• Prev
  • Next

5 Trends in Software Security

2015 brought a number of high-profile security breaches, putting company and consumer information at risk. Ashley Madison, VTech, even the Department of Health and Human Services had their data compromised.

It could have been avoided.

You've heard this before, but companies like DCG, and my company, proServices, will continue to bring it up until security is taken more seriously. The first step is staying aware of the latest security threats in order to appropriately ward them off. But, as one risk dies out, another will always take its place.

Risk Management

Download this white paper to learn the top 5 vulnerabilities of 2015 - and what's on the horizon for 2016.



Rob Cross
PSC, Vice President

Written by Rob Cross at 05:00

Agile and Risk

Agile Philly

Earlier this month, Tom Cagley (you know him as our VP of Consulting, Certified Scrum Master and SAFe Program Consultant) delivered a presentation at the Agile Philly: Agile World Tour event. Agile Philly is a great organization and resource in the region. Every month members are invited to listen to a presentation related to Agile and software development, and they are always interesting, informative and helpful.

Every October Agile Philly also takes part in the Agile World Tour, an international effort to educate IT organizations about different software development practices that include Scrum, XP, Kanban, Agile and more.

This year's event was held on October 5th, and Tom presented "Agile and Risk: Assigning Risk." He discussed how to implement best practices for mitigating risk in an Agile environment. Interested? You can download the presentation here (if you're not interested, we link to plenty of other related resources that you can download - for free - as well). If you have any feedback, please leave it in the comment section below!


Written by Default at 05:00
Categories :

Agile and Risk Management

We're still ruminating over everything we discovered in Seattle last month at the CMMI Global Congress. One thing we are happy to have taken away from the conference is that CMMI adoption seems to be growing - across organizations and across industries. 

We believe this is partly because people are realizing the power of the CMMI model. Why is it powerful? The CMMI is unique in its ability to combine with other methods and techniques, such as lean and Agile, for maximum impact.

A good example of this is in Tom Cagley's presentation from the conference, Agile Risk Management. The presentation discusses how you can combine Agile and CMMI techniques for a more effective software development process and to mitigate risk. You can download the presentation here.

If you have questions or comments, please reach out to Tom via email or Twitter (@TCagley)!

And if you've implemented CMMI in conjunction with other frameworks, we'd love to hear about it - please share in the comments or send us an email! More information about our CMMI services is available here.

Written by Default at 05:00
Categories :

What's Your Most Important Software Risk?

AlanThroughout the nearly 30 years I have been in IT, risk management has been talked about and shown to be vital; yet, I think that the corporate focus follows the money too much.

Whether it’s client CIOs or supplier account managers, when I suggest that they should focus on software development risk, I get patronising comments about focussing on a less important part of clients’ spend. Typically I hear that 90% of software spend is on making sure that the current services are kept alive and functioning, so risk in software development is not important. After all, it doesn’t threaten the existence of the company to-day.

Existentially that assertion is not true. Just to-day I read about two UK supermarkets struggling to cope with the volume of orders, their websites crashing as a result. Ignoring the 10% is ignoring what is effectively the activity that primes the business pump.

My view is that such failures can arise when corners are cut in software development. For example, stress testing is not carried out sufficiently and, when loads exceed the system capacity, trouble ensues. Poor risk management, or worse, ignoring risks that can’t be managed because there’s not much money at stake, contributes to these issues.

Agile is our mantra to-day, and it’s one I subscribe to in a big way. It enables fast business change so clients are able to keep ahead of the competition by introducing unique services as differentiators.  The speed to change also increases the risk of failure. Risk management of that 10% of your service spend becomes more, not less, important.

Strategic, Agile risk management must focus on the front-end of the service flow – development. Assessing risk management is a key part of our Project Triage Solution, where we aim to assist you from commissioning to delivery by giving you an independent assessment of the state of your project.

Ignore that 10% at your peril. 

Here’s to a disaster free 2015.

Alan Cameron
DCG-SMS Managing Director

Written by Alan Cameron at 05:00
Categories :

Subscribe to Our Newsletter
Join over 30,000 other subscribers. Subscribe to our newsletter today!