OSA Life Cycle
Evaluating SDLC models to adopt as our primary reference framework.
We are still evaluating which SDLC (Solution/System/Software Development Life Cycle) model to adopt as our primary reference framework.
Key Requirements
Our selection criteria for the reference model include: - Adequate coverage of security controls - Public availability without expensive corporate membership - Multi-industry and multi-country adoption - Independence from single-vendor ownership
Models Under Consideration
We are examining these frameworks: - ISO/IEC 15288, System Life Cycle Processes - IEEE STD 1220, Application and Management of the Systems Engineering Process - ISO/IEC 21827, Systems Security Engineering Capability Maturity Model (SSE-CMM) - ITIL - COBIT
Definition
An SDLC framework defines on a high abstraction level which processes are needed to achieve a given set of system qualities. It establishes actors and contextualizes processes within related domains like project management and architectural governance.
Get Involved
We welcome contributions from the community - please join us on the discussion forum.