BT

How Can You Learn Early and Fast?

by Ben Linders on  Dec 26, 2013

Agile suggest that teams should fail-fast to enable quick learning from mistakes. Learning from failure is one approach, you can also learn early and fast from successes, by doing experimentation, or by using a plan for knowledge acquisition.

Continuous Security Testing With Gauntlt

by Manuel Pais on  Nov 30, 2013 1

James Wickett, from Gauntlt core team, gave a tutorial at Velocity Conf London about integrating security testing in the continuous integration cycle for early feedback on application security level. James stressed the importance of regularly checking for security as release delivery rates increase with continuous delivery.

Practices for Scaling Agile in Enterprises

by Ben Linders on  Nov 19, 2013 2

Enterprises that are adopting agile organizational-wide will at some time have to scale their agile practices. In a session at the Agile Methods in the Finance Sector and Complex Environment conference, attendees shared their experiences with scaling agile in enterprises.

Applying Security by Design with the CMMI for Development

by Ben Linders on  Nov 15, 2013

To enable development of secure products, processes covering the software development life cycle have to include security activities. Winfried Russwurm from Siemens and Peter Panholzer from Limes Security facilitated a workshop at the SEPG Europe 2013 conference where they explored security activities and presented the Application Guide for Improving Processes for Secure Products.

Stories of Using Real Options to Take Decisions

by Ben Linders on  Sep 27, 2013 2

Projects and product development is one long series of difficult decisions, says Pascal Van Cauwenberghe. Real Options can help you to take the right decision at the right time, even under difficult circumstances. At the Agile Tour Brussels conference, Pascal presented stories of his experiences with using real options in decision taking.

S is for Security

by Manuel Pais on  Jun 22, 2013

Frank Breedijk, security officer at Schuberg Philis, talks about the friction points between security and DevOps and how to collaborate to avoid them. Examples include automating security tests and environments, reducing scope of security audits to relevant system components only or allowing security fixes to jump the queue of changes to production.

DevOps Days Amsterdam Day 1 Focused on Continuous Delivery and DevOps Culture

by Manuel Pais on  Jun 15, 2013

The first day of DevOps Days Amsterdam had its focus split between continuous delivery and promoting a DevOps culture. Talks focused on how to automate the deployment pipeline but also system recovery in case of failure. On the culture side leveraging distinct personality types to successfully introduce changes and the positive impact of strong company culture on hiring were some of the takeaways.

IEEE’s Hans Karlsson Standards Award 2012 for Paul R. Croll

by Michael Stal on  Dec 23, 2011

IEEE announced that the Hans Karlsson Standard Award 2012 has been given to Paul R. Croll for dedicated leadership of the IEEE Systems and Software Engineering Standards Committee, and for his diplomacy and collaboration in facilitating the development of a collection of high-quality standards.

Software Development as Risk Management

by Christopher Goldsbury on  Oct 28, 2011

Should software development look to finance for planning risk and uncertainty? That question recently surfaced in a debate about the “Last Responsible Moment” decision making practice in agile software development. This article covers some recent trends and debate around using finance concepts for risk management and planning in software development.

SOA and Information Risk Management

by Dilip Krishnan on  Dec 17, 2010

Clive Gee, an experienced IBM SOA Practitioner, describes how IT securing the networks has evolved into what he refers to as Information risk management. As the collaboration space increases with application integration and service oriented systems, he examines the risk management of the increased the surface area of threats and vulnerability.

Security Assessment Techniques: Code Review v Pen Testing

by Srini Penchikala on  Dec 06, 2010 3

Web application security testing and assessment should include both security code review and penetration testing techniques. Dave Wichers, an OWASP Board Member, spoke at the recent AppSec DC 2010 Conference about the pros and cons of code reviews and penetration testing approaches in finding security vulnerabilities in web applications.

Visual Risk Management

by Vikas Hazrati on  Apr 13, 2010 6

Irrespective of the size of the project, stakeholders feel confident when they can a keep track of the risks and their mitigation strategies. Agile heavily promotes the use of information radiators. Keeping in line with the philosophy of radiators, Agilists suggested different ways of depicting risks visually for easy tracking and mitigation.

Lean + Real Options = Reduced Complexity and Risk

by Deborah Hartmann Preuss on  Jan 21, 2010

Real Options, a decision-making process based on Financial Option mathematics, was mentioned by Kent Beck in his 1999 "white book," Extreme Progamming Explained. More recently, Agilists have been exploring how Real Options intersects with Agile. Now Chris Matts and Olav Maassen specifically address the Lean Software community, proposing that application of Real Options improves Lean Development.

Agile Risk Management

by Vikas Hazrati on  Jan 27, 2009 4

Risk management is an activity directed towards the assessing, mitigating and monitoring of risks. Agilists suggest ways to effectively manage risk and use it to make better commitments to the stakeholders.

Software Development: A Traffic Jam Waiting To Happen

by Amr Elssamadisy on  Aug 04, 2008 5

Software development is Hard. One of the main reasons is that it is a complex adaptive system. Agile - when done right - seems to do a very good job of providing stabilizing feedback. We take a look at what it means for something to be a 'complex adaptive system' and what particular practices in Agile help us out.

General Feedback
Bugs
Advertising
Editorial
InfoQ.com and all content copyright © 2006-2013 C4Media Inc. InfoQ.com hosted at Contegix, the best ISP we've ever worked with.
Privacy policy
BT