zen qa presentation
TRANSCRIPT
Development & Testing Services Company 6 years old 100 experienced .NET Developers & Test Engineers Located in Hyderabad, India Serving Product companies based in US, UK and
Canada
Development ServicesTesting Services
.NET Services SharePoint Crystal Reports
Functional/Regression Testing
Test Automation Performance Testing Security Testing
Release testing – Alpha, Beta & FCR release phases Risk based Functional testing approach Well defined process to identify defects early on during
the test cycle Agile/RAD development environment experience Domains – Healthcare, Technology, Financial, Telecom
and Retail Experience testing Desktop apps, Multi-tier apps, Web
services/applications/sites and ERP applications
Company Tool
IBM Rational Robot, Functional Tester, Test Manager
HP (Mercury) QTP, Quality Center, Load Runner
Microsoft Visual Studio 2010 Coded UI, Unit Test, Web Test and Load Test
Compuware TestPartner, QA Director
Empirix e-TEST suite
SmartBear (AutomatedQA)
TestComplete
Borland SilkPerformer, SilkTest
RedStone Software
Eggplant
froglogic Squish
Open source tools
Selenium, JUnit, JMeter, NUnit.ASP
Industry standard practices followed –
• Common Code Libraries
• Minimal use of windows images in verification points
• Identification by object id
• Use of verification points during the development
Tools
LoadRunner
VisualStudio 2010 Load Test, Web Test and Unit Test
TestComplete
Test reports are provided with – • Response times • Server Resource Utilization (CPU, Memory etc.,)• Throughput
A load up to 10,000 VUs can be generated to the Web server
Gauging the application security both from the architectural reality and the attacker’s mindset
Penetration test are conducted to identify the following types of Vulnerabilities –
o Cross Site Scripting (XSS)o Injection Flaws (SQL, Command, LDAP, Xpath) o Authentication & Authorizationo Malicious File Executiono Insecure Direct Object Reference o Cross Site Request Forgery (CSRF)o Information Leakage and Improper Error Handling o Broken Authentication and Session Management o Insecure Cryptographic Storageo Insecure Communicationso Failure to Restrict URL Access
All the employees sign a legal agreement to protect Clients’ IPTwo-stage secure access to the offices (Building level and Office entrance
level)Each test team is dedicated and works independentlySeparate networks for the projectsRestricted access to the product and documentationNetwork firewall in place to monitor outgoing emails
Hardware measuresThe secondary storage devices are disabledThe USB ports are disabled
Project for 2 weeks with 2 Test Engineers No Cost, No Obligation Carried out to showcase our Test Planning & Defect discovery abilities, Communication and
Time management skills
Approach
We need • Application access• Pilot Test scope• Expectations on the Deliverables
Pilot Test Deliverables • Test Plan• Test Scripts• Defect Reports• Defect Summary Reports
Note: We do not offer Stress/Load testing services as part of our Pilot Project.
Carry out Pilot to demonstrate our QA process from Concept to Finish
Both Client and ZenQA to sign Outsourced Services Agreement
Understand Client’s expectations on deliverables from the first few weeks of the project, Agree on a day for weekly/bi-weekly teleconference to discuss current project status
Deliverables - Test Plan & Use Cases - Defect reports with Defect summary and steps to reproduce - Summary Defect Report - Defect Analysis Report
Pilot Project
Services Agreement
Project Kickoff Meeting
Project Execution
ZenQA4th Floor, Bldg# 14,Sundew Properties Ltd SEZ, Mindspace, Raheja IT Park, Hyderabad 500081 ,IndiaPhone: +91-40-40131500E-mail: [email protected]