“An Industry Leader in providing Quality Assurance, Systems Testing, Configuration Management, and

Cyber Security Services”

STATEMENT OF CAPABILITIES

TrustedQA is an award winning Information Technology Firm with over 26 years experience in National Defense, Cyber Security, Education, Web/Mobile Applications, Finance, and Healthcare IT. We help our customers develop and deliver the highest quality and most secure products possible. We focus on what we do best: Software/Systems Testing & Integration, Quality Assurance, Configuration/Release Management, and Information Assurance/Cyber Security.Our capabilities have spanned Client Server / Multi-Tier Web &Mobile Applications, Embedded Real-Time Systems, Command and Control, Data/Telecommunication Systems, and current day business and technical software systems. We pride ourselves on the ability to thoroughly understand our customer’s needs, and then execute tasks and deliverables on time and within budget.

HIGHLIGHTS:• Over 26 years of industry experience across Commercial and Federal

Markets• HQ in Reston, VA• Women Owned Small Business• 6 Time Socio-Economic Award Winner

Company Background

Core Services

Customers & Industries

Customer Diversity & Leveraged Capabilities

Federal

SaaS

Data Analytics

e-Commerce

Education

Finance/Insurance

Health SatCom

CMS

Other

SSADISA

Army

Navy

TrustedQA’s approach to Application Testing is one of our primary differentiators. We focus on those hybrid outside the box critical thinking testers who can perform across all aspects of testing, hence the word "hybrid" where testers also have a situational approach to testing, not just "checkers" but overall contributors to quality.

Application Testing

o Software Design/Development Engineering in Test

o Web & Mobile Application Testing

o Web Services Testing (SOAP & REST APIs)

o Functional/Interface Testing

o Performance/Stress/Scalability/Load Testing

o User Acceptance Testing (UAT)

o Usability/508 Compliance Testing

o Test Automation and Continuous Integration Framework Architecture and Execution

o Test Driven Development (TDD) / Behavior Driven Development (BDD)

o Data Driven Testing (DDT)

o Cross Browser/OS/Platform Testing

o Vulnerability/Penetration/Fuzz Testing

Big Data TestingIn today’s data driven world the volume, velocity, and variety of data has

exceeded the capabilities to function effectively on typical database architectures. The accurate storage and reporting of data is critical to the operational success of any organization. Our Data Quality/Testing services include:

o Data Quality Analysiso Data Standardization Procedure Development,

Implementation, and Maintenanceo Full Life Cycle Data Quality Testing (Test Planning, Test Case

Development, Test Execution, and Testing Metrics for Continuous Quality Improvement)

o Big Data & Business Intelligence Architecture support (Data Architecture Schema, Source to Target Mapping, Data Dictionaries,

ETL/Deployment/Security Procedures, etc.)o Business Intelligence Reporting Verification & Validationo Automated ETL Testingo Data Integration Testing

Cyber Security

Offensive Security

Security Risk AssessmentOur assessment includes the potential vulnerabilities identified as well as mitigation strategies for each providing your system administrators with a roadmap to harden your network and improve your company’s security posture.

Active Penetration EngagementA detailed, in depth evaluation whose goal is to simulate an attack by a malicious entity on your network. Our experts use the latest techniques and technologies, focusing on the chinks in your company’s digital armor, tangibly demonstrating ways that attackers could exploit weaknesses already present in your network.

Continuous AssessmentTrustedQA will perform regular (monthly, quarterly, or annual) assessments and analysis of your network as well as monitor systems for configuration changes within the defined benchmarks. The results from these tests will be analyzed to determine any new weaknesses and reports will be provided with all findings and mitigation strategies at the intervals defined in the statement of work.

Security Assessments &

Policyo Regulatory Compliance (FedRAMP,

FISMA, FIPS 199, etc.)o DIARMF Assessment and

Authorization (A&A) / Certification & Accreditation (C&A) (NIST SP 800-37, DIACAP, etc.)o System Security Plans (SSP)o Incident Response Plan (IR)o Rules of Behavior (ROB)o IT System Contingency Plan (ITCP)o Security Test and Evaluation Plan

(ST&E)o Security Control Assessment Report

(SAR)o Plan of Action and Milestones

(POA&M)o Risk Assessment (RA)

o Information Assuranceo Security Policy and Operational

Procedureo Security Interoperability

Quality Process Improvement

o Creation of Processes and Procedures

o Development to Test “handoff” process

o Defect Tracking processo CM process & CM tool

implementationo Change Control processo Full lifecycle QA process

improvement

o Full lifecycle software QA processes and procedures Implementation

o RUP, Agile/Scrum, TDD, Continuous Integration

o ISO 9000o SEI CMMio Six-Sigmao IEEE

Systems IntegrationTrustedQA has a wealth of experience supporting the engineering efforts that are essential for the fielding, maintenance, integration, testing and software development activities of large interoperable systems. These activities apply to sustainment, synchronization and modernization of functional capabilities related to Infrastructure, Situational Awareness and Force Protection, and Integrated Imagery and Intelligence.

o Installation and Fielding Supporto Development/Operational/Interoperability

Test Supporto Integration Testing & Event Supporto Modernizationo Coalition Baseline & Interoperabilityo Configuration Management & QA Process o Test Automation (to enhance rapid

deployment capabilities)o Vulnerability/Penetration Testing

Independent Verification & ValidationTo help determine whether the software and system will satisfy its intended use and user needs "Are you building the right system?" and whether development products conform to the requirements "Are you building the system right?“.

Our IV&V methodology is consistent with the latest systems engineering and process improvement models, and is derived from concepts and standards such as the IEEE Std 1012 - 2004 Standard for Software Verification and Validation, and the process maturity framework developed by the Carnegie Mellon Software Engineering Institute's Software Capability Maturity Model Integration (SEI CMMI).  IV&V services are performed in parallel with the software development effort.  

The Benefits of our IV&V services include:o Early detection and correction of software anomalies.o Enhanced management insight into process and product

risk.o Life cycle process support - to ensure conformance to

program performance, schedule, and budget.o Early assessment of software and system performance.o Objective analysis of software and system conformance

to enable support for a given formal certification process.

o Improved software development and maintenance processes.

o Process improvement support.

Quality Assuranc

e Surveilla

nce

IV&V Management

Requirements IV&V

Unit Test

Software Integration Test

Customer Test

Structural Tests

Development OperationsThe heavy shift towards rapid development iterative processes in today’s SDLC environment has caused the lines to blur between the functional areas within the SDLC. In these evolving environments a “tester” can no longer just be a tester, and a “developer” can no longer be just a developer.

While TrustedQA remains focused in its core service areas, we have adapted to support our customers across various aspects of the SDLC to include:

o Development Operations (DevOps)o Systems Administration (Windows, Unix, Linux, etc.)o Application Development & Architecture (Applets, Widgets, Application

Modules, etc.)o Database Development & Administrationo Mainframe Supporto User Interface (UI) / User Design & Experience (UX)o Project Managemento Etc.

What is FAST CAR?

Functional Automated System Test using

Continuous Automated Regression

An automation framework designed to give the end-user maximum flexibility, regardless of programming experience, to develop an automated regression test suite that look and feel like manual tests. The FAST CAR Framework can be entirely hosted and managed (including the use of TQA’s HP UFT/ALM licenses) via TQA’s test lab environment. If your organization is currently utilizing HP tool licenses, the FAST CAR Framework can be integrated into your environment.

When hosted in the TQA lab, the FAST CAR Framework includes the HP UFT/ALM tools, test environment/infrastructure and our Lead Automation Engineer all at very cost competitive time & materials (T&M) hourly rate. No commitment on your end needed for HP licensing and infrastructure cost!!

o Capable of automating at least 50% of web based applications right out of the box

o Object oriented approach to development requires very little maintenance between releases

o Drag and drop capability for creating automated tests on-the-fly

o Supports building automated tests very early in the development life cycle

o Automated tests can be grouped and re-used for other automated tests

o Cross Browser/OS/Platform support using Vmware infrastructure

o Achieves quick turn-around in results by executing tests in parallel on several machines

o Powered by HP Unified Functional Testing (formerly QuickTest Pro) integrated with HP Application Lifecycle Management (formerly Quality Center)

Who has taken Advantage of

FAST CAR?

US Army Human Intelligence

(HUMINT) Planning, Analysis, and

Evaluation Directorate (PAED), Army Budget Office (ABO)

American Institutes for Research

Nonprofit, nonpartisan behavioral and social science research organization.

BioFortisBiological sample and data management software

Awards

6 time Northrop Grumman Supplier Excellence Award recipient

• 2014 World Class Team Award• 2013 Information Systems Supplier

Excellence Award• 2010 Information Systems Supplier

Excellence Award• 2008 World Class Team Award• 2008 Mission Systems Socio-

Economic Supplier Excellence Award• 2005 Socio-Economic Business

Supplier Award

TrustedQA Inc.1800 Michael Faraday Dr., Suite 100

Reston, VA 20190

Ph: (703) 481-TEST (8378)Fax: (703) 481-8379

sales@TrustedQA.comwww.TrustedQA.com