a higher level if a lower level is skipped. Hence audit maturity can be achieved stage wise from level 2 upwards. This model strengthens the organization standard process compliance at level 2 with all basic hygiene of process compliance and data quality. Level 3 focuses on process maturity and quality of deliverables by unearthing risk of product quality. At the next level, delivery outage has been prevented by proactive risk identification of delivery management area and finally, at the top level, business risks in the area of finance, customer relations, employee, infrastructure, and security. Based on the impact of business risks, varied levels of rigor are also implemented to check aspects in bottom three levels. Hence, it is a synchronized pre-emptive method of enrichment from a conventional to more business focused state. Proper mitigation of these risks can ensure success of the project and ensures customer satisfaction. The benefits identified for this framework far outweighs the challenges identified.
  • 6. 160 Computer Science & Information Technology (CS & IT) REFERENCES [1] [2] [3] Richard H. Thayer, Merlin Dorfman, “Software Engineering, Volume 2, The Supporting Processes, 3rd Edition”, ©2005, Wiley-IEEE Computer Society Pres, August 2005, pp.280-281. David I. Levine, Michael W. Toffel, “Quality Management and Job Quality: How the ISO 9001Standard for Quality Management Systems Affects Employees and Employers,” Copyright Harvard Business School© 2008, 2009, 2010 IEEE, January 18, 2010, pp.3-18. CMMI for development, version 1.2, CMMI-DEV, V1.2, Carnegie Mellon, Software Engineering Institute, 2006, pp. 116. Authors Bhattacharya Uttam is a Senior Consulting Manager of Cognizant Technology Solutions having 19 Years of experience in the field of strategic assessment, process definition, implementation and process improvement in CMMI, Six Sigma, and ISO 9001. Mr. Bhattacharya was born in Kolkata, India on 2nd August, 1970 and obtained his engineering graduation (Bachelor in Technology) in the year 1993 from Calcutta University, India. Mr. Bhattacharya has also completed his MBA (part time) from Calcutta University, India in 2001. He had played the role of Quality manager for Cognizant and was responsible for ensuring quality of deliverables of the projects. He has implemented CMMI, Six Sigma, ISO 9001 framework, metrics definition for various business units in Cognizant. He has also led the CMMI assessment for Cognizant. He has wide experience in the field of consulting with direct interfacing with many clients for Strategic assessment, Process definition, implementation, improvement and maintaining their Quality Management System for the client organizations spread across geographies. He has also led a number of Six Sigma projects. He has wide experience in organization wide implementation of various processes in different types of projects and has an in-depth understanding of SDLC concepts, continual improvements and high maturity process areas. Mr. Bhattacharya is a certified Project Management Professional (PMP®) from PMI, USA and has cleared the ITIL® version 3 Foundation Examination from Quint. He is also a certified Six Sigma Black Belt Certification form BMG, and is a certified internal auditor of ISO 9000. Mr. Bhattacharya is a certified Scrum master from Scrum Alliance and is a member of Project Management Institute (PMI), USA. He is also an eminent writer in the Cognizant Process Quality Consulting newsletter and is part of the editorial board. Rahut Amit Kumar is a consultant of Cognizant Technology Solutions having 11 Years of experience in the field of process definition, implementation and process improvement with CMMI, Six Sigma, and ISO 9001 model. Mr. Rahut was born in Kolkata, India on 31st October, 1977 and became an engineering graduate (Bachelor in Technology) in the year 2002 from Calcutta University, India. He has wide experience in the field of consulting with direct interfacing for many clients for process definition, implementation, and process improvement and maintaining their Quality Management System. He has implemented CMMI, Six Sigma, ISO 9001 framework, metrics definition for a client organization. He has worked as a Configuration Manager in the IT division of the largest private bank in Europe. He has experience in organization wide implementation of process management applications for application development and maintenance projects and has an in-depth understanding of SDLC concepts, continual improvements and high maturity process areas. He has worked as a Quality Lead for process benchmarking and implementation for a big manufacturing organization and had implemented Theory of Constraint project resulting in increased profitability. Mr. Rahut is certified Project Management Professional (PMP®) from PMI, USA, A PRINCE2® Practitioner from APMG, UK and certified in ITIL® version 3 Foundation from APMG, UK. He is also an eminent writer in the Cognizant Process Quality Consulting newsletter and is part of the editorial board.
  • 7. Computer Science & Information Technology (CS & IT) 161 De Sujoy is a consultant of Cognizant Technology Solutions having 8 years of experience in various fields of Software Quality and Tool Implementation. Mr. De was born in Bankura, India on 28th of July, 1981 and received his engineering degree (Bachelor in Computer Science & Engineering) in the year 2004 from Burdwan University, India, and Diploma in Business Administration in the year 2009 from Pune University, India. He has wide experience in various fields of software quality like Process definition & implementation, process improvement and maintaining the Quality Management System. He has also experience in CMMI Level 3 implementation, ISO 9001 framework and metrics definition. He has worked as a Configuration Manager for the IT division of one of the largest private banks in Europe. He has experience in organization wide implementation of process management applications for application development and maintenance projects and has an in-depth understanding of SDLC concepts, continual improvements and high maturity process areas. In his previous organization, he was instrumental in the organization's achieving the ISO 9001:2000 recertification and its preparation for ISO 140001 certification.