Lean integration of IT security and data privacy governance aspects into product development in agile organizations

This article deals with the design of a product development-specific framework to support lean and adequate governance. This framework is based on layers of product-specific standards and regulations. The layers can be merged into a specific set to address the demands of a product to fit the state-o...

Full description

Saved in:
Bibliographic Details
Published inJ.UCS (Annual print and CD-ROM archive ed.) Vol. 27; no. 8; pp. 868 - 893
Main Authors Poth, Alexander, Kottke, Mario, Middelhauve, Kerstin, Mahr, Torsten, Riel, Andreas
Format Journal Article
LanguageEnglish
Published Pensoft Publishers 28.08.2021
Graz University of Technology, Institut für Informationssysteme und Computer Medien
Graz University of Technology
Subjects
Agile Software Developm
Computer Science
Lean Software Development
Privacy
Product development
Safety and security measures
Online AccessGet full text

Cover

More Information
Summary:This article deals with the design of a product development-specific framework to support lean and adequate governance. This framework is based on layers of product-specific standards and regulations. The layers can be merged into a specific set to address the demands of a product to fit the state-of-the-art requirements of its domain. For the product domain, specific layers are presented with examples from IT security and data privacy for the software development phase. The approach is generic and can be extended to other domains like finance services or embedded products and their life-cycle phases.
ISSN:0948-695X
0948-6968
DOI:10.3897/jucs.71770