iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ISO

ISO/IEC TS 33073:2017

(Main)

Information technology — Process assessment — Process capability assessment model for quality management

Information technology — Process assessment — Process capability assessment model for quality management

ISO/IEC TS 33073:2017: - defines an integrated PRM and PAM that meets the requirements of ISO/IEC 33004 and that supports the performance of an assessment by providing indicators for guidance on the interpretation of the process purposes and outcomes and the process attributes as defined in ISO/IEC 33020; - provides guidance, by example, on the definition, selection and use of assessment indicators. A PAM comprises a set of indicators of process performance and process capability. The indicators are used as a basis for collecting the objective evidence that enables an assessor to assign ratings. The set of indicators included in ISO/IEC TS 33073:2017 is not intended to be an all-inclusive set nor is it intended to be applicable in its entirety. The PAM in ISO/IEC TS 33073:2017 is directed at assessment sponsors and competent assessors who wish to select a model and associated documented process method for assessment (for either capability determination or process improvement). Additionally, it can be of use to developers of assessment models in the construction of their own model, by providing examples of good service management practices. It can be used by: a) service providers to assess and improve a Quality Management System (QMS); b) service providers to demonstrate their capability for the design, development, transition and delivery of services that fulfil Quality Management requirements. Any PAM meeting the requirements defined in ISO/IEC 33004 concerning models for process assessment may be used for assessment. Different models and methods can be needed to address differing business needs. The assessment model in ISO/IEC TS 33073:2017 is provided as an assessment model meeting all the requirements expressed in ISO/IEC 33004. NOTE Copyright release for the PAM: Users of ISO/IEC TS 33073:2017 can freely reproduce the detailed descriptions contained in the assessment model as part of any tool or other material to support the performance of process assessments, so that it can be used for its intended purpose.

Technologies de l'information — Évaluation des processus — Modèle d'évaluation de l'aptitude des processus pour le management de la qualité

General Information

Status
Published
Publication Date
31-Oct-2017
ICS
35.080 - Software
Technical Committee
ISO/IEC JTC 1/SC 7 - Software and systems engineering
Drafting Committee
ISO/IEC JTC 1/SC 7/WG 10 - Process assessment
Current Stage
9020 - International Standard under periodical review
Start Date
15-Apr-2025
Completion Date
15-Apr-2025
Ref Project

Buy Standard

ISO/IEC TS 33073:2017 - Information technology -- Process assessment -- Process capability assessment model for quality managementISO/IEC TS 33073:2017 - Information technology -- Process assessment -- Process capability assessment model for quality management
PreviousNext
Technical specification
ISO/IEC TS 33073:2017 - Information technology -- Process assessment -- Process capability assessment model for quality management
English language
298 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


TECHNICAL ISO/IEC TS
SPECIFICATION 33073
First edition
2017-11
Information technology — Process
assessment — Process capability
assessment model for quality
management
Technologies de l'information — Évaluation des processus
— Modèle d'évaluation de l'aptitude des processus pour le
management de la qualité
Reference number
©
ISO/IEC 2017
© ISO/IEC 2017, Published in Switzerland
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form
or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior
written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of
the requester.
ISO copyright office
Ch. de Blandonnet 8 • CP 401
CH-1214 Vernier, Geneva, Switzerland
Tel. +41 22 749 01 11
Fax +41 22 749 09 47
copyright@iso.org
www.iso.org
ii © ISO/IEC 2017 – All rights reserved

Contents Page
Foreword .v
Introduction .vi
1 Scope . 1
2 Normative references . 1
3 Terms and definitions . 1
4 Overview of the Process Assessment Model (PAM) . 2
4.1 General . 2
4.2 Structure of the Process Assessment Model . 3
4.2.1 Processes . 3
4.2.2 Process dimension . 4
4.2.3 Capability dimension . 4
4.3 Assessment indicators . 5
4.3.1 Process Capability Indicators . 7
4.3.2 Process Performance Indicators . 8
4.4 Measuring process capability . 8
5 The process dimension and process performance indicators (Level 1) .10
5.1 General .10
5.2 COM.01 Communication management .11
5.3
COM.02 Documentation management .12
5.4 COM.03 Human resource management .14
5.5 COM.04 Improvement .14
5.6 COM.05 Internal audit.16
5.7 COM.06 Management review .16
5.8 COM.07 Non-conformity management .17
5.9 COM.08 Operational planning .19
COM.09 Operational implementation and control . 22
5.10
5.11 COM.10 Performance evaluation .24
5.12 COM.11 Risk management .25
5.13 ORG.01 Asset management .27
5.14 ORG.02 Measurement resource management .27
5.15 ORG.03 Supplier management .28
5.16 TEC.01 Configuration management .29
5.17 TEC.02 Process changes .30
5.18 TEC.03 Product/service changes .31
5.19 TEC.04 Product/service design .32
5.20 TEC.05 Product/service planning .32
5.21 TEC.06 Product/service quarantine .33
5.22 TEC.07 Product/service requirements .34
5.23 TEC.08 Product/service review .35
5.24 TEC.09 Product/service supply .36
5.25 TEC.10 Product/service validation .37
5.26 TEC.11 Product/service verification .37
5.27 TOP.01 Leadership .38
6 Process capability indicators .40
6.1 General .40
6.2 Process capability levels and process attributes .41
6.2.1 General.41
6.2.2 Process capability Level 0: Incomplete process.41
6.2.3 Process capability Level 1: Performed process .41
6.2.4 Process capability Level 2: Managed process .42
6.2.5 Process capability Level 3: Established process .47
6.2.6 Process capability Level 4: Predictable process .52
© ISO/IEC 2017 – All rights reserved iii

6.2.7 Process capability Level 5: Innovating process .56
6.3 Related processes for process attributes .60
Annex A (informative) Conformity of the process assessment model .62
Annex B (informative) Input and output characteristics .67
Annex C (informative) Association between base practices and ISO 9001 requirements .107
Bibliography .298
iv © ISO/IEC 2017 – All rights reserved

Foreword
ISO (the International Organization for Standardization) and IEC (the International Electrotechnical
Commission) form the specialized system for worldwide standardization. National bodies that are
members of ISO or IEC participate in the development of International Standards through technical
committees established by the respective organization to deal with particular fields of technical
activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international
organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the
work. In the field of information technology, ISO and IEC have established a joint technical committee,
ISO/IEC JTC 1.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for
the different types of document should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject
of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent
rights. Details of any patent rights identified during the development of the document will be in the
Introduction and/or on the ISO list of patent declarations received (see www.iso.org/patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation on the voluntary nature of standards, the meaning of ISO specific terms and
expressions related to conformity assessment, as well as information about ISO's adherence to the
World Trade Organization (WTO) principles in the Technical Barriers to Trade (TBT) see the following
URL: www.iso.org/iso/foreword.html.
This document was prepared by Technical Committee ISO/IEC JTC 1, Information technology,
Subcommittee SC 7, Software and systems engineering.
© ISO/IEC 2017 – All rights reserved v

Introduction
This document provides a Quality Management Process Assessment Model (PAM) for use in performing
a conformant assessment of process capability in accordance with the requirements of ISO/IEC 33002.
It is structured in accordance with the requirements of ISO/IEC 33004 to reflect processes that enable
implementation of ISO 9001. The scale for assessing the extent of achievement of process capability is
based on ISO/IEC 33020.
The publication of the revised edition of ISO 9001:2015 has rendered the publication of this document
as both timely and appropriate.
An integral part of conducting an assessment is to use a PAM that is constructed for that purpose. A PAM
is related to a Process Reference Model (PRM) and is conformant with ISO/IEC 33004. ISO/IEC 33002
identifies the minimum requirements for performing an assessment in order to ensure consistency and
repeatability of the ratings. ISO/IEC 33002 addresses the assessment of process and the application
of process assessment for improvement and capability determination
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ISO
ISO/IEC TS 33060:2025(Main)
Information technology — Process assessment — Process assessment model for system life cycle processes

This document defines a process assessment model for system life cycle processes, conformant with the requirements of ISO/IEC 33004, for use in performing a conformant assessment in accordance with the requirements of ISO/IEC 33002.

  • Technical specification
    65 pages
    English language
    sale 15% off
ISO
ISO/IEC TS 33062:2025(Main)
Information technology — Process assessment — Process assessment model for quantitative processes to support higher levels of process capability in ISO/IEC 33020

This document defines a process assessment model for quantitative processes, conforming to the requirements of ISO/IEC 33004, for use in performing a process assessment in accordance with the requirements of ISO/IEC 33002.

  • Technical specification
    18 pages
    English language
    sale 15% off
ISO
ISO/IEC 29110-5-6-4:2025(Main)
Systems and software engineering — Life cycle profiles for very small entities (VSEs) — Part 5-6-4: Systems engineering guidelines for the generic Advanced profile

This document describes processes targeted at VSEs that want to sustain and grow as an independent competitive system development organization. This document provides management and engineering guidelines for the systems engineering Advanced profile of the generic profile group. This document is applicable to VSEs that do not develop critical systems and have little or no experience with systems engineering (SE) process planning and implementation using the ISO/IEC/IEEE 15288. This document is also applicable to VSEs which are familiar with the management and engineering guidelines of the systems engineering Intermediate profile (ISO/IEC TR 29110 5-6-3) for their system development projects and are involved in the development of more than one project in parallel with more than one work team.

  • Standard
    83 pages
    English language
    sale 15% off
ISO
ISO/IEC 29110-5-1-2:2025(Main)
Systems and software engineering — Life cycle profiles for very small entities (VSEs) — Part 5-1-2: Software engineering guidelines for the generic Basic profile

This document provides management and engineering guidelines to the software Basic profile specified in ISO/IEC 29110-4-1 through project management and software implementation processes. This document applies to VSEs that do not develop safety-critical software. This document applies for software development projects, which can fulfil an external or internal agreement. This document is applicable to VSEs developing a single product by a single work team.

  • Standard
    93 pages
    English language
    sale 15% off
ISO
ISO/IEC 29110-5-1-1:2025(Main)
Systems and software engineering — Life cycle profiles for very small entities (VSEs) — Part 5-1-1: Software engineering guidelines for the generic Entry profile

This document provides the management and engineering guidelines to the software Entry profile specified in ISO/IEC 29110-4-1 through project management and software implementation processes. This document applies to VSEs that do not develop safety-critical software. This document applies for software development projects, which can fulfil an external or internal agreement. This document applies to start-up VSEs (e.g. VSEs that started their operation less than three years ago) and/or VSEs working on small projects (e.g. projects with a size of less than six person-months).

  • Standard
    36 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 32430:2025(Main)
Software engineering — Software non-functional size measurement

This document defines a method for measuring the non-functional size of the software. It complements ISO/IEC 20926:2009, which defines a method for measuring the functional size of the software. This document also describes the complementarity of functional and non-functional sizes, so that deriving the sizes from the functional and the non-functional requirements does not result in duplication in the distinct functional and non-functional sizes. In general, there are many types of non-functional requirements. Moreover, non-functional requirements and their classification evolve over time as the technology advances. This document does not intend to define the type of NFR for a given context. Users can choose ISO 25010 or any other standard for the definition of NFR. It is assumed that users size the NFR based on the definitions they use. This document covers a subset of non-functional requirements. It is expected that, with time, the state of the art can improve and that potential future versions of this document can define an extended coverage. The ultimate goal is a version that, together with ISO/IEC 20926:2009, covers every aspect that can be required of any prospective piece of software, including aspects such as process and project directives that are hard or impossible to trace to the software's algorithm or data. The combination of functional and non-functional sizes would then correspond to the total size necessary to bring the software into existence. Estimating the cost, effort and duration of the implementation of the NFR is outside the scope of this document.

  • Standard
    71 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 29119-5:2024(Main)
Software and systems engineering — Software testing — Part 5: Keyword-driven testing

This document defines an efficient and consistent solution for keyword-driven testing by: — giving an introduction to keyword-driven testing; — providing a reference approach to implement keyword-driven testing; — defining requirements on frameworks for keyword-driven testing to enable testers to share their work items, such as test cases, test data, keywords, or complete test specifications; — defining requirements for tools that support keyword-driven testing; these requirements are applicable to any tool that supports the keyword-driven approach (e.g. test automation, test design and test management tools); — defining interfaces and a common data exchange format to ensure that tools from different vendors can exchange their data (e.g. test cases, test data and test results); — defining levels of hierarchical keywords, and advising use of hierarchical keywords; this includes describing specific types of keywords (e.g. keywords for navigation or for checking a value) and when to use "flat" structured keywords; — providing an initial list of example generic technical (low-level) keywords, such as "inputData" or "checkValue"; these keywords can be used to specify test cases on a technical level and can be combined to create business-level keywords as required. This document is applicable to all those who want to create keyword-driven test specifications, create corresponding frameworks, or build test automation based on keywords.

  • Standard
    55 pages
    English language
    sale 15% off
ISO
ISO/IEC TS 25052-2:2024(Main)
Systems and software engineering — Systems and software Quality Requirements and Evaluation (SQuaRE): cloud services — Part 2: Quality measurement

This document defines quality measures for quantitatively evaluating cloud services quality in terms of characteristics and sub-characteristics defined in ISO/IEC TS 25052-1 and is intended to be used together with ISO/IEC TS 25052-1. This document contains the following: — a basic set of quality measures for each characteristic and sub-characteristics; — an explanation of how to apply quality measures to cloud services. Since the quality model defined in ISO/IEC TS 25052-1 is the extension to the existing quality models defined in ISO/IEC 25010 to ISO/IEC 25019, it can be used with the product quality model, IT service quality model, data quality model, and quality-in-use model according to evaluation purposes. For the same reason, the quality measures defined in this document can also be used with the quality measures for software ICT products, IT services, data, and quality-in-use. As there are several cloud service categories, this document focuses on the quality model of SaaS (software as a service). This document does not address PaaS (platform as a service) and IaaS (infrastructure as a service).

  • Technical specification
    18 pages
    English language
    sale 15% off
ISO
ISO/IEC/IEEE 41062:2024(Main)
Software engineering — Life cycle processes — Software acquisition

This document describes a set of useful activities, tasks, methods, and practices that acquirers of software and related services from unrelated (external) suppliers can apply to help ensure an efficient and effective acquisition of software or software services. These practices can be applied in competitive and in sole source procurements, regardless of the type, size, complexity, and cost of the acquisition. The document can be applied to software that runs on any computer system regardless of its size, complexity, or criticality. The software supply chain can include integration of off-the-shelf (OTS), custom, software as a service (SaaS), or open-source software. Software services can include software development and sustainment (maintenance), integration, verification (testing) and operation. Security and safety are included as attributes to be considered during the acquisition. However, specific requirements for acquisition of information assurance (security), safety, and cloud services are not included.

  • Standard
    81 pages
    English language
    sale 15% off
ISO
ISO/IEC TR 33022:2024(Main)
Information technology — Process assessment — Application of ISO/IEC/IEEE 12207 processes to the ISO/IEC 33020 process capability measurement scale

This document provides a specification for associating the life cycle processes of ISO/IEC/IEEE 12207 with the process attribute outcomes of ISO/IEC 33020 with the intent of demonstrating support for levels 1 to 3 of the process capability measurement scale defined in ISO/IEC 33020.

  • Technical report
    107 pages
    English language
    sale 15% off