year CISQ finalized a standard for
Enhancement Points that has been approved by the Object
Management Group® (OMG)® for
publication. Automated Enhancement Points or "AEP" is a measure
of software size to be used in productivity analysis and software
CISQ worked on a measure of
Debt that identifies critical violations of good coding and
architectural practice in source code (see
Characteristic Measures) and estimates their effort to
repair. The measure will be submitted to the OMG in early 2017.
In July I attended NIST's Workshop,
Software Measures and Metrics to Reduce Security Vulnerabilities,
aimed at strengthening NIST's cybersecurity framework which is
used widely across the U.S. Federal Government for securing critical
IT infrastructure and software-intensive systems. I suggested
inclusion of CISQ's code quality standards. NIST is focused on this
effort and we'll share updates as we have them.
Please make plans to attend CISQ's
Resilience Summit on October 20 in Arlington, Virginia. We're
briefing Government leaders on software quality
standards for use in IT development, sustainment, and acquisition
programs. Keynote speaker, Dr. David Bray, CIO of the FCC, will
discuss how he moved the FCC's legacy IT systems to cloud computing,
saving the organization millions.
Dr. Bill Curtis
TODAY! SEATS WILL SELL OUT!
Cyber Resilience Summit
October 20, Army Navy Country Club,
REGISTER NOW to join
150 of your peers for
this educational event.
As the journey to secure our nation’s IT cyber infrastructure
gains momentum, it is important to apply proven standards and
methodologies that reduce risk and help us meet objectives for
acquiring, developing and sustaining secure and reliable
software-intensive systems. The theme of our upcoming Cyber
Resilience Summit is Ensure Resiliency in Federal Software
Acquisition. There are participants from DoD, many federal
agencies, FFRDCs (MITRE, SEI, NIST..), and industry. The speakers are
compelling and the subject matter is important.
the agenda and register today.
Webcast: Reducing Software
Vulnerabilities - The "Vital
Few" Process and Product Metrics
Speakers: Dr. Bill Curtis, Executive Director, CISQ; Girish Seshagiri, EVP/CTO, ISHPI
Date: Wednesday, October 26, 2016
Time: 2:00pm – 3:00pm ET
This presentation will demonstrate the
combined impact of high maturity
processes and disciplined agile teams on
secure software development. We will
share real-world data that reflects
nearly zero security incidents as a
result of high quality code.
Learn more & register
York Metro Joint Cyber Security
Conference (NYMJCSC), October 5,
2016 in New York, NY. CISQ is presenting,
"Measuring the Cybersecurity of
AFCEA DC's Cybersecurity
October 11-12, in Arlington, VA and
Washington, DC. CISQ is a partner
sponsor. Visit our table!
Pacific Northwest Software Quality Conference
(PNSQC), October 17-19, 2016 in Portland, OR. CISQ is a partner sponsor.
CISQ's Event Calendar
If you're attending -- send us a
Gartner's Sourcing and Strategic Vendor
Relationships Summit from September 21-23 in
Read CISQ's blog for coverage:
Dr. Bill Curtis, CISQ Executive Director, presented Software Security Issues in the
Industrial Internet at the OMG's special event,
Challenges and Opportunities on September 15 in Chicago, IL.
Download the presentation deck
October is National Cybersecurity Awareness Month. Follow
CISQ on Twitter! #cyberaware
Thank You CISQ