Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Proposal] Automated Governance Maturity Model #1426

Open
8 of 19 tasks
brandtkeller opened this issue Dec 11, 2024 · 3 comments
Open
8 of 19 tasks

[Proposal] Automated Governance Maturity Model #1426

brandtkeller opened this issue Dec 11, 2024 · 3 comments
Assignees
@matthewflannery @brandtkeller
Labels
proposal common precursor to project, for discussion & scoping triage-required Requires triage

Comments

@brandtkeller
Copy link
Collaborator

brandtkeller commented Dec 11, 2024
edited
Loading

Description: Design and Publish a Maturity Model for Organizational Automated Governance

Impact: Technology organizations are increasingly challenged to maintain compliance and manage risks within their software development processes and cloud native environments. The maturity of an organization to adopt Automated Governance principles can lead to more efficient management of Risk, Compliance, and Governance for both internal and external regulatory audit. Mapping these principles will enable organizations to understand their own maturity and begin to translate into implementation.

This was agreed upon as a direction worth proposing on the outset of establishing more meaningful artifacts that could be later expanded into Reference Architectures and Implementations. Intent is to complete this activity and use it as evidence towards the original intent of #1209 .

Scope: Artifact should be less than 10 pages in length total (possibly even 5). It will be focused on a primary persona with secondary personas identified as relevant. This should keep scope minimal while allowing for future iterations as mentioned above.

Intent to lead:

  • I volunteer to be a project lead on this proposal if the community is
    interested in pursing this work.     This statement of intent does not preclude
    others from co-leading or becoming lead in my stead.

Proposal to Project:

  • Added to the planned meeting template for 12 18
  • Raised in a Security TAG meeting to determine interest - 12 18
  • Collaborators comment on issue for determine interest and nominate project
    lead
  • Scope determined via meeting mm dd and/or shared document add link
    with call for participation in #tag-security slack channel thread add link
    and mailing list email add link
  • Scope presented to Security TAG leadership and Sponsor is assigned

TO DO

  • Security TAG Leadership Representative: @matthewflannery
  • Project leader(s): @brandtkeller
  • Issue is assigned to project leaders and Security TAG Leadership
    Representative
  • Project Members: @JonZeolla @matthewflannery @pedroignacio13
  • Fill in addition TODO items here so the project team and community can
    see progress!
  • Scope
  • Deliverable(s)
  • Project Schedule
  • Slack Channel - #automated-governance
  • Meeting Time & Day:
  • Meeting Notes (link)
  • Meeting Details (zoom or hangouts link)
  • Retrospective
@brandtkeller brandtkeller added proposal common precursor to project, for discussion & scoping triage-required Requires triage labels Dec 11, 2024
@JonZeolla
Copy link
Contributor

I'm in

@pedroignacio13
Copy link
Contributor

I'm in!

@matthewflannery
Copy link
Collaborator

Having drafted the first run of this, I'm obviously in :D Keen to get cracking

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@matthewflannery matthewflannery

@brandtkeller brandtkeller

Labels
proposal common precursor to project, for discussion & scoping triage-required Requires triage
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@JonZeolla @matthewflannery @brandtkeller @pedroignacio13