The Future of Software Quality Assurance

The Future of Software Quality Assurance Stephan Goericke Editor The Future of Software Quality Assurance Stephan Goericke Editor The Future of Software Quality Assurance Editor Stephan Goericke iSQI GmbH Potsdam Germany Translated from the Dutch Original book: ‘AGILE’, © 2018, Rini van Solingen & Manage- ment Impact – translation by tolingo GmbH, © 2019, Rini van Solingen ISBN 978-3-030-29508-0 ISBN 978-3-030-29509-7 (eBook) https://doi.org/10.1007/978-3-030-29509-7 This book is an open access publication. © The Editor(s) (if applicable) and the Author(s) 2020 Open Access This book is licensed under the terms of the Creative Commons Attribution 4.0 Inter- national License (http://creativecommons.org/licenses/by/4.0/), which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence and indicate if changes were made. The images or other third party material in this book are included in the book’s Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the book’s Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. The use of general descriptive names, registered names, trademarks, service marks, etc. in this publication does not imply, even in the absence of a specific statement, that such names are exempt from the relevant protective laws and regulations and therefore free for general use. The publisher, the authors, and the editors are safe to assume that the advice and information in this book are believed to be true and accurate at the date of publication. Neither the publisher nor the authors or the editors give a warranty, expressed or implied, with respect to the material contained herein or for any errors or omissions that may have been made. The publisher remains neutral with regard to jurisdictional claims in published maps and institutional affiliations. This Springer imprint is published by the registered company Springer Nature Switzerland AG. The registered company address is: Gewerbestrasse 11, 6330 Cham, Switzerland Foreword In June 2002 David Parnas, one of the pioneers of software engineering, wrote 1 : Software is well known for low reliability and lack of trustworthiness. In part this is attributable to the difficulty of dealing with the complexity of today’s software systems, but the inadequate knowledge, skills, and professionalism of many of the practitioners also contributes to this problem. Moreover, we can thank the inadequately qualified people who produced today’s software for the unreliability and complexity of the products that serve as support software for new products. Dave sees the inadequate education of the people involved in software develop- ment as a major problem. In the field of software, lifelong education and training is essential to keep up to date with the rapid evolution. iSQI has been dealing with this problem for 15 years now and has certainly contributed in many areas to improving the education of people and thus the quality of the software. The many contributions in this book clearly reflect the numerous ways software quality assurance can play a critical role in multiple areas. About 75 years ago, the first electronic computers were used to calculate mathematical problems—also from the military sector. In the following years, computers increasingly took over routine tasks and tasks that required a high degree of precision. Due to technical progress and the associated speed of the systems, large amounts of data can now be processed and evaluated in a short time. The computer now dominates our everyday lives. It has become indispensable, because without it our life today would no longer be possible. Today we are at a radical turning point. (So-called) artificial intelligence is used in more and more software systems, be it automatic speech processing, autonomous driving or machine learning. In many areas we no longer use software exclusively to make life easier, but also as a tool to help us make decisions or simply delegate decision-making tasks to the software itself. 1 https://en.wikipedia.org/wiki/David_Parnas Citation from David Parnas’s preface to the German book Spillner/Linz “Basiswissen Softwaretest”. v vi Foreword So far many of these systems have been used as decisive aids; helping a person to make a more substantiated decision. For example, a physician can have an X-ray image analysed by a system and use the information obtained to make his or her decision. The question arises or will arise: “When is the decision completely left to the system, since the system results show a higher reliability of correctness of the diagnosis than diagnoses of doctors?” In other areas, such as autonomous driving, some decisions have to be made so quickly that they can only be made by the system itself. In fact, it is not the system that decides, but the person who has programmed the system accordingly. At least that’s how it has been so far. When artificial intelligence is used, however, this is no longer definite. With neural networks and deep learning, the results are no longer predictable and therefore no longer depend directly on the programming. These few examples already show how crucial the quality of the systems is and thus the education of the people responsible for the development and testing of these systems. This is why iSQI will continue to be a sought-after partner for further training and certification in the coming years. In addition to well-founded specialist knowledge, ethical issues will have to be the focus of attention in the coming years. How do we as a society—even as humankind—want to deal with the fact that autonomous weapons themselves decide which people are being killed? We must all ask ourselves the question: “Which decisions must still be taken by people and which can we delegate to software systems?” We, as participants in the development of software systems, have a particularly high responsibility for what the near future will look like and where it will go in the coming years. I hope that we will take our responsibility and shape the future positively. GTB, Hochschule Bremen, Bremen, Germany Andreas Spillner July 2019 Preface A Question of Quality Software testing is not a regulated profession. In principle, anybody can become a tester. This was always the case and remains so today. However, there are standards that should apply to all testing professionals and which are a prerequisite for anyone wishing to be taken seriously as a software tester. An early version of a standardized syllabus was developed in 1998 known as the “Certified Tester”. Four years later Austria, Denmark, Finland, Germany, Sweden, Switzerland, the Netherlands and the UK established the International Software Qualification Board (ISTQB ® ) to define and promote a body of knowledge for the profession of software tester. It is one matter to create a set of regulations; it is quite another to ensure that the regulations are observed. This is where a certifying body has a crucial role to play, and hence the International Software Quality Institute (iSQI). Exactly 15 years ago a working group known as ASQF (Arbeitskreis Software-Qualität und -Fortbildung e.V.) established iSQI as an independent body to serve as a safety net and guarantee for an uncompromising and consistent level of quality in the training and certification of specialists throughout the world. In the following 15 years the quality of the profession of software tester has improved immensely. Today there are almost 650,000 ISTQB ® -certified software testers worldwide. Quality Standards Are an Imperative It is the standards maintained by specialists at every level of software production that accelerate improvements in quality. Both functional and non-functional ‘quality’ can only be achieved when people have a sense of what the term ‘quality’ really means and they know what they have to do to achieve this. Yet how can they do this when they have to deal with complicated testing in a limited time? And how vii viii Preface does this work when teams are working all over the globe, in different time zones? How can tests be scheduled, if results have to be delivered within an agile working regime or during the development phase? The testing profession has changed considerably in the last 15 years, and today it faces enormous new challenges. Automation and the use of artificial intelligence have brought changes to methods and to core areas. Here further improvements must be made in training and continuing professional development to develop general and specialist testing skills and competence. The Future Is Before Us Fundamental changes are emerging that will have significant impact on our society in the coming years, and in some cases have already changed it. The response capacity of machines will continue to increase sharply. They will exceed human possibilities many times over. Machines will process data faster, be more mobile and more flexible. Robot axes are already moving autonomously in Phoenix, USA; in Heidelberg, Germany, a trained artificial intelligence system recognizes skin cancer on photographs better than most doctors with average levels of experience. Information is being processed by ever more powerful devices. The results are becoming ever more complex. How can today’s massive data volumes be monitored and controlled by humans? Or, to put it another way, how can a human test a robot that is more ‘intelligent’ than the tester him/herself? The need for continuing professional development will continue to increase. Every day we receive new information on our smartphones about our changing world. About the jobs that are disappearing and about others that are replacing them. About transparent data that offers practical advantages to us in a thousand everyday things. At the same time we hear (and see) policy-makers debating these very things. New Ethics Artificial intelligence will not take away the necessity for us to think. On the contrary, certainly we will make use of artificial intelligence to control the ever- more complex functions of machines. We must nevertheless concentrate on what we can do as humans—and on what we can pick up and learn to do. For all the questions about artificial intelligence, about digitization and automation, the human will remain the decisive factor. After 15 years of working intensively in the IT training sector, iSQI has shown with complete clarity that without specialists, automation is nothing. And artificial intelligence is nothing without people who specify to it what is ‘intelligent’. The more complex the systems become, the more important will be training and also Preface ix ongoing professional development. We do not need to compete with machines! Rather, we need to control them. How we do this is above all a question of attitude of mind, of ethics. What is it that we want, what is the focus of our desires, how should we act? We should follow commonly agreed ethical principles. We need a code of conduct for the future and our work in service to society. The good of humanity is our first objective, and not the development of machines. All products, software and devices are subject to the highest possible quality demands, always with regard to their benefits. We undertake to maintain fair relations with our colleagues, we take pride in the image of our profession and strive to continue to learn for the entire time that we are in the world of work. The formula for the future: Digitization is qualification plus automation—upskilling leads digitalization. One matter is for sure. The more accurately one may assess the developments, the better we can prepare ourselves for tomorrow. For us, the workers, developers, testers, marketers, employers and employees of the future, this means one thing above all: education. Being able to prepare ourselves for the new tasks. The Canadian creators of the careers2030.cst.org website, for example, list the jobs that will be in demand in 2030 with defined job descriptions. This makes for exciting reading, while allowing some to look into the future with relief. There will not be fewer jobs then than now. There will be designers then, though they may be called recyclable design specialists; there will be farmers, though their profession will be based on microclimates and the question of how quickly solar energy and water reach the plant. Their job title might then be ‘agroecologist’. Marketers could become e-media makers and arts managers for big data-driven video, text and game content. And IT experts? They will develop ever more into communicators that enable the different computers to communicate with each other. Software testers will have a much stronger presence in the project planning stage. They will concentrate more on human-machine communication. Things won’t be simpler. But the opportunities will outweigh the risks. This book, issued to mark the 15th anniversary of iSQI, is intended to make a further contribution to raising the profile of the profession of software testing. How is the profession of tester changing? What must a tester prepare for in the coming years, and what skills will the next generation of software testers need? What opportunities are available for further training today? What will testing look like in an agile world that is user-centred and fast-moving? What tasks will remain to the tester once the most important processes are performed automatically? These are questions that we will have to answer for ourselves. CEO iSQI Group, Potsdam, Germany Stephan Goericke Contents Change-Driven Testing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 1 Sven Amann and Elmar Jürgens The Next Generation Tester: Meeting the Challenges of a Changing IT World . . . .. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 15 Graham Bath Testing in DevOps .. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 27 Frank Faber The Tester Skills Program . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 39 Paul Gerrard Testing Autonomous Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 61 Tilo Linz Testing in the Digital Age .. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 77 Rik Marselis Measure Twice, Cut Once: Acceptance Testing . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 93 Mitko Mitev Distributed Testing Teams . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 105 Alfonsina Morgavi Testing Strategies in an Agile Context . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 111 Zornitsa Nikolova Testing Artificial Intelligence . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 123 Gerard Numan Responsible Software Engineering . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 137 Ina Schieferdecker Chasing Mutants . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 147 Adam Leon Smith xi xii Contents Embracing Quality with Design Thinking . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 161 Mark F. Tannian Developing Software Quality and Testing Capabilities in Hispanic America: Challenges and Prospects .. . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 175 Ignacio Trejos-Zelaya The Future of Testing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 197 Kaspar van Dam Subconscious Requirements: The Fright of Every Tester . . . . . . . . . . . . . . . . . . . 207 Hans van Loenhoud The Why, How and What of Agile Transformations . . . . .. . . . . . . . . . . . . . . . . . . . 217 Rini van Solingen Next-Generation Software Testers: Broaden or Specialize! . . . . . . . . . . . . . . . . . 229 Erik van Veenendaal Security: It’s Everyone’s Business! . . . . . . . . . . . . . . . . . . . . . . . .. . . . . . . . . . . . . . . . . . . . 245 Keith Yorkston Editor and Contributors About the Editor Stephan Goericke has been the managing director of the International Software Quality Institute iSQI GmbH (iSQI) since 2005. Furthermore, he is the CEO of the ASQF (Arbeitskreis für Software-Qualität und - Fortbildung e.V). Under his leadership, iSQI expanded worldwide, became the “most world widely known certi- fier” and now has branches and offices on every continent in the world. Stephan has worked for many years with profes- sionals, trainers and institutions in the field of education and is a certifier standing in the midst of digital trans- formation. He is convinced that international standards and upskilling are one of the most important factors for success. He defines this as a formula for the digital world: “Digitalization is Qualification plus Automation— Upskilling leads Digitalization.” Stephan is a sought-after keynote speaker on the sub- jects of standardization, certification and software quality. Furthermore, he is the editor of the “SQ Magazine” and the international publication “SQmag”—journals for software development and quality management, aimed at experts from the field of software development, quality assurance and management. xiii xiv Editor and Contributors Contributors Sven Amann is a consultant of CQSE GmbH for software quality. He studied computer science at the Technis- che Universität Darmstadt (Germany) and the Pontifícia Universidade Católica do Rio de Janeiro (Brazil). He received his PhD in software technology from Technische Universität Darmstadt. Graham Bath is a principal consultant at T-Systems in the division of Digital Integration and Agile Testing and benefits from over 30 years of testing experience to support customers with consultancy, training and test process improvements. Graham is the ISTQB Working Group chair for the Specialist Level Certified Tester qual- ifications and co-authored the new syllabus on Usability Testing. Graham is also a member of the German Testing Board and is a frequent presenter and tutorial lecturer at conferences around the world. He co-authored the book “The Software Test Engineer’s Handbook”. Frank Faber is a DevOps and Test consultant at Alten Nederland. Via Alten, he has been seconded to sev- eral companies where he worked in Agile and DevOps teams. With them, Frank has experienced the transition to DevOps. He helps his teams understand what DevOps is, and how you work Agile and DevOps in practice. In addition to his consultancy work, Frank provides training and lectures on DevOps and on testing in an Agile environment. And in his role as an ambassador for the DevOps Agile Skills Association (DASA), Frank wants to bring the fields of DevOps and Testing together, to help discover in which ways these two fields can learn and benefit from each other. Editor and Contributors xv Paul Gerrard is a consultant, teacher, author, webmaster, programmer, tester, conference speaker, rowing coach and publisher. He has conducted consulting assignments in all aspects of software testing and quality assurance, specializing in test assurance. He has presented keynote talks and tutorials at testing conferences across Europe, the USA, Australia, South Africa and occasionally won awards for them. Educated at the universities of Oxford and Imperial College London, he is a Principal of Gerrard Consulting Limited, the host of the Assurance Leadership Forum and a business coach for Enterprising Macclesfield. He was the Programme Chair for the 2014 EuroSTAR con- ference in Dublin and for several other conferences in the last decade. In 2010 he won the EuroSTAR Testing Excellence Award, in 2013 the inaugural TESTA Lifetime Achievement Award and in 2018 the ISTQB Testing Excellence Award. He is currently working with an Irish government agency to create a future skills framework for software testers. Elmar Juergens is founder of CQSE GmbH and con- sultant for software quality. He studied computer science at the Technische Universität München and Universidad Carlos III de Madrid and received a PhD in software engineering. Tilo Linz is board member and co-founder of imbus AG, a leading solution provider for software testing, and has been active in the field of software quality and software testing for more than 25 years. As founder and chairman of the German Testing Board and founding member of ASQF and ISTQB, he has played a major role in shaping and advancing education and training in this field on a national and international level. Tilo is author of “Testing in Scrum” and co-author of “Software Testing Founda- tions”. xvi Editor and Contributors Rik Marselis is a testing expert at Sogeti in the Nether- lands. He is a well-appreciated presenter, trainer, author, consultant and coach, who supported many organiza- tions and people in improving their testing practice by providing useful tools and checklists, practical sup- port and in-depth discussions. He is also an accredited trainer for ISTQB, TMap- and TPI-certification training courses, and has additionally created and delivered many bespoke workshops and training courses, e.g. on Intelli- gent Machines and DevOps testing. Rik is a fellow of Sogeti’s R&D network SogetiLabs. The R&D activities result in white-papers, articles and blogs about IT in general and testing in particular. He has contributed to 21 books in the period from 1998 until today. In 2018, his last book as main-author Testing in the Digital Age: AI Makes the Difference was published. Mitko Mitev With more than 25 years of experience in the software quality assurance and more than 20 years’ experience as Project and Test Manager, Mitko Mitev is one of the leading software test experts in South East Europe. Mitko is a part of the International Software Testing Qualifications Board (ISTQB) and President of the South East European Testing board (SEETB), and also the Chief Editor of the Quality Matters Magazine, distributed internationally with a focus on the best leading practices and new trends in the area. His commitment to the promotion of the Software Quality is also demon- strated by taking the role of the Chair of the SEETEST Conferences and participation as a keynote speaker in many software quality assurance conferences. In the past few years he has focused mainly on writing course materials, books and articles that will enable everybody to learn more about the field of software testing. Along with that, he is the owner and CEO of an outsourcing and consultancy company in Bulgaria— Quality House—the market leader in offering highly professional testing services. Editor and Contributors xvii Alfonsina Morgavi is partner at QActions System SRL. For more than 20 years she has been exclusively dedicated to software quality assurance and quality control. She is the representative of Argentina in HASTQB (Hispanic America Software Qualification Board), a fre- quent speaker in national and international events and has written several articles about related topics. She actively promotes the professionalization of the activity, ISTQB certifications, and the use of structured techniques and effective tools to support the achievement of maturity in functional, automated, performance and security tests. During her more than 20 years of practice she has trained many testing teams not only in Argentina but also in other countries in the region, and created and organized a considerable number of productive testing teams, for continuous improvement of their technical skills. Zornitsa Nikolova is a co-founder and managing partner at Leanify Ltd.—a company focused on Lean and Agile training, mentoring, and coaching. Zornitsa has extensive experience in software product development both in large enterprises and startups. Currently, she works as a trainer and a coach with companies and individuals who are look- ing to apply agile approaches to product development. In addition to her consulting practice, Zornitsa engages with startups as a co-founder and mentor. She also teaches classes in agile software development and product man- agement at the New Bulgarian University (NBU) and the VUZF University in Bulgaria. Before her career as a trainer and coach, she worked at SAP as a development manager and product owner. Zornitsa holds an MA in International Relations, EMBA from Cotrugli Business School, and she is a Certified Scrum ProductOwner (with Scrum Alliance), a Professional Scrum ProductOwner (with Scrum.org), and an Associated Certified Coach (with the International Coach Federation). Gerard Numan has been a tester since 1998. He has international experience in various contexts and roles and is an experienced test trainer. He has published a book on E2E-testing and has spoken at conferences around the world on subjects such as E2E-testing, test process improvement, risks, critical thinking for testers, the soci- ology of testing and testing AI. Gerard works for Polteq Test Services B.V. in the Netherlands. xviii Editor and Contributors Ina Schieferdecker is Director General of the Depart- ment on Research for Digitalization and Innovation of Federal Ministry of Education and Research. Before, she has been the Director of Fraunhofer FOKUS, Berlin and Professor for Quality Engineering of Open Dis- tributed Systems at the Technische Universität Berlin. Her research interests include urban data platforms, critical infrastructures and conformity, interoperability, security, reliability and certification of software-based systems. She is President of the Association for Software Quality and Education (ASQF), member of the German National Academy of Science and Engineering (acatech), and of Münchner Kreis e.V. She has been member of the German Advisory Council on Global Change (WBGU) as well as steering committee member of the Science Platform Sustainability 2030. She was also Director of the Weizen- baum Institute for the Networked Society, the German Internet Institute in Berlin and member of the “Hightech Forum 2025” of the Federal Ministry of Education and Research. Adam Leon Smith is a specialist in software quality and emerging technologies. He has held senior technology roles at multinational companies including Barclays and Deutsche Bank, and delivered large complex transfor- mation projects. Adam is a regular speaker on multiple topics, including testing and artificial intelligence tech- nology. He manages an AI product development team that has developed an AI product to support the man- agement of development and testing activities, as well as specializing in testing AI-based systems. He is also actively working with IEEE, ISO, and BSI on standards development in the AI and quality domain. Andreas Spillner has been working in the field of soft- ware development and testing in practice and research for 40 years. He studied computer science at the Technical University Berlin and received his doctorate at the Univer- sity of Bremen. Until 2017 he was Professor of Computer Science at the University of Applied Sciences Bremen. He teaches software engineering with a focus on quality assurance and programming. Andreas is a Fellow of the “Gesellschaft für Informatik e.V.”, a founding member of the “German Testing Board e.V.” (honorary member since 2010) Editor and Contributors xix and was founder and spokesman of the special interest group “Test, Analysis and Verification of Software”. He is also a member of the advisory board of the ASQF (“Arbeitskreis Software-Qualität und -Fortbildung e.V.”). He is author or co-author of several German-language books (e.g. Basiswissen Softwaretest , Lean Testing für C ++ -Programmierer — Angemessen statt aufwendig testen ) and magazines. In addition, he has authored numerous publications in journals and presentations at international and national conferences as well as seminars. Mark Tannian is a consulting associate and professional development provider for RBCS Inc., an adjunct faculty member of St. John’s University in New York City and Executive Director of Education for a New York City- based security professionals organization (i.e. (ISC) 2 NY Metro Chapter). In 2018, he developed the A4Q Design Thinking Foundation course and certification. He pursues innovative approaches to business and security challenges through his consulting, research and teaching. Mark holds professional certifications in information security (i.e. CISSP) and project management (i.e. PMP). In 2013, he received his PhD in computer engineering from Iowa State University, USA. Ignacio Trejos-Zelaya is an Associate Professor of the Tecnológico de Costa Rica (TEC) since 1984. He is also a Co-Founder & Professor at the University Cenfotec & Cenfotec since the year 2000. He has directed more than 35 MSc theses and published over 40 technical articles, as well as over 240 opinion articles. Ignacio has been a speaker on nearly 200 conferences, panel sessions and technical talks. He is a professional member of the Costa Rican Association of Computing Professionals; IEEE Computer Society; Association for Computing Machinery; American Society for Quality, Software Division and the Hispanic America Software Testing Qualifications Board. xx Editor and Contributors Kaspar van Dam With approximately 15 years of expe- rience in IT, Kaspar van Dam advises colleagues and clients on matters concerning testing and/or collaboration and communication within (agile) teams, projects and organizations. He has published a number of articles on test automation, agile ways of work and continuous communication. He also trains and coaches people on these subjects and has been a speaker on related items at events. Hans van Loenhoud graduated as a biologist and worked in ecological research at the University of Amsterdam. In 1980 he switched to IT as a Cobol programmer. Later, he specialized in consultancy on information and quality management. Around Y2K Hans entered the field of software testing. For many years, he was a board member of TestNet, the Dutch association of professional software testers. As a tester, he took interest in requirements engineering, because he is convinced that good require- ments are a prerequisite for professional testing. He is committed to build bridges between these disciplines, as a writer, speaker and trainer, and is a lecturer on related topics at the Amsterdam University of Applied Sciences. Hans is second chair of IREB and active there in the Foundation Level and the Advanced Level Elicitation working groups. Rini van Solingen is a speaker, author, professor, and entrepreneur. Each year he gives over 100 lectures and workshops. His expertise lies in the speed and agility of people and organizations. Rini makes complex matters simple and can explain things in understandable and humorous ways. His strongest focus is on empowering his audience. He helps people see why things are going the way they are and what they can do about it themselves. In addition, Rini is a part-time full professor at Delft University of Technology and also regularly gives lectures at Nyenrode Business University in master classes and MBAs. He is also CTO at Prowareness We-On, where, as a strategic consultant, he helps clients render their organizations fast and agile. Rini is the author of a number of management books, including The Power of Scrum (2011—with Jeff Sutherland and Eelco Rusten- burg), Scrum for Managers (2015—with Rob van Lanen) Editor and Contributors xxi and the management novel: The Beeshepperd—How to Lead Self-Managing Teams (2016). He can be reached via his website: www.rinivansolingen.com Erik van Veenendahl (www.erikvanveenendaal.nl) is a leading international consultant and trainer, and a recognized expert in the area of software testing and requirements engineering. He is the author of a number of books and papers within the profession, one of the core developers of the TMap testing methodology and the TMMi test improvement model, and currently the CEO of the TMMi Foundation. Erik is a frequent keynote and tutorial speaker at international testing and quality conferences, e.g. at SEETEST. For his major contribution to the field of testing, Erik received the European Testing Excellence Award (2007) and the ISTQB International Testing Excellence Award (2015). You can follow Erik on Twitter via @ErikvVeenendaal Keith Yorkston After a circuitous route into IT, Keith has been involved with risk and testing for over 20 years, specializing in non-functional testing. Currently working for Expleo Group as a consultant and trainer, he runs the Expleo UK Academy. He very much believes in the overall view of security surrounding technology, process and people, as many of today’s attacks involve all three areas.