• Webinar: Managing Trustworthiness and Dependability of Systems Acquired Via Supply Chain
    Save the Date
    Upcoming Cyber Resilience Events
    Do you trust the software that your organization depends on? Attend an upcoming CISQ event to stay informed about what's going on in the industry.
  • Get Involved
    Secure Software with Standards
    Become a CISQ Sponsor
    Help solve the complexity of software quality by leading the R&D of international software standards to keep software resilient, trustworthy, and secure.

  • Save the Date!
    Register for the Summit Today!
    10th Annual Cyber Resilience Summit
    CISQ hosts the Cyber Resilience Summit annually to brief Federal and State IT leaders and policymakers on standards for measuring risk and quality in software.

  • Get Involved
    Responsible Computing is here
    Transforming IT teams into responsible computing organizations with a focus on infrastructure, code development and social impact.


ISO 5055 is the first ISO standard to measure software qualities such as security and reliability, with measures taken directly from internal, structural aspects of software rather than its operational behavior.

Get the Standard   Read Blog

The Cost of Poor Software Quality in the US: A 2020 Report

Operational software failures, poor quality legacy systems, and unsuccessful IT projects cost the U.S.
$2.08 trillion last year, which is 10% of the country's GDP.

View Now

CISQ Standards

CISQ collaborates with the world's top software engineering experts to provide an open-source, freely available set of software coding standards, broken into four characteristics: Reliability, Security, Performance Efficiency, and Maintainability. CISQ software standards are free and available for anyone to use.

Software Sizing Standards

This standard is used to estimate the size of a software application or component to support cost estimating, progress tracking, and other software project management activities.

Read more

ISO 5055

The new standard measures the internal, structural quality of software based on detecting and counting weaknesses in security, reliability, performance efficiency, and maintainability. These factors are critical to measuring how trustworthy, dependable, and resilient a software system will be.

Read more

Technical Debt Standard

The Automated Technical Debt standard estimates the effort to correct all instances of the software weaknesses included in the CISQ code quality standards that remain in a software application's code at release. This estimate can be used to predict future corrective maintenance costs.

Read more

Through Global Collaboration, CISQ Will:

  • Develop international standards to automate software quality measurement and to promote the development and sustainment of secure, reliable, and trustworthy software

  • Share insight to software standards development thought leadership, trend analysis and industry perspective

  • Create cross-industry software quality weaknesses and definitions

  • Educate, evolve, and refine software standard deployment and adoption

  • Provide definitive resources for CISQ community members

  • Advise software standard benchmarking for industry leaders in modernization

Active Projects

Founders & Sponsors








Northrop Grumman

Software Improvement Group