INDUSTRY: FINANCIAL SERVICES

Objective: Alleviate Compliance and Security Issues

A large financial services conglomerate received compliance findings from internal and external auditors noting the absence of a formalized software quality assurance (SQA) function and processes. Moreover, the organization did not have a clear separation of duties in IT development that provided adequate cross-checking and oversight. In addition to the compliance implications, senior leadership was concerned about vulnerability to highly-publicized security breaches that had damaged competitors’ systems.

Solution: Renovate and Repair the Process

Operari got directly involved in restructuring the development process:

1. Operari mapped current state software development lifecycles (SDLC) as well as specific SQA functions. SQA functions were being fulfilled, but in a distributed and inconsistent manner.
2. Our consultants structured and justified a new SQA department.
3. Operari designed and installed a new SDLC with specific and consistent quality assurance processes that assured separation of duties.
4. Operari continued working with the new team to train the entire IT organization, implementing the new processes and negotiating change management issues.