Quality and Security Continuous Management solution accomplishes the designimplementation and evolution of the Operational and Technology Quality and Security Models, which enable to:

1. Adapt software development lifecycle deliveries to software product quality and security standards, following recognized and measurable standards or models(ISO/IEC 25000, ISO/IEC 9126, ISO/IEC 27000 or others),

2. Establish and implement a continuous evaluation/certification process, including the necessary checks on the development and maintenance lifecycle of software systems, to ensure that the results are consistent with the defined Quality and Security Models, and

3. Implement the appropriate tools to automate these processes


You want to be the best in your business. To survive in such a competitive and changing market as nowadays’, your business critical applications have to be flexible and reliable. Are you doing anything to guarantee that? Do you know how good or secure your applications are? After all, you can be as good as the applications that your business supports.

Measuring aspects of software quality and security all along the development lifecycle can give you the competitive advantage that ensures that your applications will be aligned with business needs, reduce time-to-market or its maintenance cost.

What does it mean in practice? On one hand, it means to detect software defects during their development, when they are easier and cheaper to repair, obtaining a reduction of the number of incidents in production. On the other hand, to have quality indicators under your disposal will allow you to take better decisions about your applications, from the definition of requisites up to the functional tests of the systems.

But measuring the quality could not be enough. Besides knowing how good or bad your software is, based on the quality indicators, you need to certify each phase of the process relying on the indicators and on any other information that can be relevant for your business. To establish a quality certification process, as part of the applications’ development and lifecycle processes, it is essential to assure that the applications deployed in production environments accomplish some minimum standards.

Reaching excellence at these quality levels has a ROI higher than $15 for each dollar invested and it benefits a better planning, productivity and user satisfaction (Capers Jones, 2012).

Optimyth’s Quality and Security Continuous Management solution, held as an outsourced service, is directed to help to improve and ensure the non-functional features (reliability, performance, robustness, security, scalability, portability, usability…) of systems and critical applications, as well as guarantee the software applications’ quality.



Not all companies are equal, nor the software they develop. For each of them, the software quality is measured differently. The first step to manage the software quality is to define and establish the rules of the game: a Quality Model that defines which quality aspects we want to measure and what “quality” means to me and to my company, according to the aspects of the model.

Optimyth’s Software Quality Continuous Management solution allows to define quality models that adapt to your specific needs. Based on ISO/IEC 25010, ISO/IEC 9126 standards, or the ones elaborated by the clients, quality indicators are defined for the characteristics of the software product quality (reliability, performance, robustness, security, scalability, portability, usability…).

Associated with these indicators and metrics, it is the programming and designing set of best practices and rules that the development teams should apply, and that the Software Quality Continuous Management solution is in charge of defining, documenting and transferring all the roles that interfere in the software lifecycle.


Optimyth´s integrated quality portal allows you to have a complete and centralized view of your software quality with more than 600 panels that can be organized into customizable panels to the needs of the different profiles of your organization. It generates reports automatically to keep everyone informed of the global status of the development quality. It can also distribute to all the developers technical reports with detailed information about the rules violations, potential bugs and much more.


It is based on the collected information by the connectors with third-party tools, intrinsic metrics of the code calculated by Optimyth´s code analyzers, e.g.  cyclomatic complexity;  and at the level of compliance with the rules defined in the quality model for each language and based on rules related to each one of the quality aspects.

With Optimyth´s solution certification module, you can go further than just measuring quality. It can define quality control points that will run in different phases of the applications lifecycle to certify that the quality of the deliverables have a minimum compliance, assuring that the applications your business supports have the required quality.

Optimyth´s solution can gather all this information through its own code analyzers that support more than 30 programming languages or connectors with third-party tools, developed by Optimyth, their partners, their own customers or checKing community, as it provides an API and many examples.


One of the benefits of Optimyth’s Software Quality Assurance and Control solution is its flexibility. It can run analyses and certifications by request of the quality portal users or use the internal planner to run them regularly and in an unassisted way. It also allows other applications to run analyses and certifications when needed by an interface of web services. For instance, Application Lifecycle Management (ALM) or Configuration Management (CM) solutions may need to certify that the application’s version they are promoting to production meets the minimum quality standards before deploying. This way, you and your operating environment do not have to adapt to our solution, our solution adapts to your organization, allowing it to complement the processes and amortize your investments.


Operation and maintenance cost reduction, due to the early detection of errors, defects or because of a more efficient use of the resources.

Reduction of development time, mainly testing time and generated “re-work” in testing phase (increasing productivity of development teams).

Delivery deadlines assurance, as well as improving deadline estimations and maintenance costs (achieving more predictable developments).

Imparciality of technical aceptance (SLAs compliance), using objective metrics, and compliance with systems requirements (in addition to the functional ones).

Continuous monitoring of code quality and development teams.

Facilitate the Maintenance and Development outsourcing agreements management.


Banking and Finance: BBVA, Isban, Banco de España, Banco de Sabadell, Bankinter, Novacaixagalicia, Bankia, Banco Espirito Santo

Insurance: Línea Directa Aseguradora, Mapfre, Seguros Zurich, Verti, OCASO, Pelayo, REALE.

Telcos: Telefónica.

Government: Agencia del Conocimiento de La Rioja, Junta de Extremadura, INE

Industry, Distribution: Carrefour, ENAGAS, INDITEX, INECO, El Corte Inglés

TI: Indra