A backlog for a project has been prioritized and a sprint has begun. A security issue has been revealed that needs to be addressed or large security vulnerabilities will be exposed.
How should the project manager proceed?
A.
Consult with the product owner to prioritize the new work at a higher level.
B.
Consult with the project sponsor and project team to resolve the issue.
C.
Consult with the project team to rework the existing estimates.
When a security issue is revealed mid-sprint, the project manager should consult with both the product owner and the project team. The product owner is responsible for prioritizing the backlog and ensuring that the most valuable features are worked on, while the team will help assess the technical implications of addressing the security issue.
The product owner needs to understand the impact of the security issue on the product's value and determine if it needs to be prioritized over other work in the sprint.
The project team should help evaluate the effort required to address the issue and ensure that the solution is feasible within the sprint’s capacity.
By collaborating with both the product owner and the team, the project manager can make an informed decision on whether to adjust the sprint plan, reprioritize the backlog, or take necessary actions to address the vulnerability. This ensures that the security issue is resolved without jeopardizing the overall sprint goals.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
The product owner needs to understand the impact of the security issue on the product's value and determine if it needs to be prioritized over other work in the sprint.
The project team should help evaluate the effort required to address the issue and ensure that the solution is feasible within the sprint’s capacity.
Submit