3 Replies - 281 Views - Last Post: 18 May 2019 - 02:26 AM

#1 ericbijtelaar   User is offline

  • New D.I.C Head

Reputation: 0
  • View blog
  • Posts: 2
  • Joined: 17-May 19

Study research project security within the SDLC

Posted 17 May 2019 - 07:47 AM

Dear forum members,

My name is Eric Bijtelaar and I work in the field of information security. I am studying Information Security and Forensics and as a research project I have chosen Security within the SDLC. For my research I require input from the development community on the way one uses security within their work as a software developer.

If you are interested in helping me you can. I have created an online anonymous questionnaire with 16 questions which take approximately 15 minutes to fill in. Please sent me a message if you would like to help me reach my goal, I still need a minimum of 30 participants to have enough data for my analysis.


Looking forward in hearing from you.
Kind regards,
Eric Bijtelaar

Is This A Good Question/Topic? 0
  • +

Replies To: Study research project security within the SDLC

#2 modi123_1   User is offline

  • Suitor #2
  • member icon



Reputation: 15172
  • View blog
  • Posts: 60,735
  • Joined: 12-June 08

Re: Study research project security within the SDLC

Posted 17 May 2019 - 07:59 AM

Welcome!

Two questions.. First, any reason to not just blast out the link instead of hiding it behind a PM?

Second - will you post the results here once done?

Similar seen here:
https://www.freecode...elopment/277523
Was This Post Helpful? 0
  • +
  • -

#3 Skydiver   User is online

  • Code herder
  • member icon

Reputation: 6992
  • View blog
  • Posts: 23,765
  • Joined: 05-May 12

Re: Study research project security within the SDLC

Posted 17 May 2019 - 08:51 AM

My understanding is that 30 samples is statistically significant -- but only if you've already determined ahead of time what variables are independent and what are dependent. Considering that you are asking people to self-identify or volunteer for your questionaire, your data pool is already skewed. Furthermore, what guarantees do you have that the volunteers will similar enough project types and agile methodologies that you can make valid comparisons and extrapolations from? Somebody who is working using Scrum may be doing development one way, but somebody using Kanban maybe doing the same operations, but over a completely different time scale. The requirements imposed by Scrum maybe different from that of Lean. Then there is also the supposed agile methodology called SAFe. (To me I don't consider SAFe as an Agile methodology -- it's just something to make large enterprises feel like they have a handle on all their small teams doing agile. With all of SAFe's required ceremonies, it's pretty rigid for something that is supposedly agile.)
Was This Post Helpful? 0
  • +
  • -

#4 ericbijtelaar   User is offline

  • New D.I.C Head

Reputation: 0
  • View blog
  • Posts: 2
  • Joined: 17-May 19

Re: Study research project security within the SDLC

Posted 18 May 2019 - 02:26 AM

Hi, thank you for your replies. I was not sure if posting a link just like that was allowed. A pm would help in not overloading the questionnaire since I have limited time and too much data could result in not finishing my research objectives.

The results of the research will be shared once I am finished.

Regarding the target group, I have received input from 15 developers from 2 software development companies and 1 major security company in the Netherlands. I have also interviewed several security specialists and discussed my research with them. All of the targeted companies use different methodologies and it will be challenging to perform a good analysis of the data. I do hope that some of you will like to participate, I will post the link here in this message.

https://www.survio.c...K1F1B4E5C9Q8B1A

Kind regards,
Eric Bijtelaar
Was This Post Helpful? 0
  • +
  • -

Page 1 of 1