Moving Compliance to the Left (Open Source Compliance and Product Planning)
Open Source compliance can be time consuming and risky if left until late in your product cycle. We will discuss how we have been moving our compliance to the left into product planning, engaging wi …
Talk Title | Moving Compliance to the Left (Open Source Compliance and Product Planning) |
Speakers | Scott Finkel (Software Engineer, Senior Staff, Qualcomm Technologies Inc.) |
Conference | Open Source Summit + ELC Europe |
Conf Tag | |
Location | Lyon, France |
Date | Oct 27-Nov 1, 2019 |
URL | Talk Page |
Slides | Talk Slides |
Video | |
Open Source compliance can be time consuming and risky if left until late in your product cycle. We will discuss how we have been “moving our compliance to the left” into product planning, engaging with our product and program management teams and aligning our data with the product definition.Our goal is to define and review third party software, product distribution models and architecture up front and provide compliance guidance early. Tight integration into the product definition and composition systems will mean we can provide indicators to program management and drive any enforcement directly through our distribution systems.We’ll give an overview of the organizational aspects and history of how we came to view this model, a demonstration of how we have integrated this capability and our ideas for how this approach leverages and integrates into the broader OS compliance ecosystem.