The Software Intelligence Blog

  • We’re Growing! Linda Calabrese Joins CAST from Oracle

    Shravan Dantu joins CAST as VP and Country Manager, India, from Avanade, a technology services and IT consulting company. During his 18 years of experience, playing various roles in IT consulting and outsourcing services, he has consulted customers across a range of industries such as: Life Sciences, Insurance, Healthcare, Retail, and Financial Services. Shravan has also been involved in setting up large IT, BPO global delivery, and offshoring programs. With such dynamic experience, Shravan is a crucial addition to the CAST team

  • The Importance of Checking Software Risk and Software Quality: A Wake-Up Call to Firms Across the Globe

    If you've read the news lately, you've seen headline after headline (some, even on our blog) about computer glitches, technical failures, software risk, and hacks.  The health of applications is now under more microscopic attention than ever before - because no matter whether internal or external causes prompt a software outage, the security and stability of your applications are paramount.

tst mze
  • Software Risk: A Tale of Technology Woes and Failures

    In 2014, the IT infrastructure at the Federal government’s Office of Personnel Management (OPM) was upgraded from a security rating of "material weakness" to one of "significant deficiency," according to The Wall Street Journal's CIO Report. Which means that the OPM, even after upgrading to mitigate software risk, wasn’t up to snuff. That is - to put simply - unacceptable. It is also both a dismal and infuriating fact to learn - especially for those who were among the 21 million present and past Federal employees, revealed last week, to have had their Social Security numbers and other personal information stolen in the recent data breach.

  • An Open Letter to the CIOs of Global 2000 Companies

    We’re sure that by now, you’ve seen all of the stories about last week’s computer turmoil at the New York Stock Exchange, United Airlines, the Wall Street Journal, and TD Ameritrade.  And as a top-level executive you’ve probably launched an internal review, or at least asked yourself, “Could it happen here?”
    The simple answer is, unfortunately, “yes, it most definitely could.”

  • The Rule of Three: NYSE, UAL, and WSJ Operations Foiled by Their Own Systems

    The events of last Wednesday proved that things often do come in threes. The “rule of three” reared its ugly head, as technical failures occurred at three large American organizations: the New York Stock Exchange, United Airlines, and The Wall Street Journal. United Airlines grounded all flights nationwide, wasn't able to conduct background checks of passengers, and left flight attendants handwriting tickets (many of which were not accepted by TSA agents). Then, the NYSE suspended trading for almost four hours, the first time in a decade that trading was halted during regular business hours. The Wall Street Journal's homepage also faced difficulties and was offline for almost an hour.

  • Healthcare Giants and Consumers Are Both Victims When It Comes To Security Violations

    When Electronic Health Records were first installed into hospitals and networks, it was seen as a great innovation. However, an important step in their implementation was glazed over: ensuring their security. According to Politico, hacks related to security lapses have cost the healthcare industry around $6 billion a year.

  • We're Growing! Shravan Dantu joins CAST as VP & Country Manager, India

    Shravan Dantu joins CAST as VP and Country Manager, India, from Avanade, a technology services and IT consulting company. During his 18 years of experience, playing various roles in IT consulting and outsourcing services, he has consulted customers across a range of industries such as: Life Sciences, Insurance, Healthcare, Retail, and Financial Services. Shravan has also been involved in setting up large IT, BPO global delivery, and offshoring programs. With such dynamic experience, Shravan is a crucial addition to the CAST team.

  • Agile Introduction: Are You a Laggard?

    The purpose of this white paper is to portray the worldwide state of agile adoption for our readers. While much has been written about the strengths and weaknesses of the technology, little data has been published to show how widely agile methods are used. This paper corrects that by providing data from our databases for public consumption. As shown in Figure 1, agile methods have become the dominant software development paradigm used throughout the world based on data from 330 organizations. Some of these organizations are offshoots of the 120 firms and government organizations from which we have received data. Figure 2 summarizes which agile methodologies are in use by these organizations. As many said that they were using a hybrid approach, i.e., one that combined agile with traditional concepts, we have included their response and categorized them as either hybrid or hybrid/lean (agile combined with lean).

  • Software Risk Driven Application Development

    Understanding Software Risks Created by Poor Application Development and Release Practices

    While the conditions that drive software project managers, development teams and their leadership are often in the best interest of the company, they sometimes fail to recognize the software risks introduced to the business by these decisions or behaviors.  A review of the latest software risks affecting businesses illustrates that development organizations are notoriously poor at managing software development processes such as releases and evolutions.

  • “SAP” is Not Just SAP

    As SAP is extended and expanded, it spawns a network of transactions, potentially written in different languages, and some inconsistencies in data models. An SAP implementation is not just SAP, it’s JEE, JSP, HTML as well as custom ABAP. Analyzing the characteristics of these applications by hand requires a set of experts in each language, and tends to be expensive.  There are excellent tools for analyzing the individual technology, but in a complex and expansive environment like SAP, what is required is a tool that can analyze across technology environments.

  • Code Analysis for SAP: What was Learned at ASUG NJ

    CAST recently sponsored the ASUG NJ Summer Chapter meeting, held on June 12th. ASUG is a renowned organization across US and Canada for SAP professionals and organizations working in the field of SAP. The conference was attended by more than 100 professionals from companies across various industries. The full day event featured many interesting presentations including a presentation of the latest CRASH report on SAP.

  • Royal Bank of Scotland's IT Failure Exposes Vulnerabilities in Digital Banking

    Last Wednesday the Royal Bank of Scotland (RBS) underwent an IT failure which withheld 600,000 payments from customer accounts. This occurs seven months after RBS was fined ₤56 million due to an IT Crash in 2012 that impeded customers from accessing their online accounts. The poor system performance has caused difficulties for customers and shock from the banking community.

  • We're Growing! CAST Welcomes Raj Saxena to the Team

    Shravan Dantu joins CAST as VP and Country Manager, India, from Avanade, a technology services and IT consulting company. During his 18 years of experience, playing various roles in IT consulting and outsourcing services, he has consulted customers across a range of industries such as: Life Sciences, Insurance, Healthcare, Retail, and Financial Services. Shravan has also been involved in setting up large IT, BPO global delivery, and offshoring programs. With such dynamic experience, Shravan is a crucial addition to the CAST team.

  • SAP Performance Does Not Come "Out of the Box"

    One of the allures of SAP has been the pre-built business transactions which promise speed to value and the ability to leverage code.  With the business processes, transactions, and architecture defined, success must be just around the corner. The reality has not quite kept pace. 54% of organizations experience ERP project budget overages.

  • Key Points dalla CAST CIO CONFERENCE 2015

    Giovedì 11 Giugno 2015 ha avuto luogo la IV Edizione della CAST CIO Conference. Ringraziamo i numerosi aderenti alla manifestazione che hanno contribuito al successo di questo evento consentendoci di analizzare, traendo spunto dai più recenti  casi di malfunzionamento di applicazioni “mission critical”, le strategie di prevenzione dei rischi attraverso la misurazione della qualità strutturale degli asset applicativi critici.

  • CRASH Report: Customized SAP Apps Increase Application Risk, Decrease Business Performance

    Companies worldwide use SAP, but SAP by itself does not resolve all of an organizations issues. As a result, a number of organizations need to customize SAP applications to suit their purposes, but this has met with mixed results.

    CAST today released the results of the 2014-2015 CRASH Report for SAP, which revealed more than half of those organizations opting to customize SAP applications have encountered increased application risk, additional software risk management costs and disruption of critical business processes.

  • Function Points Analysis: On Point at Federal Productivity Workshop

    In business, measurement is key. It’s not a new concept, of course, but it’s one that information technology has enabled to be implemented to a higher degree than ever before. Function point analysis is one of those areas where, like initiatives such as Six Sigma, the ability to measure can help insure ultimate success.

  • Is Application Security Risk a Result of Outsourcing?

    There’s a common belief in the software development space that when companies choose application outsourcing of their projects, the control they relinquish by doing so results in lower application quality and puts their projects at risk. Once again, however, CAST’s biennial CRASH Report, which reviews the structural quality of business critical applications, has disproved this theory.

  • We're Growing! Vishal Bhatnagar Joins CAST

    Vishal Bhatnagar joins as head of Operations for the UK and Ireland, from IGATE, a leader in IT services and consulting. During his seven years there, Vishal was able to grow his portfolio from $3M to $45M and developed the company’s first ever full managed services deal. With such a breadth of industry and SI experience, including working at MBLOX and Comverse, Vishal is a vital addition and will prove to be an asset in enhancing CAST’s position in the UK and Ireland.

  • Software Quality is More than Good Code

    Over the past decade, advancements in static analysis tools from both commercial and open source communities have dramatically improved the detection of developer violations of good coding practices. The ability to detect these issues in coding practices provides the promise of better software quality.