“An Industry Leader in providing Quality Assurance, Systems
Testing, Configuration Management, and Cyber Security Services”
STATEMENT OF CAPABILITIES
TrustedQA is an award winning Information Technology Firm with over 26 years experience in National Defense,
Cyber Security, Education, Web/Mobile Applications, Finance, and Healthcare IT. We help our customers develop
and deliver the highest quality and most secure products possible. We focus on what we do best: Software/Systems
Testing & Integration, Quality Assurance, Configuration/Release Management, and Information Assurance/Cyber
Security.
Our capabilities have spanned Client Server / Multi-Tier Web &Mobile Applications, Embedded Real-Time Systems,
Command and Control, Data/Telecommunication Systems, and current day business and technical software systems.
We pride ourselves on the ability to thoroughly understand our customer’s needs, and then execute tasks and
deliverables on time and within budget.
HIGHLIGHTS:
• Over 26 years of industry experience across Commercial and Federal Markets
• HQ in Reston, VA
• Women Owned Small Business
• 6 Time Socio-Economic Award Winner
Customer Diversity & Leveraged Capabilities
Finance/Insurance
Health SatCom
Navy
Education
e-Commerce
Federal
CMS
Other
Army
Data Analytics
SaaS
DISA
SSA
TrustedQA’s approach to Application Testing is one of our primary differentiators. We focus on those hybrid outside the box
critical thinking testers who can perform across all aspects of testing, hence the word "hybrid" where testers also have a situational
approach to testing, not just "checkers" but overall contributors to quality.
o
Software Design/Development Engineering in Test
o
Web & Mobile Application Testing
o
Web Services Testing (SOAP & REST APIs)
o
Functional/Interface Testing
o
o
o
Performance/Stress/Scalability/Load Testing
User Acceptance Testing (UAT)
Usability/508 Compliance Testing
o
o
Test Automation and Continuous Integration Framework
Architecture and Execution
Test Driven Development (TDD) / Behavior Driven
Development (BDD)
o
Data Driven Testing (DDT)
o
Cross Browser/OS/Platform Testing
o
Vulnerability/Penetration/Fuzz Testing
In today’s data driven world the volume, velocity, and variety of data has exceeded the capabilities to function effectively on
typical database architectures. The accurate storage and reporting of data is critical to the operational success of any
organization. Our Data Quality/Testing services include:
o
Data Quality Analysis
o
Data Standardization Procedure Development, Implementation, and Maintenance
o
o
Full Life Cycle Data Quality Testing (Test Planning, Test Case Development, Test Execution, and Testing
Metrics for Continuous Quality Improvement)
Big Data & Business Intelligence Architecture support (Data Architecture Schema, Source to Target
Mapping, Data Dictionaries, ETL/Deployment/Security Procedures, etc .)
o
Business Intelligence Reporting Verification & Validation
o
Automated ETL Testing
o
Data Integration Testing
Offensive Security
Security Risk Assessment
Our assessment includes the potential vulnerabilities identified as well
as mitigation strategies for each providing your system administrators with
a roadmap to harden your network and improve your company’s security posture.
Active Penetration Engagement
A detailed, in depth evaluation whose goal is to simulate an attack by a malicious
entity on your network. Our experts use the latest techniques and technologies,
focusing on the chinks in your company’s digital armor, tangibly demonstrating
ways that attackers could exploit weaknesses already present in your network.
Continuous Assessment
TrustedQA will perform regular (monthly, quarterly, or annual) assessments and
analysis of your network as well as monitor systems for configuration changes
within the defined benchmarks. The results from these tests will be analyzed to
determine any new weaknesses and reports will be provided with all findings and
mitigation strategies at the intervals defined in the statement of work.
Security Assessments & Policy
o Regulatory Compliance (FedRAMP, FISMA, FIPS 199, etc.)
o DIARMF Assessment and Authorization (A&A) /
Certification & Accreditation (C&A) (NIST SP 800-37,
DIACAP, etc.)
o System Security Plans (SSP)
o Incident Response Plan (IR)
o Rules of Behavior (ROB)
o IT System Contingency Plan (ITCP)
o Security Test and Evaluation Plan (ST&E)
o Security Control Assessment Report (SAR)
o Plan of Action and Milestones (POA&M)
o Risk Assessment (RA)
o Information Assurance
o Security Policy and Operational Procedure
o Security Interoperability
o
Creation of Processes and Procedures
o
o
o
o
o
o
Development to Test “handoff” process
Defect Tracking process
CM process & CM tool implementation
Change Control process
Full lifecycle QA process improvement
Full lifecycle software QA processes and
procedures Implementation
o
o
o
o
o
RUP, Agile/Scrum, TDD, Continuous Integration
ISO 9000
SEI CMMi
Six-Sigma
IEEE
TrustedQA has a wealth of experience supporting the engineering efforts that are essential for the fielding, maintenance, integration,
testing and software development activities of large interoperable systems. These activities apply to sustainment, synchronization and
modernization of functional capabilities related to Infrastructure, Situational Awareness and Force Protection, and Integrated Imagery
and Intelligence.
o
Installation and Fielding Support
o
Development/Operational/Interoperability Test Support
o
Integration Testing & Event Support
o
Modernization
o
Coalition Baseline & Interoperability
o
Configuration Management & QA Process
o
Test Automation (to enhance rapid deployment capabilities)
o
Vulnerability/Penetration Testing
IV&V
Management
Quality
Assurance
Surveillance
Design
IV&V
Requirements
IV&V
Code
IV&V
Unit
Test
Software
Integration
Test
Software
Installation
Test
Software
Systems
Test
Customer
Test
Structural
Tests
Software
Operation &
Maintenance
IV&V
To help determine whether the software and system will satisfy its intended use and user needs
"Are you building the right system?" and whether development products conform to the
requirements "Are you building the system right?“.
Our IV&V methodology is consistent with the latest systems engineering and process
improvement models, and is derived from concepts and standards such as the IEEE Std 1012 2004 Standard for Software Verification and Validation, and the process maturity framework
developed by the Carnegie Mellon Software Engineering Institute's Software Capability Maturity
Model Integration (SEI CMMI). IV&V services are performed in parallel with the software
development effort.
The Benefits of our IV&V services include:
o Early detection and correction of software anomalies.
o Enhanced management insight into process and product risk.
o Life cycle process support - to ensure conformance to program performance, schedule,
and budget.
o Early assessment of software and system performance.
o Objective analysis of software and system conformance to enable support for a given
formal certification process.
o Improved software development and maintenance processes.
o Process improvement support.
The heavy shift towards rapid development iterative processes in today’s SDLC environment has caused the lines to
blur between the functional areas within the SDLC. In these evolving environments a “tester” can no longer just be a
tester, and a “developer” can no longer be just a developer.
While TrustedQA remains focused in its core service areas, we have adapted to support our customers across various
aspects of the SDLC to include:
o
o
o
o
o
o
o
o
Development Operations (DevOps)
Systems Administration (Windows, Unix, Linux, etc.)
Application Development & Architecture (Applets, Widgets, Application Modules, etc.)
Database Development & Administration
Mainframe Support
User Interface (UI) / User Design & Experience (UX)
Project Management
Etc.
Functional Automated System Test
using
Continuous Automated Regression
What is FAST CAR?
An automation framework designed to give the end-user maximum flexibility, regardless of
programming experience, to develop an automated regression test suite that look and feel like manual
tests. The FAST CAR Framework can be entirely hosted and managed (including the use of TQA’s
HP UFT/ALM licenses) via TQA’s test lab environment. If your organization is currently utilizing HP
tool licenses, the FAST CAR Framework can be integrated into your environment.
When hosted in the TQA lab, the FAST CAR Framework includes the HP UFT/ALM tools, test
environment/infrastructure and our Lead Automation Engineer all at very cost competitive time &
materials (T&M) hourly rate. No commitment on your end needed for HP licensing and infrastructure
cost!!
o
o
o
o
o
o
o
o
Capable of automating at least 50% of web based applications right out of the box
Object oriented approach to development requires very little maintenance between releases
Drag and drop capability for creating automated tests on-the-fly
Supports building automated tests very early in the development life cycle
Automated tests can be grouped and re-used for other automated tests
Cross Browser/OS/Platform support using Vmware infrastructure
Achieves quick turn-around in results by executing tests in parallel on several machines
Powered by HP Unified Functional Testing (formerly QuickTest Pro) integrated with HP
Application Lifecycle Management (formerly Quality Center)
Who has taken Advantage of
FAST CAR?
US Army
 Human Intelligence (HUMINT)
 Planning, Analysis, and Evaluation
Directorate (PAED), Army Budget
Office (ABO)
American Institutes for Research
Nonprofit, nonpartisan behavioral and
social science research organization.
BioFortis
Biological sample and data management
software
6 time Northrop Grumman Supplier Excellence Award recipient
• 2014 World Class Team Award
• 2013 Information Systems Supplier Excellence Award
• 2010 Information Systems Supplier Excellence Award
• 2008 World Class Team Award
• 2008 Mission Systems Socio-Economic Supplier Excellence Award
• 2005 Socio-Economic Business Supplier Award
TrustedQA Inc.
1800 Michael Faraday Dr., Suite 100
Reston, VA 20190
Ph: (703) 481-TEST (8378)
Fax: (703) 481-8379
sales@TrustedQA.com
www.TrustedQA.com