Related Content

Chess king standing after all other chess pieces have been captured Take Credit for Your Risk Management Activities

If you have an important implementation date, early identification of the minimum viable product is a vital risk-management step that helps focus your team’s attention on what's important. Rather than apologizing for intelligent phasing of functionality to manage risk, explain it to stakeholders and take credit.
Payson Hall's picture
Payson Hall
June 4, 2019
Executive buttoning his suit coat How to Talk to Executives about Agile

In the agile community, executives tend to get a bad name. They are accused of not understanding agile and the benefits it will bring their companies. But we just need to speak the same language: Look beyond the surface-level reasons for resistance and try to identify the financial grounds. Just follow the money!
Steven Granese's picture
Steven Granese
May 28, 2019
Closeup photo of laptop computer lit up at night The Value of Security Testing in QA

For many organizations, traditional testing groups are separated from the IT security group. But having traditional testers perform some security testing efforts is a great way of achieving a balanced approach to shifting left while being mindful of staffing and budgetary challenges. It also has some great advantages.
Alan Crouch's picture
Alan Crouch
May 10, 2019
Combination padlock for security Continuous Security in Agile Development

"Continuous" gets mentioned a lot in agile and DevOps, but one area that often doesn’t get enough attention is how to continuously build, test, and deliver secure applications. Just like for quality, you can’t test security in, so you need to have a plan for how to build it in. Here are some tips on how to do that.
Jeffery Payne's picture
Jeffery Payne
March 29, 2019
Software team working on a failing project Achieve Success by Joining a Failing Project

We all want to be associated with success, so when there’s a failing project, most of us want nothing to do with it. However, if you’re looking for a way to give your career a boost, you may want to rethink that. If you’re not afraid of a challenge, here are some ways embracing a failing project can help your career.
Richard Estra's picture
Richard Estra
March 25, 2019
Espresso being poured into a cup of water and mixing Integrating Threat Modeling into Agile Development

Threat modeling helps you determine where to focus your security testing efforts when building your app. But people often wonder how it can fit into their existing agile software development process. Here are three things you can do to integrate threat modeling into your agile workflow, either early on or mid-project.
Alan Crouch's picture
Alan Crouch
March 13, 2019
Asphalt with painted arrows pointing in three directions The Good, the Practical, and the Expedient

When a process isn't working, you'll have to make a choice that will help move things along. However, some choices are less about inspecting and adapting than about getting things done quickly, and that incurs risk. To manage this risk you need to be aware of the differences between "practical" and "expedient."
Steve Berczuk's picture
Steve Berczuk
March 12, 2019
Computer, calendar, projections, and business paper all laid out on a table Making Decisions at the Right Level of the Organization

Decision-making in a climate of ambiguous responsibility is a no-win situation. If you're in a position of some authority, how can you define exactly what that authority allows in order to better secure sponsor support for your decisions? It involves considering some scenarios and asking the right clarifying questions.
Payson Hall's picture
Payson Hall
March 6, 2019