Chapter 16

Question 1

Six Sigma

Answer 1

• A culture built on quality
• Uses a top-down approach
• Project leader is called a Black Belt
• Project members are called Green Belts
• Master Black Belts have worked on many projects and are available as a resource to project teams

Question 2

Philosophy of Six Sigma (7 steps)

Answer 2

1. Define the Problem
2. Observe the Problem
3. Analyse the Causes
4. Act on the Causes
5. Study the Results
6. Standardize the Changes
7. Draw Conclusions

Question 3

Responsibility for Total Quality Management

Answer 3

• Full organizational support of management must exist

* Early commitment to quality from the analyst and business users

Question 4

Structured Walkthroughs

Answer 4

• One of the strongest quality management actions is to do structured walkthroughs routinely
• Use peer reviewers to monitor the system’s programming and overall development
• Point out problems
• Allow the programmer or analyst to make suitable changes

Question 5

Who is Involved in Structured Walkthroughs?

Answer 5

• The person responsible for the part of the system being reviewed
• A walkthrough coordinator
• A programmer or analyst peer
• A peer who takes notes about suggestions

Question 6

The Top-Down Approach

Answer 6

• Top-down design allows the systems analyst to ascertain overall organizational objectives and how they are best met in an overall system
• The system is divided into subsystems and their requirements

Question 7

Advantages of the Top-Down Approach

Answer 7

• Avoiding the chaos of attempting to design a system all at once
• Enables separate systems analysis teams to work in parallel on different but necessary subsystems
• Prevents losing sight of what the system is supposed to do

Question 8

Modular Development

Answer 8

• Breaking the programming into logical, manageable portions or modules
• Works well with top-down design
• Each individual module should be functionally
cohesive, accomplishing only one function

Question 9

Advantages of Modular Development

Answer 9

• Modules are easier to write and debug
• Modules are easier to maintain
• Modules are easier to grasp because they are self- contained subsystems

Question 10

Guidelines for Modular Programming

Answer 10

• Keep each module to a manageable size
• Pay particular attention to the critical interfaces
• Minimize the number of modules the user must modify when making changes
• Maintain the hierarchical relationships set up in the top- down phases

Question 11

Testing, Maintenance, and Auditing

Answer 11

• The testing process
• Maintenance practices
• Auditing

Question 12

The Testing Process

Answer 12

• Program testing with test data
• Link testing with test data
• Full system testing with test data
• Full system testing with live data

Question 13

Program Testing with Test Data

Answer 13

• Desk check programs
• Test with both valid and invalid data
• Check output for errors and make any needed corrections

Question 14

Link Testing with Test Data

Answer 14

• Also referred to as string testing
• Checks to see if programs that are interdependent
actually work together as planned
• Test for normal transactions
• Test with invalid data

Question 15

Full System Testing with Test Data

Answer 15

• Adequate documentation in procedure manuals
• Are procedure manuals clear enough?
• Do work flows actually “flow”?
• Is output correct and do users understand this output?

Question 16

Full System Testing with Live Data

Answer 16

• Comparison of the new system’s output with what you know to be correctly processed output
• Only small amounts of live data are used

Question 17

Maintenance Practices

Answer 17

• Reduce maintenance costs
• Improve the existing software
• Update software in response to the changing organization
• Ensure channels for feedback

Question 18

Auditing

Answer 18

• Having an expert who is not involved in setting up or using the system examine information in order to ascertain its reliability
• There are internal and external auditors
• Internal auditors study the controls used in the
information system to make sure that they are adequate
• External auditors are used when the information system processes data that influences a company’s financial statements

Question 19

Client-Server Technology

Answer 19

• The client-server model refers to a design model that can be thought of as applications running on a network
• The client is a networked computer that uses small programs to do front-end processing, including communicating with the user

Question 20

Advantage of Client-Server Model

Answer 20

• Advantage—greater computer power and greater opportunity to customize applications

Question 21

Disadvantage of Client-Server Model

Answer 21

more expensive and applications must be written as two separate software components each running on separate machines

Question 22

Cloud Computing

Answer 22

• Organizations and individual users can use: – Web services
– Database services
– Application services over the Internet
• Done without having to invest in corporate or personal hardware, software, or software tools
• A large collection of corporate users jointly bear the
lowered cost
• Realize increases in peak-load capacity
• Companies also hope to improve their ability to perform disaster recovery

Question 23

Cloud Computing Trade-Offs

Answer 23

• One major decision is whether to use an external cloud
provider (public cloud) or an internal one (private cloud)
• Sometimes the decision to use a public cloud has to do with how critical it is for the company to strategically control data
• A hybrid approach, in which more critical data linked to strategic aims and corporate intellectual property are held in a private cloud, and less critical data for the same organization makes use of a public cloud, may be a solution

Question 24

Factors in Choosing a Cloud Provider

Answer 24

• If a client of the cloud services provider is hacked, how will it adversely affect other businesses the cloud provider is hosting?
• How can your client be sure data are completely deleted from cloud systems when these systems are eventually decommissioned?
• Are the data architectures being used by the cloud provider standard and transparent so if the client wants to switch providers it would be realistic to do so?
proprietary programming structures in use, making transferring data out of the question?
• How can your client be certain that no one at the cloud provider or their staff working for other clients has access to your organization’s data?

Question 25

ERP and Cloud Computing

Answer 25

• Many of the issues and challenges associated with implementing ERP systems can be mitigated by ERP offerings that take advantage of cloud computing

Question 26

Training

Answer 26

• Who to train
• People who train users
• Training objectives
• Training methods
• Training sites
• Training materials

Question 27

Who to Train

Answer 27

• All people who will have primary or secondary use of the system
• Ensure that users of different skill levels and job interests are separated

Question 28

People Who Train Users

Answer 28

• Vendors
• Systems analysts
• External paid trainers • In-house trainers
• Other system users

Question 29

Conversion Strategies

Answer 29

• Direct changeover
• Parallel conversion
• Gradual or phased conversion
• Modular prototype conversion
• Distributed conversion

Question 30

Direct Changeover

Answer 30

• Old system stops, new one starts
• Needs extensive testing
• Risky approach to conversion
• Users may resent being forced into using an unfamiliar system without recourse
• No adequate way to compare new results to old

Question 31

Parallel Conversion

Answer 31

• Run the old and new systems at the same time
• The advantage is that you can check new data against
old data
• The disadvantage is doubling employees’ workloads

Question 32

Gradual Conversion

Answer 32

• Combines best features of parallel and direct conversion
• Volume of transactions is gradually increased
• Advantage is that users get involved with the system gradually
• Agile methodologies use this conversion approach

Question 33

Modular Prototype Conversion

Answer 33

• Each module is tested and put into use
• The advantage is that each module is thoroughly tested
before being used
• Users are familiar with each module as it becomes operational
• Object-oriented methodologies often use this approach

Question 34

Distributed Conversion

Answer 34

• When there are many installations of the same system, such as at branch offices
• Install software at one office
• Advantage is that problems can be detected and
contained
• Disadvantage is that even when one conversion is successful, each site will have its own peculiarities to work through

Question 35

Three types of Security Concerns

Answer 35

• Physical security
• Logical security
• Behavioral security

Question 36

Physical security

Answer 36

securing the computer facility, its

equipment, and software through physical means

Question 37

Logical security

Answer 37

refers to logical controls in the software itself

Question 38

Behavioral security

Answer 38

building and enforcing procedures to prevent the misuse of computer hardware and software

Question 39

Special Security Considerations for Ecommerce

Answer 39

• Virus protection software
• Email filtering products
• URL filtering products
• Firewalls, gateways, and virtual private networks
• Intrusion detection products
• Vulnerability management products
• Security technologies such as secure socket layering (SSL)
for authentication
• Encryption technologies
• Public key infrastructure (PKI) use and obtaining a digital certificate

Question 40

Information System Utility Approach

Answer 40

• Possession
• Form
• Place
• Time
• Actualization
• Goal

Question 41

Possession utility

Answer 41

answers the question of who should

receive output

Question 42

Goal utility

Answer 42

answers the why of information systems by asking whether the output has value in helping the organization achieve its objectives

Question 43

Place utility

Answer 43

answers the question of where information is distributed

Question 44

Form utility

Answer 44

answers the question of what kind of

output is distributed to the decision maker

Question 45

Time utility

Answer 45

answers the question of when information

is delivered

Question 46

Actualization utility

Answer 46

involves how the information is

introduced and used by the decision-maker

Question 47

Website Evaluation

Answer 47

• Know how often the Web site is visited
• Learn details about specific pages on the site
• Find out more about the Web site’s visitors
• Discover if visitors can properly fill out the forms you
designed
• Find out who is referring Web site visitors to the client’s site
• Determine what browsers visitors are using
• Find out if the client’s Web site visitors are interested in advertising