« Space Marines, attack! | Main | You broke the build! »

03/02/2009

Security in an Agile world

This interesting InfoWorld article makes a lot of useful observations about security issues in the Agile process. The way Agile practitioners feel their way through the design doesn't seem like a good way to approach some of the difficult up-front security requirements that extend across sprints. The biggest problems might be at the birth of an application, when many architectural decisions happen (or get postponed).

The article got me thinking a bit about building Agile teams to address security issues for an already-released product. New security threats require rapid responses, often requiring flexibility and creativity to handle. Work from this team will have to be folded into the core product, but then it becomes just another set of entries in the burndown list.

Posted at 02:05 PM in Agile, Security |

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.

The comments to this entry are closed.

About the Heretech

  • Tom Grant is a senior analyst at Forrester Research. You can e-mail him at [email protected], or reach him via Twitter at TomGrantForr. All opinions expressed here are my own, and not necessarily those of my employer, Forrester Research.

Categories

Archives

Heretech podcast

  • A weekly podcast about the technology industry, with a special emphasis on product management and product marketing. See the FEEDS section for the links to the podcast.

Twitter Updates

    follow me on Twitter