System Design, Deployment and Maintenance

Question 1

What is a control?

Answer 1

Device or mechanism installed on instituted to guide or regulate the activities or operation of a system.

Question 2

What is security?

Answer 2

Protection of assest.

Question 3

What does security aim to do?

Answer 3

Protect from unathorised access, inappropiate alteration of data, system failure

Question 4

What are the types of security?

Answer 4

Prevention (prevent assets being lost or damaged) Detection (inform about damage to an asset, the nature of what caused it) Reaction (measures by which assets can be recovered or repaired).

Question 5

What are examples of Physical Security?

Answer 5

Physical access, envrionmental controcts, uninterrupted power

Question 6

What is Contingency Planning?

Answer 6

Actions planned to react to disasters - e.g. sites (dr)

Question 7

What is a Backup?

Answer 7

A security copy file of a file or database for use in the event of loss or damage to the original.

Question 8

What is Recovery?

Answer 8

Bring back the backup copy so that it replace a file or databse which has been lost/damaged.

Question 9

How do we classify data?

Answer 9

Critical - needed - not important

Question 10

What is Logical Security?

Answer 10

Anti-virus, pen testing, encryption, digital signature

Question 11

What is Application Access Security?

Answer 11

Identification (who you are) Authentication (prove who you are) Authorisation (what right you have) Access (grant access in accordance to authentication rights).

Question 12

What is an Audit Trail/Forensics?

Answer 12

Record showing who accessed a computer system and what operations they performed.

Question 13

What are Legislative and Ethical Controls?

Answer 13

Software must control that the business is not breaking the law

Question 14

What is Verification of Input Data?

Answer 14

Process of assessing whether the data is true (correct, accurate)

Question 15

What is Validation of Data?

Answer 15

Assessing whether the data input is correct according to standards that have been set.

Question 16

What are Input and Output in Validation and Verification?

Answer 16

Data input, amount of data falls in input. Data output should be checked too (boundary conditions)

Question 17

What is the Human Computer Interaction (HCI)?

Answer 17

Humans vs. Computer have different ways of interpresting data - HCI deals with the most effective way to bridge this difference.

Question 18

What are some Design Principles?

Answer 18

Provide value to stakeholders - keep it simple - maintain the vision - what you produce others will consume - be open to the future - plan ahead for reuse - think!

Question 19

What are some Design Contraints?

Answer 19

Legal (data protection) ethical (personal data usage) financial (affordability)

Question 20

What is Sign-off and Deployment?

Answer 20

Sign off from the project team, configuration and change and release mgmt, user training, data conversion, business readiness

Question 21

What is a Pilot?

Answer 21

whole system delivered to a small group of users

Question 22

What is Parallel Running?

Answer 22

old and new system run in parallel until an agreed date

Question 23

What is Phased?

Answer 23

phase delivery of functionality

Question 24

What is a Big Bang?

Answer 24

turn off the old system and turn on the new one

Question 25

What are some handover considerations?

Answer 25

cost - risk - time - resource

Question 26

Advantages/Diadvantages of Big Bang?

Answer 26

Obtain quick benefits (cheap approach) - high risk, especially in greenfield sites - consider when there is no other way, inescapable deadlines, small change

Question 27

Advantages/Diadvantages of Pilot?

Answer 27

Low risk approach, allow for resolution before full go live, easy to roll back - delays benefits, not always possible, are pilot sites representative? - consider when greenfield software or combined process change

Question 28

Advantages/Diadvantages of Phased?

Answer 28

concentrates resources, minimises disruption - not always possible, requires special interfaces - cosnider when software that is clearly modular with little coupling elsewhere

Question 29

Advantages/Diadvantages of Parallel?

Answer 29

safe approach and build confindence - delays benefits, resource intensive, ability to reconcile systems - safety critical systems or numbers intesnive systems

Question 30

What is a Post Implementation Review?

Answer 30

A review done after the system has gone live to validate that we have delivered what the user needs and to verify we met the objectives

Question 31

What are the objectives of a Post Impelementation Review?

Answer 31

Review new system - evaluate against orginal objectives (cost/benefit) - document problem areas - prepare post implemenetation review

Question 32

What is the approach to the Post Implementation Review?

Answer 32

It should include, incident reports, error logs, performance figures, support requirements. It will evalute the information, identify any problem or opportunity, and the report will include an action plan.

Question 33

What is Corrective?

Answer 33

Corrective maintenance is fixing something that is broken

Question 34

What is Perfective?

Answer 34

Perfective maintenance is making improvements

Question 35

What is Preventative?

Answer 35

Preventative maintenance is making changes to prevent future problems

Question 36

What is Adaptive?

Answer 36

Adaptative maintenance is adapting software for a different use