Technical, Solution and Design Assurance
- Expert skills and support in technical programme delivery, solution evalution and project delivery assurance
- Technical Design Assurance in ICT and Cloud based programme delivery
- Solution Quality control and Delivery Quality Assurance
- Information Assurance
- Experienced practitioners – client and supply side
Fit to Programme/Solution Requirements, and Contracted baseline
Solution Design Integrity mapping to requirements
Synchronisation of High Level and Low Level Designs
Completeness of whole design, High Level and Low Level Designs
Outputs aligned to defined Product Descriptions, comply with Quality Management
Keywords: RMADs, Risk Management, Security Architecture, Infrastructure Security, Accreditation
Security Audits. CLAS, CESG IAS 06, Protective Monitoring, GPG 13
Processes: COBIT, ISO27000, ISO27001, PRINCE2, ITIL, MSP, GPG
- Identify early omissions in the design process
- Confirmation and confidence of programme alignment with ICT strategy
- Meeting technical, security and non functional requirements
- Addressing and managing risks
- Cost Benefit alignment
- Solution Value for Money – run costs evaluation
- Ensure solution integrity
Technical Design Assurance gives quality control over ICT and Cloud based programme delivery, providing the confirmation and confidence that your programme is being delivered in-line with your ICT strategy, meeting technical, security and non functional requirements, as well as addressing and managing risks in handling and processing information.
Technical Assurance looks to identify early omissions in the design process and ensure solution integrity and robustness through measured quality review. Using traditional quality management techniques combined with deep technical knowledge, its can easily slot into existing programme activity and quality gates to provide a review and scoring structure, which can help inform the level of maturity of the output from any Design phase.
Typically, this will look across the full range of technical design products, at a range of measures, including:
Fit to Programme/Solution Requirements, and Contracted baseline
How Requirements have been flowed down to design teams/areas (Design Integrity)
How well High Level and Low Level Designs are synchronized
Whether there is completeness in the whole design framework (including High Level Designs and Low Level Designs)
Alignment to corporate targets and strategy (eg Re-Use, Preferred Products, ICT Strategic Principles)
Resource allocations and project planning is suitable to meet the design goals
Suitability to inform the next stage of the delivery process (eg the Build stage)
Outputs aligned to defined Product Descriptions, and comply with programme product breakdown structure (Quality Management)
Suitable to be used to inform the Testing Process (eg Identify what to test, how to test it)
The key of any Quality Assurance role is to provide impartiality and objectivity in often busy and pressured programmes. The assurance process needs to use clearly identifiable and measurable criteria, that provide clarity, and are repeatable by all parties independently. This provides certainty in the design and review teams, giving confidence in understanding the process, and the measure(s) that will be used to judge suitability. The quality process, as part of any Design or Technical Assurance, is critical to provide consistency, measured and pragmatic responses to often imperfect situations. QA is a critical part of the review, and overall confidence that solutions are fit-for-purpose.
Common techniques like Maturity Models ( eg applying techniques from CMMI and COBIT ) can provide a structure/mechanism to reporting and scoring, by simplifying the presentation of common products and outputs. Combing with Scorecards, this approach can give a quick simple overview to a wide range of diverse items, enabling gate reviewers and senior stakeholders an appropriate view on how well the design process is progressing, and how ready the programme is move to the next phase. Simple techniques like this can be effectively used to provide focus in a sea of material and outputs, directing the right attention to problem areas or items needing more resource.
Using strategic principles, existing requirements sets and contracted milestones as a guide, Design Assurance will typically slot around the major programme gates (eg Critical Design Review, Operational Readiness Review etc), to provide confidence that goals are being met, and that the target solution fits expectations. Technical and Information (security) assurance can be used to support both in-flight programmes (including BAU/Change Management flows) as well as new transformations. This can help give confidence that key business benefits like ‘Value for Money’, ‘Performance’ and ‘Re-Use’ are being achieved in-line with expectations.
The Information Assurance of any system is key in ensuring risks around use, processing, storage and transition of information is handled appropriately. This includes the consideration of privacy, regulatory and standards compliance ( at various Impact Levels ), audit, business continuity and disaster recovery as related to the solution and its systems.
Providing Risk Assessments on Information Assets, and the systems being used to maintain them, enables you to understand their suitability, and the areas that might need focus on. This can be used to not only align your delivery projects with strategic risk goals, but also ensure you are providing the right level of corporate governance around key issues on privacy, auditing, business continuity, and disaster recovery of your ICT estate. Our experience has come from years working with some of the most sensitive commercial and ‘public’ information systems, helping them with not only ‘Solution Design’ and Strategic Planning, but also the day to day practicalities of ensuring the right protection exists where it is needed.
At Viewdeck, we provide a range of skills and experience to help you meet your Technical, Information and Design Assurance goals. Our team has real experience in delivering these capabilities across a wide range of UK Public Sector clients.
Tag-Cloud: High Level Design, Product Descriptions, RMADs, Risk Management, Security Architecture, Infrastructure Security, Accreditation Support, Impact Level, IL3, IL4, Security Audits. CLAS, CESG IAS 06, Protective Monitoring, GPG 13, Firewalls, Encryptors, Gateways, Codes of Connection, CoCos, SC, DV
Key Processes: COBIT, ISO27000, ISO27001, PRINCE2, ITIL, MSP, GPG