“An Industry Leader in providing Quality Assurance, Systems

Testing, Configuration Management, and Cyber Security Services”

STATEMENT OF CAPABILITIES
 Company Background
TrustedQA is an award winning Information Technology Firm with over 26 years experience in National Defense,
Cyber Security, Education, Web/Mobile Applications, Finance, and Healthcare IT. We help our customers develop
and deliver the highest quality and most secure products possible. We focus on what we do best: Software/Systems
Testing & Integration, Quality Assurance, Configuration/Release Management, and Information Assurance/Cyber
Security.
Our capabilities have spanned Client Server / Multi-Tier Web &Mobile Applications, Embedded Real-Time Systems,
Command and Control, Data/Telecommunication Systems, and current day business and technical software systems.
We pride ourselves on the ability to thoroughly understand our customer’s needs, and then execute tasks and
deliverables on time and within budget.

HIGHLIGHTS:
• Over 26 years of industry experience across Commercial and Federal Markets
• HQ in Reston, VA
• Women Owned Small Business
• 6 Time Socio-Economic Award Winner
Core Services
 Customers & Industries
Customer Diversity & Leveraged Capabilities

Health SatCom
Finance/Insurance CMS
Navy Other
Education

Army
e-Commerce
Federal
Data Analytics

DISA SSA
SaaS
 Application Testing
TrustedQA’s approach to Application Testing is one of our primary differentiators. We focus on those hybrid outside the box
critical thinking testers who can perform across all aspects of testing, hence the word "hybrid" where testers also have a
situational approach to testing, not just "checkers" but overall contributors to quality.

o Software Design/Development Engineering in Test

o Web & Mobile Application Testing
o Web Services Testing (SOAP & REST APIs)
o Functional/Interface Testing
o Performance/Stress/Scalability/Load Testing
o User Acceptance Testing (UAT)
o Usability/508 Compliance Testing
o Test Automation and Continuous Integration Framework
Architecture and Execution
o Test Driven Development (TDD) / Behavior Driven
Development (BDD)
o Data Driven Testing (DDT)
o Cross Browser/OS/Platform Testing
o Vulnerability/Penetration/Fuzz Testing
 Big Data Testing
In today’s data driven world the volume, velocity, and variety of data has exceeded the capabilities to function effectively on
typical database architectures. The accurate storage and reporting of data is critical to the operational success of any
organization. Our Data Quality/Testing services include:

o
Data Quality Analysis
o
Data Standardization Procedure Development, Implementation, and Maintenance
o
Full Life Cycle Data Quality Testing (Test Planning, Test Case Development, Test Execution, and Testing
Metrics for Continuous Quality Improvement )
o
Big Data & Business Intelligence Architecture support (Data Architecture Schema, Source to Target
Mapping, Data Dictionaries, ETL/Deployment/Security Procedures, etc .)
o
Business Intelligence Reporting Verification & Validation
o
Automated ETL Testing
o
Data Integration Testing
 Cyber Security
Offensive Security Security Assessments & Policy
Offensive Security Security Assessments & Policy
Security Risk Assessment o Regulatory Compliance (FedRAMP, FISMA, FIPS 199, etc.)
Our assessment includes the potential vulnerabilities identified as well o DIARMF Assessment and Authorization (A&A) /
as mitigation strategies for each providing your system administrators with
Certification & Accreditation (C&A) (NIST SP 800-37,
a roadmap to harden your network and improve your company’s security posture.
DIACAP, etc.)
o System Security Plans (SSP)
Active Penetration Engagement o Incident Response Plan (IR)
A detailed, in depth evaluation whose goal is to simulate an attack by a
o Rules of Behavior (ROB)
malicious entity on your network. Our experts use the latest techniques and
technologies, focusing on the chinks in your company’s digital armor, o IT System Contingency Plan (ITCP)
tangibly demonstrating ways that attackers could exploit weaknesses already o Security Test and Evaluation Plan (ST&E)
present in your network. o Security Control Assessment Report (SAR)
o Plan of Action and Milestones (POA&M)
Continuous Assessment o Risk Assessment (RA)
TrustedQA will perform regular (monthly, quarterly, or annual) assessments and o Information Assurance
analysis of your network as well as monitor systems for configuration changes o Security Policy and Operational Procedure
within the defined benchmarks. The results from these tests will be analyzed to o Security Interoperability
determine any new weaknesses and reports will be provided with all findings and
mitigation strategies at the intervals defined in the statement of work.
 Quality Process Improvement
o
Creation of Processes and Procedures
o
Development to Test “handoff” process
o
Defect Tracking process
o
CM process & CM tool implementation
o
Change Control process
o
Full lifecycle QA process improvement

o
Full lifecycle software QA processes and
procedures Implementation
o
RUP, Agile/Scrum, TDD, Continuous Integration
o
ISO 9000
o
SEI CMMi
o
Six-Sigma
o
IEEE
 Systems Integration
TrustedQA has a wealth of experience supporting the engineering efforts that are essential for the fielding, maintenance, integration,
testing and software development activities of large interoperable systems. These activities apply to sustainment, synchronization and
modernization of functional capabilities related to Infrastructure, Situational Awareness and Force Protection, and Integrated Imagery
and Intelligence.

o
Installation and Fielding Support
o
Development/Operational/Interoperability Test Support
o
Integration Testing & Event Support
o
Modernization
o
Coalition Baseline & Interoperability
o
Configuration Management & QA Process
o
Test Automation (to enhance rapid deployment capabilities)
o
Vulnerability/Penetration Testing
 IV&V
Independent Verification & Validation
Quality
Assurance
Manage
ment Surveillanc
e To help determine whether the software and system will satisfy its intended use and user needs
"Are you building the right system?" and whether development products conform to the
requirements "Are you building the system right?“.
Requirement
s IV&V Our IV&V methodology is consistent with the latest systems engineering and process improvement
models, and is derived from concepts and standards such as the IEEE Std 1012 - 2004 Standard for
Software Verification and Validation, and the process maturity framework developed by the
Carnegie Mellon Software Engineering Institute's Software Capability Maturity Model Integration
Unit (SEI CMMI).  IV&V services are performed in parallel with the software development effort.  
Test
The Benefits of our IV&V services include:
o Early detection and correction of software anomalies.
Software o Enhanced management insight into process and product risk.
Integration
Test o Life cycle process support - to ensure conformance to program performance, schedule,
and budget.
o Early assessment of software and system performance.
o Objective analysis of software and system conformance to enable support for a given
Customer
Test
formal certification process.
o Improved software development and maintenance processes.
o Process improvement support.

Structural
Tests
 Development Operations
The heavy shift towards rapid development iterative processes in today’s SDLC environment has caused the lines to
blur between the functional areas within the SDLC. In these evolving environments a “tester” can no longer just be a
tester, and a “developer” can no longer be just a developer.

While TrustedQA remains focused in its core service areas, we have adapted to support our customers across various
aspects of the SDLC to include:
o Development Operations (DevOps)
o Systems Administration (Windows, Unix, Linux, etc.)
o Application Development & Architecture (Applets, Widgets, Application Modules, etc.)
o Database Development & Administration
o Mainframe Support
o User Interface (UI) / User Design & Experience (UX)
o Project Management
o Etc.
 Functional Automated System Test
using
Continuous Automated Regression
What is FAST CAR?
An automation framework designed to give the end-user maximum flexibility, regardless of Who has taken Advantage of
programming experience, to develop an automated regression test suite that look and feel like manual FAST CAR?
tests. The FAST CAR Framework can be entirely hosted and managed (including the use of TQA’s
HP UFT/ALM licenses) via TQA’s test lab environment. If your organization is currently utilizing HP US Army
tool licenses, the FAST CAR Framework can be integrated into your environment.
 Human Intelligence (HUMINT)
When hosted in the TQA lab, the FAST CAR Framework includes the HP UFT/ALM tools, test  Planning, Analysis, and Evaluation
environment/infrastructure and our Lead Automation Engineer all at very cost competitive time & Directorate (PAED), Army Budget
materials (T&M) hourly rate. No commitment on your end needed for HP licensing and infrastructure
Office (ABO)
cost!!
o
Capable of automating at least 50% of web based applications right out of the box
American Institutes for Research
o
Object oriented approach to development requires very little maintenance between releases
o
Drag and drop capability for creating automated tests on-the-fly Nonprofit, nonpartisan behavioral and
o
Supports building automated tests very early in the development life cycle social science research organization.
o
Automated tests can be grouped and re-used for other automated tests
o
Cross Browser/OS/Platform support using Vmware infrastructure BioFortis
o
Achieves quick turn-around in results by executing tests in parallel on several machines Biological sample and data management
o
Powered by HP Unified Functional Testing (formerly QuickTest Pro) integrated with HP software
Application Lifecycle Management (formerly Quality Center)
 Awards

6 time Northrop Grumman Supplier Excellence Award recipient

• 2014 World Class Team Award
• 2013 Information Systems Supplier Excellence Award
• 2010 Information Systems Supplier Excellence Award
• 2008 World Class Team Award
• 2008 Mission Systems Socio-Economic Supplier Excellence Award
• 2005 Socio-Economic Business Supplier Award
 TrustedQA Inc.
1800 Michael Faraday Dr., Suite 100
Reston, VA 20190

Ph: (703) 481-TEST (8378)

Fax: (703) 481-8379
sales@TrustedQA.com
www.TrustedQA.com