Ask the Expert

How to get development, QA, security and compliance teams to play nice

We're having trouble getting developers and QA being on the same page as the security and compliance teams. What can we do?

Requires Free Membership to View

This is a common issue but something that can be resolved relatively easily. First, management has to make their support of security and risk management known by spreading the message and holding people accountable. Second, get your teams in the same meetings. Have developers/QA staff attend security-related meetings and security/compliance staff attend development/QA-related meetings.

Finally, get all staff members some cross-training in the respective areas. There's no reason why security/compliance staff shouldn't know the basics of software development/quality and why developers/QA staff shouldn't know the essential concepts of information security. Pull these three things together and you'll have yourself a workable solution.

Here is some more advice for development teams battling with similar struggles:

This was first published in January 2010

There are Comments. Add yours.

TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: