CSA ISO/IEC TR 33015:20
Information technology — Process assessment — Guidance for process risk determination (Adopted ISO/IEC TR 33015:2019, first edition, 2019-08)
Standards development within the Information Technology sector is harmonized with international standards development. Through the CSA Technical Committee on Information Technology (TCIT), Canadians serve as the SCC Mirror Committee (SMC) on ISO/IEC Joint Technical Committee 1 on Information Technology (ISO/IEC JTC1) for the Standards Council of Canada (SCC), the ISO member body for Canada and sponsor of the Canadian National Committee of the IEC. Also, as a member of the International Telecommunication Union (ITU), Canada participates in the International Telegraph and Telephone Consultative Committee (ITU-T).
For brevity, this Standard will be referred to as CSA ISO/IEC TR 33015 throughout.
This Standard replaces CAN/CSA-ISO/IEC 15504-4:05, Information Technology — Process Assessment — Part 4: Guidance on Use for Process Improvement and Process Capability Determination. At the time of publication, ISO/IEC TR 33015:2019 is available from ISO and IEC in English only. CSA Group will publish the French version when it becomes available from ISO and IEC.
This Standard has been formally approved, without modification, by the Technical Committee and has been developed in compliance with Standards Council of Canada requirements for National Standards of Canada. It has been published as a National Standard of Canada by CSA Group.
This document provides guidance on the application of the results of a process assessment for process risk determination.
The guidance provided does not presume specific organizational structures, management philosophies, life cycle models or development methods. In relation to process risk determination, this guidance is applicable within any customer–supplier relationship, and to any organization wishing to perform a process risk determination of its processes.