Scribd Logo
Upload

Welcome to Scribd!

  • Us Accelerating Csa Readiness Pov

    Uploaded by

    Krishna Devalla
    3 views4 pages
    CSV is replaced by CSA

    Original Title

    us-accelerating-csa-readiness-pov

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    CSV is replaced by CSA

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    3 views4 pages

    Us Accelerating Csa Readiness Pov

    Uploaded by

    Krishna Devalla
    CSV is replaced by CSA

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 4

    Accelerating Computer Software

    Assurance (CSA) readiness


    Moving at the speed of business

    The journey toward “Assurance” around for some time; however, companies Manufacturing, Operations, and Quality
    have been challenged with identifying Systems Software, focuses on high-risk GxP
    The life sciences industry is moving at a
    software risks and the desired level of elements, simplified documentation, and
    swift pace toward digital transformation
    validation effort. This is where an enhanced automation to help achieve compliance with
    as a result of industry 4.0. This has led
    focus on critical thinking is required. regulatory requirements.
    to the need for an optimized regulatory
    and compliance approach to systems Industry and regulators are working In this point of view, we:
    development and maintenance. The current toward various initiatives, such as “Case for
    • Share current challenges, thoughts on CSA
    state of system validation is perceived as an Quality,” to align on an optimized approach
    leading practices, and how critical thinking
    impediment to faster deployments, wherein and, in that regard, the Food and Drug
    can be leveraged to drive overall efforts to
    the focus is on good documentation Administration (FDA) is moving to update its
    help achieve quality and compliance
    practices rather than building systems that guidance on the validation of Good practice
    are fit for their intended use. (GxP) systems. The new FDA guidance • Outline an approach to shift from
    being drafted, CSA for Nonproducts “Validation” to “Assurance”
    A risk-based approach to validation has been
    Accelerating Computer Software Assurance (CSA) readiness

    Shift from “Validation” • Complicated risk assessment process Critical thinking


    lacking focus on priority risk areas
    to “Assurance”
    Some changes that we envision as part of The focus of the FDA’s CSA
    Computerized system validation (CSV) today Quality 4.0 and CSA:
    has resulted in: will likely shift toward a less
    Quality by design: Developing regulated burdensome validation approach
    • Risk-agnostic validation approach for
    systems and conducting validation (in this and also may confirm a high
    GxP systems and, thus, failing to optimize
    efforts case, “assurance”) efforts to build quality
    into the system, as opposed to a more degree of confidence that the
    • Heavy focus on “audit readiness,” as “compliance checklist” effort. system is fit for its intended use.
    opposed to achieving confidence that
    leads to unnecessary documentation Risk-based approach: Tailored risk Additionally, the new approach
    management and testing approach to help
    • Retesting versus leveraging supplier achieve confidence in system operation and
    will likely also help to uncover
    documentation postaudits
    performance. This includes automation, risks (direct and indirect) around
    exploratory, unscripted, and limited scripted
    • Exhaustive manual testing and evidence- patient safety, product quality,
    gathering, making testing time-consuming testing; increased use of tools; and leverage
    without a strategy around high-risk of supplier documentation to help avoid and data integrity.
    elements duplication efforts.

    Recommended focus areas to help achieve CSA


    Recommended focus areas to help achieve CSA

    Embed automation and digitization Critical thinking to drive assurance


    Implement digitization opportunities, such as Continuous Determine assurance rigor based on system categorization,
    Integration/Continuous Delivery (CI/CD) through DevOps, automated GxP impact, and supplier documentation effectiveness
    controls, and Quality Management System (QMS) tools
    Strategize to build controls and monitoring mechanism for
    sustained validation

    Become Agile
    Embed Agile methodologies like Scrum, test-driven Leverage supplier documentation
    development (TDD), behavioral-driven development (BDD), and Conduct robust supplier audits and leverage supplier

    Risk-based approach
    DevOps to build quality into software
    Quality by design

    documentation, testing to reduce redundant efforts


    Introduce early testing techniques like configuration and
    experimentation in lower environments to identify defects early Risk-based testing
    Conduct functional risk assessment to determine GxP
    impact at business process level and technical complexity
    to meet design
    Subject-matter involvement
    Determine rigor of testing based on the risk assessment
    Include subject-matter advisers during risk assessment,
    result. Leverage unscripted and automation tests for low-
    specification, and design review
    and medium-risk functions
    Leverage experience to strategize quality plan
    Determine the acceptable evidence to confirm system’s
    intended purpose

    Upskill and reskill Streamline QMS and software development and


    Develop technology functional competency software development life cycle (SDLC) processes
    in the quality organization to collaborate with business and
    development teams in early detection of issues Reexamine SDLC and QMS to optimize procedures and
    activities based on risk-based approach

    New area to focus to help achieve CSA

    Enhanced focus on the current processes and


    activities to help achieve CSA

    2
    Accelerating Computer Software Assurance (CSA) readiness

    Future of testing How can it be used? How can it be used?

    The testing space will continue to evolve • Can be used for low-risk functionalities in • Can be used for low-to-medium-risk
    into one of the specific focus areas to move development and quality environments functionalities in quality environment
    quality at the speed of business. A few
    • Limited instructions required and • Limited evidences (should be self-
    techniques that should be considered
    evidences (should be self-explanatory) are explanatory) are required for use as
    when strategizing an assurance approach
    required to provide for use as objective objective evidence when used for testing
    are as follows:
    evidence in quality environment low-to-medium-risk functionalities in
    1. Configuration and experimentation quality environment
    3. Automated testing
    What is it?
    5. Scripted testing
    Technique used by developers to build and What is it?
    What is it?
    test continuously before deploying into Utilize automated tools to test system
    quality environment Testing with formal instructions
    How can it be used?
    How can it be used? How can it be used?
    • Use of repetitive testing, such as
    This type of testing helps boosts confidence by regression, in quality environments • Required testing of high-risk functionalities
    instilling quality right from the start; however, and intended use of system
    it cannot be used as official objective • Detailed instructions and evidences are
    required for use as objective evidence in • Detailed instructions and evidences are
    evidence.
    quality environment required to provide objective evidence
    2. Exploratory testing
    What is it? 4. Unscripted testing

    Technique used by developers and testers to What is it?


    explore system behavior. System knowledge Testing without formal instructions, but with
    is essential to engage in this type of testing. a clear objective and pass/fail criteria

    3
    Accelerating Computer Software Assurance (CSA) readiness

    As we await FDA guidance, Conclusion Authors


    organizations in the life sciences Traditional CSV practices need a competent Srikanth Narayana Mangalam
    space should start proactively assessment in areas involving manual Managing director
    processes, heterogeneous system
    thinking and charting out their road Deloitte Risk and Financial Advisory
    landscapes, and fragmented automation. Deloitte & Touche LLP
    map to make the transition from CSV Such activities are less effective and more snarayanamangal2@deloitte.com
    to CSA. cost-sensitive. The focus should be on value-
    adding tasks that reduce errors and do not Vamsee Dasaka
    Experiment with a new approach using
    slow down go-to-market time. Senior manager
    pilots as opposed to big-bang:
    A futuristic view for embracing industry Deloitte Risk and Financial Advisory
    As part of the shift toward CSA, create a 4.0 needs CSA. It is exciting to see how Deloitte & Touche LLP
    transition plan which includes identifying regulatory bodies across the globe are vdasaka@deloitte.com
    the projects and systems that have both coming together to help the life sciences
    direct and indirect impact on patient safety, industry move from “reactive” to “proactive.” Swarnali DasGupta
    product quality and data integrity and start Associate vice president
    applying CSA principles. Implement metrics Deloitte Risk and Financial Advisory
    to measure specific indicators: efficiency and Deloitte & Touche LLP
    quality (CSV versus CSA). swadasgupta@deloitte.com

    Embrace the change and get your Rajesh Magapu


    organization ready: Senior solution delivery manager
    Deloitte Risk and Financial Advisory
    It is critical that quality leadership Deloitte & Touche LLP
    understands and drives CSA from the top rmagapu@deloitte.com
    through the organization. Focus on the
    need for new skills and CSA training for the Vimal Vasudevan
    organization. Emphasize in clear messaging Solution delivery manager
    across the organization that CSA is about Deloitte Risk and Financial Advisory
    improving quality and does not mean Deloitte & Touche LLP
    undocumented testing. vimvasudevan@deloitte.com

    Embark on digitization and automation:

    Conduct gap assessment against current


    manual processes in SDLC to identify potential
    opportunities for digitization and automation.
    Automating testing efforts in lower-risk
    environments to identify early defects and
    improve quality can be a quick win.
    .

    About Deloitte
    Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee
    (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally
    separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to
    clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities
    that operate using the “Deloitte” name in the United States, and their respective affiliates. Certain services may
    not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.
    com/about to learn more about our global network of member firms.
    RITM0597814

    Copyright © 2020 Deloitte Development LLC. All rights reserved.

    You might also like