Subscribe to Methods & Tools
if you are not afraid to read more than one page to be a smarter software developer, software tester or project manager!
Subscribe to Methods & Tools
if you are not afraid to read more than one page to be a smarter software developer, software tester or project manager!
Ghost¬†is dedicated to one thing: publishing. It's beautifully designed, completely customizable and completely open source. It allows you to write and publish your own blog, giving you the tools to make it easy and even (gasp) fun to do. It's simple, elegant, and designed so that you can spend less time messing with making your blog work - and more time blogging. ¬†¬†
InfluxDB is¬†a time series, events, and metrics database. It's written in Go and has no external dependencies. Once you install it there's nothing else to manage (like Redis, HBase, or whatever). It's designed to be distributed and scale horizontially, but is useful even if you're only running it on a single box.
Paul Dix started a project called ErrPlane, focusing on monitoring and metrics. As he traveled around trying to get traction with ErrPlane, he began to realize that other competing projects were all writing their own time-series database to handle the type and volume of data needed. So he and his partner made a big decision to stop working on ErrPlane and shift their focus to building a specialized, time-series database.¬† Paul and team worked quietly for one month, and then decided they needed some feedback to continue, so they did a talk at a NY Ruby Meet-up. One of the attendees posted it up on Hacker News. O‚ÄôReilly Radar picked it up and the story went to the top. When Paul saw people talking about InfluxDB at a DevOps conference in Australia and another in Japan, they knew they were onto something solid. As of this writing, the project is only 3 months old, with the first commit Sept 23rd. ¬†2013 RecipientsView this project on www.ohloh.net
OpenIoT began as a research project partially funded by the European Commission with a goal of enabling a new range of open large scale, intelligent IoT (Internet of Things) applications according to a utility cloud computing delivery model. The project focuses on mobility aspects of internet-connected objects (sensor Networks) for energy-efficient orchestration of sensor data harvesting and data transmission into the cloud.¬†OpenIoT integrates ontologies and semantic structures, in order to enable semantic interactions and interoperability between the various objects, which means a significant advancement over the existing syntactic interactions offered by GSN and AspireRFID projects.¬†2013 RecipientsView this project on www.ohloh.net
Project Tox,¬†also known as Tox, is¬†an instant messaging application aimed to replace Skype. It‚Äôs no surprise that this project got some big traction this year given all the privacy and security related events that have taken place. With the rise of governmental monitoring programs, Tox aims to be an easy to use, all-in-one communication platform (including audio and videochats in the future) that ensures their users full privacy and secure message delivery.¬†2013 RecipientsView this project on www.ohloh.net
OpenDaylight's objective is to provide a fully functional SDN platform that can be deployed directly, without requiring other components. It is focused on building an open, standards-based SDN controller platform that is suitable for deploying in a variety of production network environments. In addition to a modular controller framework, OpenDaylight is expected to include support for a number of standard and emerging SDN protocols, network services such as virtualization and service insertion, well-defined application APIs, and data plane elements including physical device interfaces and virtual switch enhancements.2013 RecipientsView this project on www.ohloh.net
For compliance professionals working large government or commercial contracts, identifying risk factors in the documents is a daily activity; one they must get right. The rule of thumb when reviewing RFPs is ‘trust but verify’.
If you discover onerous conditions too late, it comes with program delivery risk and cost implications.
I was chatting recently with a couple of people from one of our more recent US customers. This company is a management-consulting firm with over 1000 professionals serving public sector government clients. The company wanted to streamline the risk review process for government issued documents. They deployed VisibleThread in late Q3, 2013.
Jesse is a senior compliance advisor. Jesse and his compliance colleagues vet RFPs and contracts. For example, if they see “cost reimbursement” or ‚ÄúIndirect Cost Rate‚ÄĚ they yellow or red flag the instance. Equally, they carefully review terms like ‚ÄúLiquidated damages‚ÄĚ or ‚ÄúSalary disclosure‚ÄĚ.
If they see enough of these negative indicators in the RFP, they reject it, or at the very least raise concerns. I wanted to share how this compliance team has tightened up their process with VisibleThread. If you conduct risk and compliance checks, you will find the approach interesting.
The Process of risk review
Language checklists form much of the basis for Jesse and his teams review checks. For example, language like ‚Äėcost reimbursement‚Äô in the contract implies risk. This is largely because it is not in line with the preferred business model of Jesse‚Äôs government customers.
Prior to VisibleThread, the review process had been manual, time consuming and occasionally, it missed critical risk factors.
Jesse and his team used to spend an average of 2-3 hours reviewing each document. They created reports to share with the team, including; Proposal RFP, Finance and Business Analysts. This report took on average more than a day to prepare.
Now, once a new RFP hits his desk, Jesse uses a pre-canned custom ‘compliance dictionary’ to check for risk indicators. He immediately sends out a VisibleThread compliance report to the project RFP team, finance, business analysts and sometimes the executive team. This takes between 5-15 minutes.
Since deploying VisibleThread, in one 2-month period, they:
So, how does it all work?
Here are some terms they check. Red bold indicates especially risky terms from the point of view of Jesse’s customers.Term Term Term Term $ Financial Penalties Liquidated Damages SAS 70 % First Source Hiring MBE Service Level Requirements A-133 Freedom of Information FOIA Most Favored Nation Software Maintenance Services Audit Grant Office Location Source Code Board of Compensation GSA Opportunity to Cure SSAE 16 Bond Guarantee Outsourcing Subcontract CFR Guaranty Payment Structure Subcontracting Plan Code of Conduct HIPAA BA Payment Withhold Subcontractor Agreement Conflict of Interest Indemnification Personnel Changes Subcontractors Cooperative Agreement Indirect Cost Rate Pricing Subrecipient Cost Insurance Profit Task Order Cost Allocation Plan Intellectual Property Renewal Term Cost Reimbursement Jury Service Program Replacement Cost Trade Secret Covenant Letters of Credit Retainage Warranty Period Damage(s) License WBE Salary Disclosure
And here is the same dictionary in VisibleThread, after an import from Excel:
Note: new in VisibleThread for Docs version 2.10, is the ability to create dictionaries by importing CSV files. This means you create your list in excel, save as CSV and then suck it into VT in seconds. It‚Äôs a big time saver.
What do the reports look like?
For the purpose of this blog post, I took the GSA‚Äôs OASIS contract¬†and analyzed the ‘draft unrestricted solicitation’, using the dictionary above.¬†The RFP is available from FedBizOpps (https://www.fbo.gov/ ). You can see the Oasis documents here.
I show below the VisibleThread view with our dictionary items flagged. You can see actual content from the doc in the bottom portion of this screen. The red arrow shows where you can generate a PDF report with a single click.
And here is a sample of the PDF report that Jesse‚Äôs team create from VisibleThread. You can see the page numbers and content for each of the occurrences.
For Jesse‚Äôs team to produce this report now takes (from start to end) about 5 minutes per doc. This involves uploading multiple docs and generating a PDF report per document.
When we spoke, here‚Äôs how Jesse summarized the benefits:
‚ÄúWe can alert our team to issues regarding specific contract terms that increase our risk much faster than before. In fact, it‚Äôs saving days of review time. It has also made our review process foolproof and more systematic, since we can apply consistent dictionaries.‚ÄĚ
So if you are scanning documents manually today, try using our 14-day no-obligation trial and see if this approach will work for you.
I hope the post will help you avoid risk. What do you think?
Let me know in the comments.
If you want to see how we scan documents, check out these 3-minute demos to get a good sense.Sign up now! or drop us an email
If you want to see how you can check your document for risk, sign up for our no-obligation 14-day free trial.
OR drop us a mail and we can work directly with you.
The ITIL – ISO 20000 standard describes all the procedures that must be in place for highly predictable, reliable IT service provision. ITIL is usually referred to as a robust, but complicated standard that requires a lot of training and implementation effort. Regardless of how the ITIL ISO 20000 is viewed, this standard is required in industries where mission critical applications are in place since the standard provides guidance to meet the high expectation of service level provision as described in Service Level Agreements (SLAs). ALM tools for IT Operational support and IT management should be customizable for ITIL.It‚Äôs all about effective escalation management.
Escalation management is widely used for IT service management, and is also part of the ITIL recommendations. Carefully created escalation processes can ensure that unresolved problems don’t linger and issues are promptly addressed. Escalation criteria such as missed deadlines are defined and result in appropriate actions, such as a change of status or a notification to a project member.CodeBeamer ALM is customized for ITIL support with strong escalation management support for:
codeBeamer can send notifications and take automatic action (via the Tracker workflow) whenever users (via the GUI) and clients (via the remote API) submit and modify issues, or certain events or times are reached.¬†Using Escalation, Trackers can be configured so that issues that meet user-defined escalation criteria, that is issues that need extra attention, can be automatically flagged, so that they can become more visible in a timely fashion. The escalation trigger conditions and resulting actions are user-defined.¬†Escalation processes are constantly monitored and KPIs can be generated by build in plug-ins.
Cincinnati—Jan. 27, 2014—Seapine Software today announced the expansion of its sales and services team to address continued growth for its enterprise class product development solutions. The new team members will be responsible for selling Seapine’s software solutions into new accounts, providing consulting services, and ensuring Seapine’s continued growth within existing accounts.
The new hires include:
"Each of these individuals has a proven sales or services track record. These key hires will ensure we're enabling current customers to solve their existing product development process problems in addition to supporting Seapine’s long term goals," said Bob Spitler, Vice President of Worldwide Sales at Seapine.
Seapine Software is a recognized, fast growing leader in the product development solutions market. Its solutions help companies in industries such as energy, automotive, healthcare, medical device, and gaming, ensure the consistent release of high quality products....
Happy 2014! We wanted to take a moment to let our .NET code coverage clients know about 3 incremental releases to the NCover product suite this January. ¬†All trial users and customers with an active subscription can apply these updates from within NCover.Visual Studio Gallery
We are pleased to announce that NCover Bolt can now be downloaded from its Visual Studio Gallery page. ¬†The development team has been working incredibly hard on expanding the NCover Bolt feature set over the past two months and inclusion into the Visual Studio Gallery is another great step in that direction. ¬†Inclusion also means that users will automatically receive update notifications through the Gallery for all NCover Bolt users. ¬†This also applies to NCover Desktop users who elect to install NCover Bolt as part of their installation.Improved Memory Utilization & Support of Parameterized Tests
As anyone on a deadline knows, fast is never fast enough, so our development team has continued to make improvements on NCover Bolt and NCover Desktop’s¬†memory utilization and performance. ¬†Users with extremely large numbers of tests will notice the largest improvements. ¬†In addition, NCover Bolt expands its support for parameterized tests.
Thanks again to all of our developers and customers for their dedication and feedback. ¬†Looking forward to a great 2014!
Airlines¬†and the aviation industry as a whole are heavily reliant on large scale, robust, mission – critical applications. Fierce competition among national airlines, charter companies and cheap carriers has resulted in extreme cost reduction pressure on all areas of airline operations including IT. Although cost cutting is a must, both safety and security still remain the most important factor for the industry and must not be compromised.
The following questions have to be addressed by airlines‚Äô IT Managers:
Due to the large number of application running at airlines the management of change requests, bug fixing and new releases are usually top priority. A holistic Application Lifecycle Management System (ALM) system can provide full traceability on changes from definition across development and to release. Applying standards, like ITIL, ISO 27000 support the availability, security and high level services for all users.
Innovation, like development of new features for entertainment, better usability, easier access to flight information and ground services generate further challenges for the IT.
Therefore ALM tools in the aviation industry have to support:
Lufthansa Systems is using codeBeamer ALM tool, a fully customized version for the specific corporate processes. How is it supported please check Lufthansa Systems‚Äô case study¬†here.
Today's technology companies are increasingly utilizing free and open source software (FOSS) to help enable innovation in their development organizations. However the day to day practice of using FOSS is often uncontrolled, potentially creating unknown legal, business and operational risks arising from the unique obligations found in many open source licenses. As a result, acquiring companies are now focusing more heavily on open source and third party code in their due diligence practices to uncover issues before M&A transactions are completed.
Join Andrew Hall, Intellectual Property Attorney at Fenwick and West LLP and Matthew Jacobs, General Counsel at Black Duck to gain insights on defined strategies and processes for evaluating open source and software assets within the scope of corporate mergers and acquisitions. Attendees will learn:¬†