Lean integration of IT security and data privacy governance aspects into product development in agile organizations

Alexander Poth; Mario Kottke; Kerstin Middelhauve; Torsten Mahr; Andreas Riel

doi:10.3897/jucs.71770

Journal of Universal Computer Science (Aug 2021)

Lean integration of IT security and data privacy governance aspects into product development in agile organizations

Alexander Poth,
Mario Kottke,
Kerstin Middelhauve,
Torsten Mahr,
Andreas Riel

Affiliations

Alexander Poth: Volkswagen AG
Mario Kottke: Volkswagen AG
Kerstin Middelhauve: Audi AG
Torsten Mahr: Volkswagen Financial Services AG
Andreas Riel: Université Grenoble Alpes, CNRS, G-SCOP

DOI: https://doi.org/10.3897/jucs.71770
Journal volume & issue: Vol. 27, no. 8
pp. 868 – 893

Abstract

Read online Read online Read online

This article deals with the design of a product development-specific framework to support lean and adequate governance. This framework is based on layers of product-specific standards and regulations. The layers can be merged into a specific set to address the demands of a product to fit the state-of-the-art requirements of its domain. For the product domain, specific layers are presented with examples from IT security and data privacy for the software development phase. The approach is generic and can be extended to other domains like finance services or embedded products and their life-cycle phases.

Published in Journal of Universal Computer Science

ISSN: 0948-695X (Print); 0948-6968 (Online)
Publisher: Graz University of Technology
Country of publisher: Austria
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://lib.jucs.org/

About the journal

Abstract

Keywords