Integrating Security into a Portfolio Kanban

Back to list of all Outcomes

Original Working Session content: Integrating Security into a Portfolio Kanban


Outcomes

Playbook that defines staged industry best practices on how to integrate security into the general programme management workflow

Synopsis and Takeaways

Ante Gulam drove a lively, participatory conversation. The conclusion was that while the idea is interesting, the scope, structure, processor, and profile are difficult to scale and standardize. Any playbook would have to be tailored to a specific organization’s needs.

Outline Playbook

Stage 1

  • Standardize the concept

Stage 2

  • Create Security Champions in Programme Management
  • Plan meetings which include Security Champions

Stage 3

  • Tagging by Security Champions
  • Tagging can also be outsourced to Programme Management

Stage 4

  • Defining SLAs
  • Security review by security squad

Stage 5

  • SDLC security process


Back to list of all Outcomes

Edit this page here