Standards and institutions to support innovation
Standardization and Institutionalization
Standardization of Requirements Definition Processes
As demands for IT systems become more advanced and complex, so does the importance of the requirements definition phase of the upstream process. At TISI, we use a unique requirements definition framework based on the Requirements Engineering Body Of Knowledge (REBOK) approach and collate customer requests in a rational manner to arrive at optimal requirements.
Test Plan Guidelines
Software test process is a series of activities practiced to ensure product quality, by verifying that the system under development meets all the functional and performance requirements. At TISI, we provide detailed test planning for the entire software development life cycle, from module testing to system testing, following the test plan guidelines based on a rich knowledge base.
ITIL-based Operational and Maintenance Framework
At TISI, we are committed to continuous service improvement while putting together ideas to provide attractive services in operation, maintenance, and enhanced development into our QMS Enhancement Framework. By making use of this framework, our Service Managers deliver valuable services that place top priority on customers' business success.
Company-wide Standardization of Development Processes
To achieve the highly reliable TISI Quality standards, we strive for company-wide standardization of development processes for all products. The implementation of standard procedures and document format for each process enables us to maintain high quality standards while avoiding individual biases.
Standardization of Project Management Methods
TISI's VeiiNus framework embodies our knowledge and experience accumulated in the field of project management and reflects our commitment to continuous improvement of management quality. This framework helps our Project Managers upgrade their skills—including planning, progress management, problem management, and instructions for project members—and run projects smoothly.
Third-Party Risk Assessment
For early identification and prevention of risks in each project, we have third-party assessment and monitoring systems. In the case of large projects, we combine multiple systems—project status visualization by an assessment committee (whose members include company executives), technical architect reviews, and so forth—in order to increase project control. Also, for small and medium-sized projects, organizational process audits and/or architect reviews are conducted across multiple layers of business units.
Security Audit before delivery of System and Service
We deliver systems and managed services with strict security audits enforced to ensure compliance with TISI's quality and security standards. Our internal audit department performs source code inspections for web applications, as well as penetration testing services to ensure that only qualified products are delivered to customers and thus guarantee high quality and security standards.
Also, for small and medium-sized projects, organizational process audits and/or architect reviews are performed by departments/divisions.
Cloud Services Security Review
To provide safe and high-quality cloud services, we have created a cloud security checklist compliant with ISO/IEC 27017 and conduct
reviews of all services. By conducting reviews not just at the service construction phase but also annually after services have been launched,
we encourage continuous improvement, creating a controlled security management cycle. Cloud services that have passed
the review are issued a cloud security certification logo as a designated Authorized Service. Cloud security certification logos
are awarded grades of ★, ★★, and ★★★ according to the number of consecutive years the service has passed the review
and whether or not certifications such as ISO/IEC 27017 have been obtained.