Category: Business of Development

Incident Response

Incident response is a critical aspect of software engineering – the process of identifying, responding to, and resolving incidents that occur within a software system. In order to effectively respond to incidents, software engineers can use the Incident Command System (ICS), a structured approach to incident management that is commonly used in emergency response situations.

The ICS is a standardized approach to managing incidents that involves a hierarchical system of management and coordination. The system is designed to promote effective communication, coordination, and decision-making during incidents. The ICS is made up of five functional areas:

  1. Command: This is the overall direction and control of the incident. The command function is responsible for establishing priorities, making decisions, and delegating tasks.
  2. Operations: This function is responsible for carrying out the tactical objectives of the incident. This includes managing resources, implementing tactics, and ensuring safety.
  3. Planning: This function is responsible for developing and maintaining the incident action plan. This includes collecting and analyzing information, developing strategies, and identifying resources.
  4. Logistics: This function is responsible for providing the resources and support necessary to carry out the incident action plan. This includes managing supplies, facilities, and equipment.
  5. Finance/Administration: This function is responsible for managing the financial and administrative aspects of the incident. This includes budgeting, procurement, and documentation.

The ICS can be applied to incident response in software engineering by adapting the system to fit the unique needs of the software development process. This involves identifying the functional areas that are relevant to software engineering and adapting the ICS structure accordingly. For example:

  1. Command: This function would be responsible for overall management and decision-making related to incident response in software engineering. This would include establishing priorities, delegating tasks, and ensuring that the response is coordinated and effective.
  2. Operations: This function would be responsible for carrying out the technical objectives of the incident response. This would include managing resources, implementing tactics, and ensuring safety.
  3. Planning: This function would be responsible for developing and maintaining the incident response plan. This would include identifying the scope of the incident, analyzing data, and developing strategies for resolving the incident.
  4. Logistics: This function would be responsible for providing the resources and support necessary for incident response. This would include managing equipment, software, and other resources needed for resolving the incident.
  5. Finance/Administration: This function would be responsible for managing the financial and administrative aspects of incident response. This would include budgeting, procurement, and documentation.

Another concept to consider is corrective and preventive action (CAPA or simply corrective action). During an incident, corrective action is the most important thing. Often after an incident we forget preventative action – how are we going to prevent issues like this in the future? Especially think of related errors – often for an error to become an incident, there needs to be failures at multiple levels. The initial corrective action is often to fix one of these multiple failures – but if you don’t go back and fix the other failures you’ll have a boobytrap for a future developer to step on and have the issue again.

Development, Testing, and Quality Assurance

How important is it that your software runs correctly and to spec? For most software it is of the utmost importance. One of the Joel Test 12 is “Do you fix bugs before writing new code?”. Smart development, testing, and QA help prevent bugs in software.

Fixing Code Before Production and After

Fixing code before it goes to production will save you time. I have had bugs that would have taken 30 seconds to fix before going to production that I spent more than a week on fixing after it went to production because it messed up data in another system.

Ways to Prevent Bugs

One of the big things in the programming industry in recent years has been unit testing(and integration testing, TDD, BDD, etc.). Testing is good! It helps find bugs before they are a problem and helps developers make changes in important parts of the code base and have more confidence that they aren’t causing problems in other parts.

If I had a dollar for every time I was asked if I’m writing unit tests why QA is needed, I would definitely have a few dollars. Very simply, QA finds bugs that unit testing does not. Unit and integration testing catch many things, but even though I keep making better software, users will always find a better way to break software.

Featuritis(Scope Creep)

Scheduling software is hard. Estimating software is hard. Deadlines in software are hard.

When someone says “we need this thing you estimated for 4 weeks in 2” the question is “what can we cut or push back into another release?”

Not managing the scope creep situation well ends up with:

  1. Increased Costs: Scope creep can lead to increased costs, as additional resources and time are required to meet the new requirements. This can impact the project’s budget and profitability.
  2. Delayed Timelines: Scope creep can also lead to delayed timelines, as additional work is added to the project. This can cause frustration for stakeholders and can have a negative impact on the project’s overall success.
  3. Reduced Quality: Scope creep can also lead to reduced quality, as developers may be forced to rush to meet the new requirements. This can result in code that is less efficient, less secure, and more prone to bugs and errors.
  4. Disruptive to Team Dynamics: Scope creep can be disruptive to team dynamics, as team members may become frustrated with changes and additional work. This can impact team morale, productivity, and collaboration.

Here are some ways to avoid scope creep in software engineering:

  1. Clearly Define Project Scope: Clearly defining the project scope at the outset can help to avoid scope creep. This includes identifying key objectives, deliverables, and timelines, and outlining a plan for how they will be achieved.
  2. Communicate Effectively: Effective communication between stakeholders, team members, and project managers is essential for avoiding scope creep. This includes keeping stakeholders informed of any changes or updates to the project and maintaining open lines of communication between team members.
  3. Manage Expectations: Managing stakeholder expectations is critical for avoiding scope creep. This includes setting realistic goals and timelines, and being transparent about any potential challenges or roadblocks.
  4. Document Changes: Documenting any changes to the project scope can help to avoid scope creep. This includes maintaining a detailed project plan and updating it regularly as changes occur.

You’ll notice that managing expectations and communicate effectively are basically the same thing – that’s on purpose. Communication is the most important part of the software engineering process.

When Building Software, Think About the Customer

When building software, thinking about the customer is essential. The customer is the end-user of the software, and their satisfaction is critical for the success of the product. By considering the customer’s needs and preferences, developers can create software that is user-friendly, efficient, and effective.

Here are some reasons why thinking about the customer is important when building software:

  1. User-Friendly Interface: Customers want software that is easy to use and navigate. Developers should consider the user experience, ensuring that the interface is intuitive, with clear labeling and navigation. This can lead to increased customer satisfaction and reduce the need for support.
  2. Efficient Functionality: Customers want software that is efficient and does what it is supposed to do. Developers should consider the functionality of the software, ensuring that it is reliable, fast, and free from errors. This can lead to increased productivity and customer loyalty.
  3. Customization and Flexibility: Customers may have different needs and preferences, and developers should consider this when building software. The software should be designed to allow for customization and flexibility, such as the ability to modify settings or access different features. This can lead to increased customer satisfaction and loyalty.
  4. Continuous Improvement: Thinking about the customer is not a one-time event, but an ongoing process. Developers should continuously gather feedback from customers, track usage patterns, and analyze performance data. This can help to identify areas for improvement and ensure that the software continues to meet the needs of the customer.

In conclusion, thinking about the customer is critical when building software. By considering the user experience, functionality, customization, and continuous improvement, developers can create software that meets the needs and preferences of the customer. This can lead to increased customer satisfaction, loyalty, and ultimately, the success of the product.