Software Process Management

The paper gives an overview of the software process using the capability maturity model instituted by the Software Engineering Institute at the Carnegie Mellon University, Pittsburgh, PA and also briefly focuses on a sequence of maturity levels in the software process that can be observed in development organisations. The paper aims to express the need for process management and understand something of the conditions that determine where one is and where one can hope to be. An attempt is also made to provide a framework and some techniques for evaluating and improving the process of developing software

Tool for evaluating organizational emergency management capability.

Crises or emergencies have drawn attention to the need of good emergency management capability in affected organizations or regions. An ongoing subproject in a Swedish multidisciplinary research programme aims at identifying areas or processes that are potentially important to include in the work of developing and improving an organization’s resilience and emergency management capability. This paper presents preliminary findings from interviews conducted to identify such areas or processes and proposes a first version of a methodology that can enable organizations to continuously evaluate and improve their organizational emergency management capability. Interviews were conducted with four representatives from different administrations within a regional public body in Sweden. Preliminary results show that when evaluating organizational emergency management capability, areas or key processes such as the following ought to be included: assessment of existing organizational emergency management capability, risk and vulnerability analysis, competence provision, operational surveillance and alarm functions, operationalization, communication, safety culture and organizational culture, leadership and management, individual and organizational learning. The proposed methodology for self evaluation of capability is based on a maturity model containing five maturity levels, low to high. An organization develops in stages upwards through the levels by building on the strengths and removing the weaknesses from the previous level. Each maturity level is described based on how the organization learns and reacts to new knowledge and experiences. Each area or process is evaluated and described according to the five maturity levels. The self evaluation provides for analyses, discussion and reflection concerning the proactive management activities taking place in an organization

Enterprise information security policy assessment - an extended framework for metrics development utilising the goal-question-metric approach

Effective enterprise information security policy management requires review and assessment activities to ensure information security policies are aligned with business goals and objectives. As security policy management involves the elements of policy development process and the security policy as output, the context for security policy assessment requires goal-based metrics for these two elements. However, the current security management assessment methods only provide checklist types of assessment that are predefined by industry best practices and do not allow for developing specific goal-based metrics. Utilizing theories drawn from literature, this paper proposes the Enterprise Information Security Policy Assessment approach that expands on the Goal-Question-Metric (GQM) approach. The proposed assessment approach is then applied in a case scenario example to illustrate a practical application. It is shown that the proposed framework addresses the requirement for developing assessment metrics and allows for the concurrent undertaking of process-based and product-based assessment. Recommendations for further research activities include the conduct of empirical research to validate the propositions and the practical application of the proposed assessment approach in case studies to provide opportunities to introduce further enhancements to the approach

Understanding EBLIP at an organizational level: an initial maturity model

Objective - Existing research around evidence based practice in the LIS (library and information science) professional context over the past two decades has captured the experience of individual practitioners, rather than the organization as a whole. Current models of evidence based library and information practice (EBLIP) relate to, and apply predominantly to, individuals or specific scenarios. Yet despite a growing demand from institutional and library leaders for evidence to demonstrate why investments in libraries should continue, little is known about how an organization can enhance its maturity in evidence based practice. This paper addresses this gap by seeking to understand what an evidence based university library looks like and answering the questions: how does a university library leader know the library’s service and practice is evidence based? How can a university library measure and progress its maturity in evidence based practice? Methods - Sixteen semi-structured interviews were conducted with library professionals employed at Australian and New Zealand university libraries. Transcripts were analyzed using thematic analysis techniques. The interviews, combined with a literature review and environmental scan of evidence based practices in university libraries, informed the development of a draft capability maturity model as a framework for developing evidence based practice in university libraries. Results - The model identifies and describes characteristics at five different levels of evidence based practice maturity from least mature (Ad hoc/Sporadic) to most mature (Transforming). Three dimensions of experience help to define the characteristics at each level of maturity and provide a framework to understand how a university library might develop its organizational capacity in evidence based library and information practice. Conclusion - Library leaders and practitioners will benefit from the model as they seek to identify and build upon their evidence based practice maturity, enabling more robust decision-making, a deeper understanding of their clients and demonstration of value and impact to their stakeholders

A framework and tool to manage Cloud Computing service quality

Cloud Computing has generated considerable interest in both companies specialized in Information and Communication Technology and business context in general. The Sourcing Capability Maturity Model for service (e-SCM) is a capability model for offshore outsourcing services between clients and providers that offers appropriate strategies to enhance Cloud Computing implementation. It intends to achieve the required quality of service and develop an effective working relationship between clients and providers. Moreover, quality evaluation framework is a framework to control the quality of any product and/or process. It offers a tool support that can generate software artifacts to manage any type of product and service efficiently and effectively. Thus, the aim of this paper was to make this framework and tool support available to manage Cloud Computing service quality between clients and providers by means of e-SCM.Ministerio de Ciencia e Innovación TIN2013-46928-C3-3-RJunta de Andalucía TIC-578

Applied and conceptual approaches to evidence-based practice in research and academic libraries

Evidence-based practice is an approach to professional practice that involves a structured process of collecting, interpreting and applying valid and reliable research and evidence to support decision-making and continuous service improvement in professional practice. This paper reports on emerging initiatives in evidence-based practice at the University of Southern Queensland (USQ) Library, a regional multi-campus university in Australia. It demonstrates how evidence-based practice forms part of our organisational strategy to engage with our community and society. The case study describes a new model of embedding evidence-based practice through a role explicitly dedicated to developing the library’s evidence base. While other libraries may have a person responsible for assessment, performance metrics or data analysis, the Coordinator (Evidence-Based Practice) has a broader mandate – to work with library staff to develop tools, skills and expertise in evidence-based practice. The paper will describe why this role was created and how the Coordinator is working to engage with library staff to understand their business and the evidence needed to support service improvement for the Library. By doing this, USQ Library is building the capacity to demonstrate value to stakeholders, gain a deeper understanding of clients’ needs and experiences, promote robust decision-making and improve service delivery. The paper also outlines an initiative led by the Coordinator (Evidence-Based Practice) to develop a conceptual model of evidence-based practice within academic libraries at the organisational, rather than individual level. Current models of evidence-based library and information practice apply predominantly to individuals. Informed by relevant literature and 16 semi-structured interviews with library professionals from Australian and New Zealand university libraries, three themes emerged to describe how evidence-based practice might be experienced at the organisational level. The lived experience at USQ Library and our research investigations suggest that being evidence-based provides benefits to an academic library’s culture, practice and impact

An approach to reconcile the agile and CMMI contexts in product line development

Software product line approaches produce reusable platforms and architectures for products set developed by specific companies. These approaches are strategic in nature requiring coordination, discipline, commonality and communication. The Capability Maturity Model (CMM) contains important guidelines for process improvement, and specifies "what" we must have into account to achieve the disciplined processes (among others things). On the other hand, the agile context is playing an increasingly important role in current software engineering practices, specifying "how" the software practices must be addressed to obtain agile processes. In this paper, we carry out a preliminary analysis for reconciling agility and maturity models in software product line domain, taking advantage of both.Postprint (published version