Q

How to get development, QA, security and compliance teams to play nice

One of the great struggles in software development is getting teams to work cooperatively. Application security expert Kevin Beaver offers advice in this expert response.

This Content Component encountered an error
We're having trouble getting developers and QA being on the same page as the security and compliance teams. What can we do?

This is a common issue but something that can be resolved relatively easily. First, management has to make their support of security and risk management known by spreading the message and holding people accountable. Second, get your teams in the same meetings. Have developers/QA staff attend security-related meetings and security/compliance staff attend development/QA-related meetings.

Finally, get all staff members some cross-training in the respective areas. There's no reason why security/compliance staff shouldn't know the basics of software development/quality and why developers/QA staff shouldn't know the essential concepts of information security. Pull these three things together and you'll have yourself a workable solution.

Here is some more advice for development teams battling with similar struggles:

This was first published in January 2010

Dig deeper on Cloud Application Testing

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchSOA

TheServerSide

SearchCloudApplications

SearchAWS

SearchBusinessAnalytics

SearchFinancialApplications

SearchHealthIT

Close