Assessing Team Security Maturity in Large-Scale Agile Development

Sascha Nägele, Jan Philipp Watzelt, Florian Matthes

Publikation: Beitrag in Buch/Bericht/KonferenzbandKonferenzbeitragBegutachtung

1 Zitat (Scopus)

Abstract

Organizations struggle to balance agile team autonomy and strict security governance in large-scale agile development environments. In particular, conventional top-down IT governance mechanisms often conflict with the desired autonomy of decentralized agile teams. Our research presents a novel approach to resolve the tension between security governance and development agility: a criteria-based security maturity assessment that enables greater autonomy for mature agile teams. Leveraging design science research, a literature review, and an interview study, we introduce two key contributions: a criteria catalog for evaluating a team's capabilities and a team security maturity model. Our expert evaluation confirms their value for systematically assessing the teams' capabilities to deliver secure and compliant applications, allowing organizations to grant more autonomy to mature teams and prioritize supporting lower-maturity teams. Future work could go beyond expert interviews and implement and evaluate the team security maturity model through a case study or experiments.

OriginalspracheEnglisch
TitelProceedings of the 57th Annual Hawaii International Conference on System Sciences, HICSS 2024
Redakteure/-innenTung X. Bui
Herausgeber (Verlag)IEEE Computer Society
Seiten7259-7268
Seitenumfang10
ISBN (elektronisch)9780998133171
PublikationsstatusVeröffentlicht - 2024
Veranstaltung57th Annual Hawaii International Conference on System Sciences, HICSS 2024 - Honolulu, USA/Vereinigte Staaten
Dauer: 3 Jan. 20246 Jan. 2024

Publikationsreihe

NameProceedings of the Annual Hawaii International Conference on System Sciences
ISSN (Print)1530-1605

Konferenz

Konferenz57th Annual Hawaii International Conference on System Sciences, HICSS 2024
Land/GebietUSA/Vereinigte Staaten
OrtHonolulu
Zeitraum3/01/246/01/24

Fingerprint

Untersuchen Sie die Forschungsthemen von „Assessing Team Security Maturity in Large-Scale Agile Development“. Zusammen bilden sie einen einzigartigen Fingerprint.

Dieses zitieren