Each month the CM Journal provides original content articles and regular columns from industry thought leaders and software providers on a wide variety of configuration management and application lifecycle management topics.
.
 Get the Feed
|
IT Governance and Compliance - Providing Transparency to Senior Management Volume 6 - Number 3 - March 2008
IT Governance and compliance are essential practices that are required by Federal law in many organizations. Too often, compliance is treated as the audit that one must simply "get through" so that we can get back to the "real" work. This month our experts provide a great deal of expertise on how to not only meet the requirements of IT governance and compliance, but also to utililize this effort to improve productivity and quality as well. Joe Farah starts us off this month with his view of IT Governance and the Next Generation. Austin Hastings discusses many of the most important practices required by compliance models in his Dimensions of SCM Challenge - Standards and Interfaces and also his SCM Techniques #3 - FormalInterfaces and Standards.
The CM Journal has long ago become permanently attached to Agile practices and I twisted Robert Cowhan's arm until he quickly dashed out some thoughts on applying Agile to IT Governance (expect more articles covering Agile and compliance in the future). Russell Pannone joins us, for the first time, and also discusses Role of Management in an Iterative and Agile Software Development Environment. Of course I weighed in on applying IT Governance frameworks in my column, Behaviorally Speaking. Recently, I had the pleasure of hearing Dr. Adam Kalawa speak (at the NYC SPIN) on Automated Defect Prevent so this month I reviewed his excellent book which takes us to the next level by establishing an infrastructure for automating defect prevention. Don't miss my review on this book and please also enjoy Dr. Kalawa's article on Automated Infrastructure and Workflow for Process Improvement.
Most compliance frameworks cover security and this month we also have an excellent article from Symantec's Sandeep Kumar covering IT governance risk and compliance.IT Governance and Compliance are all about providing the most critical information to senior management. CM Crossroads is the place where you can always find the information that you need to manage your application lifecycle!
Bob Aiello Editor-in-Chief CM Journal
raiello@acm.org
|
|
Transparency improves Governance
IT governance and compliance - providing transparency to senior management. This months topic is IT governance and compliance, which tends to suggest more formal and rigorous processes. If you go to the IT Governance Institute you can get lots of information and pointers, including to standards such as COBIT. Areas covered by governance include:
Read More >>
|
|
|
|
|
|
|
Role of Management in an Iterative and Agile Software Development Environment
This article is meant to link software developers and management with iterative and agile software development, and iterative and agile project management. I am sharing my personal experience as a software engineer who started out in the traditional way of software development, and along the way discovered a much better way - iterative and agile software development and iterative and agile project management.
Read More >>
|
|
|
Dimensions of SCM Challenge #2
Standards and Interfaces & Requirements or Business Demands Part of managing software development is dealing with the challenges that arise. Delivering software requires overcoming the challenges, or at least mitigating the attendant risks during the development activity. Generally, organizations work with a constant level of challenge. When one challenge is overcome, the organization will take on a new challenge. For example, when a project releases software that overcomes a tech...
Read More >>
|
|
|
|
|
|
SCM Techniques #3
Formal Interfaces and Standards & Requirements Management Patterns are a well-understood concept in software development. Thanks to Steve Berczuk and Brad Appleton, they are a part of the SCM vocabulary as well. So far, the SCM pattern vocabulary is relatively low-level, concentrated on describing repository layout, branching strategy and the like. The techniques discussed here are not patterns—they don't have the required structure, and don't provide prescriptive fo...
Read More >>
|
|
|
|
|
|
|
|
Articles 
