Agile 2013: Pat Reed and I discussing Scrum and Compliance
-
Upload
laszlo-szalvay-lszalvaysolutionsiqcom -
Category
Business
-
view
655 -
download
3
Transcript of Agile 2013: Pat Reed and I discussing Scrum and Compliance
![Page 1: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/1.jpg)
Making Scrum Stick in
Regulated Industries
Laszlo Szalvay & Pat Reed
6 August 2013
Nashville,TN
Room: Bayou C
Some Rights Reserved
http://ScrumAndCompliance.com/
![Page 2: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/2.jpg)
“It’s kind of fun to do the impossible”
Agile Community of Practice
![Page 3: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/3.jpg)
#aboutus
Laszlo Szalvay
Vice President | SolutionsIQ
+1.425.519.6643 Office | +1.971.506.7862 Mobile
![Page 4: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/4.jpg)
Compliance is Top of Mind
To become a mainstream methodology, Agile had to
overcome many potential obstacles. The first was
geography…One of today’s most daunting obstacles is
compliance, often bringing heavyweight documentation,
required procedures that are very waterfall-ish, complex
approval workflows, and complicated approval processes.
July 2011
Forrester Research, Inc.
“Compliance Is A Hurdle, Not A Barrier, To Agile”
Tom Grant, PhD
![Page 5: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/5.jpg)
Quotes from Regulated Industries Agile is not just a method or a process, it’s a way of being. You don’t do
Agile. You are Agile. The FBI has arranged to load their ScrumMaster to
other teams to get them trained. Increased Transparency has kept
stakeholders in sync. Further, stakeholders would modify their expectations,
based on the increased visibility of the process.
Jack Israel, CTO FBI
With no significant bugs reported…operation nearly flawless – a stunning
and an unpredicted success. What are the implications for failing IT
programs across government?
Roger Baker, CIO VA
![Page 6: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/6.jpg)
Agenda
1. Market Overview
2. Problem Statement
3. Case Study
4. Hands on Exercise
5. BYO Org Patterns
6. Closing
http://bit.ly/SWAwlH
![Page 7: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/7.jpg)
market trends
0%
5%
10%
15%
20%
25%
30%
35%
40%
Regulated
Unregulated
Source: Forrester/Dr. Dobb’s Global Developer Technographics® Survey, Q3 2010
![Page 8: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/8.jpg)
#ProblemStatement
![Page 9: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/9.jpg)
• Ever changing
• More scrutiny due to Sept 2008 crash and general ‘anger’ at Wall Street
(e.g. Occupy Movement)
• Many faces, although for financial vertical Singapore is emerging as a
leader (strategic)
• Not familiar with internal corporate vernacular, culture, or even
software development
Compliance is complex
![Page 10: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/10.jpg)
• Singapore sees compliance as a strategic differentiator and
Singaporeans have taken a very taken a very hard position
within the banking industry. As such, they are now seen
as the international standard.
• Complex set of cross-border rules that can be contradictory,
incomplete, or vague
• Have seen this in other industries (e.g. Postal)
• Customs is where the most senior people from DHL,
FedEx, UPS sit
Compliance has emerging leaders
![Page 11: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/11.jpg)
Visual Problem Statement
• 6 cross functional teams of 8 people
(split between NJ, Silicon Valley and Kiev)
• 2 Backlogs
• 6 Product Owners, 1 Uber - PO
(based in London)
• 2 Compliance Officer
(based in Singapore and NYC)
• 2 external compliance mandates
(overlapping jurisdictions, e,g, MAS
and FSOC) Uber POCompliance
Officers
Dev Teams
![Page 12: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/12.jpg)
#CaseStudy
![Page 13: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/13.jpg)
#CaseStudy
Before Agile can scale, an Agile
accounting standard needs to be
developed to enable CFO’s to understand
and leverage one of the most quantifiable
and compelling benefits of Agile software
development.
![Page 14: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/14.jpg)
Mandatory SOP 98-1 and
ASC 350-40 Guidelines
– Prescribe how all organizations must capitalize or expense internal IT projects based on project stage and type of work
– 3 Stages:
• Preliminary Stage – Costs must be expensed
• Application Development Stage – Most costs should be capitalized
• Post Implementation Stage – Costs must be expensed
– Capitalization begins when (a) the preliminary project stage is completed and (b) management, with the relevant authority, implicitly or explicitly authorizes and commits to funding a computer software project with high probability of success and software will be used to perform the function intended
– Capitalization ends no later than the point at which a computer software project is substantially complete and ready for its intended use
![Page 15: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/15.jpg)
What’s The Problem?• To ensure compliance, we must estimate, allocate, track and
report labor costs to internal IT projects based on project
work done in three specific phases: Preliminary, Development
and Post Implementation
• Waterfall projects can readily adapt their labor and project
costing to the guidelines using the following framework:
Preliminary - - - - - - - - Development - - - - - - - - - - - - - Post Implementation - -
![Page 16: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/16.jpg)
Expense vs. Capital
Release
• Feature 1• Feature 2• Feature 3
Release N: Theme
Iteration 1 Iteration 2 Iteration 3 Iteration …
• Story 1• Story 2
• Story 3• Story 4
• Story 5• Story 6• Story 7
• Story 8• Story 9• Story 10
R
Backlog Backlog
• Story 1• Story 2• Story 3• Story …
• Story 11• Story 12• Story …
Customer EvaluationsQuickstart
Inception DeckTreatment
Inception:
Design Storming
Expense
Capital
![Page 17: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/17.jpg)
Confidential - Do Not Distribute or Copy
Agile Capitalization
Expense Only Capital and Expense
Quick Start
Treatment & Pre-
project tasks Design Storming It 0It 1 Project
Stages
Cost
allocation
Preliminary Project Application Development
WhatHow
• The Preliminary Project Stage: “What“ (Ends In Inception at the beginning of Design Storming)
• The Development Stage: “How “ (Starts with Design Storming)
• The Post Implementation Stage: “When” (Begins 72 hours after the last production implementation,
when final user acceptance testing and Level 2 support or maintenance handoff is complete)
Releases
Final set of
stories
deployed.
Expense
72 Hrs
Inception
Post
Implementation
Costs can be Capitalized once the “Approval to Start” has been secured and end at the completion of the
Application Development stage when the asset is in production for customer use.
Capitalization Begins Capitalization Ends
…
…
Release
It 2
ReleaseRelease Release Release Release
It nIt 3 It 4
![Page 18: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/18.jpg)
#HandsOnExercise
![Page 19: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/19.jpg)
Hands On Exercise: Navigating an
Amorphous Compliance Issue
Global Justice XML Data Model
CFR21 Software
Compliance
Financial Automotive
![Page 20: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/20.jpg)
Please read scenarios and discuss
(12 mins)
Exercise: Navigate Amorphous Compliance Issue
![Page 21: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/21.jpg)
Feedback
(6 mins)
Exercise: Navigate Amorphous Compliance Issue
![Page 22: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/22.jpg)
#BuildYourOwnOrgPatterns
![Page 23: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/23.jpg)
Option One
(a) Bring in external compliance
issues through work items in the
backlog
Risks:
Most external compliance mandates
result in changes to workflow not
work items
![Page 24: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/24.jpg)
Option Two
(a) Automate Changes using
workflow automation tools and
Team picks up changes passively.
Risks:
Give up on the notion of Team
Learning (this can be seen by the
team as anti-agile)
![Page 25: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/25.jpg)
Option Three
Use the Retrospective Meeting to
introduce evolutionary changes to
process. In this case, use the retro
to introduce new compliance
requirements into workflow and the
backlog.
(A) “Mandate changes” from the
Uber PO and Compliance Officer
Risks:
What team self-organization?
![Page 26: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/26.jpg)
Option Four:
Use the Retrospective Meeting to introduce evolutionary changes to process. In this case, use the retro to introduce new compliance requirements into workflow and the backlog.
(B) Let the teams roll out their own, using potentially disastrous self discovery / learning exercises
RisksHuge financial losses
Knight Capital’s stock dropped more than 24% Monday to
close at $3.07 following the announcement of the deal
[rescue package]. The new investment will severely cut
into the value of existing shareholders’ stakes.
http://cnnmon.ie/XKAhqZ
![Page 27: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/27.jpg)
Combo Approach
Option Five:
(a) Designate Compliance SME on each team,
born from Q/A who coordinates around
workflow with the CCO office
(b) Introduce governance standards that are
rolled out at the program level which are
digested / constructed / deconstructed in
the retro meeting meaning evolutionary
changes to existing workflow and process
Risks
Need to grow many compliance SMEs
Language barriers can be an issue
![Page 28: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/28.jpg)
#OpenJam
Join Us Wednesday and Thursday during
OpenJam at 8:30am to Build Your Own
Organizational Patterns
Join http://ScrumAndCompliance.com/ &
submit your Organizational Patterns
![Page 30: Agile 2013: Pat Reed and I discussing Scrum and Compliance](https://reader034.fdocuments.in/reader034/viewer/2022042821/55d518dabb61eb1c128b4673/html5/thumbnails/30.jpg)
What facilitator needs to bring
• Print offs (BYOrg Patterns & Examples)