Tag Archive for: Requirements & Requirements Management
Understanding ISO/IEC 27001: A Guide to Information Security Management
In today’s interconnected world, the importance of securing sensitive information cannot be overstated. Organizations face numerous threats to their information assets, ranging from cyberattacks to data breaches. To address these challenges, many businesses turn to internationally recognized standards for information security management, with ISO/IEC 27001 standing out as a cornerstone in this field.
ISO/IEC 27001 is a globally recognized standard that provides a systematic approach to managing sensitive information, ensuring the confidentiality, integrity, and availability of data within an organization. Developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC), this standard outlines best practices for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS).
Key Principles:
Risk Management: ISO/IEC 27001 is fundamentally built on the concept of risk management. Organizations are required to identify and assess information security risks, implement controls to mitigate those risks, and continuously monitor and review the effectiveness of these controls.
PDCA Cycle: The Plan-Do-Check-Act (PDCA) cycle is at the core of ISO/IEC 27001. Organizations plan their ISMS, implement the plan, check its effectiveness through monitoring and measurement, and act to continually improve the system.
Scope and Requirements:
Scope Definition: Organizations must clearly define the scope of their ISMS, specifying the boundaries and applicability of the standard within their operations.
Risk Assessment: A comprehensive risk assessment is a critical component. This involves identifying assets, evaluating vulnerabilities and threats, and determining the potential impact of information security incidents.
Control Objectives and Controls: ISO/IEC 27001 provides an Annex A, which includes a set of control objectives and controls covering various aspects of information security, such as access control, cryptography, and incident management. Organizations choose and implement controls based on their specific risk profile.
Implementation Process:
Leadership and Commitment: Senior management plays a crucial role in the successful implementation of ISO/IEC 27001. Leadership commitment ensures that information security is integrated into the organization’s culture and business processes.
Documentation: Proper documentation is essential to demonstrate compliance with the standard. This includes the Information Security Policy, risk assessment reports, and records of monitoring and measurement activities.
Training and Awareness: Employees need to be aware of their role in maintaining information security. Organizations should provide training programs to enhance the awareness and competence of personnel.
Certification Process:
Third-Party Certification: Organizations can undergo a certification process conducted by accredited certification bodies to validate their compliance with ISO/IEC 27001. This certification provides assurance to stakeholders, customers, and partners that the organization has implemented a robust ISMS.
Benefits of ISO/IEC 27001:
Risk Reduction: By identifying and addressing potential risks, organizations can significantly reduce the likelihood of security incidents.
Enhanced Reputation: ISO/IEC 27001 certification enhances an organization’s reputation, demonstrating a commitment to information security best practices.
Legal and Regulatory Compliance: Adherence to ISO/IEC 27001 helps organizations comply with various legal and regulatory requirements related to information security.
Competitive Advantage: Certification can be a differentiator in the marketplace, giving organizations a competitive edge by assuring customers of their commitment to information security.
Continual Improvement:
Monitoring and Review: Regular monitoring and review of the ISMS ensure its ongoing effectiveness. This includes conducting internal audits and management reviews to identify areas for improvement.
Feedback Loop: ISO/IEC 27001 emphasizes the importance of feedback mechanisms, ensuring that lessons learned from incidents or changes in the business environment are incorporated into the ISMS.
ISO/IEC 27001 provides a robust framework for organizations to establish and maintain an effective Information Security Management System. By adopting this standard, businesses can mitigate risks, enhance their reputation, and demonstrate a commitment to safeguarding sensitive information in an ever-evolving digital landscape. As information security continues to be a top priority, ISO/IEC 27001 remains a valuable tool for organizations seeking a comprehensive and internationally recognized approach to managing information security.
Note: This article was drafted with the aid of AI. Additional content, edits for accuracy, and industry expertise by Matti Gray, Mandi Walker, and McKenzie Jonsson.
https://www.jamasoftware.com/media/2024/04/2024-04-09-iso-iec-27001-information-security-managment_1024x512.jpg5121024Jama Software/media/jama-logo-primary.svgJama Software2024-04-09 03:00:262024-04-05 10:35:04Understanding ISO/IEC 27001: A Guide to Information Security Management
Jama Connect® Features in Five: Automated Testing
Learn how you can supercharge your systems development process! In this blog series, we’re pulling back the curtains to give you a look at a few of the powerful features in Jama Connect®… in about five minutes.
In this Features in Five Integration Series video, Steven Pink – Senior Solutions Architect at Jama Software® – demonstrates an integration of automated test results with Jama Connect® through a Python Script and our open REST API.
VIDEO TRANSCRIPT
Steven Pink: Hello and welcome to the Features in Five Integration series. My name is Steven Pink, and I’m a Senior Solutions Architect here at Jama Software. Today we’ll be walking through a live demo of integrating some existing automated test results with Jama Connect through a Python script using our open REST API.
We make it possible for you to integrate Jama Connect with your preferred best-of-breed software to achieve Live Traceability™ across the end-to-end development cycle. Live Requirements Traceability is the ability for any engineer, at any time, to see the most up-to-date and complete upstream and downstream information or any requirement, no matter the stage of systems development or how many siloed tools and teams it spans.
This enables significant productivity and quality improvements and dramatically reduces the risk of product delays, cost overruns, defects, rework, and recalls, and ultimately results in faster time to market.
Pink: The goal of integrating automated test results is typically to better visualize test coverage for requirements. Jama Connect can identify and call out gaps in test coverage, as we see here, while also visualizing and reporting on the test results using filters, dashboards, and exportable reports.
Automated testing can be performed in a variety of ways, including the usage of automation servers and different frameworks. But regardless of the approach, all we need to integrate is to add requirement identifiers to our automated test results, so that they can be traced back to the requirements they cover and then make a call to the Jama Connect REST API to submit the latest results and traceability.
All right, now I want to talk about automated testing in Jama Connect. In this example project that we’re looking at, it’s a simple software development project where we’re gathering requirements, breaking those down into epics and stories, and then performing manual and automated tests.
In this example, our manual tests are being performed in Jama’s testing environment, but we have automated tests, that are actually automated test scripts, that we’re populating results into Jama with traceability, as a part of the automated test script, so that we have end-to-end traceability through our automated test results.
If I look at my manual test cases in the project hierarchy, we can see these manual tests have been created, some of them have been run, and results have been recorded. But if I switch over and look at my automated test cases, we’ll see there aren’t any yet. That’s because I haven’t run any automated test scripts.
Pink: Now what I’m going to do is I’m going to execute an automated test script that will record some results for a few different tests. I’m going to run this module, and it’s going to start executing. And if we give it just another minute now.
If I go to my automated test cases, I’ll refresh this and you’ll see it’ll populate. We now have four automated test results that have been populated into Jama. We can populate these items with any kind of information from those automated test results, whether that be issues that arose during the execution or execution data. We can also keep track of whether they passed or failed, if we have a specific pass or fail parameter we can track through them.
The benefit of integrating automated testing with Jama Connect is that we can keep track of our traceability proactively as we run our automated tests. If I look at any one of these automated tests, you’ll see under the relationships, because in our test script we associated the test with a user story, that traceability has been built into this proactively. So when we execute our automated test, the results populate into Jama Connect with traceability.
Thank you for watching this Features in Five session on integrating automated test results to show requirement test coverage in Jama Connect. If you are an existing customer and want to learn more, please reach out to your customer success manager or consultant. If you’re not yet a client, please visit our website at jamasoftware.com to learn more about the platform and how we can help optimize your development process. Thanks for watching.
https://www.jamasoftware.com/media/2024/04/FIF-Automated-Testing-Integration.jpg10801920Steven Pink/media/jama-logo-primary.svgSteven Pink2024-04-05 03:00:142024-06-03 14:00:08Jama Connect® Features in Five: Automated Testing
Jama Software is always looking for news that will benefit and inform our industry partners. As such, we’ve curated a series of customer and industry spotlight articles that we found insightful. In this blog post, we share an article, sourced from Med Device Online, titled “Navigating EU MDR Compliance: Overcoming Challenges To Sustain Your Certification” – written by Hilde Viroux and Maggie Chan (PA Consulting) and Dona O’Neil (Northeastern University) and originally published on March 19, 2024.
Navigating EU MDR Compliance: Overcoming Challenges To Sustain Your Certification
Since the introduction of the EU MDR in 2017, the medical device industry has learned just how challenging obtaining initial MDR certification truly is. According to a survey of notified bodies, the number of certificates issued as of June 2023 covers roughly one-third of the applications submitted. Taking into account that it can take months to have an application approved, and then six months to two years before the certificates are issued, it is no surprise that there is a lot of fatigue with EU MDR in general. The requirements keep being updated, timelines extended, and the EU database for medical devices, EUDAMED, is still not up and running. Notified bodies are also struggling to keep up with the demand for reviews of MDR certificates, consequently impacting the ability to accurately predict certificate approval timeline and budget.
Sustaining Certification Is An Ongoing Task, Not A One-Time Finish Line
There is the misperception that obtaining the MDR certification is an end point, and budget and resources can be redirected. However, EU MDR creates a “new normal” for medical devices manufacturers. The continuous evolution of regulatory standards and frequent guidance updates creates a dynamic landscape, demanding ongoing diligence to comprehend and adhere to changing requirements. Sustaining compliance involves addressing various challenges, including establishing a streamlined process for updating all regulatory documentation, reallocating resources with specialized training for optimal risk management, aligning documentation with the latest regulatory demands, developing systems to ensure effective communication and transparency across the organization, and formulating a strategic plan that aligns with global regulations to minimize the cost of maintaining compliance across various geographical regions.
Due to the additional requirements of EU MDR, especially in the post-market phase, the cost of business year over year to maintain compliance for product in the market has increased significantly and the impact may not be well understood at the senior management level. As we go into 2024 with significant headwinds impacting the medical device industry and continuing with a soft economy, resources for EU MDR compliance are even more stringent, forcing companies to reevaluate the value proposition of their products and their long-term desire to maintain CE marks in the EU market. Moreover, manufacturers need to balance delivering innovative technology while ensuring existing products maintain the highest standards of safety and quality.
Already while working toward EU MDR compliance, manufacturers of medical devices should be thinking how to set up the organization in the post-certification phase in an efficient way. You need to think about how to establish robust processes that can adapt to evolving regulatory requirements, as well as to ensure procedures, trained resources, and systems are in place to efficiently incorporate updates/modification from the latest regulations.
EU MDR and supporting guidance give strict timelines for the updates of the various documents such as the Clinical Evaluation Report (CER), the Periodic Safety Update Report (PSUR), and the Risk Management Report (RMR), all supporting the life cycle activities for medical devices. Apart from the update frequency defined in the regulation or guidance, there are external factors that may trigger an unscheduled update, such as a Field Safety Corrective Action (FSCA). Under MDD, these reports didn’t exist, or no update frequency was defined.
The RMR, CER, and PSUR are part of the technical documentation, which in turn has to be kept “continuously” up to date, putting even more pressure on the various functions to ensure the updates are aligned to avoid discrepancies in the technical documentation.
The responsibilities for dealing with the device life cycle activities per EU MDR are typically distributed over various functions who don’t operate under the same timelines or priorities. For example, the clinical teams may be dealing both with life cycle management activities such as post-market clinical follow-up and with clinical data collection for products in the pipeline, supporting innovation. Quality or medical safety may be dealing with complaints and incident reporting while they also have to generate the PSUR.
Budget
Maintaining compliance after EU MDR certification will require companies to allocate budget. The size of the budget will depend on how well the organization is prepared. If your company has looked into effective governance for management, optimized the documentation governance process, and established a centralized system to ensure communication and transparency among different stakeholders, the process may be smoother, with less resources required. Companies also can consider outsourcing some life cycle management activities. The risk with outsourcing is that some of the “know how” may be lost to the company and that critical information gained from the post-market surveillance activities is not circled back in an efficient way to the proper groups in the organization.
Additional budget for the life cycle maintenance activities will impact the cost of goods, which, in turn, impacts pricing of the devices in the market. Minimizing these costs by implementing the most efficient solution for the company may lead to a competitive advantage in the market.
Other Regulatory Bodies Soon To Follow Suit
Many other regions follow the EU when it comes to regulating medical devices. They are coming with similar requirements in both the pre- and post-market phases, specifically surrounding QMS, clinical evidence, and post-market surveillance requirements. The continuous evolution of regulatory standards and frequent guidance updates create a dynamic landscape demanding ongoing diligence to comprehend and adhere to the changing requirements. Ensuring the device documentation meets the appropriate standards will facilitate and speed up access to market in other regions than the EU. It also creates an opportunity to gain efficiencies when requirements are aligned, as it reduces rework and rewriting of submission documentation and labelling changes.
A common perception is that once certification is achieved, the workload for sustaining it decreases for reasons such as the strategy has been set, less literature will need to be reviewed, and fewer PMS data sets will need to be analyzed during the update frequency. While this may be true in theory, the effort will only decrease with a streamlined process that supports strong interdependency between risk, quality, regulatory, and clinical affairs.
Sustaining compliance involves tackling diverse challenges, including establishing a streamlined approach for updating clinical and post-market documentation, reallocating resources with specialized training for consistent risk management, aligning documentation with the latest regulatory demands, and formulating a strategic plan that aligns with global regulations to minimize the cost of maintaining compliance across various geographical regions. Moreover, given the significant headwinds that the medical device industry is facing, manufacturers will have to balance delivering innovative technology while ensuring existing products maintain the appropriate standards of safety and quality put forth by international regulations.
As we progress into 2024 and swiftly approach the initial MDR implementation date of May 2024, manufacturers should be shifting their focus to how their remediation efforts can be applied to sustaining compliance: What are essential functions and where is there room to trim?
About the Authors:
Hilde Viroux is a medtech expert at PA Consulting and is an expert on the European Medical Devices Regulation. She has broad experience in regulations, quality, manufacturing, supply chain, and project management in the pharmaceutical and medical device industry. She has an MSc in medical technology regulatory affairs from Cranfield University in the U.K. and a BS in biochemistry engineering.
Maggie Chan is a life sciences and regulatory expert at PA Consulting. She focuses on leading process and operation improvement for medical device and pharmaceutical companies. She has led labeling remediation and e-labeling process design projects in compliance with global medical devices regulation for both implantable and non-implantable medical devices. She has been supporting companies by building capabilities and designing processes to ensure they comply with ISO 13485, EU MDR, 21 CFR, etc., in line with the product portfolio. She has a Master of Science in law from Northwestern Pritzker School of Law in the U.S. and a BS in biology.
Dona O’Neil is an industry EU MDR expert and an adjunct professor for Northeastern University’s master’s program in regulatory affairs. She has experience developing and implementing EU MDR clinical evidence requirements across many therapeutic areas and all device classifications. O’Neil has an MPH (healthy policy concentration) from George Washington University and is certified as a clinical research professional by SOCRA.
https://www.jamasoftware.com/media/2024/03/Navigating-EU-MDR-Compliance-Overcoming-Challenges-To-Sustain-Your-Certification.jpg5121024Jama Software/media/jama-logo-primary.svgJama Software2024-04-04 03:00:392024-03-28 15:34:23Navigating EU MDR Compliance: Overcoming Challenges To Sustain Your Certification
Jama Software is always looking for news that will benefit and inform our industry partners. As such, we’ve curated a series of customer and industry spotlight articles that we found insightful. In this blog post, we share an article, sourced from IndustryWeek, titled “Cybersecurity Concerns for Manufacturers in 2024” – written by Dennis Scimeca and originally published on January 15, 2024.
Cybersecurity Concerns for Manufacturers in 2024
The more networked and data-centric manufacturing becomes, the more manufacturing leaders ought not consider cybersecurity as something that only concerns the IT department. New SEC reporting rules and high-profile hacks against manufacturers with multimillion-dollar price tags last year curtly demonstrate the point.
Org-wide planning provides the best defense against cyberattack. Knowing what to expect in 2024 and taking proactive steps against threat actors may make the difference between publicly admitting your company wasn’t prepared and accordingly losing money and prestige, or not.
Educate Your Workforce
Human beings decidedly provide the weak links in cybersecurity hygiene. Erecting digital gates and demanding identification checks do nothing if your employees hand over virtual ID cards without realizing they’ve done it.
“Cyberattacks in 2024 will look EXACTLY as they have in the previous three-to-four decades. Most will involve social engineering. About a third will involve unpatched software or firmware. About 10-to20 percent will involve weak password issues. Those three root attack methods will make up 99% of the attacks against most people and organizations,” says Roger Grimes, data-driven defense evangelist at KnowBe4.
“To defend against them, aggressively focus more on preventing social engineering,” he adds. “This means deploying technical cyber defenses that prevent social engineering from reaching users. Because technical defenses will never be perfect, you must train your users in how to recognize the signs of social engineering, how to defeat it, and how to appropriately report it.”
Recognize OT as an Attack Surface
In addition to the best practice, general cybersecurity hygiene pertinent to any business, manufacturers must contend with the vulnerability of their operational technology (OT). Every networked machine on the floor provides a possible avenue for intrusion into your larger IT system.
“Lack of segmentation between IT and OT environments and lack of awareness into these systems provide key avenues for threat actors to cause impacts and outages. Organizations need to mitigate as much risk as possible by focusing on quality backups of not just corporate data, but OT configurations and data needed to restore systems, all with secure encryption,” says Tom Marsland, VP of technology at Cloud Range.
The question of whether to place responsibility for OT cybersecurity within the IT department, or instead to spin out a separate OT group, is not just organizational says Marty Edwards, Deputy CTO for OT/IoT at Tenable.
“CFOs and CISOs will look at the cost-benefit analysis of investing in IT vs. OT security, and they’ll see there’s more benefit to investing in OT than IT in 2024 that at any point until now. For every $1 spent in OT, organizations get more than what they get with $1 in IT security investment. OT investments buy down your risk much more so than IT security,” Edwards says.
Amir Hirsh, head of Tenable OT Security, wants manufacturers to acknowledge how green initiatives that involve OT monitoring can increase cybersecurity risks.
“With the growing attention and increase of costs and penalties around energy usage and carbon emissions, companies will turn to smarter management of their operations, which will increase OT-based sensor deployment and controls. We’ll see more and more IoT and OT devices in smart buildings, factory management and building management systems. These trends will expose companies to further risk as they will expand their attack surface and often connect these environments to the internet,” Hirsh says.
Integrating AI into OT carries specific risks and benefits, says Chaz Lever, senior director of security research at Devo.
“As we move into 2024, it’s imperative for manufacturers to place a strong emphasis on the security of their AI implementations. AI represents a new attack surface, and in the case of OT, attacks on AI systems could result in impacts that cross the cyber-physical barrier. Great care needs to be undertaken to make sure AI interacting with OT systems guards against the myriad of potential AI threats (e.g., prompt injection, adversarial examples, model inversion, etc.),” Lever says.
AI also has the potential to help protect OT systems through its integration into security operations. AI’s capability of sifting through massive quantities of security data and isolating high-priority alerts is becoming increasingly sophisticated. This enables AI to augment the capabilities of analysts in monitoring systems, conducting forensic investigations and proactive threat hunting,” Lever adds.
Kurt Markley, managing director for the Americas at Apricorn, points out that bad actors may also use AI to create ransomware tools, the most popular avenues for attack against manufacturers. Generative AI-powered ransomware attacks doubled against healthcare, municipalities and education orgs between August 2022 and July 2023, says Markley.
Manufacturers could be next on the list. Protecting critical data mitigates the risk.
“While almost all IT leaders say they factor in data backups as part of their cyber security strategies, research we conducted [in 2023] found that only one-in-four follow a best practice called the 3-2-1 rule, in which they keep three copies of data on two different formats, one of which is stored offsite and encrypted. Furthermore, this same research found that more than half of respondents kept their backups for 120 days or less, far shorter than the average 287 days it takes to detect a breach,” says Markley.
“The likelihood that AI-driven ransomware will impact far-higher numbers of organizations, it will be more important than ever in 2024 that organizations have a strong cyber resiliency plan in place that relies on two things: encryption of data and storage of it for an appropriate amount of time. IT leaders need to embrace the 3-2-1 rule and must encrypt their own data before bad actors steal it and encrypt it against them,” Markley adds.
Beware the Cloud?
Touted for many years for scalable data architectures and cost-effectiveness compared to on-premises infrastructures, manufacturers like Nissan have learned the cloud also carries cybersecurity risks. Don’t think that offloading data to the cloud means offloading related cybersecurity concerns to your cloud technology provider.
“It’s estimated that 30% of cloud data assets contain sensitive information. All that data makes the cloud a juicy target and we expect that 2024 will continue to show that bad actors are cunning, clever, and hard-working when it comes to pursuing data. The industry has seen triple the number of hacking groups attacking the cloud, with high-profile successes against VMware servers and the U.S. Pentagon taking place [in 2023],” Markley says.
As IT teams spend more on moving and storing data in the cloud, organizations must spend the next 12-to-24 months auditing, categorizing and storing it accordingly. They need to gain deeper visibility into what data they have stored in the cloud, how data relates to each other, and if it is still meaningful to the operations of the organization. In doing so, they are advised to create specific security policies about how, where and for how long they store their data. These policies, when actively enforced, will help organizations better protect their most valuable asset – their data,” he adds.
Effective cybersecurity’s layered, multi-faceted structure and accompanying price tag make it attractive for manufacturers to deprioritize, but the sooner they get on board with proper cybersecurity hygiene the sooner they can stop worrying about ever cutting a fat ransomware demand check…or what they’re going to tell the SEC in the annual 10-K filing.
“Ultimately, it’s crucial for security teams to collaborate closely with their organizational leadership to find an optimal equilibrium between security, user convenience, and technological innovation,” says Lever.
Grimes provides a checklist for basic, first cybersecurity steps:
Use phishing-resistant multifactor authentication (MFA).
If you can’t use MFA, use a password manager which will create and use long and complex, different passwords for every site and service you use.
“The organizations that focus on these core, necessary defenses correctly and don’t get sidetracked by a hundred other less useful shiny objects will significantly decrease cybersecurity risk,” Grimes says. “The organizations that don’t, will likely be hacked.”
https://www.jamasoftware.com/media/2024/03/spotlight-ad-5.jpg5121024Jama Software/media/jama-logo-primary.svgJama Software2024-03-26 03:00:192024-03-25 10:41:48Cybersecurity Concerns for Manufacturers in 2024
Ready, Set, Launch: Welcoming the New Jama Software® User Community
We are excited to announce the launch of our new Jama Software® User Community! Hosted on Higher Logic’s Vanilla platform, this community will be based on their successful framework model and will serve as an improved hub for collaboration, discussion, and support. To learn more about the history of Jama Software®’s user community, which was first created in 2015, visit Empowering Customer Success: The Vital Role of Support and User Communities.
In preparation for the launch of this exciting new space, we interviewed Amanda Jennewein – Senior Manager of Customer Support at Jama Software, to find out what existing and new user community members can expect from this transition.
What were the main reasons or goals for relaunching the Jama Software Customer Community?
Amanda Jennewein: Launching the new Jama Software® User Community is a strategic initiative aimed at improving customer engagement and satisfaction, driving innovation, and strengthening the company’s brand presence in the digital space.
Enhanced Customer Engagement: Our goal is to strengthen customer relationships and create a supportive ecosystem by fostering a sense of belonging and collaboration. Building a vibrant online community allows customers to engage with each other, share experiences, and exchange best practices.
Knowledge Sharing and Support: As we recently shared, a community is valuable for users to access documentation, tutorials, and troubleshooting guides. By centralizing knowledge and expertise, Jama Software empowers customers to find solutions independently and receive support from peers and experts within the community.
Feedback Collection and Product Improvement: The community provides a channel for customers to provide feedback, suggest enhancements, and vote on feature requests. By soliciting input directly from users, we gain valuable insights into customer needs, preferences, and pain points, which can inform product development and roadmap prioritization.
Customer Success and Adoption: A thriving community contributes to customer success by facilitating collaboration, learning, and adopting Jama Software products and solutions. We aim to drive user satisfaction, retention, and advocacy by promoting engagement and self-service support options.
Brand Building and Thought Leadership: Hosting a vibrant community reinforces our position as a software development and requirements management leader. By curating valuable content, facilitating discussions, and showcasing customer success stories, we strengthen our brand reputation and thought leadership within the industry.
When will the new community be available for users to see?
Jennewein: The new community was officially launched on March 18, 2024. Users can now join the new community and explore its features.
What improvements can users anticipate from our new community?
Jennewein: The migration to Higher Logic Vanilla represents a significant upgrade for the Jama Software Customer Community, offering improved usability, performance, collaboration tools, and integration possibilities. These enhancements allow users to anticipate a more engaging and productive community experience.
Enhanced User Experience: Vanilla offers a modern and intuitive user interface, making it easier for community members to navigate, discover content, and engage with others. The platform’s clean design and user-friendly features create a more enjoyable and efficient user experience.
Improved Performance and Reliability: Vanilla’s infrastructure is designed to deliver better performance and reliability than the previous platform. Users can expect faster page loading times, smoother browsing experiences, and minimal downtime, ensuring uninterrupted access to community resources and discussions.
Streamlined Content Discovery: Vanilla provides robust search functionality and content categorization tools, enabling users to find relevant discussions, articles, and resources quickly. Advanced search filters and tags make locating specific topics of interest easier, facilitating knowledge sharing and collaboration within the community.
Federated search: Vallina connects to other tools to surface relevant content, regardless of where it lives.
Enhanced Customer Support Integration: Further integration of the community with customer support processes and systems to streamline issue resolution, facilitate peer-to-peer support, and provide faster access to assistance. Automation and self-service options will empower users to find solutions independently and reduce their dependency on traditional support channels.
Will users from our previous community notice any significant changes? Will they still be able to find the same information as before?
Jennewein: Overall, the structure and organization of the new customer community will prioritize usability, accessibility, and engagement, aiming to provide a valuable and enriching experience for users seeking support, knowledge sharing, and collaboration within the Jama Software community.
Homepage: The homepage serves as the central hub of the community, featuring essential announcements, latest discussions, and popular topics. It provides a snapshot of community activity and directs users to relevant sections and resources.
Discussion Categories: Discussions are typically organized into categories or topics based on themes, product features, or user needs. Precise categorization helps users find discussions relevant to their interests and expertise, promoting participation and knowledge sharing.
Digital Onboarding Guide: A dedicated section for articles, guides, tutorials, and other resources.
Q&A: Users can ask and answer questions within a community to facilitate self-service support and develop brand advocated.
Ideation: Provide feature requests while collaborating with peers by voting and commenting on ideas.
Events and Announcements: Information about upcoming events, webinars, product updates, and community announcements may be featured prominently to keep users informed and engaged.
User Profiles and Recognition: User profiles allow community members to personalize their experience, showcase their expertise, and connect with peers.
Search Functionality: Robust search functionality lets users quickly find relevant discussions, articles, and resources. Advanced search filters and tagging systems improve the discoverability and accessibility of content.
Community Guidelines and Support: Clear guidelines and rules for community participation help maintain a positive and respectful environment. Support resources, FAQs, and help documentation should be readily available to assist users and address any issues they encounter.
Verticalized Resources: Solution spaces for Automotive, Medical Devices & Life Sciences, Robotics, and Airborne Systems will be available to customers who have purchased additional licenses. These spaces offer industry resources, downloadable materials, and specific discussion areas.
Additional Downloadable Resources: Customers may purchase additional licenses to access downloadable content for:
Data Exchange
Jama Validation Kit (JVK) – Test cases and coverage reports
Functional Safety Kit (FSK) – ISO certifications, defects, and safety manuals.
Jama Connect Interchange™
How will the new community be moderated and managed to ensure a positive experience for members?
Jennewein: To ensure a positive experience for members, the new community will be moderated and managed through a combination of proactive measures, clear guidelines, and responsive support.
Clear Community Guidelines: Clear guidelines and rules for community participation help maintain a positive and respectful environment.
Designated Moderators: The community will have moderators responsible for overseeing discussions, enforcing community guidelines, and addressing any issues or concerns members raise. These moderators will be experienced and knowledgeable individuals who can maintain a respectful and inclusive environment within the community.
Prompt Response to Concerns: Our community encourages its members to report any concerns or violations of community guidelines to the moderators. Upon receiving such reports, the moderators will promptly investigate the issue thoroughly and take appropriate action to address the concern. This may involve removing inappropriate content, issuing warnings, or taking other necessary steps to ensure that our community remains a safe and welcoming place for all.
Transparent Communication: Moderators will communicate openly and transparently with community members, explaining decisions and actions. Transparent communication helps build trust and confidence among members and demonstrates a commitment to fairness and accountability.
Educational Initiatives: Besides taking enforcement actions, moderators will also undertake educational initiatives to encourage positive behavior and cultivate a culture of respect and collaboration among community members. This may include providing guidance on best practices for constructive communication, conflict resolution, and effective participation.
How will we address and resolve issues or concerns raised within the customer community?
Jennewein: Support resources, FAQs, and help documentation will be available to assist users and address any issues they encounter in partnership with moderators and the Online Community manager.
What plans does the company have for any additional future growth and evolution of the customer community?
Jennewein: The company’s plans for future growth and evolution of the customer community are focused on creating a vibrant, inclusive, and value-driven ecosystem that empowers users, fosters collaboration, and drives customer success with Jama Software products.
Expansion of Community Features: Continuously evaluate and introduce new features and functionalities to enrich the community experience.
Community Advocacy and Ambassador Programs: Identify and cultivate community advocates and ambassadors passionate about Jama Software products and actively contribute to the community. Recognize and reward these advocates for their contributions and empower them to champion the community, share their experiences, and advocate for the brand.
Feedback-driven Iterative Improvements: Continuously solicit feedback from community members through surveys, polls, and feedback forums to identify areas for improvement and prioritize future enhancements. Use this feedback to inform iterative updates and enhancements to the community platform, ensuring that it evolves in alignment with user needs and expectations.
Content Expansion and Diversification: Invest in expanding and diversifying the content available within the community, tailoring content to address community members’ evolving needs and interests, covering a broad range of topics related to Jama Software products and industry trends.
Conclusion
We are always working to improve and refine our customer experience, aiming to provide excellence in every interaction. If you are a current customer and would like to learn more, please contact your customer success manager or consultant. If you are not yet a client, please visit our website at jamasoftware.com to learn more about our platform and how we can help optimize your development process.
Important: Password Change Required for returning members to access the New Community Site
With the new site launch, returning members must update their password to access the new community site. This is an important step that needs to be taken for security reasons. We appreciate your cooperation. To change your password and gain access to the new Community site, please visit: community.jamasoftware.com
https://www.jamasoftware.com/media/2024/03/2024-3-20-new-user-community-2.jpg512986Amanda Jennewein/media/jama-logo-primary.svgAmanda Jennewein2024-03-20 10:30:262024-03-20 10:17:10Ready, Set, Launch: Welcoming the New Jama Software® User Community
In this blog, we recap our webinar, “Traceable Agile™ – How to Achieve Speed and Quality with Software Delivery” – Click HERE to watch it in its entirety.
In this insightful session, Professor Paul Meadows MSc, PMP, CSM and Steven Meadows, Principal Solutions Lead at Jama Software®, explore Traceable Agile™, as well as best practices in terms of Agile processes, helping you ensure that your team is achieving the right balance between quality and speed.
You will learn about:
Best Practices and Tooling: Learn about the best practices in implementing effective agile processes and recommended tooling to enhance your team’s performance.
Balancing Speed and Quality: Strategies to ensure your software delivery is both fast and shipped with fewer defects
Implementing Traceable Agile: Dive deep into Traceable Agile, a methodology that promotes speed while maintaining a comprehensive historical and current view of your development process, enabling early issue detection.
Real-World Applications: Gain insights into how Traceable Agile is being implemented in various industries, and the benefits it has on software and hardware integration.
Below is an abbreviated transcript of our webinar.
Traceable Agile™ – How to Achieve Speed and Quality with Software Delivery
Professor Meadows: Well, first of all, I’d like to say thank you for inviting me to the webinar. Steven, I’m looking forward to this. Just in terms of my background, I’ve first of all completed a full career in the British Army and since then I’ve over 20 years of project management experience, really based in mostly world-class, global enterprises, building and managing project management offices, developing and executing project management policies and standards. I’ve got a master’s degree in project management from Liverpool University. I’m a certified project management professional with the Project Management Institute and I’ve been a certified scrum master for over eight years.
I’ve taught project management for Columbia University in New York City and I am currently the lead faculty professor for the master’s degree in project management at NYU, also in New York City.
Steven Meadows: Great, thanks for that introduction. Just as a brief introduction for myself here, my name is Steven Meadows. I’m a principal solutions lead and I represent my company Jama Software and we’ll be touching on what Jama Software is and the solutions that we offer shortly. I also have around about 12 to 13 years experience in solution architecture, solution implementation. I’m also certified in Agile development using Jira software as well as Jira project administration too. So I’ve helped out or helped a lot of different Agile teams implement Agile solutions and implement while using tools. I do briefly want to introduce Jama Software, our company, and also solutions that we develop.
So Jama Software really provides a suite of solutions that spans the entire product and systems development lifecycle, things like capturing and managing requirements’ traceability to ensuring collaboration across different departments and different teams throughout the software development lifecycle. Also, across other verticals as well. Now you’ll see some of the verticals on this slide that we support, including regulated industries like medical device and aerospace and defense, as well as pure software development and industrial manufacturing too.
Now, some of the ways that we really help our customers realize value with our tools by reducing development cycle times, increasing process efficiency, gaining visibility and control and so on. So with that then, Professor Meadows is now going to provide an overview on Agile, the Agile Manifesto, and some of the principles as well.
Professor Meadows: Thanks Steven. So here we are on the Agile overview page. We’re going to talk about some of the benefits, but as Agile development methodologies and frameworks become more and more the choice of organizations as we see here, they recognize the significant productivity improvements that can be achieved. It’s important here though, Steven, to really draw the distinction between waterfall requirements management and Agile requirements management. As we know, the strength of Agile is in the collaborative development that’s achieved with constant stakeholder and development team interaction over the more traditional approach where requirements are captured upfront largely and changes are not only unwelcome but actually considered disruptive.
And where they do occur generally they have to follow a fairly formal process of review and approval before they’re accepted. So in today’s very dynamic marketplaces, you can see clearly this is not going to help organizations achieve and maintain competitive advantage. So the four foundational values we see here were developed as part of the Agile Manifesto way back in 2001, and they’re really designed to efficiently elicit requirements and turn those requirements into functioning software. It’s about responding to change over following a plan.
And when you look at that in the context of the value placed in working software over comprehensive documentation, we really start to get to understand the challenges that emerge in trying to make sure our stakeholders and their needs are being met by what we deliver. This becomes even more complex when we start to look at the 12 Agile principles in more detail next. Before we move on to there, let me give you a little bit more detail about these values though. So individuals and interactions over processes and tools. Well this value itself emphasizes the importance of focusing on people and obviously their interactions with the team rather than solely relying on processes or tools.
But I don’t want to underestimate the value of processes and tools and we will definitely talk more about that through this webinar. This one really highlights the significance of effective communication, collaboration, and teamwork in delivering successful outcomes. Agile teams prioritize building strong relationships and that’s really one of the strengths that’s looked for as you build a team is that ability to build strong relationships and really fosters open communication, empowering individuals to make decisions that contribute really to the overall project success. Moving on to working software over comprehensive documentation.
Again, this is another one of those values we’re going to dig a lot deeper into through this webinar. But this value really underscores the importance of delivering functional software that meets the needs of the customer over extensive documentation, is the way it’s worded. And while documentation itself has its place in software development, tangible results are in the form of working software. Agile teams strive really to deliver value early and often. Today we’re seeing continuous delivery in many of the firms you’ve implemented successful Agile.
https://www.jamasoftware.com/media/2024/03/Traceable-Agile-Webinar-3.png5121024Steven Meadows/media/jama-logo-primary.svgSteven Meadows2024-03-19 03:00:192024-09-25 10:35:08[Webinar Recap] Traceable Agile™ – How to Achieve Speed and Quality with Software Delivery
Understanding IATF 16949: A Quick Guide to Automotive Quality Management
In the ever-evolving landscape of the automotive industry, ensuring product quality and safety is paramount. One key standard that plays a crucial role in this pursuit is IATF 16949. In this article, we will delve into the intricacies of IATF 16949, exploring its significance, key elements, and benefits.
What is IATF 16949? IATF 16949, or the International Automotive Task Force 16949, is a globally recognized quality management standard specifically designed for the automotive sector. This standard is based on ISO 9001 and incorporates additional requirements tailored to the automotive industry. IATF 16949 was developed by the International Automotive Task Force (IATF) to promote quality, consistency, and continual improvement throughout the automotive supply chain.
Key Elements of IATF 16949:
Customer Focus: IATF 16949 places a strong emphasis on meeting and exceeding customer requirements. This includes understanding customer needs, providing defect-free products, and consistently delivering high-quality services.
Process Approach: The standard adopts a process-oriented approach to quality management. Organizations are encouraged to identify, manage, and optimize key processes to enhance efficiency and effectiveness in meeting objectives.
Risk Management: IATF 16949 requires organizations to identify and address potential risks within their processes. This proactive approach helps in preventing issues, ensuring product safety, and maintaining a robust quality management system.
Supplier Quality Management: Recognizing the interconnected nature of the automotive supply chain, IATF 16949 places a significant focus on supplier quality management. Companies must work closely with their suppliers to ensure that quality standards are consistently met throughout the supply chain.
Continuous Improvement: The standard promotes a culture of continual improvement, urging organizations to regularly assess and enhance their processes. This commitment to ongoing refinement helps companies stay ahead in a competitive market.
Benefits of Implementing IATF 16949:
Global Recognition: Achieving IATF 16949 certification provides organizations with global recognition, enhancing their credibility and opening doors to new business opportunities.
Improved Efficiency: By adopting the standard’s process-oriented approach, organizations can streamline their operations, reduce waste, and enhance overall efficiency.
Enhanced Customer Satisfaction: Meeting IATF 16949 requirements ensures that products and services consistently meet or exceed customer expectations, leading to higher satisfaction levels.
Risk Mitigation: The focus on risk management helps organizations identify potential issues before they escalate, reducing the likelihood of defects and recalls.
Competitive Advantage: IATF 16949 certification provides a competitive edge in the automotive industry. Many OEMs (Original Equipment Manufacturers) prefer working with suppliers who adhere to this globally recognized standard – and many companies are required to comply.
Companies that are part of the automotive supply chain, including manufacturers, suppliers, and service providers, may be required to comply with IATF 16949. This includes organizations involved in the production of automotive parts, components, and assemblies.
Key stakeholders in the automotive industry, such as original equipment manufacturers (OEMs) and their suppliers, often seek IATF 16949 certification to demonstrate their commitment to quality and compliance with industry standards. Certification to this standard is often a prerequisite for becoming a supplier to major automotive companies.
It’s important for organizations in the automotive sector to assess their specific contractual requirements and the expectations of their customers to determine whether compliance with IATF 16949 is necessary for their business. Certification to IATF 16949 is typically achieved through a third-party audit process conducted by accredited certification bodies.
What is a Quality Management System?
A Quality Management System (QMS) is a comprehensive framework of policies, processes, procedures, and records that an organization establishes and maintains to ensure its products or services consistently meet or exceed customer expectations. The primary goal of a QMS is to enhance customer satisfaction by consistently delivering high-quality products or services while also meeting regulatory requirements. It encompasses various elements such as quality planning, control, assurance, and improvement. A well-implemented QMS helps organizations identify and document their processes, set quality objectives, and monitor performance against these objectives. It often involves the use of standardized methodologies, documentation, and quality tools to foster a systematic approach to quality management, ensuring that every stage of the product or service lifecycle is controlled, measured, and continually improved upon. Certification to internationally recognized QMS standards, such as IATF 16946 and ISO 9001, provides external validation of an organization’s commitment to quality and can enhance its credibility in the marketplace.
Jama Connect® is a powerful tool that plays a pivotal role in assisting teams in meeting the requirements of a QMS within various industries, particularly those with stringent regulatory standards.
Here are several ways in which Jama Connect facilitates compliance with QMS requirements:
Documenting and Managing Requirements: Jama Connect provides a centralized platform for documenting and managing requirements throughout the product development lifecycle. It allows teams to create, review, and collaborate on requirements, ensuring clarity and consistency. This centralized approach enhances communication among team members, reducing the risk of misunderstandings and improving overall requirement management efficiency.
Enabling Risk-Based Thinking: The platform supports risk-based thinking by providing tools to identify, assess, and mitigate risks associated with product development. Teams can systematically evaluate potential risks, assign risk levels, and implement mitigation strategies. This proactive approach aligns with the risk management requirements of QMS standards, contributing to safer and more reliable product development.
Assisting with Change Management Processes: Change management is a critical aspect of QMS, and Jama Connect streamlines this process. Teams can efficiently capture and evaluate proposed changes, assess their impact on requirements and other project elements, and implement changes in a controlled manner. This ensures that changes are documented, reviewed, and tracked, promoting transparency and accountability in the change management process.
Enabling Traceability of Processes and Products: Jama Connect offers robust traceability features, allowing teams to establish and visualize relationships between requirements, tests, and other project artifacts. This traceability is crucial for demonstrating compliance with QMS standards, as it provides a clear linkage between various stages of the development process, from initial requirements to final product validation.
Easy Documentation for Evidence for Audits: Jama Connect simplifies the documentation process required for audits. The platform enables teams to generate comprehensive reports, traceability matrices, and documentation trails that serve as evidence of compliance with QMS standards. This facilitates smoother and more successful audits, as auditors can easily review and verify the necessary documentation.
Supporting a Continuous Improvement Process: Continuous improvement is a fundamental principle of QMS, and Jama Connect supports this by providing analytics and insights into project performance. Teams can analyze data on requirements, testing, and other project metrics to identify areas for improvement. This data-driven approach fosters a culture of continuous improvement, aligning with the principles of QMS standards.
Supporting a Customer Focus with Traceability to Customer Needs: Jama Connect helps maintain a strong customer focus by establishing clear traceability from requirements to customer needs. This ensures that the final product aligns with customer expectations and requirements. The platform’s traceability features provide a visual representation of how each requirement contributes to meeting customer needs, strengthening the customer-centric approach advocated by QMS standards.
IATF 16949 is a critical standard for the automotive industry, emphasizing quality management, risk mitigation, and continuous improvement. Organizations that invest in achieving and maintaining IATF 16949 certification position themselves as reliable partners in a highly competitive and demanding market, ensuring the production of high-quality automotive products.
Note: This article was drafted with the aid of AI. Additional content, edits for accuracy, and industry expertise by Matt Mickle and McKenzie Jonsson.
https://www.jamasoftware.com/media/2024/03/2024-3-14-udnerstanding-iatf-16949-1-1.jpg512986Jama Software/media/jama-logo-primary.svgJama Software2024-03-14 03:00:152024-03-13 11:13:17Understanding IATF 16949: A Quick Guide to Automotive Quality Management
In this blog, we recap our webinar, “Unlocking Success: The Transformative Benefits of Variant Management through Product Line Engineering” – Click HERE to watch it in its entirety.
Unlocking Success: The Transformative Benefits of Variant Management Through Product Line Engineering
Embark on a journey of innovation and efficiency with this webinar on the benefits of variant management through Product Line Engineering (PLE), as we explore how PLE serves as a catalyst for organizational success.
In this insightful session, our industry experts will guide participants through the myriad advantages that PLE offers in the realm of product development, including:
How PLE accelerates time-to-market and significantly reduces costs by promoting systematic reuse of engineering assets across a product portfolio.
The strategic impact of PLE on managing product variability, enabling organizations to swiftly adapt to changing market demands without compromising quality.
A way to gain a competitive edge: Learn how PLE can be implemented in Jama Connect® to enhance collaboration among cross-functional teams and create adaptable architectures
Below is an abbreviated transcript of our webinar.
Matt Mickle: Today I will spend some time introducing the topic of product line engineering and some of the benefits, as well as challenges that come along with it, especially pertaining to the work that you need to do in Jama Connect. I’ll then hand it off to Geoff, who will walk you through a practical way to implement product line engineering into the way that you work within Jama Connect now. We’ll then sum up and take away any questions from the audience. So without any further ado, let’s jump right into it.
What is product line engineering? Well, there’s multiple definitions floating around for product line engineering, but for the purpose of this webinar, we’re going to stick to something that makes sense from our perspective, which is a focus on engineering for a family of products with similar features, components or modules, as a single product line in order to leverage the commonality and variability, minimize the duplication of effort, and maximize reusability.
There are lots of examples of what a product line could be. It could be a series of vehicles, such as what you see here with the J Series, where you have different models that are part of a single product line. It could be military vehicles developed for different roles. It could be versions of software that are built for different types of consumers, like your light user or your expert user. It could be a line of appliances with different sizes or capabilities, like an oven or a dishwasher. It could be a line of laptops with different sizes, different amounts of memory, and different amounts of CPU. Or for a semiconductor, it could be configurations of IP for a chip family. So lots of different ways that you could have a product line, and with many of those ways you need to think about product line engineering.
Mickle: What are variants and how do you manage those variants? Along the same pathway, we will refer to variants as basically anything that would vary from product to product within a product line. And that could include some of the examples below, like different features, premium services, levels of performance, and different components that you might have, kind of like what you see on this ad for the J Series turbo. And when it comes to variant management, we’ll simply refer to this as the process or the technique that helps us manage and organize the variance. And this could be through one or multiple of these different modes that you see below, or it could be something that’s not listed there.
Okay, so what are some of the benefits that we get from product line engineering and from variant management? One is product line engineering, which enables organizations to create a product line architecture that allows for a systematic reuse of components. This can be components, modules, assets, and those are across different products within a product line. This promotes efficiency by reducing redundancy in the need to recreate similar functionalities for every product.
Another way is by reusing existing components and assets, organizations can significantly reduce their development cost. Product line engineering allows for economies of scale, as the investment in creating a core set of assets can be spread across multiple products, leading to cost savings in the long run. With product line engineering organizations can also streamline the development process by leveraging those existing components and architectures. This means faster time-to-market for new products since development efforts are focused on creating unique features, rather than rebuilding common functionalities.
Mickle: It also helps ensure consistency in the products across your product line. If you reuse well-tested and validated components, the likelihood of introducing defects or inconsistencies is reduced, and that leads to higher overall product quality. As the market demands change or new technologies emerge, product line engineering provides a framework that allows organizations to adapt and evolve their product line more easily. This enables the addition of new features or the modification of existing ones without starting the development right from scratch.
Product line engineer also supports efficient configuration management, therefore allowing organizations to define and manage variations and products through configuration, rather than by creating separated versions or desynchronized copies of content. It simplifies a task of handling different customer requirements or market-specific adaptations.
It also makes the maintenance and updates more manageable. Changes or bug fixes can be applied to common components, and the updates can then be propagated to all the products in the line, ensuring that each product benefits from the improvements without having to undergo individual modifications. It also helps with the mitigation of risks associated with product development by relying on well-established improving components. Since these components have been used and tested across multiple products, the likelihood of critical issues arising is reduced.
https://www.jamasoftware.com/media/2024/03/Unlocking-Success-The-Transformative-Benefits-of-Variant-Management-through-Product-Line-Engineering-.png5121024Matt Mickle/media/jama-logo-primary.svgMatt Mickle2024-03-12 03:00:492024-03-11 09:54:17[Webinar Recap] Unlocking Success: The Transformative Benefits of Variant Management Through Product Line Engineering
Jama Connect® Features in Five: Jira Integration
Learn how you can supercharge your systems development process! In this blog series, we’re pulling back the curtains to give you a look at a few of the powerful features in Jama Connect®… in about five minutes.
In this Features in Five Integration Series video, Mario Maldari– Director, Solutions Architecture at Jama Software® – will demonstrate the Jama Connect® to Jira® integration.
VIDEO TRANSCRIPT
Mario Maldari: Hello and welcome to the Features in Five Integration Series. My name is Mario Maldari and I’m the Director of Solution Architecture here at Jama Software. Today, we’ll be walking through the Jama Connect to Jira integration. We make it possible for you to integrate Jama Connect with preferred best-of-breed software to achieve Live Traceability™ across the end-to-end development cycle. Live requirements traceability is the ability for any engineer at any time to see the most up-to-date and complete upstream and downstream information for any requirement, no matter the stage of systems development or how many siloed tools and teams it spans. This enables significant productivity and quality improvements, dramatically reduces the risk of product delays, cost overruns, defects, rework, and recalls, and ultimately results in faster time to market. Let’s get started.
The Jama Connect to Jira integration allows for bidirectional synchronization of data between requirements and tasks. This allows for teams such as software developers to stay in their tool of choice and enjoy the benefit of real-time updates between the two applications. Today, we’ll be covering two core use cases for the integration. We’ll be creating a defect in Jama Connect that will synchronize to Jira, and then we’ll be creating an epic in Jira that’ll synchronize over to Jama Connect. Let’s start by executing a test case at Jama Connect’s Test Center. Let’s start our test run here and we can go through and pass or fail steps accordingly. We get to an issue, we can log a defect right from the test, and we can set things like priority. Go ahead and save that defect. And we can go ahead and save and close this test.
Maldari: Then we can open up the test record here and we can take a look at the relationships. And as expected, we will see a link to a downstream defect that we just created. Let’s take a look and open up that defect. And we can see there’s an integration URL to the corresponding defect over in Jira that was just created. And as a developer, I can see a new defect came in and I can start to work on this defect. I can also change things like priority. I can also add a comment. Any field that’s set up to participate in the integration, such as name, description, comments, priority, all of these things can be modified from Jira and that will be synchronized over into Jama Connect. And now you’ll see that there’s a Jama Connect URL here, and this will take us back to the defect that we just created in Jama Connect.
And we can see that the priority has been set below. We can see that there’s a comment that’s been added to add an attachment, and we can actually go ahead and add an attachment here, a picture of our cracked camera. And we’ll attach that to the item. So conversely, anything in Jama Connect that’s participating in the integration, any field, name, description, priority, all of these changes from the Jama Connect side will also be reflected over on the Jira side. And so if we navigate back over into the Jira defect, we’ll do that by following this URL here, we can see that our attachment came over onto the Jira defect.
Similarly, if we’re in Jira now, we’re working and we want to create an epic, we can go ahead and create an epic. Usability improvement, we can go ahead and create that. And then let’s take a look at that epic that we just created here. Similar to the defect scenario, any field that’s set up and configured in the integration will synchronize between the two applications, and that includes the name, description again, comments, and priority. Any field that’s configured will sync over. Then if I refresh this epic that I just created, you can see now that there’s a Jama Connect URL to the correspondent epic that’s just been created in Jama Connect. So I can go here into Jama Connect and I can add things like tables and further elaborate the description, and ask the development team to fill out the table for me.
Maldari: But more importantly, what I can do is start to establish traceability within Jama Connect now. Assuming maybe this usability improvement request came from a particular customer, I can link it to an upstream requirement, or initiative, in this case, usability improvement from the customer. And so I can start to establish traceability now, now that it’s in Jama Connect. All the work is being done in Jira on this epic, but the traceability is being established within Jama Connect. So I’m always getting the latest changes over from the Jira side participating in my traceability within Jama Connect. Let’s take a look back over to the epic in Jira, and we can see the table that I just added from Jama Connect showing up here. You can even see that there’s now an upstream link reference that gives me a reference to the traceability that I just created on the Jama Connect side.
So as you can see, the integration allows teams such as software developers to work in Jira while allowing for real-time status updates to flow over to Jama Connect and be reflected in various traceability views. This way, teams are guaranteed to have the latest status on their projects. Thank you for watching this Future in Five session on the Jira integration for Jama Connect. If you’re an existing customer and want to learn more, please reach out to your customer success manager or consultant. If you’re not yet a client, please go to our website at jamasoftware.com to learn more about the platform and how we can help optimize your development process.
https://www.jamasoftware.com/media/2024/02/FIF-Jira-Integration.jpg10801920Mario Maldari/media/jama-logo-primary.svgMario Maldari2024-03-01 03:00:552024-03-04 13:54:53Jama Connect® Features in Five: Jira Integration
The ‘Square Root’-Process Model for System Engineering
In the rapidly evolving field of systems engineering, the traditional V-model has served as the cornerstone for development, defining system requirements and verification processes. However, the demands of modern engineering necessitate an extension of the V-Model to reduce time-to-market and elevate customer satisfaction. This article introduces the ‘square root’ model that extends the V-model that embeds continuous feedback and integration throughout the product lifecycle. By considering production, operation, support, and end-of-life sustainability from inception, the ‘square root’ model, visually represented in the accompanying diagram, ensures that engineering efforts align with practical constraints and market needs.
Leveraging Jama Connect®‘s advanced features, we will explore how this model fosters collaboration, efficiency, and strategic foresight, setting a new standard for systems engineering excellence.
Throughout this article, when ‘product’ is mentioned, understand that it can also refer to a service, software, or system.
There are aspects in engineering and feedback loops that the V-model implies to improve the engineering assets (mainly Verification and Validation focused) at the same information abstraction level; This article will describe the need to extend the traditional V-model to ensure the estimated time-to-market can be met with ease, customer satisfaction improves each product iteration and create a better tomorrow, using Jama Connect unique features to support your engineering teams to achieve these results.
Where the traditional V-model, starting at ‘Stakeholder Requirements’ and ending at ‘Acceptance Tests’ (or ‘Validation’), describes the engineering’s team involvement in the product being engineered, it is important to understand that this is only a small part in the entire lifecycle of a product. It’s the repeatable part for that product’s new releases and it’s the part that can be used to analyze the impact of changes before that change gets implemented in production.
The word “constraint” has a negative connotation; Design constraints are limitations on what designers can do with a design. These limitations are usually byproducts of having deadlines, budgets, brand guidelines (and similar guidelines, see below), laws and regulations, finite resources, and limited decision power in terms of tools and processes.
Some product engineers view design constraints in a bad light because they feel like they’re being boxed in by a brick wall, while others embrace design constraints as directional guidelines that open the doors to creativity and strategic problem-solving.
On the surface, having design constraints can indeed feel like a bad thing; however, they can be extremely useful. Being limited to certain choices doesn’t necessarily mean being limited to certain outcomes. Often enough there are alternative options that are, at least, almost as good as what you originally envisioned.
Design constraints can come from various sources, in this article we’ll talk about the constraints that focus on time-to-market, customer satisfaction, and zero waste. In other words, design guidelines come from:
Production;
Operation and Support;
(Ecological) Sustainability; the recycling of your product’s used materials.
These design constraints facilitate engineering with the end in mind. Your team’s early decisions during product definition must include upgradability, serviceability, and for sure: disposal, and sustainability.
Please Note: As these are complex topics by themself and not part of the core business of Jama Software, this article will only emphasize the need for feedback from these product lifecycle phases into the product definition as design constraints. Design constraints might also be known and used as Non-functional Requirements (i.e., the different ‘-bilities’, like producibility, serviceability, etc.)
Production and Manufacturing
When production and manufacturing aren’t involved from the start, your engineering team might waste valuable engineering time and effort on a product that cannot be manufactured with the means your production facilities have at their disposal. This means that the product’s entire time-to-market will need to be extended to re-engineer the product to your current production capabilities; wasting precious time and putting your competitive edge at an unnecessary risk.
As an example, a Printed Circuit Board (PCB) might require that a set of components must be aligned in the same direction and at a specified distance when wave soldered to avoid short-circuits in operation. These wave soldering characteristics can be recorded and maintained in Jama Connect as Design Constraints. Source: https://www.mclpcb.com/blog/wave-soldering-issues/
The other side of this same coin; By knowing what your production facilities can and cannot do at the start of the product definition, your teams are capable of estimating when the new bleeding-/leading-edge product they are developing needs new production means.
These insights, when considered at the beginning of the product definition, will allow your teams to research, develop, and implement the required new production techniques and have them ready when the product hits the factory shop floor. This includes having purchasing ready with new suppliers, their delivery times, required stock levels, and other input required for your factory shop floor to hit the ground running producing your new product when it completes its V-cycle.
Operation and Support
The full value of a system or product is realized in its use and operation during the expected product lifespan. Your customers want to receive a product that meets their expectations, but those expectations extend beyond a product that works on day one. Customer Satisfaction, and thus Customer Lifetime Value, is heavily influenced by the ease and availability of maintenance, servicing, and upgrades that will extend the product’s lifespan. When a customer calculates Return on Investment (ROI), they are not only considering receiving a working product, but they are also factoring in;
Mean Time Between Failures (MTBF, a metric for failures in repairable systems);
Mean Time to Failure (MTTF, a failures that require system replacement);
Mean Time to Repair/Recovery/Respond/Resolve (MTTR, is the average time it takes to repair/recover/respond/resolve a failure in a product, service or system, usually technical or mechanical. It includes both the repair time and any testing time. The clock doesn’t stop on this metric until the system is fully functional again); and
Mean Time to Acknowledge (MTTA, a metric useful for tracking your team’s responsiveness and your alert system’s effectiveness).
Reliability represent a series of metrics designed to help customers understand how often incidents occur and how quickly they, in collaboration with your Operation and Support, bounces back from those incidents. Valuable indicators to determine if their investment, and any additional investment to keep it operational, is effective.
Analysis of these reliability, MBTF, MTTF, MTTR and MTTA metrics focused on means to reduce these indicators, lead to product enhancements that improve customer satisfaction for both users (better uptime, improved performance, etc.) and decision makers (value on their investment).
E.g., the accessibility of a repairable component, to improve the MBTF, can be recorded and maintained in Jama Connect as a design constraint.
Sustainability
For sustainability, it all starts with the design. The design decisions for the product contribute 80% to the carbon footprint of the solution! How to make your products and systems ‘green’ from the start, a topic most companies struggle with.
Once your teams start to include sustainability in your product’s mission, you’ll need a structured approach, as several factors will push for different considerations. The most obvious considerations are the choice of materials and the optimizing the production process (reducing carbon emissions).
However, the repairability/serviceability of the product should be considered with a more extended lifetime vision, just like upgradeability and reusing components.
Techniques like Lifecycle Analysis (LCA, shows how much influence a product has on the environment during its entire life cycle: from raw material extraction to waste processing) exist to determine the Design Constraints necessary for the sustainability of the product being developed.
The (material) considerations that come out of an LCA (e.g. switch from fossil fuels to hydrogen) can be recorded and maintained in Jama Connect as a design constraints.
Jama Connect supports the ‘square root’-model
Collaborate with stakeholders from Production, Operation & Support and Environment, Health & Safety
Recording design constraints is not unique to a (Requirements Management, or Product Definition) application like Jama Connect; The ability to collaborate with colleagues in reviews, from the respective product lifecycle phases that normally don’t have to deal with the product definition phase (and thus don’t work in Jama Connect) is unique.
This unique feature allows your teams to engineer your products with the end result in mind, by involving the stakeholders from beyond their own engineering reach, to collaborate and achieve the optimum time-to-market, best customer satisfaction and create a better tomorrow for ourselves and future generations.
These stakeholders don’t require to be Jama Connect users to be invited and collaborate in a review within Jama Connect. Involving those stakeholders into the review process allows these stakeholders to verify their design constraints are adequately and sufficiently addressed by the requirements of your product definition.
First step in sustainability; reuse as much as possible
Not only does reusing and synchronizing requirements reduce your time-to-market and improve quality, but it is also a key strategy for getting your products sustainable. Jama Connect can help reducing the struggle to build on existing work when requirements, and their corresponding test cases, are spread across documents and systems, missing Live Traceability™. Your teams must manually identify and copy related content increasing the risk of rework and gaps. Additionally, teams tend to lack visibility across efforts, causing necessary changes to not propagate across reused content, potentially impacting quality and disconnected product design efforts.
Jama Connect simplifies and enhances the process of reusing requirements and verifications by allowing you to copy selected content with its container and its traced items. Synchronization ensures visibility and enables key use cases such as parallel product definitions, common content libraries (i.e. reusable component libraries) and product variants.
Further reading
INCOSE (International Council on Systems Engineering): INCOSE is a professional organization dedicated to promoting and advancing the field of systems engineering. Their website (www.incose.org) offers a wealth of resources, including publications, articles, and conferences, that cover various topics in systems engineering, including the V-Model.
https://www.jamasoftware.com/media/2024/02/2024-2-29-square-root-process-model-for-system-engineering.png512986Danny Beerens/media/jama-logo-primary.svgDanny Beerens2024-02-29 03:00:372024-02-26 17:26:07The ‘Square Root’-Process Model for System Engineering
