A. Risk management techniques should be included in an IS development methodology. It is important to consider and address the potential risks associated with any new IT system development project to ensure that it is secure and meets the organization's security requirements. Additionally, access control rules (B) and incident management techniques (D) may also be important to consider in the development methodology to ensure secure and effective operation of the system. Value-added activity analysis (C) may be relevant to the overall project management, but it is not specifically related to the IS development methodology.

A. Risk management techniques should be included in an IS development methodology to ensure that risks are effectively managed and mitigated throughout the software and system development lifecycle.

When reviewing organization standards and guidelines for IT management, an IS (Information Systems) development methodology should include various components to ensure effective development and management of information systems. Among the options provided: A. Risk management techniques: This is important in IS development as it helps identify and mitigate potential risks and uncertainties associated with the project. B. Access control rules: Access control is crucial for information security, and it should be integrated into the development methodology to ensure that only authorized individuals have access to sensitive data and systems. So, among the options provided, both A (Risk management techniques) and B (Access control rules) should be included in an IS development methodology to ensure the security, resilience, and success of information system development projects.