CMM vs ISO
36
1 / 10 April 2007 / EDS INTERNAL 11 April 2007 CMM vs. ISO, Sarbanes Oxley CMM vs. ISO David S. Craft CIRM, PMP Engineering & Manufactuing Services
description
Diferencia entre CMM e ISO
Transcript of CMM vs ISO
Slide 111 April 2007
CMM vs. ISO
Engineering & Manufactuing Services
Subtitle and speaker’s name are 18 pt. Arial.
Photo may be customized for your purpose.
Photos depict interesting points of view.
Photo colors are desaturated for a subtle effect.
1.bin
11 April 2007
Agenda
11 April 2007
Who Am I
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
CMMI History
Federal government cannot distinguish between competing bids for software development
Early 1980’s - Federal Government (Congress) awards a contract to establish the Software Engineering Institute (SEI) at Carnegie Mellon University (sponsored by the DOD)
1988 - SEI begins work on a Process Maturity Framework for judging a company’s capability to produce software
The Process Maturity Framework evolves into the Capability Maturity Model (CMM)
August 1991 – SW-CMM Version 1 released
SE-CMM developed by the Enterprise Process Improvement Collaboration (EPIC)
1992 - CMM Version 1.1 released
1999 - Begin developing CMMI (CMM Integrated)
2002 – CMMI SE/SW/IPPD/SS Version 1.1 introduced
200? - CMMI Version 1.2 Released
* / 10 April 2007 / EDS INTERNAL
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
ISO History
ISO organization was established in 1947
Headquartered in Geneva, Switzerland
Currently composed of 148 National Standard Bodies and 2,981 technical bodies
As of 12/31/05 there are 15,649 International Standards embodied in 573,494 pages of English text
* / 10 April 2007 / EDS INTERNAL
11 April 2007
What are standards?
Standards are documented agreements containing technical specifications or other precise criteria to be used consistently as rules, guidelines, or definitions of characteristics, to ensure that materials, products, processes and services are fit for their purpose.
For example, the format of the credit cards, phone cards, and "smart" cards that have become commonplace is derived from an ISO International Standard. Adhering to the standard, which defines such features as an optimal thickness (0,76 mm), means that the cards can be used worldwide.
International Standards thus contribute to making life simpler, and to increasing the reliability and effectiveness of the goods and services we use.
Last modified 2002-07-17
11 April 2007
Sector
Standards
Pages
2,447
161,132
1,710
44,918
11 April 2007
Which ISO Standards
ISO 9001:2000 – Quality Management Systems - Requirements
ISO 9004:2000 – Quality Management Systems – Guidelines for performance improvement
ISO 19011 – Guidelines on quality and/or environmental management systems auditing.
ISO 10012 Measurement control system
9000:2000 Fundamentals and Vocabulary – Describes quality management system fundamentals and terminology
9001:2000 Requirements - Defines the requirements for quality management systems and is used to demonstrate an organization’s capability to provide products that meet customer and applicable regulatory requirements
9004:2000 Guidelines for performance improvement –Provides guidance on quality management systems and includes concepts for continual improvement processes that link to customer satisfaction.
19011 Guidelines on quality and/or environmental management systems auditing.
10012 Measurement control systems
11 April 2007
Quality System Documentation
* / 10 April 2007 / EDS INTERNAL
11 April 2007
ISO 9001:2000 Structure
Quality Management System
4.1 General requirements
4.2 Document requirements
7.2 Customer-related processes
7.6 Control of monitoring and measuring devices
Measurement, Analysis & Improvement
8.4 Analysis of data
11 April 2007
Similarities
Both require the organization be explicit about what their processes and quality systems are
Say what you do; do what you say
The organization records and tracks data for objective analysis
Require strong management support to succeed
Provide a structured and measured approach to quality improvement
Require an outside audit for “certification”
Both are refined/improved over time
* / 10 April 2007 / EDS INTERNAL
11 April 2007
Differences
Explicit continuous quality improvement
Software focus
Registration Document
No documentation
Continual Audits
11 April 2007
Sarbanes-Oxley Implications
With its more than 300 discrete points of enforceable law, this is the most significant piece of account legislation passed since the formation of the SEC in 1933
SOX was passed with the specific intent of increasing accountability and attempting to install ethical behavior in financial reporting and business operations.
With this increase spotlight on reporting, companies must invest resources and focus into their internal control process
The Act created the Public Company Accounting Oversight Board (PCAOB) to oversee the activities of the auditing profession and mandated reforms to enhance corporate and criminal fraud accountability.
A goal of SOX legislation is to continually improve the transparency of financial and business events that can impact the accuracy and future validity of financial statements. Projects to improve processes and regular review of controls will become common-place activities as compliance evolves. Tools that simplify project completion and track status will better enable organization to cost-effectively undertake these projects.
* / 10 April 2007 / EDS INTERNAL
11 April 2007
CMM vs. ISO
Engineering & Manufactuing Services
Subtitle and speaker’s name are 18 pt. Arial.
Photo may be customized for your purpose.
Photos depict interesting points of view.
Photo colors are desaturated for a subtle effect.
1.bin
11 April 2007
Agenda
11 April 2007
Who Am I
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
CMMI History
Federal government cannot distinguish between competing bids for software development
Early 1980’s - Federal Government (Congress) awards a contract to establish the Software Engineering Institute (SEI) at Carnegie Mellon University (sponsored by the DOD)
1988 - SEI begins work on a Process Maturity Framework for judging a company’s capability to produce software
The Process Maturity Framework evolves into the Capability Maturity Model (CMM)
August 1991 – SW-CMM Version 1 released
SE-CMM developed by the Enterprise Process Improvement Collaboration (EPIC)
1992 - CMM Version 1.1 released
1999 - Begin developing CMMI (CMM Integrated)
2002 – CMMI SE/SW/IPPD/SS Version 1.1 introduced
200? - CMMI Version 1.2 Released
* / 10 April 2007 / EDS INTERNAL
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
11 April 2007
ISO History
ISO organization was established in 1947
Headquartered in Geneva, Switzerland
Currently composed of 148 National Standard Bodies and 2,981 technical bodies
As of 12/31/05 there are 15,649 International Standards embodied in 573,494 pages of English text
* / 10 April 2007 / EDS INTERNAL
11 April 2007
What are standards?
Standards are documented agreements containing technical specifications or other precise criteria to be used consistently as rules, guidelines, or definitions of characteristics, to ensure that materials, products, processes and services are fit for their purpose.
For example, the format of the credit cards, phone cards, and "smart" cards that have become commonplace is derived from an ISO International Standard. Adhering to the standard, which defines such features as an optimal thickness (0,76 mm), means that the cards can be used worldwide.
International Standards thus contribute to making life simpler, and to increasing the reliability and effectiveness of the goods and services we use.
Last modified 2002-07-17
11 April 2007
Sector
Standards
Pages
2,447
161,132
1,710
44,918
11 April 2007
Which ISO Standards
ISO 9001:2000 – Quality Management Systems - Requirements
ISO 9004:2000 – Quality Management Systems – Guidelines for performance improvement
ISO 19011 – Guidelines on quality and/or environmental management systems auditing.
ISO 10012 Measurement control system
9000:2000 Fundamentals and Vocabulary – Describes quality management system fundamentals and terminology
9001:2000 Requirements - Defines the requirements for quality management systems and is used to demonstrate an organization’s capability to provide products that meet customer and applicable regulatory requirements
9004:2000 Guidelines for performance improvement –Provides guidance on quality management systems and includes concepts for continual improvement processes that link to customer satisfaction.
19011 Guidelines on quality and/or environmental management systems auditing.
10012 Measurement control systems
11 April 2007
Quality System Documentation
* / 10 April 2007 / EDS INTERNAL
11 April 2007
ISO 9001:2000 Structure
Quality Management System
4.1 General requirements
4.2 Document requirements
7.2 Customer-related processes
7.6 Control of monitoring and measuring devices
Measurement, Analysis & Improvement
8.4 Analysis of data
11 April 2007
Similarities
Both require the organization be explicit about what their processes and quality systems are
Say what you do; do what you say
The organization records and tracks data for objective analysis
Require strong management support to succeed
Provide a structured and measured approach to quality improvement
Require an outside audit for “certification”
Both are refined/improved over time
* / 10 April 2007 / EDS INTERNAL
11 April 2007
Differences
Explicit continuous quality improvement
Software focus
Registration Document
No documentation
Continual Audits
11 April 2007
Sarbanes-Oxley Implications
With its more than 300 discrete points of enforceable law, this is the most significant piece of account legislation passed since the formation of the SEC in 1933
SOX was passed with the specific intent of increasing accountability and attempting to install ethical behavior in financial reporting and business operations.
With this increase spotlight on reporting, companies must invest resources and focus into their internal control process
The Act created the Public Company Accounting Oversight Board (PCAOB) to oversee the activities of the auditing profession and mandated reforms to enhance corporate and criminal fraud accountability.
A goal of SOX legislation is to continually improve the transparency of financial and business events that can impact the accuracy and future validity of financial statements. Projects to improve processes and regular review of controls will become common-place activities as compliance evolves. Tools that simplify project completion and track status will better enable organization to cost-effectively undertake these projects.
* / 10 April 2007 / EDS INTERNAL
11 April 2007
