Determining the testing organization's place within a company

Software testing teams should have a defined place within a company's structure. Testing expert Mike Kelly and requirements expert Rob Apmann answer a reader's question about where testing fits. Asks the reader, "Where does the testing organization belong in the over all structure of a company? Should the organization be a sister to development or should it be a suborganization within your IT risk group? I am the sole QA person within my organization and I report to the IT risk manager whose focus is the Sarbanes-Oxley Act (SOX) and ITIL.

Mike Kelly's response:
Unfortunately, as much as this question excites me my initial response is that I don't have enough information about your specific situation. There is no universal model for structuring a testing organization (or any organization) and I couldn't provide you with any advice without understanding the other systems that your structure is influenced by.

Last year, as I looked to build my own testing organization, I read several Dean Meyer books on how to structure organizations. Much of Meyer's material is built on the framework of five organizational systems:

• "Culture: The behavioral patterns (habits and conventions) generally adopted within the organization.



• Structure: The definition of jobs and the reporting hierarchy (organization chart), as well as the processes that combine people into teams as workflows across organizational boundaries.



• Internal economy: The budgeting, priority-setting, pricing (chargebacks), project approval, and tracking processes that determine how resources flow through an organization and to its clients.



• Methods and tools: The procedures, methodologies, skills, and tools that people in an organization use.



• Metrics and rewards: The feedback loops that let people know how they are doing so they can adjust their behavior, and the incentives for improving performance."

When you look ...

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Software Testing Free tools for Agile testers Free Web proxy security tools software testers should get to know Best practices for Scrum and when to apply them How to deal with iteration issues in Agile Five steps to fostering better software tester and QA results How to stop developer vs. tester, quality-killing blame game Easing software performance testing and usability modeling pressures How to apply modeling techniques to support software testing Calculating mean time to failure in performance testing The lowdown on PCI compliance Software testing and quality assurance (QA) fundamentals How to deal with iteration issues in Agile Five steps to fostering better software tester and QA results Software Testing: New software testing technologies bring new challenges Testing strategies for complex environments Astronaut's STPCon advice: Teamwork delivers "The Right Stuff" How to make your software tamperproof Software consortium seeks standard quality metrics Demo: Using WebGoat, a free software testing tool Seven steps for a quality change and configuration management program Winning responses to "Why is QA always the bottleneck?"

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary build  (SearchSoftwareQuality.com) code review  (SearchSoftwareQuality.com) conformance testing  (SearchSoftwareQuality.com) error handling  (SearchSoftwareQuality.com) garbage in, garbage out  (SearchSoftwareQuality.com) load testing  (SearchSoftwareQuality.com) NUnit  (SearchSoftwareQuality.com) quality assurance  (SearchSoftwareQuality.com) stress testing  (SearchSoftwareQuality.com) white box  (SearchSoftwareQuality.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

at where testing should fit in your organization, you'll need to account for all five systems and the impact those systems have on the organization.

There is a lot of free content on the topic available on the NDMA website. If you prefer books to online content, I've read and recommend the following:

Rob Apmann's response:
In my experience the QA organization is typically one component of the development organization. This generally seems to be a successful approach, since close communication with development is often required to reconcile the requirements versus the working application. If QA and development were part of separate organizations I am not sure that required level of close communication would occur.

Requirements are going to come from two directions. The primary requirements defining what the system does will come from the business analyst or product managers, and some of the requirements should be driven by the IT risk group. A good BA / PM should incorporate the nonfunctional requirements; such as, supported Web servers and version numbers so that the application meets the requirements of the IT risk group. They should also incorporate requirements that will drive the test suite. There might be a requirement that all passwords remain encrypted at all times even when in memory. Development should know about this requirement and QA should be planning to test whether it was met. Determining how to test that example would probably be simplified if QA and development were working closely together and part of the same organization.