Back

Document the measurements used by Quality Assurance and Quality Control testing.


CONTROL ID
07200
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain a Quality Management standard., CC ID: 01006

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • During project planning, the FI should define the expected quality attributes and the assessment metrics for the project deliverables based on its quality control standards. (§ 5.8.1, Technology Risk Management Guidelines, January 2021)
  • techniques, procedures and systematic actions to be used for the development, quality control and quality assurance of the high-risk AI system; (Article 17 1(c), Proposal for a Regulation of The European Parliament and of The Council Laying Down Harmonized Rules On Artificial Intelligence (Artificial Intelligence Act) and Ameding Certain Union Legislative Acts)
  • The organization, as part of its quality management program, must provide written documentation of measures that are quantifiable and used to establish acceptable levels of performance. (CORE - 21(c), URAC Health Utilization Management Standards, Version 6)
  • The organization, as part of its quality management program, must provide written documentation of measuring baseline level of performance. (CORE - 21(d), URAC Health Utilization Management Standards, Version 6)
  • For each quality improvement project the organization should establish measurable goals for quality improvement. (CORE - 23(a), URAC Health Utilization Management Standards, Version 6)
  • Measure project performance against key project performance scope, schedule, quality, cost and risk criteria. Identify any deviations from the plan. Assess the impact of deviations on the project and overall programme, and report results to key stakeholders. Recommend, implement and monitor remedial… (PO10.13 Project Performance Measurement, Reporting and Monitoring, CobiT, Version 4.1)
  • be measurable; (6.2.1 ¶ 2(b), ISO 9001 Quality Management systems - Requirements, Fifth edition 2015-09-15)
  • what measurements are needed for determining that the IT assets achieve what is expected of them in relation to the organization's overall objectives (Section 7.5 ¶ 1(a) bullet 4, ISO/IEC 19770-1, Information technology — IT asset management — Part 1: IT asset management systems — Requirements, Third Edition, 2017-12)
  • The organization shall determine evaluation criteria to be applied to the opportunities for improvement when making decisions on their approval. Evaluation criteria shall include alignment of the improvement with service management objectives. (§ 10.2 ¶ 2, ISO/IEC 20000-1:2018, Information technology — Service management —Part 1: Service management system requirements, Third Edition)
  • The success or failure of releases shall be monitored and analysed. Measurements shall include incidents related to a release in the period following deployment of a release. The results and conclusions drawn from the analysis shall be recorded and reviewed to identify opportunities for improvement. (§8.5.3 ¶ 6, ISO/IEC 20000-1:2018, Information technology — Service management —Part 1: Service management system requirements, Third Edition)
  • Develop a quality assurance mechanism for point-of-care testing, including quality indicators (Pillar 5 Step 3 Action 2, COVID-19 Strategic Preparedness and Response Plan, OPERATIONAL PLANNING GUIDELINES TO SUPPORT COUNTRY PREPAREDNESS AND RESPONSE, Draft as of 12 February 2020)
  • Receives effective reports on the results of QA and QC testing. (App A Objective 13:6 d., FFIEC Information Technology Examination Handbook - Management, November 2015)