CISQ - Consortium for IT Software Quality, profile picture
Uploaded byCISQ - Consortium for IT Software Quality
PPTX, PDF1,133 views

The Technical Debt Management Cycle

The document discusses the concept of technical debt and its impact on business value, outlining various types of costs and risks associated with IT assets. It provides a detailed management cycle for technical debt, including steps for setting policies, measuring quality, planning reduction goals, and tracking results. The importance of addressing technical debt is emphasized to enhance overall efficiency and reduce liability in IT operations.

Embed presentation

Downloaded 21 times
The Technical Debt Management Cycle: Evaluating the Costs and Risks of IT Assets Dr. Bill Curtis Director, Consortium for IT Software Quality
Technical Debt Damages Business Value 2
The Technical Debt Metaphor Technical Debt  the future cost of defects remaining in code at release, a component of the cost of ownership Business Risk Opportunity cost—benefits that could have been achieved had resources been put on new Opportunity cost capability rather than retiring technical debt Liability from debt Liability—business costs related to outages, breaches, corrupted data, etc. Technical Debt Interest—continuing IT costs attributable to the violations causing technical debt, i.e, higher Interest on the debt maintenance costs, greater resource usage, etc. Principal borrowed Principalcost of fixing problems remaining in the code after release that must be remediated Structural quality problems in production code 3
How to Use Technical Debt Calculating Cost Of Ownership Assessing Business Risk Estimate of Technical Debt Explaining IT Managing Cost of Quality Portfolio Quality 4
CAST’s Application Intelligence Platform Language Application Detected Quality Parsers Analysis Violations Measurements Oracle PL/SQL Expensive operation in loop Sybase T-SQL Static vs. pooled connections SQL Server T-SQL Complex query on big table Performance IBM SQL/PSM C, C++, C# Large indices on big table Pro C Cobol Empty CATCH block Evaluation of Uncontrolled data access CICS Visual Basic 1200+ coding & Poor memory management Robustness VB.Net architectural rules Opened resource not closed ASP.Net Java, J2EE SQL injection JSP Application Cross-site scripting XML Buffer overflow Security HTML meta-data Javascript Uncontrolled format string VBScript PHP Unstructured code Misuse of inheritance PowerBuilder Oracle Forms Lack of comments Transferability PeopleSoft Violated naming convention SAP ABAP, Netweaver Highly coupled component Tibco Duplicated code Business Objects Index modified in loop Changeability Universal Analyzer for other languages High cyclomatic complexity 5
Technical Debt Management Cycle Application Build/Release/ IT Executives Managers Developers QA/AI Center Step 1 Step 2 Step 3 Set policy and Set thresholds Measure quality priorities for app quality Technical Debt Step 4 Plan reduction goals & actions Step 7 Step 6 Step 5 Report to the Remediate Track results business violations 6
Step 1  Set Policy and Quality Priorities Quality Corporate purpose Training Policy Expected behavior Reporting Audit Reliability Performance Security Quality Customer-facing Maintainability Priorities Internal business Reliability Performance Security Maintainability 7
Step 2  Set Thresholds for App Quality Reliability 3.8 Performance 3.9 Product information Security 2.5 Maintainability 3.0 Retail Reliability Performance 3.5 3.5 Online purchase Website Security Maintainability 3.9 2.5 Reliability 3.5 Performance 3.0 Delivery scheduling Security 3.9 Maintainability 2.5 8
Step 3  Measure Technical Debt
Step 4  Plan Quality Goals & Actions 3.9 Quality Score Target 3.7 by Release 3.5 3.3 Reliability Score 3.1 Performance 2.9 Security 2.7 Maintainability 2.5 10
Step 5  Remediate Violations 11
Step 6  Track Results App Management 3.6 3.5 AppDev Planned Performance 3.4 Exec Efficiency 3.3 Actual 3.2 3.1 3 2.9 Portfolio 2.8 QA Data 2.7 Repository 12
Step 7  Report to the Business Quality Operational Output Category problems Measure Outages, slow Resilience Availability recovery Degraded Efficiency Work efficiency response Technical Security Breaches, Theft Data protection debt Lengthy Transferability IT productivity comprehension Changeability Excessive effort Delivery speed 13
Reducing Technical Debt Is Imperative 14

More Related Content

PDF
Real User Experience Insight
byruiruitang
 
PDF
1 jazz overview-karthik_k
byIBM
 
PDF
Requirements Management Office - Strata
byIIBA UK Chapter
 
PDF
Modernize your-java ee-app-server-infrastructure
byzslmarketing
 
PDF
Passing internal and external audits with reporting and dashboards nov 2011
byScott Althouse
 
PDF
3 hang on_a_minute-ankur_goyal
byIBM
 
PPTX
1 what verona_does_barry
byBarryMKane
 
PDF
Smarter products for_a_smarter_p_lanet-neeraj_chandra
byIBM
 
Real User Experience Insight
byruiruitang
 
1 jazz overview-karthik_k
byIBM
 
Requirements Management Office - Strata
byIIBA UK Chapter
 
Modernize your-java ee-app-server-infrastructure
byzslmarketing
 
Passing internal and external audits with reporting and dashboards nov 2011
byScott Althouse
 
3 hang on_a_minute-ankur_goyal
byIBM
 
1 what verona_does_barry
byBarryMKane
 
Smarter products for_a_smarter_p_lanet-neeraj_chandra
byIBM
 

What's hot

PDF
OOW 09 EBS Application Change Management Pack
byjucaab
 
PDF
Cost of Quality How to Save Money
byIosif Itkin
 
PDF
Visure Requirements for Product and Embedded Devolpment - Visure Solutions - ...
byVisure Solutions
 
DOC
Pavan Resume
bypavankumartn
 
PDF
Software Measurement for Lean Application Management
byCAST
 
PDF
M3 Modernization Case Study
byADC Austin Tech
 
PDF
Omnikron Services 2009
byRobin Borough
 
PPT
PCTY 2012, Developing for Mobile Enterprise Application Platform v. Peter Eibak
byIBM Danmark
 
PPTX
Managing and Solving Production Based Customer Complaints and Concerns
byIBS America
 
PPT
Sa 004 quality_attributes
byFrank Gielen
 
PDF
Executive Presentation Homine
byHomine Consulting
 
PDF
All That Jazz
byKristina O'Regan
 
PDF
DevOps for Mobile - DevOpsDays, NY, 2013
bySanjeev Sharma
 
PDF
ESEconf2011 - Buschmann Frank: "What architects need to know"
byAberla
 
PPT
Forchu Teck Technology Collaboration Profile
byCharles Forchu
 
OOW 09 EBS Application Change Management Pack
byjucaab
 
Cost of Quality How to Save Money
byIosif Itkin
 
Visure Requirements for Product and Embedded Devolpment - Visure Solutions - ...
byVisure Solutions
 
Pavan Resume
bypavankumartn
 
Software Measurement for Lean Application Management
byCAST
 
M3 Modernization Case Study
byADC Austin Tech
 
Omnikron Services 2009
byRobin Borough
 
PCTY 2012, Developing for Mobile Enterprise Application Platform v. Peter Eibak
byIBM Danmark
 
Managing and Solving Production Based Customer Complaints and Concerns
byIBS America
 
Sa 004 quality_attributes
byFrank Gielen
 
Executive Presentation Homine
byHomine Consulting
 
All That Jazz
byKristina O'Regan
 
DevOps for Mobile - DevOpsDays, NY, 2013
bySanjeev Sharma
 
ESEconf2011 - Buschmann Frank: "What architects need to know"
byAberla
 
Forchu Teck Technology Collaboration Profile
byCharles Forchu
 

Similar to The Technical Debt Management Cycle

PDF
Enterprise Security Architecture: From access to audit
byBob Rhubart
 
PPT
European Business Rules Conference 2005 : Rule Standards
byDan Selman
 
PDF
Radovan Janecek Avoiding S O A Pitfalls
bySOA Symposium
 
PPTX
Productivity Measurement by Dr. Bill Curtis
byCISQ - Consortium for IT Software Quality
 
PDF
Cast Application Intelligence Platform
byJohn Fotiadis ✔️
 
PPTX
Infopulse presentation
byHI-TECH_Org_Ua
 
PDF
PSI Corporate Profile
bymike_vincent
 
PPTX
Estimating the principal of Technical Debt - Dr. Bill Curtis - WTD '12
byOnTechnicalDebt
 
PDF
Source2VALUE
bycoenburki
 
PDF
Omnext Source2VALUE
bymeijerandre
 
PDF
Care Presentatie Oktober 2011
bymeijerandre
 
PDF
Care presentatie oktober 2011
bymeijerandre
 
PDF
Cost of Quality How to Save Money
byextentconf Tsoy
 
PDF
5 Quality
bytuomasniinimaki
 
PDF
It Risk Advisory Brochure
byRahul Bhan (CA, CIA, MBA)
 
PDF
It Risk Advisory Brochure
byRahul Bhan (CA, CIA, MBA)
 
PDF
It Risk Advisory Brochure
byRahul Bhan (CA, CIA, MBA)
 
PDF
NessPRO Italy on CAST
byErnesto Di Mauro
 
PDF
"Votre produit logiciel : accélérateur ou frein à votre croissance"
byoliviervandeWerve
 
PDF
Enable 2 Pager
byrikbootz
 
Enterprise Security Architecture: From access to audit
byBob Rhubart
 
European Business Rules Conference 2005 : Rule Standards
byDan Selman
 
Radovan Janecek Avoiding S O A Pitfalls
bySOA Symposium
 
Productivity Measurement by Dr. Bill Curtis
byCISQ - Consortium for IT Software Quality
 
Cast Application Intelligence Platform
byJohn Fotiadis ✔️
 
Infopulse presentation
byHI-TECH_Org_Ua
 
PSI Corporate Profile
bymike_vincent
 
Estimating the principal of Technical Debt - Dr. Bill Curtis - WTD '12
byOnTechnicalDebt
 
Source2VALUE
bycoenburki
 
Omnext Source2VALUE
bymeijerandre
 
Care Presentatie Oktober 2011
bymeijerandre
 
Care presentatie oktober 2011
bymeijerandre
 
Cost of Quality How to Save Money
byextentconf Tsoy
 
5 Quality
bytuomasniinimaki
 
It Risk Advisory Brochure
byRahul Bhan (CA, CIA, MBA)
 
It Risk Advisory Brochure
byRahul Bhan (CA, CIA, MBA)
 
It Risk Advisory Brochure
byRahul Bhan (CA, CIA, MBA)
 
NessPRO Italy on CAST
byErnesto Di Mauro
 
"Votre produit logiciel : accélérateur ou frein à votre croissance"
byoliviervandeWerve
 
Enable 2 Pager
byrikbootz
 

Recently uploaded

PPTX
Cloud-and-AI-Platform-FY26-Partner-Playbook.pptx
byiuiuiuiu1
 
PDF
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
PDF
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
PDF
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PPTX
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PPT
software-security-intro in information security.ppt
byismaeelsahib032
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PPTX
AI's Impact on Cybersecurity - Challenges and Opportunities
byYasir Naveed Riaz
 
PDF
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PPTX
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
PDF
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
PPTX
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
PPTX
Kanban India 2025 | Daksh Gupta | Modeling the Models, Generative AI & Kanban
byLeanKanbanIndia
 
PPTX
cybercrime in Information security .pptx
byismaeelsahib032
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
Cloud-and-AI-Platform-FY26-Partner-Playbook.pptx
byiuiuiuiu1
 
Day 3 - Data and Application Security - 2nd Sight Lab Cloud Security Class
by2nd Sight Lab
 
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
Building Cyber Resilience for 2026: Best Practices for a Secure, AI-Driven Bu...
byYasir Naveed Riaz
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
software-security-intro in information security.ppt
byismaeelsahib032
 
The year in review - MarvelClient in 2025
bypanagenda
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
AI's Impact on Cybersecurity - Challenges and Opportunities
byYasir Naveed Riaz
 
Is It Possible to Have Wi-Fi Without an Internet Provider
bySidra Jefferi
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
Unit-4-ARTIFICIAL NEURAL NETWORKS.pptx ANN ppt Artificial neural network
byssuserd4481a
 
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
Data Privacy and Protection: Safeguarding Information in a Connected World
byYasir Naveed Riaz
 
Kanban India 2025 | Daksh Gupta | Modeling the Models, Generative AI & Kanban
byLeanKanbanIndia
 
cybercrime in Information security .pptx
byismaeelsahib032
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 

The Technical Debt Management Cycle

  • 1.
    The Technical DebtManagement Cycle: Evaluating the Costs and Risks of IT Assets Dr. Bill Curtis Director, Consortium for IT Software Quality
  • 2.
    Technical Debt DamagesBusiness Value 2
  • 3.
    The Technical DebtMetaphor Technical Debt  the future cost of defects remaining in code at release, a component of the cost of ownership Business Risk Opportunity cost—benefits that could have been achieved had resources been put on new Opportunity cost capability rather than retiring technical debt Liability from debt Liability—business costs related to outages, breaches, corrupted data, etc. Technical Debt Interest—continuing IT costs attributable to the violations causing technical debt, i.e, higher Interest on the debt maintenance costs, greater resource usage, etc. Principal borrowed Principalcost of fixing problems remaining in the code after release that must be remediated Structural quality problems in production code 3
  • 4.
    How to UseTechnical Debt Calculating Cost Of Ownership Assessing Business Risk Estimate of Technical Debt Explaining IT Managing Cost of Quality Portfolio Quality 4
  • 5.
    CAST’s Application IntelligencePlatform Language Application Detected Quality Parsers Analysis Violations Measurements Oracle PL/SQL Expensive operation in loop Sybase T-SQL Static vs. pooled connections SQL Server T-SQL Complex query on big table Performance IBM SQL/PSM C, C++, C# Large indices on big table Pro C Cobol Empty CATCH block Evaluation of Uncontrolled data access CICS Visual Basic 1200+ coding & Poor memory management Robustness VB.Net architectural rules Opened resource not closed ASP.Net Java, J2EE SQL injection JSP Application Cross-site scripting XML Buffer overflow Security HTML meta-data Javascript Uncontrolled format string VBScript PHP Unstructured code Misuse of inheritance PowerBuilder Oracle Forms Lack of comments Transferability PeopleSoft Violated naming convention SAP ABAP, Netweaver Highly coupled component Tibco Duplicated code Business Objects Index modified in loop Changeability Universal Analyzer for other languages High cyclomatic complexity 5
  • 6.
    Technical Debt ManagementCycle Application Build/Release/ IT Executives Managers Developers QA/AI Center Step 1 Step 2 Step 3 Set policy and Set thresholds Measure quality priorities for app quality Technical Debt Step 4 Plan reduction goals & actions Step 7 Step 6 Step 5 Report to the Remediate Track results business violations 6
  • 7.
    Step 1 Set Policy and Quality Priorities Quality Corporate purpose Training Policy Expected behavior Reporting Audit Reliability Performance Security Quality Customer-facing Maintainability Priorities Internal business Reliability Performance Security Maintainability 7
  • 8.
    Step 2 Set Thresholds for App Quality Reliability 3.8 Performance 3.9 Product information Security 2.5 Maintainability 3.0 Retail Reliability Performance 3.5 3.5 Online purchase Website Security Maintainability 3.9 2.5 Reliability 3.5 Performance 3.0 Delivery scheduling Security 3.9 Maintainability 2.5 8
  • 9.
    Step 3 Measure Technical Debt
  • 10.
    Step 4 Plan Quality Goals & Actions 3.9 Quality Score Target 3.7 by Release 3.5 3.3 Reliability Score 3.1 Performance 2.9 Security 2.7 Maintainability 2.5 10
  • 11.
    Step 5 Remediate Violations 11
  • 12.
    Step 6 Track Results App Management 3.6 3.5 AppDev Planned Performance 3.4 Exec Efficiency 3.3 Actual 3.2 3.1 3 2.9 Portfolio 2.8 QA Data 2.7 Repository 12
  • 13.
    Step 7 Report to the Business Quality Operational Output Category problems Measure Outages, slow Resilience Availability recovery Degraded Efficiency Work efficiency response Technical Security Breaches, Theft Data protection debt Lengthy Transferability IT productivity comprehension Changeability Excessive effort Delivery speed 13
  • 14.
    Reducing Technical DebtIs Imperative 14