This survey is designed to gather feedback from project members and security reviewers to determine the effectiveness, quality, and overall success of the TSSA Process. It may be used by projects during the self-assessment or joint assessment and should be completed at the end.
-
Did the project team find the TSSA Process valuable to the security stature of the project?
-
Did the reviewers find the TSSA Process valuable for establishing and evaluating the current security health of the project?
-
What was the most valuable artifact or portion of the process?
-
Is the quality of the TSSA package / artifacts on par with previous TSSA packages (formerly assessments)?
-
For self-assessments, was the self-assessment content helpful for assisting in the security documentation of the project?
-
Were there parts of the TSSA Process that could be improved, such as timeliness, communication, etc.?
-
Are portions of the artifacts produced from this assessment duplicate, or better left as references elsewhere?
-
For joint assessments, if a self-assessment was performed prior to the joint assessment, was the self-assessment beneficial for the creation of the joint assessment?
-
Would you recommend other projects receive a TSSA?
-
What areas of the TSSA Process (templates, instructions, etc.) can be improved to make the experience and resulting artifacts more useful or desirable?
-
What additional feedback do you have?