We previously discussed a security assurance program in an organization, and we will explore security requirements and compliance in this chapter. We all agree that security and privacy are essential to software release. However, it can be a challenge for a product manager to plan security or privacy features into product releases.
In this chapter, we will discuss security requirements covering four aspects: the security requirements for each release quality gate, the security requirements for general web applications, the security requirements for big data, and the security requirements for compliance with General Data Protection Regulation (GDPR). Some security requirements are engineering-driven, such as release gates, and some are marketing-driven, such as GDPR. This chapter provides security requirements planning guidelines by looking...