Practice Areas

	Security & Privacy Services
	Software Engineering
	Health IT
	Testing & Release Management
	Critical IT Infrastructure
	Managed Business Solutions

News & Events

QSSI Announces the Appointment of Karlton L. Kim, PMP® as Vice President of Program Delivery

QSSI to Exhibit at the FAA National Small Business Procurement Opportunities Training Conference and Trade Show

Amy M. Walker Presents the Impact on the Future of Healthcare Technology Management at the AAMI 2011 Conference & Expo

HealthIT+™ Successfully Completes the Electronic Submission of Medical Documentation (esMD) Health Information Handler Connectivity Test

QSSI to Support New Wave with HHS Centers for Medicare & Medicaid Services Indefinite Delivery/Indefinite Quantity (IDIQ) Data Management Contract

Bikram Bakshi Presents Dashboards as an Effective Tool for HIPAA Security and Privacy Compliance at the Nineteenth National HIPAA Summit

QSSI Announces its new HIPAA+™ Compliance Solution

Home > Practice Areas > Testing & Release Management

Testing & Release Management

The QSSI Testing Technology Practice was created to improve the quality and effectiveness of our services and end products, reducing the financial and technical risks, and implementing the compliance with our customer's standards. We leverage the technical talents of our staff and historical data from across all QSSI projects and have developed a collection of best practices. We have divided these practices into three areas: Framework; Foundation; Tailored.

Framework

Functional Specifications
Reviews & Inspections
Formal Entry & Exit Criteria
Functional Test
Multi-Platform Testing
Internal Beta Testing
Automated Test Execution

Foundation

Requirements Test Planning
User Scenario
Automated Test Generation
Functional, System, Integration
Usability Testing
Defect Management
Multi-Release Testing

Tailored

Code Coverage
Memory Resource Failure Simulation
Statistical Testing
Check-in Tests for Code
Regression Test Minimization
Benchmark Trends
Bug Bounties

Independent Verification & Validation (IV&V)

Independent Verification & Validation QSSI offers Independent Verification and Validation (IV&V) services consistent with the latest systems engineering and process improvement models, and is derived from concepts and standards including the IEEE Std. 1012 - 2004 Standard for Software Verification and Validation, and the CMMI® process maturity framework. QSSI provides an objective assessment of products and processes throughout the project life cycle in an environment free from the influence, guidance and control of the development effort. Services include:

Criticality Analysis
Requirements Analysis and Tracing
Software Design Analysis
Milestone Reviews and Metrics
Code Review and Analysis
Document Inspection
Defect Investigation
Training Evaluation, Planning, Execution, Reporting, and Witnessing

Full Lifecycle Testing & Release Management

Lifecycle QSSI believes that prevention is better than cure. Planning is crucial given the time-sensitive nature of the testing activity and should run in step with the development life cycle. Our Full Life Cycle testing service covers the following testing processes:

Software Testing

Our CMMI Level 3-based release management processes support all phases of the SDLC starting with the Analysis phase through the Design, Development and Test Phases, and provide support during the O&M phase and as needed during resolution of production incidents.
Our Release Management process includes:

testing

Security Test & Evaluation (ST&E)

QSSI has a comprehensive understanding and extensive experience in providing in-depth expertise in Security Test and Evaluation (ST&E). Our ST&E processes follow guidelines defined in the National Institute of Standards and Technology (NIST) standards including SP-800-37, 800-53 and 80053a.

Our methodology includes collaboration tools to ensure clients are fully prepared and completely engaged; proven tracking and management system; and template-driven, process-based methods that ensure quality and repeatability. Our services cover three major security domains:

Management Controls

Risk Assessment
Planning
Systems and Services Acquisition

Operational Controls

Personnel Security
Physical and Environmental Protection
Contingency Planning
Configuration Management
Maintenance
System and Information Integrity
Media Protection
Incident Response
Awareness and Training

Technical Controls

Identification and Authentication
Access Controls
Audit and Accountability
System and Communications Protection

Certification & Accreditation (C&A)

QSSI has an established Security Certification, Accreditation and Assessment process based on NIST guidelines. QSSI provides a faster, simpler, more cost-effective way to create, manage and measure ST&E readiness through C&A packages. The C&A packages address scope, roles, responsibilities, management, commitment, and compliance and formal documented procedures to facilitate the implementation of the security assessment policies and security assessment controls. We assemble and evaluate the suitability and the readiness all necessary documents required for the ST&E. We conduct findings discussions, create the corrective action plan (CAP), and prepare a detailed C&A tracking calendar.