Examice

Exam PSM II All QuestionsBrowse all questions from this exam

Question 94

During a Product Backlog refinement meeting, the Product Owner introduces a business objective that will be worked on for the next several Sprints. The Product

Owner envisions several key features necessary to be delivered in order to meet the business objective. As the features will be using sensitive user data it will be subjected to external security audits. These non-functional security requirements were not applicable to previous Increments.

What are two good ways the Development Team can handle these high-security concerns? (Choose two.)

They should be planned in parallel Sprints so not to disrupt the Development Team during feature development. After security concerns have been finalized, they will be applied to the work that is already completed before new feature development can continue.

They should be handled in a parallel Sprint by a separate security team so that security can be resolved through application enhancements without impacting the functional development.

A complete list of security-related Product Backlog items needs to be created before starting a new Sprint.

During the Sprint Retrospective, the Development Team assesses how to add these expectations to their Definition of Done so every future Increment will meet these security requirements. If needed they can work with external specialists to better understand the requirements.

They are added to the Product Backlog and addressed throughout the next Sprints, combined with creating the business functionality in those Sprints, no matter how small the business functionality.

Correct Answer: D, E

The best approach is to add the security requirements to the Definition of Done during the Sprint Retrospective, ensuring that all future Increments will meet these standards. Additionally, the security-related tasks should be added to the Product Backlog and addressed in the upcoming Sprints, combined with the necessary business functionalities. This allows for continuous integration of security measures without delaying feature development and guarantees that every Increment adheres to the needed security requirements.

Discussion

nhungnt184Options: DE

D and E.

amogOptions: DE

C is incorrect as there are no complete list before new Sprint D, E are correct