Software Quality Assurance: Integrating Testing, Security, and Audit (Paperback)

Mahfuz, Abu Sayed

  • 出版商: Auerbach Publication
  • 出版日期: 2021-08-02
  • 定價: $2,070
  • 售價: 9.5$1,967
  • 語言: 英文
  • 頁數: 392
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 0367567970
  • ISBN-13: 9780367567972
  • 相關分類: 資訊安全
  • 立即出貨 (庫存 < 3)



Software Quality Assurance: Integrating Testing, Security, and Audit focuses on the importance of software quality and security. It defines various types of testing, recognizes factors that propose value to software quality, and provides theoretical and real-world scenarios that offer value and contribute quality to projects and applications. The practical synopsis on common testing tools helps readers who are in testing jobs or those interested in pursuing careers as testers. It also helps test leaders, test managers, and others who are involved in planning, estimating, executing, and maintaining software.


The book is divided into four sections: The first section addresses the basic concepts of software quality, validation and verification, and audits. It covers the major areas of software management, software life cycle, and life cycle processes. The second section is about testing. It discusses test plans and strategy and introduces a step-by-step test design process along with a sample test case. It also examines what a tester or test lead needs to do before and during test execution and how to report after completing the test execution.


The third section deals with security breaches and defects that may occur. It discusses documentation and classification of incidences as well as how to handle an occurrence. The fourth and final section provides examples of security issues along with a security policy document and addresses the planning aspects of an information audit. This section also discusses the definition, measurement, and metrics of reliability based on standards and quality metrics methodology CMM models. It discusses the ISO 15504 standard, CMMs, PSP, and TSP and includes an appendix containing a software process improvement sample document.




第三部分處理可能發生的安全漏洞和缺陷。它討論了事件的文檔和分類,以及如何處理事件。第四部分提供了安全問題的示例,以及一份安全政策文件,並討論了信息審計的計劃方面。本部分還討論了基於標準和品質指標方法論CMM模型的可靠性的定義、測量和指標。它討論了ISO 15504標準、CMM、PSP和TSP,並包含一個附錄,其中包含一份軟體流程改進的樣本文件。


Abu Sayed Mahfuz, ITIL, MIS, MA, has over 15 years of experience in the business and information technology profession, including database manager, technology manager, software quality lead, and technology instruction in several prestigious multinational companies. He is a distinguished trainer, speaker, and book author. Mr. Mahfuz earned his master's degree in computer and information systems from the University of Detroit Mercy and two other master's degrees from Malaysia and Bangladesh. He also holds ITIL Foundation certification and several software quality, cyber security, and phishing related internal certifications from Hewlett Packard.


Abu Sayed Mahfuz先生擁有ITIL、MIS、MA等專業資格,並在商業和資訊技術領域擁有超過15年的經驗,包括數據庫經理、技術經理、軟體品質主管以及在幾家知名跨國公司擔任技術指導。他是一位傑出的培訓師、演講者和書籍作者。Mahfuz先生在底特律慈悲大學獲得了計算機和資訊系統的碩士學位,並在馬來西亞和孟加拉國獲得了另外兩個碩士學位。他還擁有ITIL基礎認證以及來自惠普公司的幾項軟體品質、網絡安全和釣魚相關的內部認證。