Aligning DevOps Concepts with Agile Models of the Software Development Life Cycle (SLDC) in Pursuit of Continuous Regulatory Compliance

Kieran Byrne, Antoinette Cevenini

Research output: Book chapter/Published conference paperConference paperpeer-review

Abstract

In the historical landscape of software development, regulatory compliance considerations may have been considered of low-priority to teams outside of highly regulated industries, such as medical devices, finance, avionics, and cyber-physical systems. As mission and safety critical domains have traditionally favored requirement and verification driven linear forms of development, utilization of DevOps concepts to support regulatory compliance goals is still a relatively novel concept. With software development delivery and integration requirements increasing in highly regulated domains, and implementation of more ubiquitous standards for developers to show evidence of data handling (as seen in now ubiquitous standards, such as General Data Protection Regulation (GDPR)), research and practice in this area becomes increasingly valuable. Further, examples of customizing DevOps approaches for specific challenges, such as the example presented by DevSecOps for engineering security, present a plausible template that could be applied to engineering compliance in a rapidly iterative model. Through exploring learnings from domains comfortable with an Agile/DevOps approach to SDLC as they implement emerging requirements, confidence in exploring compatibility of such practices with delivery and integration of highly regulated software products is growing, laying the foundation for a movement towards continuous delivery and iteration of regulatory compliant software across the industry. This paper will review and discuss available literature in five key areas: Agile/DevOps alignment, alignment of regulation with requirement engineering, compatibility of regulations with DevOps concepts, emerging forms of DevOps, and the movement towards continuous compliance.

Original languageEnglish
Title of host publicationInnovative Technologies in Intelligent Systems and Industrial Applications - CITISIA 2022
EditorsSubhas Chandra Mukhopadhyay, S.M. Namal Arosha Senanayake, P.W. Chandana Withana
PublisherSpringer Science and Business Media Deutschland GmbH
Pages359-374
Number of pages16
ISBN (Print)9783031290770
DOIs
Publication statusPublished - 2023
Externally publishedYes
Event7th International Conference on Innovative Technologies in Intelligent Systems and Industrial Applications, (CITISIA) - Virtual, Sydney, Australia
Duration: 14 Nov 202216 Nov 2022
https://web.archive.org/web/20220723035937/https://www.citisia.org/ (Conference website)
https://link.springer.com/book/10.1007/978-3-031-29078-7?page=1#toc (Proceedings)

Publication series

NameLecture Notes in Electrical Engineering
Volume1029 LNEE
ISSN (Print)1876-1100
ISSN (Electronic)1876-1119

Conference

Conference7th International Conference on Innovative Technologies in Intelligent Systems and Industrial Applications, (CITISIA)
Country/TerritoryAustralia
CitySydney
Period14/11/2216/11/22
OtherThe “Conference on Innovative Technologies in Intelligent Systems & Industrial Applications” (CITISIA) is a conference that aims to provide researchers and industry experts with a platform for presenting their innovative projects and products. It is also a measure of recognition of academics’ professional and technical achievements – by industries and international organizations. This conference is designed to facilitate exchanges of ideas through communication, networking and learning from others, academics and young researchers in terms of greater collaboration.
The conference provides a unique platform for industry professionals and researchers to share their experiences and insights through their latest research and to promote research and development activities among researchers. CITISIA 2022 provides an international forum for those actively involved in research to report on the latest innovations and developments, summarize state-of-the-art works, and share ideas and advances from all aspects of engineering, where advances play an increasing role in providing enriching experiences and improving the quality of lives.
Internet address

Fingerprint

Dive into the research topics of 'Aligning DevOps Concepts with Agile Models of the Software Development Life Cycle (SLDC) in Pursuit of Continuous Regulatory Compliance'. Together they form a unique fingerprint.

Cite this