SlideShare a Scribd company logo

Agile requirements and compliance finding a balance

Cherifa Mansoura
Cherifa Mansoura

When adopting an agile approach, different projects vary considerably in terms of the importance of the requirements elements and their complexities. The more complex the organisation is, the most difficult it is to adopt agile practices without tailoring them to meet the situation they are in. For regulated organisation, compliance isn’t optional, it also isn’t cheap. And with new regulations, mandates and standards being released practically monthly, many organizations are struggling to find a balance between their IT governance and the adoption of agile practices in their Software delivery. Fortunately, there are ways to stretch the agile principles/practices to count for the context you are in. On another hand, the governance needs to adapt to the new ways of developing software.without sacrificing other priorities. This presentation, inspired by Scott Ambler's book, scratches the surface, and explores some best practices that will help reduce the regulations/compliance burden during an agile delivery.

Business
1 of 23
Download to read offline
AGILE REQUIREMENTS AND COMPLIANCE: ACHIEVING A BALANCE BETWEEN GOVERNANCE AND AGILITY Cherifa Mansoura, Agile Coach/Business Architect TEKsystems, Montreal cherifamans@gmail.com ca.linkedin.com/in/linkedincherifamansoura
2 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
3 Profile : Large Government organization developing in-house solutions bound with §  With a heavy IT governance and regulated with compliance rules such as ISO, HIPPA, FDA, or SOX.. §  Obviously, compliance /regulations is one of the scaling factor (complexity) that needs to be catered for, when delivering Software §  Focus is IT delivery governance §  As an agile project team, you must comply / meet -- and document evidence of regulatory requirements: How do you go about adopting agile in a regulated organization? Compliance / Policies, rules, guidance Processes/Standards Control Governance Bodies
Development organizations, large and small, are striving for more agility in their software delivery. Business analyst Developer We are agile! Project Manager Product Manager We can be agile! Customers We need you to be agile! Audit /Compliance Officer Agile? Not sure I understand CxO We HAVE to be agile! 4
5 Compliance is generally perceived in the software community as a way to evaluate software process from a formal and document-based perspective. AND Many argue that Compliance/Governance and AGILE are just not compatible Motivation for this presentation: Is to dispel this argument
6 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
7 Enterprise Governance IT Governance Delivery Operations Data Security Technology *If you do not understand what you are governing you cannot possibly govern it effectively *Scott Ambler: Disciplined Agile Delivery (DAD) IT Delivery Rules
IT governance Regulations Process, Standards Artifacts, Reports, Audit Governing Bodies PMO, QA , EA, Audit, etc... IT Delivery Policies, Rules/ requirements Teams SDLC Technical initiatives, projects Enforcing Enforcing 8 Oversee Enforcing
9 1.  Management driven 2.  Plan and artifacts driven 3.  Contract driven 4.  Report driven 5.  Audit driven Governance Risks q  Deadline not met q  Higher cost q  Poorer quality ?
10 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
§  Team environment : Self organizing team §  Iterative development approaches §  Recognize the needs of ALL stakeholders (including the auditors) §  Avoid BUFR early and premature details at top levels 11 §  Keep the Documentation to a minimal §  “The highest priority is to satisfy the customer through early and continuous delivery of valuable software.” §  Commitments as late as possible to avoids rework §  Meet commitments §  Work in close proximity to the customers and development team §  Keep continuous attention to technical excellence.
12 §  Continual customer involvement ! Product owner represents the stakeholders §  Shared vision ! Understand business needs ! Focus on all stakeholders goals §  Requirements elicitations ! Conversations, agile modeling, workshops ! Obtain “just about enough” details §  Requirements analysis ! Performed “just in time” §  Requirements documentation ! User stories, storyboards, acceptance tests, agile models, acceptance tests §  Iterative requirements planning & management ! adjusted with planning levels
13 •  High levels of management oversight and hierarchical governance •  Top-Down Improvement Approach •  Aim for business value •  Dictate what “the right thing is” •  Some compliance frameworks expect measurements •  Business people on site, collaborate with agile team •  Building trust between developers and the business •  Transparency •  Deliver “business” value •  Bottom-up Improvement approach •  Motivated team Can we find common foundational principles?
14 Established processes Policies Established standards… “Individuals and interactions over processes and tools” “Working software over comprehensive documentation” Evidence in documentation “Customer collaboration over contract negotiation” Business Rules/ Constraints & regulatory requirements Agile Regulations Needs
Governors’ Perception of Agile Agilists’ Perception of Governance Uncertainty and lack of predictability leads to costly delivery & technical debt BRUF over YAGNI * A lack of modelling leads to significant rework Comprehensive models slow your development efforts A lack of documentation and traceability lead to significant rework Comprehensive documentation does not always add value Agile is just about construction Following traditional/sequential approaches and heavy ceremony is a waste Agile doesn’t address Enterprise Issues Silos and barriers between team are impediments to successful development 15 *YAGNI=You are not going to need it
16 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
17 Compliance requirement Low risk Critical, audited Interaction over process and tools ü Light process is still a process ü A process that derives value ü Automation/tools that add value Working software over Comprehensive documentation ü Tradeoffs are the “customer” responsibility ü Choose only documentation that adds value ü Adopt an easy way to keep track of some requirements artifacts using tools ü High quality softwares are as important for compliance officers Customer collaboration over contract negotiation ü Continuous stakeholders involvement, including compliance officer ensures that all intended user needs + constraints are successfully implemented ü Common ground: Signed off Product Backlog, lightweight reviews, usage of automation Responding to change over following a plan ü Agile puts great emphasis on planning, with better process management and improvement ü Common ground: architecture road map, feature road map and long term Iteration road map
18 Have a hybrid top-down and bottom approach with an agile governance. Build trust, actively engage business stk. Identify Complexity factors and implement process and tools for scaling Agile A Vision that will count auditors as key stakeholders Milestone-driven and scalable approach to prevent inconsistent execution Map regulated activities into your SDLC Select Practices that address Business people (compliance and governance body) Get the compliance officers involved at the earliest opprtunities Project visibility , transparency, built-in traceability between artifacts and effective collaboration are facilitated with automation. Team members need to be equipped with the right training, right tooling , be enterprise aware, and collaborate with the Business, including HR, audit, Finance… Team to be well aware of the regulations to prevent misinterpretation Strategy Culture Teams Tooling People
19 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
20 Regulatory Drivers Compliance / Governance Enterprise complexity Strategic §  Small team §  New projects §  Simple application §  Co-located §  Minimal need for documentation §  Maturing projects §  Growing in complexity §  Greater need for coordination, discipline §  Agile blending slowly into the enterprise governance §  Mature or existing projects §  Many developers §  Complex applications §  Need for scalability, and traceability §  Greater need for documentation and handoffs Tactical Disciplined Agile Approach with Appropriate governance Core Agile Agility @ Scale Complexity Maturity
§  Understand the Context: It sure counts!!! §  Adapt and do not anticipate §  Understand the regulations §  Understand the real issues at hand and be aware of the regulations §  Understand the values of the other one: governance versus agile §  Governance and agile are complementary 21
§  Disciplined Agile Delivery: A practitioner’s guide to Agile Software Delivery in the Enterprise; Scott W.Ambler-Mark Lines §  Rational Innovate 2012 conf: Achieving better requirements on agile projects: User Stories and beyond ; Cherifa Mansoura §  Adapting Agile requirements practices for devops: White paper; Cherifa Mansoura http://www.ibm.com/developerworks/rational/library/adapting-agile-requirements-devops- rescue/index.html 22
Agile requirements and compliance finding a balance

Recommended

Case Study on agile scrum methodology on shopping cart
Case Study on agile scrum methodology on shopping cartCase Study on agile scrum methodology on shopping cart
Case Study on agile scrum methodology on shopping cart
Abdullah Raza
 
PagerDuty: Best Practices for On Call Teams
PagerDuty: Best Practices for On Call TeamsPagerDuty: Best Practices for On Call Teams
PagerDuty: Best Practices for On Call Teams
Mandi Walls
 
Service Integration and Management / MultiSourcing Services Integrationn
Service Integration and Management / MultiSourcing Services IntegrationnService Integration and Management / MultiSourcing Services Integrationn
Service Integration and Management / MultiSourcing Services Integrationn
BoonNam Goh
 
Agile Estimation & Capacity Planning
Agile Estimation & Capacity PlanningAgile Estimation & Capacity Planning
Agile Estimation & Capacity Planning
Mazhar Khan
 
Agile Scrum Methodology
Agile Scrum MethodologyAgile Scrum Methodology
Agile Scrum Methodology
Dr. Syed Hassan Amin
 
ITSM & JIRA Service Desk
ITSM & JIRA Service DeskITSM & JIRA Service Desk
ITSM & JIRA Service Desk
Ambientia
 
An Introduction to Agile
An Introduction to AgileAn Introduction to Agile
An Introduction to Agile
DavidMcLachlan1
 
PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...
PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...
PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...
Francis Yan
 

Recommended

Case Study on agile scrum methodology on shopping cart
Case Study on agile scrum methodology on shopping cartCase Study on agile scrum methodology on shopping cart
Case Study on agile scrum methodology on shopping cart
Abdullah Raza
 
PagerDuty: Best Practices for On Call Teams
PagerDuty: Best Practices for On Call TeamsPagerDuty: Best Practices for On Call Teams
PagerDuty: Best Practices for On Call Teams
Mandi Walls
 
Service Integration and Management / MultiSourcing Services Integrationn
Service Integration and Management / MultiSourcing Services IntegrationnService Integration and Management / MultiSourcing Services Integrationn
Service Integration and Management / MultiSourcing Services Integrationn
BoonNam Goh
 
Agile Estimation & Capacity Planning
Agile Estimation & Capacity PlanningAgile Estimation & Capacity Planning
Agile Estimation & Capacity Planning
Mazhar Khan
 
Agile Scrum Methodology
Agile Scrum MethodologyAgile Scrum Methodology
Agile Scrum Methodology
Dr. Syed Hassan Amin
 
ITSM & JIRA Service Desk
ITSM & JIRA Service DeskITSM & JIRA Service Desk
ITSM & JIRA Service Desk
Ambientia
 
An Introduction to Agile
An Introduction to AgileAn Introduction to Agile
An Introduction to Agile
DavidMcLachlan1
 
PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...
PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...
PantaRei Design Limited - JIRA Software Introduction - Project - Workflow - D...
Francis Yan
 
Advanced Scrum master workshop
Advanced Scrum master workshopAdvanced Scrum master workshop
Advanced Scrum master workshop
Elad Sofer
 
Agile Project and Portfolio Management Using Jira - AgileSolutions
Agile Project and Portfolio Management Using Jira - AgileSolutionsAgile Project and Portfolio Management Using Jira - AgileSolutions
Agile Project and Portfolio Management Using Jira - AgileSolutions
Keith Klundt
 
Introducing scrum
Introducing scrumIntroducing scrum
Introducing scrum
Andreas Hägglund
 
apidays LIVE New York 2021 - Solving API security through holistic obervabili...
apidays LIVE New York 2021 - Solving API security through holistic obervabili...apidays LIVE New York 2021 - Solving API security through holistic obervabili...
apidays LIVE New York 2021 - Solving API security through holistic obervabili...
apidays
 
Pi Planning with Easy Agile Programs for Jira
Pi Planning with Easy Agile Programs for JiraPi Planning with Easy Agile Programs for Jira
Pi Planning with Easy Agile Programs for Jira
Sean Blake
 
Agile presentation
Agile presentationAgile presentation
Agile presentation
Rahul Chauhan
 
A Gentle Introduction To Agile
A Gentle Introduction To AgileA Gentle Introduction To Agile
A Gentle Introduction To Agile
Michael Sahota
 
The 10 Steps to Becoming a Great Agile Coach
The 10 Steps to Becoming a Great Agile CoachThe 10 Steps to Becoming a Great Agile Coach
The 10 Steps to Becoming a Great Agile Coach
LeadingAgile
 
Estimating and planning Agile projects
Estimating and planning Agile projectsEstimating and planning Agile projects
Estimating and planning Agile projects
Murray Robinson
 
Value Stream Management: Is Your Organization Ready?
Value Stream Management: Is Your Organization Ready?Value Stream Management: Is Your Organization Ready?
Value Stream Management: Is Your Organization Ready?
DevOps.com
 
[HCM Scrum Breakfast] Agile estimation - Story points
[HCM Scrum Breakfast] Agile estimation - Story points[HCM Scrum Breakfast] Agile estimation - Story points
[HCM Scrum Breakfast] Agile estimation - Story points
Scrum Breakfast Vietnam
 
The Developer Experience
The Developer ExperienceThe Developer Experience
The Developer Experience
Pamela Fox
 
Product Backlog - Refinement and Prioritization Techniques
Product Backlog - Refinement and Prioritization TechniquesProduct Backlog - Refinement and Prioritization Techniques
Product Backlog - Refinement and Prioritization Techniques
Vikash Karuna
 
Agile Scrum software methodology
Agile Scrum software methodologyAgile Scrum software methodology
Agile Scrum software methodology
Abdullah Raza
 
Epic Estimation 2019
Epic Estimation 2019Epic Estimation 2019
Epic Estimation 2019
David Hanson
 
Accenture Sales Transformation - Agile Selling by Yasuf Tayob
Accenture Sales Transformation - Agile Selling by Yasuf TayobAccenture Sales Transformation - Agile Selling by Yasuf Tayob
Accenture Sales Transformation - Agile Selling by Yasuf Tayob
InsideSales.com
 
From Visibility to Value
From Visibility to ValueFrom Visibility to Value
From Visibility to Value
accenture
 
Agile Project Management: Introduction to AGILE - The Basic 101
Agile Project Management: Introduction to AGILE - The Basic 101Agile Project Management: Introduction to AGILE - The Basic 101
Agile Project Management: Introduction to AGILE - The Basic 101
Nurul Haszeli Ahmad
 
Agile Performance Metrics
Agile Performance MetricsAgile Performance Metrics
Agile Performance Metrics
ACM
 
Discover Jira Align - Realignment to the Enterprise
Discover Jira Align - Realignment to the EnterpriseDiscover Jira Align - Realignment to the Enterprise
Discover Jira Align - Realignment to the Enterprise
Cprime
 
Globalising HR shared Services
Globalising HR shared ServicesGlobalising HR shared Services
Globalising HR shared Services
Patrick Acheampong
 
How a Large Business Sprints Like an Agile Startup
How a Large Business Sprints Like an Agile Startup How a Large Business Sprints Like an Agile Startup
How a Large Business Sprints Like an Agile Startup
Amazon Web Services
 

More Related Content

What's hot

The Developer Experience
The Developer ExperienceThe Developer Experience
The Developer Experience
Pamela Fox
 
Discover Jira Align - Realignment to the Enterprise
Discover Jira Align - Realignment to the EnterpriseDiscover Jira Align - Realignment to the Enterprise
Discover Jira Align - Realignment to the Enterprise
Cprime
 

What's hot (20)

Advanced Scrum master workshop
Advanced Scrum master workshopAdvanced Scrum master workshop
Advanced Scrum master workshop
 
Agile Project and Portfolio Management Using Jira - AgileSolutions
Agile Project and Portfolio Management Using Jira - AgileSolutionsAgile Project and Portfolio Management Using Jira - AgileSolutions
Agile Project and Portfolio Management Using Jira - AgileSolutions
 
Introducing scrum
Introducing scrumIntroducing scrum
Introducing scrum
 
apidays LIVE New York 2021 - Solving API security through holistic obervabili...
apidays LIVE New York 2021 - Solving API security through holistic obervabili...apidays LIVE New York 2021 - Solving API security through holistic obervabili...
apidays LIVE New York 2021 - Solving API security through holistic obervabili...
 
Pi Planning with Easy Agile Programs for Jira
Pi Planning with Easy Agile Programs for JiraPi Planning with Easy Agile Programs for Jira
Pi Planning with Easy Agile Programs for Jira
 
Agile presentation
Agile presentationAgile presentation
Agile presentation
 
A Gentle Introduction To Agile
A Gentle Introduction To AgileA Gentle Introduction To Agile
A Gentle Introduction To Agile
 
The 10 Steps to Becoming a Great Agile Coach
The 10 Steps to Becoming a Great Agile CoachThe 10 Steps to Becoming a Great Agile Coach
The 10 Steps to Becoming a Great Agile Coach
 
Estimating and planning Agile projects
Estimating and planning Agile projectsEstimating and planning Agile projects
Estimating and planning Agile projects
 
Value Stream Management: Is Your Organization Ready?
Value Stream Management: Is Your Organization Ready?Value Stream Management: Is Your Organization Ready?
Value Stream Management: Is Your Organization Ready?
 
[HCM Scrum Breakfast] Agile estimation - Story points
[HCM Scrum Breakfast] Agile estimation - Story points[HCM Scrum Breakfast] Agile estimation - Story points
[HCM Scrum Breakfast] Agile estimation - Story points
 
The Developer Experience
The Developer ExperienceThe Developer Experience
The Developer Experience
 
Product Backlog - Refinement and Prioritization Techniques
Product Backlog - Refinement and Prioritization TechniquesProduct Backlog - Refinement and Prioritization Techniques
Product Backlog - Refinement and Prioritization Techniques
 
Agile Scrum software methodology
Agile Scrum software methodologyAgile Scrum software methodology
Agile Scrum software methodology
 
Epic Estimation 2019
Epic Estimation 2019Epic Estimation 2019
Epic Estimation 2019
 
Accenture Sales Transformation - Agile Selling by Yasuf Tayob
Accenture Sales Transformation - Agile Selling by Yasuf TayobAccenture Sales Transformation - Agile Selling by Yasuf Tayob
Accenture Sales Transformation - Agile Selling by Yasuf Tayob
 
From Visibility to Value
From Visibility to ValueFrom Visibility to Value
From Visibility to Value
 
Agile Project Management: Introduction to AGILE - The Basic 101
Agile Project Management: Introduction to AGILE - The Basic 101Agile Project Management: Introduction to AGILE - The Basic 101
Agile Project Management: Introduction to AGILE - The Basic 101
 
Agile Performance Metrics
Agile Performance MetricsAgile Performance Metrics
Agile Performance Metrics
 
Discover Jira Align - Realignment to the Enterprise
Discover Jira Align - Realignment to the EnterpriseDiscover Jira Align - Realignment to the Enterprise
Discover Jira Align - Realignment to the Enterprise
 

Similar to Agile requirements and compliance finding a balance

In Agile Transformation, C comes before A by Syed Riyazuddin
In Agile Transformation, C comes before A by Syed RiyazuddinIn Agile Transformation, C comes before A by Syed Riyazuddin
In Agile Transformation, C comes before A by Syed Riyazuddin
Agile ME
 
Empowering The Agile Supply Chain Through Alignment, Engagement & Innovation
Empowering The Agile Supply Chain Through Alignment, Engagement & InnovationEmpowering The Agile Supply Chain Through Alignment, Engagement & Innovation
Empowering The Agile Supply Chain Through Alignment, Engagement & Innovation
SCL HUB
 
If you don't know where you're going it doesn't matter how fast you get there
If you don't know where you're going it doesn't matter how fast you get thereIf you don't know where you're going it doesn't matter how fast you get there
If you don't know where you're going it doesn't matter how fast you get there
Nicole Forsgren
 
Fusion 09 PPT -Kirch Final
Fusion 09 PPT -Kirch FinalFusion 09 PPT -Kirch Final
Fusion 09 PPT -Kirch Final
Cathy Kirch
 
Good agile / Bad agile: Proving the value of Agile to a skeptical organization
Good agile / Bad agile: Proving the value of Agile to a skeptical organizationGood agile / Bad agile: Proving the value of Agile to a skeptical organization
Good agile / Bad agile: Proving the value of Agile to a skeptical organization
Alan Albert
 
O&S Solutions linkedin
O&S Solutions linkedinO&S Solutions linkedin
O&S Solutions linkedin
cschott7
 

Similar to Agile requirements and compliance finding a balance (20)

Globalising HR shared Services
Globalising HR shared ServicesGlobalising HR shared Services
Globalising HR shared Services
 
How a Large Business Sprints Like an Agile Startup
How a Large Business Sprints Like an Agile Startup How a Large Business Sprints Like an Agile Startup
How a Large Business Sprints Like an Agile Startup
 
In Agile Transformation, C comes before A by Syed Riyazuddin
In Agile Transformation, C comes before A by Syed RiyazuddinIn Agile Transformation, C comes before A by Syed Riyazuddin
In Agile Transformation, C comes before A by Syed Riyazuddin
 
Continuous Improvement Program Workshop
Continuous Improvement Program WorkshopContinuous Improvement Program Workshop
Continuous Improvement Program Workshop
 
2014.07 Exec User Group - Atlassian - Sydney
2014.07 Exec User Group - Atlassian - Sydney2014.07 Exec User Group - Atlassian - Sydney
2014.07 Exec User Group - Atlassian - Sydney
 
Agile & ADDIE -Tango or Face Off 2
Agile & ADDIE -Tango or Face Off 2Agile & ADDIE -Tango or Face Off 2
Agile & ADDIE -Tango or Face Off 2
 
Agile Adoption in IT Services - Evolution over Revolution
Agile Adoption in IT Services - Evolution over RevolutionAgile Adoption in IT Services - Evolution over Revolution
Agile Adoption in IT Services - Evolution over Revolution
 
Agile 101
Agile 101Agile 101
Agile 101
 
The Contemporary Project Manager in the Digital Age
The Contemporary Project Manager in the Digital AgeThe Contemporary Project Manager in the Digital Age
The Contemporary Project Manager in the Digital Age
 
Speeding Up Innovation
Speeding Up InnovationSpeeding Up Innovation
Speeding Up Innovation
 
What is agile?
What is agile?What is agile?
What is agile?
 
An Agile Approach to Accelerate Mass Migration
An Agile Approach to Accelerate Mass MigrationAn Agile Approach to Accelerate Mass Migration
An Agile Approach to Accelerate Mass Migration
 
Agile Network India | Make your Agile Transformation Successful | Varghese Da...
Agile Network India | Make your Agile Transformation Successful | Varghese Da...Agile Network India | Make your Agile Transformation Successful | Varghese Da...
Agile Network India | Make your Agile Transformation Successful | Varghese Da...
 
Empowering the Agile Supply Chain
Empowering the Agile Supply ChainEmpowering the Agile Supply Chain
Empowering the Agile Supply Chain
 
Empowering The Agile Supply Chain Through Alignment, Engagement & Innovation
Empowering The Agile Supply Chain Through Alignment, Engagement & InnovationEmpowering The Agile Supply Chain Through Alignment, Engagement & Innovation
Empowering The Agile Supply Chain Through Alignment, Engagement & Innovation
 
The Agile Journey
The Agile JourneyThe Agile Journey
The Agile Journey
 
If you don't know where you're going it doesn't matter how fast you get there
If you don't know where you're going it doesn't matter how fast you get thereIf you don't know where you're going it doesn't matter how fast you get there
If you don't know where you're going it doesn't matter how fast you get there
 
Fusion 09 PPT -Kirch Final
Fusion 09 PPT -Kirch FinalFusion 09 PPT -Kirch Final
Fusion 09 PPT -Kirch Final
 
Good agile / Bad agile: Proving the value of Agile to a skeptical organization
Good agile / Bad agile: Proving the value of Agile to a skeptical organizationGood agile / Bad agile: Proving the value of Agile to a skeptical organization
Good agile / Bad agile: Proving the value of Agile to a skeptical organization
 
O&S Solutions linkedin
O&S Solutions linkedinO&S Solutions linkedin
O&S Solutions linkedin
 

Recently uploaded

unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
ritikaroy0888
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
lizamodels9
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
amitlee9823
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Sheetaleventcompany
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
dlhescort
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
lizamodels9
 
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceEluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Damini Dixit
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
dlhescort
 
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Sheetaleventcompany
 

Recently uploaded (20)

Falcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to ProsperityFalcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to Prosperity
 
Famous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st CenturyFamous Olympic Siblings from the 21st Century
Famous Olympic Siblings from the 21st Century
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
Monthly Social Media Update April 2024 pptx.pptx
Monthly Social Media Update April 2024 pptx.pptxMonthly Social Media Update April 2024 pptx.pptx
Monthly Social Media Update April 2024 pptx.pptx
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Call Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine ServiceCall Girls In Panjim North Goa 9971646499 Genuine Service
Call Girls In Panjim North Goa 9971646499 Genuine Service
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
 
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptxB.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
B.COM Unit – 4 ( CORPORATE SOCIAL RESPONSIBILITY ( CSR ).pptx
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
 
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
Call Girls in Delhi, Escort Service Available 24x7 in Delhi 959961-/-3876
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
 
Falcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in indiaFalcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in india
 
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort ServiceEluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
Eluru Call Girls Service ☎ ️93326-06886 ❤️‍🔥 Enjoy 24/7 Escort Service
 
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRLMONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
MONA 98765-12871 CALL GIRLS IN LUDHIANA LUDHIANA CALL GIRL
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
 
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
 
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 

Agile requirements and compliance finding a balance

  • 1. AGILE REQUIREMENTS AND COMPLIANCE: ACHIEVING A BALANCE BETWEEN GOVERNANCE AND AGILITY Cherifa Mansoura, Agile Coach/Business Architect TEKsystems, Montreal cherifamans@gmail.com ca.linkedin.com/in/linkedincherifamansoura
  • 2. 2 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
  • 3. 3 Profile : Large Government organization developing in-house solutions bound with §  With a heavy IT governance and regulated with compliance rules such as ISO, HIPPA, FDA, or SOX.. §  Obviously, compliance /regulations is one of the scaling factor (complexity) that needs to be catered for, when delivering Software §  Focus is IT delivery governance §  As an agile project team, you must comply / meet -- and document evidence of regulatory requirements: How do you go about adopting agile in a regulated organization? Compliance / Policies, rules, guidance Processes/Standards Control Governance Bodies
  • 4. Development organizations, large and small, are striving for more agility in their software delivery. Business analyst Developer We are agile! Project Manager Product Manager We can be agile! Customers We need you to be agile! Audit /Compliance Officer Agile? Not sure I understand CxO We HAVE to be agile! 4
  • 5. 5 Compliance is generally perceived in the software community as a way to evaluate software process from a formal and document-based perspective. AND Many argue that Compliance/Governance and AGILE are just not compatible Motivation for this presentation: Is to dispel this argument
  • 6. 6 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
  • 7. 7 Enterprise Governance IT Governance Delivery Operations Data Security Technology *If you do not understand what you are governing you cannot possibly govern it effectively *Scott Ambler: Disciplined Agile Delivery (DAD) IT Delivery Rules
  • 8. IT governance Regulations Process, Standards Artifacts, Reports, Audit Governing Bodies PMO, QA , EA, Audit, etc... IT Delivery Policies, Rules/ requirements Teams SDLC Technical initiatives, projects Enforcing Enforcing 8 Oversee Enforcing
  • 9. 9 1.  Management driven 2.  Plan and artifacts driven 3.  Contract driven 4.  Report driven 5.  Audit driven Governance Risks q  Deadline not met q  Higher cost q  Poorer quality ?
  • 10. 10 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
  • 11. §  Team environment : Self organizing team §  Iterative development approaches §  Recognize the needs of ALL stakeholders (including the auditors) §  Avoid BUFR early and premature details at top levels 11 §  Keep the Documentation to a minimal §  “The highest priority is to satisfy the customer through early and continuous delivery of valuable software.” §  Commitments as late as possible to avoids rework §  Meet commitments §  Work in close proximity to the customers and development team §  Keep continuous attention to technical excellence.
  • 12. 12 §  Continual customer involvement ! Product owner represents the stakeholders §  Shared vision ! Understand business needs ! Focus on all stakeholders goals §  Requirements elicitations ! Conversations, agile modeling, workshops ! Obtain “just about enough” details §  Requirements analysis ! Performed “just in time” §  Requirements documentation ! User stories, storyboards, acceptance tests, agile models, acceptance tests §  Iterative requirements planning & management ! adjusted with planning levels
  • 13. 13 •  High levels of management oversight and hierarchical governance •  Top-Down Improvement Approach •  Aim for business value •  Dictate what “the right thing is” •  Some compliance frameworks expect measurements •  Business people on site, collaborate with agile team •  Building trust between developers and the business •  Transparency •  Deliver “business” value •  Bottom-up Improvement approach •  Motivated team Can we find common foundational principles?
  • 14. 14 Established processes Policies Established standards… “Individuals and interactions over processes and tools” “Working software over comprehensive documentation” Evidence in documentation “Customer collaboration over contract negotiation” Business Rules/ Constraints & regulatory requirements Agile Regulations Needs
  • 15. Governors’ Perception of Agile Agilists’ Perception of Governance Uncertainty and lack of predictability leads to costly delivery & technical debt BRUF over YAGNI * A lack of modelling leads to significant rework Comprehensive models slow your development efforts A lack of documentation and traceability lead to significant rework Comprehensive documentation does not always add value Agile is just about construction Following traditional/sequential approaches and heavy ceremony is a waste Agile doesn’t address Enterprise Issues Silos and barriers between team are impediments to successful development 15 *YAGNI=You are not going to need it
  • 16. 16 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
  • 17. 17 Compliance requirement Low risk Critical, audited Interaction over process and tools ü Light process is still a process ü A process that derives value ü Automation/tools that add value Working software over Comprehensive documentation ü Tradeoffs are the “customer” responsibility ü Choose only documentation that adds value ü Adopt an easy way to keep track of some requirements artifacts using tools ü High quality softwares are as important for compliance officers Customer collaboration over contract negotiation ü Continuous stakeholders involvement, including compliance officer ensures that all intended user needs + constraints are successfully implemented ü Common ground: Signed off Product Backlog, lightweight reviews, usage of automation Responding to change over following a plan ü Agile puts great emphasis on planning, with better process management and improvement ü Common ground: architecture road map, feature road map and long term Iteration road map
  • 18. 18 Have a hybrid top-down and bottom approach with an agile governance. Build trust, actively engage business stk. Identify Complexity factors and implement process and tools for scaling Agile A Vision that will count auditors as key stakeholders Milestone-driven and scalable approach to prevent inconsistent execution Map regulated activities into your SDLC Select Practices that address Business people (compliance and governance body) Get the compliance officers involved at the earliest opprtunities Project visibility , transparency, built-in traceability between artifacts and effective collaboration are facilitated with automation. Team members need to be equipped with the right training, right tooling , be enterprise aware, and collaborate with the Business, including HR, audit, Finance… Team to be well aware of the regulations to prevent misinterpretation Strategy Culture Teams Tooling People
  • 19. 19 §  Introduction §  Governance and Compliance §  Agility §  Balancing act: Building common ground §  Recommendation “Would you tell me, please, which way I ought to go from here?' 'That depends a good deal on where you want to get to,' said the Cat. 'I don't much care where -' said Alice. 'Then it doesn't matter which way you go,' said the Cat. '- so long as I get SOMEWHERE,' Alice added as an explanation. ‘― Lewis Carroll, Alice in Wonderland Compliance Balancing Act Agile
  • 20. 20 Regulatory Drivers Compliance / Governance Enterprise complexity Strategic §  Small team §  New projects §  Simple application §  Co-located §  Minimal need for documentation §  Maturing projects §  Growing in complexity §  Greater need for coordination, discipline §  Agile blending slowly into the enterprise governance §  Mature or existing projects §  Many developers §  Complex applications §  Need for scalability, and traceability §  Greater need for documentation and handoffs Tactical Disciplined Agile Approach with Appropriate governance Core Agile Agility @ Scale Complexity Maturity
  • 21. §  Understand the Context: It sure counts!!! §  Adapt and do not anticipate §  Understand the regulations §  Understand the real issues at hand and be aware of the regulations §  Understand the values of the other one: governance versus agile §  Governance and agile are complementary 21
  • 22. §  Disciplined Agile Delivery: A practitioner’s guide to Agile Software Delivery in the Enterprise; Scott W.Ambler-Mark Lines §  Rational Innovate 2012 conf: Achieving better requirements on agile projects: User Stories and beyond ; Cherifa Mansoura §  Adapting Agile requirements practices for devops: White paper; Cherifa Mansoura http://www.ibm.com/developerworks/rational/library/adapting-agile-requirements-devops- rescue/index.html 22