Transition to Quality
Poor quality severely hinders the effectiveness of business because of bugs and breaches. Within the software development lifecycle, IT teams focus on quality to strengthen the feedback loop between IT, operations, and the customer experience. CISQ’s software quality standards: security, reliability, performance efficiency, and maintainability, can be used in the DevOps toolchain to create software free from dangerous weaknesses and prevent failures.
Enhance the Effectiveness of an Industry
Eliminate dangerous vulnerabilities from corrupting software by using standard-based quality assurance tools that detect threats before it’s too late. “According to NTT’s 2021 Global Threat Intelligence Report, 67% of global attacks in 2020 can be attributed to application-specific or web-application attacks—up from 32% in 2018.”1. CISQ standards have been adopted by best-in-class software development teams across the globe who are building out their toolchains and increasing automation to provide better architectural and code quality at scale. CISQ sponsors and our community have worked together to create a quality standard that has been published by ISO as ISO/IEC 5055:2021 Automated Source Code Quality Measures. The measures in this standard are calculated by detecting and counting the most severe software weaknesses that affect the reliability, security, performance efficiency, and maintainability of software-intensive systems.
By paying attention to code quality at both the architectural and code component level, the best teams protect their businesses by:
- Building trustworthiness and resilience into their products
- Decreasing cost and time by establishing a codebase that requires minimal corrective maintenance
- Checking source code and detecting weaknesses
- Establishing product reliability, security, and performance efficiency early in development
Where code quality standards from CISQ work in the DevOps environment
When developing software, vulnerabilities can find their way into the system as errors, bugs, and even failures. “The cost of poor-quality software in the US in 2018 was approximately $2.84 trillion,”2 CISQ’s code quality standards are the first line of defense against the expense of fixing dangerous weaknesses. Assure quality software for your organization and minimize costs through the implementation of DevOps with CISQ’s open-source code quality standards. Learn more about how our standards have helped other organizations here.
- Gerry, David. “Security Solutions In 2022: Why Integration With DevOps Workflows Is Key.” Forbes, 11 Mar. 2022, https://www.forbes.com/sites/forbesbusinessdevelopmentcouncil/2022/03/11/security-solutions-in-2022-why-integration-with-devops-workflows-is-key/?sh=121e5b9c4d47.
- Krasner, H. (2018, September 26). The Cost of Poor Software in the US: A 2018 Report. Retrieved May 3, 2022, from https://www.it-cisq.org/the-cost-of-poor-quality-software-in-the-us-a-2018-report/
Ethan Oilar, Marketing Coordinator, CISQ