How To Manage An Open Source Software
|
|
- Edith Greene
- 3 years ago
- Views:
Transcription
1 Executive Briefing: Four Steps to Creating an Effective Open Source Policy Greg Olson Sr. Director OSS Management Olliance Group
2 Speaker Greg Olson Sr. Director, Open Source Management Over 30 years of software industry experience Managed delivery of over 150 engagements at Olliance Group Founder and chairman of Sendmail, one of the first commercial open source companies VP of Strategy and Business Development, Sybase CTO, Britton Lee, Inc. Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 2
3 Olliance Group, a Black Duck Company Ten years, 500+ engagements Leading global FOSS strategy development, planning, and implementation firm Business Technology Governance Community Founder and host of the Open Source Think Tank See thinktank.olliancegroup.com Acquired by Black Duck Software December 2010 Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 3
4 Agenda Why Use Open Source Software? How is the use of Open Source best managed? The Policy Development Process Implementation Summary and Conclusions Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 4
5 Why Use Open Source Software? Best-in-class software in some areas is OSS Your product must interoperate with other OSS, e.g. Linux Your customers favor or even require OSS OSS came with a corporate acquisition It is a lower cost alternative to traditional commercial packages You will need to customize externally sourced software Faster time to market by avoiding development and testing of new code Lower development costs by using free, already de-bugged code Lower code maintenance costs by taking advantage of community maintenance Your code-base already contains significant OSS Sixty-two percent of organizations surveyed indicated that their usage of open source software in deployed software portfolios would exceed 25 percent in the next 18 months. And a full 17 percent of organizations expect their portfolios to be 50 to 74 percent made up of open source software. in their deployed software portfolios. Laurie Wurster, Gartner Group, March 2011 Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 5
6 The Open Source Revolution Commercial Software Package Commercial Software Package OSS OSS OSS OSS OSS OSS OSS OSS OSS OSS OSS Negotiated Procurement OSS OSS OSS OSS OSS OSS Mostly Custom Development Download Mostly Integration This new approach creates new challenges Higher volume of code acquisition decisions Maintaining code and version consistency across an organization Managing support for many external elements Managing participation in public communities Insuring license compliance for many elements at distribution time Copyright 2011 Black Duck Software, Inc. All Rights Reserved.
7 Open Source Management Goal: Manage the complexity and risk inherent in the use of open source software without reducing its productivity advantages What it takes to achieve this goal Strategy and a clear understanding of objectives at the business level A Policy A Governance Process Ongoing audit and tuning Open Source Management works best when it is a natural part of the software development process "Companies must have a policy for procuring OSS, deciding which applications will be supported by OSS, and identifying the intellectual property risk or supportability risk associated with using OSS. Once a policy is in place, then there must be a governance process to enforce it." Laurie Wurster, research director at Gartner Group Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 7
8 What is an OSS Policy? A set of rules and guidelines for using and managing OSS in your organization An effective OSS policy must Cover all the essential aspects of managing OSS Be succinct and easily understood Reflect the way software is developed and delivered in your company Image CC Fotolia_ _M Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 8
9 Developing and Open Source Policy Step 1: Identify key stakeholders and get their commitment Step 2: Prepare for discussions Step 3: Draft the policy Step 4: Review and update the policy Identify Prepare Draft Review Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 9
10 Step 1: Get Commitment of the Stakeholders In most organizations the important stakeholders represent the following functions: Software Architecture, the role that specifies what elements are included in a software project Software Development, the engineers who build the software QA and/or Release Management, those responsible for checking the quality and contents of project releases Legal, who is responsible for upstream and downstream agreements and license compatibility evaluation Product or Line of Business Management, the role responsible to the business for the success of the software Organizations with sensitive data may also have a Security stakeholder, responsible for the security of software Entering the organization Being deployed or released Getting stakeholder commitment to developing an OSS policy is a critical success factor Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 10
11 Step 2: Prepare for Discussions Establish a shared base of understanding Collect and disseminate information about your organization's use and plans for OSS, documents such as: Existing policies or processes related to OSS Inventories of OSS currently used within the organization Existing license compliance requirements and or procedures Upstream or downstream agreements or business relationships that involve OSS New initiatives that might involve the use of OSS Current problems or issues related to the use of OSS Prepare a clearly articulated strategy for using OSS What benefits does the company most want? How will the company insure they are realized? If a strategy does not exist, it may be the first assignment of the stakeholder team Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 11
12 Step 3: Draft the Policy An OSS Policy is typically developed in a series of interactive meetings of the stakeholders Many companies have found that using a facilitator with experience in OSS policy and its operational implications can speed the results An OSS policy should address the following elements: 1. Program administration and management 2. Discovery, acquisition and evaluation 3. Review and approval 4. Software procurement 5. Code and documentation management 6. Support and maintenance 7. License compliance 8. Community participation Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 12
13 Policy Detail: Program Administration Who will be responsible for the policy itself? Who will oversee the OSS management program? Most companies define some additional rolls, as well OSS component owner Review and approval decision authority Is the policy is confidential or shareable, and how it will be published? Training policy is a critical implementation success factor Review and update plan Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 13
14 Policy Detail: Discovery and Evaluation Where the most leverage exists in OSS management Engineers will be much more effective in choosing OSS when they have evaluation criteria and guidelines to work with Class of use Architectural compatibility License compatibility Will the component need to be modified? Quality of code Stability and maturity of code Security evaluation Quality and completeness of documentation Availability of support Activity level of the community or health of commercial support vendor Maturity of project and its originating community IP risk evaluation Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 14
15 Policy Detail: Review and Approval No process can be considered reliable unless it is checked Specifies how an OSS component evaluation is reviewed and who may approve it for a given use Typically a policy establishes an OSS Review Board, typically including Architecture Software development Product management Legal A simpler approval cycle may be established for Reuse of an already approved component Approval of a new release of an already approved component Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 15
16 Policy Detail: Software Procurement Much OSS enters companies through third-party software deliveries These are subject to the same license compliance requirements and operational risks as downloads An OSS policy should provide guidance to procurement Require suppliers to report each OSS element embedded in their deliverables Whether it has been modified Its license Its license compliance terms For code that will be re-distributed, the policy may require A warrantee and indemnification, or Code scanning to verify the contents and compliance terms Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 16
17 Policy Detail: Code and Doc Management Specify how to managing the operational risks that come with OSS Hundreds or even thousands of outsourced OSS components Multiple versions in multiple deployments Policy should specify that Archives are created for each OSS component, including Source code Build files Documentation License declaration All internal modifications must be tracked Bug fixes are shared among all applications/users All uses of a given OSS component are tracked For addressing vulnerability reports For sharing bug fixes Identify all OSS used in a given application or system For producing lists of compliance requirements for a distribution Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 17
18 Policy Detail: Support and Maintenance Open Source from communities is typically under a selfsupport model Policies typically require specification of a support plan at time of component approval Policy should require identification of a responsible party for Tracking security vulnerabilities and bugs Notifying other users of the component within the organization Applying fixes as necessary Evaluating new releases and deciding whether to adopt This role is typically called a "Component Owner" or "Code Owner" within an organization. Where commercial support is purchased for an OSS Component, the Owner is typically the support contact for the organization. Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 18
19 Policy Detail: License Compliance Fundamental: the company will acquire and use OSS in compliance with its licenses For software that is not distributed, this is simple For distributed software a compliance regimen should be specified Audit to insure a correct component list for each release Identify OSS license obligations for each component Identify customer obligations regarding OSS Verify each obligation is met before each release Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 19
20 Policy Detail: Community Participation An OSS policy should specify: The kinds of community participation permitted (or required). The possible levels of participation include: No community participation Participation only through a commercial intermediary Participation from personal account with no organizational attribution Participation with organizational attribution Presentation at conferences Contribution of bug fixes Contribution of documentation Contribution of new functionality Creation of a new OSS project The standards and controls for each allowed level of participation The company's strategy for using OSS and its business goals should dictate the kinds of participation allowed by the policy Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 20
21 Step 4: Review and Update the Policy Produce a draft policy document Circulate for review of the stakeholders Two or three iterations are typical Update draft on each revisions Seek approval of stakeholders and other required executives Plan to review and update policy at regular intervals, typically On completion of initial implementation Annually thereafter Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 21
22 Implementation The next step is to implement the policy through a set of processes Good processes facilitate both efficient software development and effective OSS management, making it easy to "do the right thing." These process must also contain adequate checks to make sure that the OSS policy is consistently followed Training is a key success factor for OSS Management implementations For all participants in the policy and processes Even the best-intentioned individuals cannot follow rules and processes they don't know and understand Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 22
23 Summary and Conclusions There are many compelling reasons to use open source software, but this use entails new risks that must be managed An OSS policy is your primary specification for managing your OSS use There are four proven steps to developing an OSS Policy Step 1: Identify key stakeholders and get their commitment Step 2: Prepare for discussions Step 3: Draft the policy Step 4: Review, update and approve the policy The dimensions of an effective OSS Policy are well understood and proven best practices exist An experienced facilitator can increase the speed and improve the quality of this development process Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 23
24 Contact Us For questions about this presentation Greg Olson Sr. Director, OSS Management Olliance Group a Black Duck company golson@olliancegroup.com x207 For general information Andrew Aitken SVP & GM Olliance Group a Black Duck company andrew@olliancegroup.com x301 Copyright 2011 Black Duck Software, Inc. All Rights Reserved. 24
Managing Open Source Code Best Practices
Managing Open Source Code Best Practices September 24, 2008 Agenda Welcome and Introduction Eran Strod Open Source Best Practices Hal Hearst Questions & Answers Next Steps About Black Duck Software Accelerate
More informationFOSSBazaar A Governance Initiative to manage Free and Open Source Software life cycle
FOSSBazaar A Governance Initiative to manage Free and Open Source Software life cycle Table of contents Executive summary......2 What is FOSS Governance 3 The importance of open source governance...3 Why
More informationXEROX TALKS BEST PRACTICES FOR OPEN SOURCE GOVERNANCE
XEROX TALKS BEST PRACTICES FOR OPEN SOURCE GOVERNANCE November 2014 2014 Black Duck Software, Inc. All Rights Reserved. SPEAKERS Phil Odence Vice President and General Manager Black Duck Software Robert
More informationWhat Developers, Cars & Banks Have in Common: Best Practices for Open Source Governance
What Developers, Cars & Banks Have in Common: Best Practices for Open Source Governance Shoken Kim Black Duck Software June 7, 2012 Linux Con Japan Compliance Mini-Track Overview Trends Strategic use of
More informationHow To Improve Your Software
Driving Quality, Security and Compliance in Third- Party Code Dave Gruber Director of Product Marketing, Black Duck Keri Sprinkle Sr Product Marketing Manager, Coverity Jon Jarboe Sr Technical Marketing
More informationTable of contents. Best practices in open source governance. Managing the selection and proliferation of open source software across your enterprise
Best practices in open source governance Managing the selection and proliferation of open source software across your enterprise Table of contents The importance of open source governance... 2 Executive
More informationOSS LOGISTICS: DRIVING INNOVATIVE SOFTWARE FROM DEVELOPER TO CUSTOMER Alex Bigmore Senior Architect & Open Source Governance Programme Manager SITA
OSS LOGISTICS: DRIVING INNOVATIVE SOFTWARE FROM DEVELOPER TO CUSTOMER Alex Bigmore Senior Architect & Open Source Governance Programme Manager SITA Phil Granof EVP & Chief Marketing Officer Black Duck
More informationnexb- Software Audit for Acquisition Due Diligence
nexb- Software Audit for Acquisition Due Diligence www.nexb.com Agenda About nexb What nexb does Our experience Software Audit: M&A License Violation Risks & Recent Audit Issues Software Audit Process
More informationAdapting IT Governance Frameworks to Ensure Control and Visibility of Open Source
Adapting IT Governance Frameworks to Ensure Control and Visibility of Open Source Dave Lounsbury, CTO & Vice President, The Open Group Peter Vescuso, EVP of Marketing & Business Development, Black Duck
More informationDriving Business Agility with the Use of Open Source Software
Driving Business Agility with the Use of Open Source Software Speakers Peter Vescuso EVP of Marketing & Business Development Black Duck Software Melinda Ballou Program Director, Application Life-Cycle
More informationLeveraging Open Source for a Winning Enterprise Mobile Strategy
Leveraging Open Source for a Winning Enterprise Mobile Strategy Speakers Peter Vescuso EVP of Marketing & Business Development Black Duck Software @black_duck_sw Bryan House VP of Marketing Acquia @bryanhouse
More informationScanning Open Source Software and Managing License Obligations on IBM SmartCloud. Because code travels
Scanning Open Source Software and Managing License Obligations on IBM SmartCloud Because code travels 1 Webinar Agenda Protecode & IBM SmartCloud Company IBM Partnership Solutions Managing Code Obligations
More informationHow to Ensure IT Compliance Without Compromising Innovation. Nik Teshima, IBM Phil Odence, Black Duck
How to Ensure IT Compliance Without Compromising Innovation Nik Teshima, IBM Phil Odence, Black Duck Black Duck 2013 Speakers Phil Odence VP of Business Development Black Duck Software Nik Teshima Senior
More informationPhil Marshall Black Duck Software. 2012 ISACA Webinar Program. 2012 ISACA. All rights reserved.
Open Source Component Governance and Management Using COBIT Phil Marshall Black Duck Software 2012 ISACA Webinar Program. 2012 ISACA. All rights reserved. Welcome Type in questions using the Ask A Question
More informationHOW TO UTILIZE OPEN SOURCE IN YOUR CODE BASE AND BUILD PROCESS. 2015 Black Duck Software, Inc. All Rights Reserved.
HOW TO UTILIZE OPEN SOURCE IN YOUR CODE BASE AND BUILD PROCESS 2015 Black Duck Software, Inc. All Rights Reserved. TODAY S PRESENTERS Baruch Sadogursky JFrog Dave Gruber Black Duck 2 2015 Black Duck Software,
More informationOpen Source in the Real World: Beyond the Rhetoric
Open Source in the Real World: Beyond the Rhetoric Maureen Dorney Partner, DLA Piper Kat McCabe Board of Advisors, Black Duck Software, Inc. Gemma Dreher Senior Counsel, BAE Systems Introduction Widespread
More informationCOMESA Guidelines on Free and Open Source Software (FOSS)
COMESA Guidelines on Free and Open Source Software (FOSS) Introduction The COMESA Guidelines on Free and Open Source Software are a follow-up to the COMESA Regional FOSS Framework of 2009 whose main objective
More informationOpen Source and the New Software Supply Chain. Mark Tolliver, CEO Palamida Inc.
Open Source and the New Software Supply Chain Mark Tolliver, CEO Palamida Inc. Could You Sign This? Typical Software Project Metrics 2.9 GB 87,863 Files 8,535,345 LOC Copyright holders ~350 Archives 178
More informationBOM based on what they input into fossology.
SPDX Tool Website SPDX Tool Description License and copyright scanner that emits license names that conform to SPDX. In March a module should be added that gives the user an SPDX FOSSology fossology.org
More informationThe Cadence Partnership Service Definition
The Cadence Partnership Service Definition About Cadence The Cadence Partnership is an independent management consultancy, specialising in working with a wide range of organisations, solving complex issues
More informationOpen Source Policy Builder
Open Source Policy Builder Effective and comprehensive open source policies are based on a thorough and unbiased organizational assessment. You can start building your organization s open source policy
More informationDomain 1 The Process of Auditing Information Systems
Certified Information Systems Auditor (CISA ) Certification Course Description Our 5-day ISACA Certified Information Systems Auditor (CISA) training course equips information professionals with the knowledge
More informationTECHNOLOGY STRATEGY AUDIT
TECHNOLOGY STRATEGY AUDIT Executive Summary It is our intention to facilitate the understanding of technology strategy and its integration with business strategies. This guideline is organized as series
More information5 Steps for a Winning Open Source Compliance Program
5 Steps for a Winning Open Source Compliance Program Kellan Ponikiewicz Peter Vescuso @black_duck_sw Black Duck 2013 Speakers Peter Vescuso EVP of Marketing Black Duck Software Kellan Ponikiewicz IP Counsel
More informationThe Corporate Counsel s Guide to Open Source Software Policy Implementation
The Corporate Counsel s Guide to Open Source Software Policy Implementation How to Protect the Enterprise from Risk while Helping Your Company More Efficiently Develop and Maintain Applications Black Duck
More informationFOSS Governance Fundamentals
FOSS Governance Fundamentals HP Part Number: 5992-4059 Published: January 2008 Edition: 1.0 Copyright 2008 Hewlett-Packard Development Company, L.P. Legal Notice Confidential computer software. Valid license
More informationIntellectual Property& Technology Law Journal
Intellectual Property& Technology Law Journal Edited by the Technology and Proprietary Rights Group of Weil, Gotshal & Manges LLP VOLUME 26 NUMBER 6 JUNE 2014 A Practical Approach to Working with Open
More informationOpen Source Software and the impact on Mergers & Acquisitions
Open Source Software and the impact on Mergers & Acquisitions Black Duck 2013 Speakers Russell Hartz VP of Corporate Development SAP Oliver Vivell Senior Director of Corporate Development SAP Matthew Jacobs
More informationSoftware Licensing and Pricing Best Practices. Stewart Buchanan June 3, 2009 Gartner Webinar
Software Licensing and Pricing Best Practices Stewart Buchanan June 3, 2009 Gartner Webinar How to Participate Today Audio Announcement You have joined the audio muted using your computer s speaker system
More informationOptimizing Application Management Outsourcing:
A P P L I C A T I O N S A WHITE PAPER SERIES SYNTEL, A U.S.-BASED IT SERVICE PROVIDER WITH AN EXTENSIVE GLOBAL DELIVERY SERVICE, SUGGESTS SPECIFIC BEST PRACTICES FOR REDUCING COSTS AND IMPROVING BUSINESS
More informationBlueCielo Meridian Today
BlueCielo Meridian Today Positioning of our current product portfolio BlueCielo Meridian Customer Day June 26, 2014 Gilze Rijen The Netherlands Edwin van Dijk, Business Solution Specialist BlueCielo ECM
More informationOpen Source Policy Builder
Open Source Policy Builder The following questions represent components of a comprehensive open source policy. Each question has several policy choices listed below. Your organization can build its open
More informationHow to Avoid 5 Common Pitfalls in Open Source Utilization. July 2013
How to Avoid 5 Common Pitfalls in Open Source Utilization July 2013 Today s Presenters Phil Odence Black Duck Baruch Sadogursky JFrog 2 Agenda Open Source Trends Avoiding 5 Common Pitfalls JFrog Artifactory
More informationICT Advice Note - Procurement of Open Source
ICT Advice Note - Procurement of Open Source October 2011 1. Objectives and Context The objective of this document is to provide high level advice on how to ensure open source software is fairly considered
More informationConcept of Operations for Line of Business Initiatives
Concept of Operations for Line of Business Initiatives Version 1.0 Office of E-Gov and IT, OMB March 2006 Table of Contents FOREWORD...2 1 OBJECTIVES OF THE LINES OF BUSINESS CONCEPT OF OPERATIONS...3
More informationDriving Innovation with Open Source A View from the Automotive Industry. BearingPoint Black Duck Software
Driving Innovation with Open Source A View from the Automotive Industry BearingPoint Black Duck Software Speakers Phil Odence VP of Business Development Black Duck Software Claus-Peter Wiedemann Senior
More informationFree and Open-Source Software Diligence in Mergers, Acquisitions, and Investments
Free and Open-Source Software Diligence in Mergers, Acquisitions, and Investments Andrew J. Hall Fenwick & West LLP April 16, 2013 Linux Foundation Collaboration Summit Presentation Topics Introduction
More informationManaged Hosting: Best Practices to Support Education Strategy in the Career College Sector
Managed Hosting: Best Practices to Support Education Strategy in the Career College Sector Online learning is playing a critical role in the delivery of Teaching and Learning and the overall experience
More informationChapter 2 INDUSTRIAL BUYING BEHAVIOUR: DECISION MAKING IN PURCHASING
Chapter 1 THE ROLE OF PURCHASING IN THE VALUE CHAIN The role and importance of the purchasing and supply function in the value chain. The difference between concepts such as ordering, buying, purchasing,
More informationzoomlens January 2012 Why General Counsel should care about Software Asset Management
zoomlens January 2012 Why General Counsel should care about Software Asset Management An organization s ability to maintain compliance with its contractual obligations and manage costs depends on whether
More informationStreamline the Accounts Payable Process
Streamline the Accounts Payable Process WRITTEN BY idatix Corporation idatix.com Searching for the right information, filling out paperwork and gathering approvals takes much more time than most management
More informationNational Research Council Canada IP Prosecution and IP License Management Solution Project
National Research Council Canada IP Prosecution and IP License Management Solution Project Appendix 1 Statement of Work Version 6.0, 10 December 2013 ii Table of Contents 1. Instructions to Bidders...
More informationBeyond ISO 27034 - Intel's Product Security Maturity Model (PSMM)
Beyond ISO 27034 - Intel's Product Security Maturity Model (PSMM) Harold Toomey Sr. Product Security Architect & PSIRT Manager Intel Corp. 2 October 2015 @NTXISSA #NTXISSACSC3 Agenda Application / Product
More informationAn ITIL Perspective for Storage Resource Management
An ITIL Perspective for Storage Resource Management BJ Klingenberg, IBM Greg Van Hise, IBM Abstract Providing an ITIL perspective to storage resource management supports the consistent integration of storage
More informationG-Cloud II Services Service Definition Accenture Cloud PaaS Implementation Services AWS Beanstalk
G-Cloud II Services Service Definition Accenture Cloud PaaS Implementation Services AWS Beanstalk 1 Table of Contents 1. Scope of our Services... 3 2. Approach... 3 3. Assets and Tools... 4 4. Outcomes...
More informationECM as a Shared Service: The New Frontier
Doculabs White Paper: ECM as a Shared Service: The New Frontier Organizations are struggling with the increasing growth of unstructured content: all the word processing files, e-mail, spreadsheets, web
More informationACCOUNTING DEPARTMENT
EMPOWERING YOUR ACCOUNTING DEPARTMENT WHITE PAPER ACCOUNTING & AP AUTOMATION SPONSORED BY: ACCOUNTING & AP AUTOMATION In order for an organization to properly implement and utilize an electronic document
More informationFour strategies to reduce your open source risk
Four strategies to reduce your open source risk Be aware and prepare for what could happen Rogue Wave Software / 5500 Flatiron Parkway, Suite 200 / Boulder, CO 80301, USA / www. Try and think of a single
More informationCITY OF HOUSTON. Executive Order. Information Technology (IT) Governance
CITY OF HOUSTON Executive Order E.O. No: 1-44 Effective Date: December 20, 2012 1. AUTHORITY 1.1 Article VI, Section 7a, of the City Charter of the City of Houston. 2. PURPOSE 2.1 The City of Houston seeks
More informationA Guide to Open Source Transformation Services. How and Why Organizations are Making the Move to Open Source
A Guide to Open Source Transformation Services How and Why Organizations are Making the Move to Open Source A fter decades of relying on commercial off-the-shelf software (COTS), thousands are moving to
More informationOpen Source Policy Builder
Open Source Policy Builder In This Guide: Key issues to consider when formulating an open source policy Characteristics of best-in-class open source policies Sample open source policy statements Helping
More informationOPEN SOURCE SOFTWARE CUSTODIAN AS A SERVICE
OPEN SOURCE SOFTWARE CUSTODIAN AS A SERVICE Martin Callinan Martin.callinan@sourcecodecontrol.co Wednesday, June 15, 2016 Table of Contents Introduction... 2 Source Code Control... 2 What we do... 2 Service
More informationOpen Group SOA Governance. San Diego 2009
Open Group SOA Governance San Diego 2009 SOA Governance Aspects A comprehensive view of SOA Governance includes: People Organizational structures Roles & Responsibilities Processes Governing processes
More informationThe SAM Spotlight A Publication of Soft-Aid for the ITAM/SAM Manager Community. Designing Effective Software Management and Compliance Policies
Vol. 2, Issue 4, August 2007 The SAM Spotlight A Publication of Soft-Aid for the ITAM/SAM Manager Community In This Issue Feature Article: Designing Effective Software Management and Compliance Policies
More informationThe ROI of Data Governance: Seven Ways Your Data Governance Program Can Help You Save Money
A DataFlux White Paper Prepared by: Gwen Thomas The ROI of Data Governance: Seven Ways Your Data Governance Program Can Help You Save Money Leader in Data Quality and Data Integration www.dataflux.com
More informationKey Considerations for Information Technology Governance. 900 Monroe NW Grand Rapids, MI 49503 (616) 632-8000
Key Considerations for Information Technology Governance What is IT Governance? Big Picture approach to information and data management Sets priorities: Managing performance Delivering value Managing risk
More informationWhite Paper THE FIVE STEPS TO MANAGING THIRD-PARTY RISK. By James Christiansen, VP, Information Risk Management
White Paper THE FIVE STEPS TO MANAGING THIRD-PARTY RISK By James Christiansen, VP, Information Management Executive Summary The Common Story of a Third-Party Data Breach It begins with a story in the newspaper.
More informationNetworks Services People www.geant.org 1
1 NREN collaboration on clouds Cloud opportunities GN4 SGA1 SA7 Mary Grammatikou & Andres Steijaert November 2, 2015 Agenda Why collaborate on clouds? Progress in our collaboration Opportunities for NRENs,
More informationIT Governance. What is it and how to audit it. 21 April 2009
What is it and how to audit it 21 April 2009 Agenda Can you define What are the key objectives of How should be structured Roles and responsibilities Key challenges and barriers Auditing Scope Test procedures
More informationSWEBOK Certification Program. Software Engineering Management
SWEBOK Certification Program Software Engineering Management Copyright Statement Copyright 2011. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted
More informationMicrosoft Solutions for Security. Delivering the Windows Server 2003 Security Guide
Microsoft Solutions for Security Delivering the Windows Server 2003 Security Guide Information in this document, including URL and other Internet Web site references, is subject to change without notice.
More informationMaking software from the open source community ready for the enterprise
JBoss Enterprise Middleware Making software from the open source community ready for the enterprise 2 Executive summary 2 JBoss Community projects 3 JBoss Enterprise Middleware Recommended for production
More informationEnterprise Architecture: A Governance Framework
Enterprise Architecture: A Governance Framework Part I: Embedding Architecture into the Organization Sohel Aziz, Thomas Obitz, Reva Modi and Santonu Sarkar The whitepapers arei related to two sessions
More informationThe Convergence of IT Security and Compliance with a Software as a Service (SaaS) approach
The Convergence of IT Security and Compliance with a Software as a Service (SaaS) approach by Philippe Courtot, Chairman and CEO, Qualys Inc. Information Age Security Conference - London - September 25
More informationOpen Source CRM Benefits and Case Studies in the Public Sector Richard Baldwin, Pacific Northwest Regional VP
Open Source CRM Benefits and Case Studies in the Public Sector Richard Baldwin, Pacific Northwest Regional VP 2007 SugarCRM Inc. All rights reserved. Agenda Government Adoption of Open Source Software
More informationAutomation can dramatically increase product quality, leading to lower field service, product support and
QA Automation for Testing Medical Device Software Benefits, Myths and Requirements Automation can dramatically increase product quality, leading to lower field service, product support and liability cost.
More informationAndroid for the Enterprise and OEMs. Peter Vescuso Black Duck Software
Android for the Enterprise and OEMs Peter Vescuso Black Duck Software About Black Duck Software Build better software faster by automating and managing the acquisition and governance of open source OSS
More informationImpacts of Open Source and the EUPL on software IP
Steam 6 Industry Challenges C) Software patents, open source, business methods Patrice-Emmanuel Schmitz Legal expert www.osor.eu Licence compatibility and interoperability in FLOSS procurement and distribution.
More informationI N D U S T R Y D E V E L O P M E N T S A N D M O D E L S. I D C M a t u r i t y M o d e l : P r i n t a n d D o c u m e n t M a n a g e m e n t
Global Headquarters: 5 Speen Street Framingham, MA 01701 USA P.508.872.8200 F.508.935.4015 www.idc.com E X C E R P T I N D U S T R Y D E V E L O P M E N T S A N D M O D E L S I D C M a t u r i t y M o
More informationPUB (MPI) 1-62 Reference: Gartner Scorecard
Information Requests Round 1 PUB (MPI) 1-62 Reference: Gartner Scorecard PUB/MPI 2-23 2013 GRA a) Please file an update to the response to Gartner s recommendations provided at PUB/MPI 2-23 from last year
More informationAppendix A-2 Generic Job Titles for respective categories
Appendix A-2 for respective categories A2.1 Job Category Software Engineering/Software Development Competency Level Master 1. Participate in the strategic management of software development. 2. Provide
More informationSoftware Development Best Practices
Software Development Best Practices Artifact Reuse Supported by Modern Team Communication Tools and Patterns Andrew Bose Principal (979) 777-1431 andrew.bose@parivedasolutions.com Pariveda Solutions, Inc.
More informationThe power of collaboration: Accenture capabilities + Dell solutions
The power of collaboration: Accenture capabilities + Dell solutions IT must run like a business grow with efficiency, deliver results, and deliver long-term strategic value. As technology changes accelerate
More informationInsights into Enterprise Telecom Expense Management
IBM Software Industry Solutions Telecom Expense Management Insights into Enterprise Telecom Expense Management Trends and Best Practices Insights into Enterprise Telecom Expense Management Introduction
More informationDigital Rights Management (DRM) in Education - The Need for Standardisation
Digital Rights Management (DRM) in Education - The Need for Standardisation A Briefing Paper for IMS Neil Mclean, IMS Australia Centre Renato Iannella, IPR Systems February 2002 Version 1.0 1 Overview
More informationREQUEST FOR EXPRESSIONS OF INTEREST (CONSULTANT SERVICES)
REQUEST FOR EXPRESSIONS OF INTEREST (CONSULTANT SERVICES) Consultancy services for Systems Integration and IT project management Client: Central Bank of Yemen Country: Republic of Yemen Project: Financial
More informationISSUE BRIEF. Cloud Security for Federal Agencies. Achieving greater efficiency and better security through federally certified cloud services
ISSUE BRIEF Cloud Security for Federal Agencies Achieving greater efficiency and better security through federally certified cloud services This paper is intended to help federal agency executives to better
More informationWHY DO I NEED A PROGRAM MANAGEMENT OFFICE (AND HOW DO I GET ONE)?
WHY DO I NEED A PROGRAM MANAGEMENT OFFICE (AND HOW DO I GET ONE)? Due to the often complex and risky nature of projects, many organizations experience pressure for consistency in strategy, communication,
More informationFive best practices for deploying a successful service-oriented architecture
IBM Global Services April 2008 Five best practices for deploying a successful service-oriented architecture Leveraging lessons learned from the IBM Academy of Technology Executive Summary Today s innovative
More informationSerena Dimensions CM. Develop your enterprise applications collaboratively securely and efficiently SOLUTION BRIEF
Serena Dimensions CM Develop your enterprise applications collaboratively securely and efficiently SOLUTION BRIEF Move Fast Without Breaking Things With Dimensions CM 14, I am able to integrate continuously
More informationERP IMPLEMENTATION BOOT CAMP
ERP IMPLEMENTATION BOOT CAMP The Manufacturing ERP Experience Sponsored by MetalForming Magazine October 8-9, 2013 Christopher Devault Manager, Vendor Relations Panorama Consulting Solutions www.panorama-consulting.com
More informationRealizing the Breakthrough Economics of Linux and Open Source through Hybrid Development. Tim Yeaton, President and CEO Black Duck Software
Realizing the Breakthrough Economics of Linux and Open Source through Hybrid Development Tim Yeaton, President and CEO Black Duck Software Linux Collaboration Summit April 9, 2009 Agenda Current Market
More informationImplementing Practical Information Security Programs
Implementing Practical Information Security Programs CISO Summit March 17-19, 2013 Presented by: David Cass, SVP & Chief Information Security Officer, Elsevier Information Security & Data Protection Office
More informationOpen Source Software Management
Open Source Software Management Safely Unlock the Potential of Open Source Software Claus-Peter Wiedemann Senior Manager, FOSS Services, BearingPoint Black Duck Korea Open Source Conference Seoul, June
More informationVMware Business Continuity and Disaster Recovery Technology Consulting Services
VMware Business Continuity and Disaster Recovery Technology Consulting Services VMware Technology Consulting Services for Business Continuity and Disaster Recovery CIOs need people both internal staff
More informationo Cost containment through effective and SAP IT Procurement & negotiation strategies to help them achieve best-inclass, purchasing Asset Management
Alexa Bona s research currently focuses on IT management. As part of the IT Procurement and Asset o Workshop: Six Steps to Preparing and Negotiating Software Contracts o Negotiating effective sustainable
More informationIT ASSET MANAGEMENT SELECTED BEST PRACTICES. Sherry Irwin
IT ASSET MANAGEMENT SELECTED BEST PRACTICES Sherry Irwin IT ASSET MANAGEMENT SELECTED BEST PRACTICES By Sherry Irwin INTRODUCTION As the discipline of IT asset management (ITAM) began to evolve in the
More informationService Oriented Architecture for Net Centric Operations based on Open Source Technology
Service Oriented Architecture for Net Centric Operations based on Open Source Technology Sanjiva Weerawarana, Ph.D. Founder, Chairman & CEO, WSO2 Founder, Director & Chief Scientist, Lanka Software Foundation
More informationThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into
The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material,
More informationRight-Sizing Electronic Discovery: The Case For Managed Services. A White Paper
Right-Sizing Electronic Discovery: The Case For Managed Services A White Paper 1 2 Table of Contents Introduction....4 An Overview of the Options...4 Insourcing: Bringing E-Discovery Processes In-House....4
More informationDOES OPEN MEAN VULNERABLE?
DOES OPEN MEAN VULNERABLE? GENIVI All Members Meeting, Seoul Korea - October 2015 Bill Weinberg, Senior Director, Open Source Strategy Black Duck Software 2015 Black Duck Software, Inc. All Rights Reserved.
More informationIT Legacy Migration from Proprietary to Open Source Software. Bill Weinberg, Black Duck Software Jay Lyman, 451 Research
IT Legacy Migration from Proprietary to Open Source Software Bill Weinberg, Black Duck Software Jay Lyman, 451 Research Black Duck 2013 Speakers Jay Lyman Senior Analyst 451 Research Bill Weinberg Senior
More informationInformation & Asset Protection with SIEM and DLP
Information & Asset Protection with SIEM and DLP Keeping the Good Stuff in and the Bad Stuff Out Professional Services: Doug Crich Practice Leader Infrastructure Protection Solutions What s driving the
More informationVulnerability Management
Vulnerability Management Buyer s Guide Buyer s Guide 01 Introduction 02 Key Components 03 Other Considerations About Rapid7 01 INTRODUCTION Exploiting weaknesses in browsers, operating systems and other
More informationLegal Issues for FOSS-based Supply Chain Management. Herve Guyomard, Black Duck Software
Legal Issues for FOSS-based Supply Chain Management Herve Guyomard, Black Duck Software Agenda Legal Case in Supply Chain Open Source in Mobile Mobile devices Supply Chain Management Summary Copyright
More informationHow To Improve Mainframe Software Asset Management
TREASURY INSPECTOR GENERAL FOR TAX ADMINISTRATION The Internal Revenue Service Should Improve Mainframe Software Asset Management February 20, 2014 Reference Number: 2014-20-002 This report has cleared
More informationThe Role of Microsoft SharePoint in a Records Management Strategy. A Docula bs Wh i te Pa pe r
The Role of Microsoft SharePoint in a Records Management Strategy A Docula bs Wh i te Pa pe r 2009 Doculabs, 200 West Monroe Street, Suite 2050, Chicago, IL 60606 (312) 433-7793 info@doculabs.com. Reproduction
More informationFebruary 22, 2013 MEMORANDUM FOR THE HEADS OF EXECUTIVE DEPARTMENTS AND AGENCIES
February 22, 2013 MEMORANDUM FOR THE HEADS OF EXECUTIVE DEPARTMENTS AND AGENCIES FROM: SUBJECT: John P. Holdren Director Increasing Access to the Results of Federally Funded Scientific Research 1. Policy
More informationMcAfee Database Security. Dan Sarel, VP Database Security Products
McAfee Database Security Dan Sarel, VP Database Security Products Agenda Databases why are they so frail and why most customers Do very little about it? Databases more about the security problem Introducing
More informationA Guide to Open Source Transformation Services. How and Why Organizations are Making the Move to Open Source
A Guide to Open Source Transformation Services How and Why Organizations are Making the Move to Open Source A fter decades of relying on commercial off-the-shelf software (COTS), thousands are moving to
More information