The PDAC cycle was taken up and promoted very effectively from the 1950s on by the famous Quality Management authority, W. Edwards Deming, and has consequently become known as `the Deming Wheel'.
- Plan to improve service management by determining what is going wrong (that is identify the problems), and then suggest resolutions.
- Do changes designed to solve the problems on a small and incremental scale first. This minimises disruption to Live! while testing whether the changes are workable.
- Check whether the small and incremental changes are achieving the desired result. Also, continuously monitor nominated key activities to ensure that you know what the quality of the output is at all times to identify any new problems when they crop up.
- Act to implement changes on a larger scale if the small changes are successful. This means scheduling the changes a part of the standard maintenance and administrative tasks. Also Act to involve resources (people, partners, products and process) affected by the changes and obtain buy-in to implement them successfully. Be sure to share the knowledge learned.
A variation on this theme is the "7 Essential Steps to Achieve, Measure and Prove Optimal Security Risk Reduction" from Qualys.
- Discover Baseline Network Assets
- Asset Classification
- Swift, Accurate Vulnerability Identification
- Transform Raw Security Data into Intelligence through Comprehensive Reporting
- Dynamic Dashboards and The Ability to Measure and Trend Security Posture over Time
- Remediation Process Integration
- Demonstrating Regulatory Compliance through Comprehensive Reporting