Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.
Building an SDLCExcellence in software delivery.Michael WerneburgApril 17, 2013
The challengeTo deliver software with newfunctionality, yet not impact thestability of the existing system.     It’s the p...
The challengeNew functionality must be deliveredwithout error.     New releases cannot impact the      stability or functi...
The challengeEnhancements may can be part ofthe core product, or customdeveloped for a single client.        Changes frequ...
DevelopersDevelopment issues:• Business analysts obtain a proper spec• Developers code to the spec (only)• Automated unit ...
TestingTesting issues: • Software quality assurance function is   separate from development • Test environments separate f...
Version controlVersion control issues: • Multiple developers working at once • A complex architecture with many   dependen...
DeploymentPackage release issues:• Developers don’t release code to test  or production• Package release team doesn’t know...
AuditRelease management requirements:• All releases audited for compliance  with stated procedures• Quality of release not...
A Case Study
About PortfolioAid• Founded in downtown Toronto in  2001.• Experts in retail brokerage  compliance.• Experiencing rapid gr...
SDLC environments              • Used by developers              • No client data  Development • Version: production + 3  ...
VirtualizationPortfolioAid utilizes virtualdevelopment environments for : •   Flexibility in deploying new systems •   Sim...
Managing the SDLCSQA Manager is gatekeeper to theSIT environment. Must have: •   A proper spec from the BA’s •   A complet...
Managing the SDLCProduction Manager oversees allreleases to all clients: •   Runs the change control meeting •   Reports o...
Managing the SDLCPackage release team delivers allnew software, schema changes,and configuration changes. They: •   Must h...
Fit for serviceSuccess in software delivery • Delivering value-added functionality in a   reliable fashion (1 error in 557...
My roleIn buildng this strategy, I:• Gathered and analyzed the governance/audit requirements• Led the discussion and desig...
Questions   Michael Werneburg   416-848-4136   michaelw@portfolioaid.com
Upcoming SlideShare
Loading in …5
×

Building a Professional SDLC

402 views

Published on

A case study for the development of a professional software development life cycle including test, deployment, and audit functions.

Published in: Technology, Business
  • Be the first to comment

  • Be the first to like this

Building a Professional SDLC

  1. 1. Building an SDLCExcellence in software delivery.Michael WerneburgApril 17, 2013
  2. 2. The challengeTo deliver software with newfunctionality, yet not impact thestability of the existing system. It’s the problem of “changing the wheels on a moving bus”.
  3. 3. The challengeNew functionality must be deliveredwithout error. New releases cannot impact the stability or functionality of the existing system in whole.
  4. 4. The challengeEnhancements may can be part ofthe core product, or customdeveloped for a single client. Changes frequently must be migrated to other client builds, where they can differ significantly.
  5. 5. DevelopersDevelopment issues:• Business analysts obtain a proper spec• Developers code to the spec (only)• Automated unit testing
  6. 6. TestingTesting issues: • Software quality assurance function is separate from development • Test environments separate from production and development • Testers test to the specification, not the code
  7. 7. Version controlVersion control issues: • Multiple developers working at once • A complex architecture with many dependencies • Custom and core developments occurring simultaneously • Scheduled & emergency releases
  8. 8. DeploymentPackage release issues:• Developers don’t release code to test or production• Package release team doesn’t know the code, data, or dependencies• Release instructions must be accurate for rollout and rollback
  9. 9. AuditRelease management requirements:• All releases audited for compliance with stated procedures• Quality of release notes• Presence of code review• Approval by change control committee and client prior to release
  10. 10. A Case Study
  11. 11. About PortfolioAid• Founded in downtown Toronto in 2001.• Experts in retail brokerage compliance.• Experiencing rapid growth as the compliance market matures.
  12. 12. SDLC environments • Used by developers • No client data Development • Version: production + 3 • Used by SQA team • No client data SIT • Version: production + 2 • Used by clients • Limited production data UAT • Version: production + 1 • Used by clients (live) Production • Full production data
  13. 13. VirtualizationPortfolioAid utilizes virtualdevelopment environments for : • Flexibility in deploying new systems • Simplifying reconfiguration & upgrades • Scrubbing environments if they are damaged by a release – effects rollback in minutes
  14. 14. Managing the SDLCSQA Manager is gatekeeper to theSIT environment. Must have: • A proper spec from the BA’s • A complete ticket with attached release note • Release instructions that work in ‘git’.
  15. 15. Managing the SDLCProduction Manager oversees allreleases to all clients: • Runs the change control meeting • Reports on metrics • Investigates failed releases; tracks remedial actions
  16. 16. Managing the SDLCPackage release team delivers allnew software, schema changes,and configuration changes. They: • Must have good release instructions • Use ‘git’ to roll out and roll back • Must have authorization from the Production Manager
  17. 17. Fit for serviceSuccess in software delivery • Delivering value-added functionality in a reliable fashion (1 error in 557 releases). • Dependable processes free the time of PortfolioAid SME’s. • Packages migrating between clients with ease; package releases tied to ticketing system for approvals & audit.
  18. 18. My roleIn buildng this strategy, I:• Gathered and analyzed the governance/audit requirements• Led the discussion and design of the SDLC (I am a PMP).• Mapping the governance framework to business strategy.• The writing (and substance) of process manuals.• Managing the auditors. I have worked with American, Japanese, and Canadian auditors. (Certified Internal Auditor designation in progress).• Nearly twenty years in IT. I have worked with technology providers on three continents.
  19. 19. Questions Michael Werneburg 416-848-4136 michaelw@portfolioaid.com

×