CISQ Newsletter
July 2018



Registration is Now Open!

Best Practices Emerge in Rush to Modernize and Secure Government IT 

The 6th semiannual Cyber Resilience Summit: The Crossroads of Modernization and Cybersecurity returns to Arlington, VA in October. The discussion focuses on helping Federal IT leaders meet modernization and cybersecurity objectives. This involves new operating models, changes to technology acquisition to focus on software quality requirements and acceptance criteria to industry-supported standards, deploying innovative cybersecurity and resilience methods, evaluating cloud readiness, and building trust in the Agile and DevOps pipeline by measuring code quality and productivity. Look for an agenda to be posted in August.  

This is a unique opportunity to get this right for the next twenty years. 
You are deploying the "legacy systems of tomorrow" and need sustainable outcomes.

Cyber Resilience Summit: The Crossroads of Modernization and Cybersecurity

RSVP today to join the discussion: 

Registration is complimentary for government, not-for-profit organizations and universities. Industry $250. 



Standards Update

Extending CISQ Quality Measures to Embedded Systems

The Embedded Extensions working group launched in February and plans to submit a specification toBill-Curtis the OMG in Q4 of this year.  

Says Dr. Bill Curtis, CISQ Executive Director:

"CISQ has launched a workgroup from its sponsor organizations to update the CISQ measures to incorporate embedded code. One of the first observations of the members with 35 years of experience in embedded systems development was that more of the functionality that used to be non-embedded is being loaded onto chips. With the evolution of IoT, this trend is only growing larger. Consequently they felt the majority of the weaknesses underlying the current CISQ measures are also relevant to embedded code. We will be adding more weaknesses into the measures and a few may be primarily for embedded, especially where there are real-time issues."



New Resources to Read

New Texas State Laws for IT Project Performance & Cybersecurity 

On June 19th in Austin, TX, CISQ hosted a breakfast workshop for state agency CIOs and IT teams tasked with complying with the Texas Cybersecurity Act and new reporting requirements for measuring cost, schedule, scope and quality of large IT projects. When done properly, these measurements can be used to drive down costs, control risks, and improve project performance over time. Talks were delivered by Herb Krasner (U Texas (ret.)), Dr. Bill Curtis (CISQ), and Phillip Crenshaw (CGI). Click here to access the new laws, position papers and presentations.

Herb Krasner presents New (?) Measurements for IT Projects: Leveraging Industry Best Practice

CISQ in Austin.


Join the September 10 webinar!

Managing Risk in the Supply Chain

As the cyber threat landscape evolves and external dependencies grow more complex, managing risk in the supply chain must focus on the entire lifecycle. The Internet of Things (IoT) is contributing to a massive proliferation of a variety of types of software-reliant, connected devices throughout critical infrastructure sectors. With IoT increasingly dependent upon third-party software of unknown provenance and pedigree, software composition analysis and other forms of testing are needed to determine 'fitness for use' and trustworthiness. For an informative discussion on this subject, register now!

CISQ Synopsys webinar: Managing Risk in the Supply Chain



NEWS: OMG to host 2-day event for the Government of Canada

Canadian Government at its Technical Meeting the week of September 24 – 28, 2018 in Ottawa

The Object Management Group® (OMG®) will host a special event for the Canadian Government at its Technical Meeting the week of September 24 - 28, 2018 in Ottawa. The 2-day GC event is Wednesday, September 26 and Thursday, September 27.

OMG members will be providing information sessions and tutorials on the OMG portfolio of open specifications and standards that align to government IT objectives and priorities. 

Daily keynotes will be delivered by Dr. Richard Soley, Chairman and CEO, OMG; Len Bastien, CIO, Department of National Defence, and Teresa D'Andrea, Director Enterprise Interoperability, Treasury Board of Canada Secretariat.

Registration is complimentary with options to add lunch and reception for a fee. Come explore OMG specs! The CISQ briefing is on Thursday, September 27 from 3:30 - 4:00pm. 



Upcoming Events 

Gartner IT Sourcing, Procurement, Vendor and Asset Management Summit, September 5 - 7, Orlando, FL. CISQ saves $350 off the registration fee with the code GARTOMG.

OMG Technical Meeting, September 24 - 28, Ottawa, Canada. Check out special events open to the public and/or request a guest pass by emailing

Software and Supply Chain Assurance Forum, September 26 - 27, MITRE Corp., McLean, VA. 

STARWEST 2018, September 30 - October 5, Anaheim, CA. CISQ saves $200 off the registration fee with the code SWCM

Pacific NW Software Quality Conference (PNSQC), October 8 - 10, Portland, OR.

OWASP AppSec USA, October 8 - 12, San Jose, CA. CISQ saves $50 off the registration fee with the code US18-CISQ50

Agile + DevOps East, November 4 - 9, Orlando, FL. CISQ saves $200 off the registration fee with the code SWCM.

Gartner Application Strategies & Solutions Summit, November 27 - 29, Las Vegas, NV. CISQ members save $325 off the registration fee with the code GARTOMG.

View CISQ's Event Calendar



CISQ Sponsors, Thanks for the Great Support!

CAST CGI ISHPI Tech-Mahindra
synopsys cognizant Northrop-Grumman
About CISQ
The Consortium for IT Software Quality™ (CISQ™) is an IT industry leadership group comprised of IT executives from the Global 2000, system integrators, outsourced service providers, and software technology vendors committed to introducing computable metrics standards for measuring software quality and size. CISQ is a neutral, open forum in which customers and suppliers of IT application software can develop an industry-wide agenda of actions for improving IT application quality and reduce cost and risk. 

This email may be considered to be commercial email, an advertisement or a solicitation. By accepting this email and not responding with an unsubscribe request, you have consented or opted in to receive additional correspondence and promotions from OMG and its associated partners and sponsors. You can change your subscription settings for marketing mailings or unsubscribe at any time. CISQ never shares your information with third parties. You can learn more by reading our privacy policy. If you have questions about your personal information email our team at