Security Compliance in Agile Development: A Systematic Mapping Study

Companies adopting agile development tend to face challenges in complying with security norms. Existing research either focuses on how to integrate security into agile methods or on discussing compliance issues of agile methods but independently of the regulation type, in particular of security standards. A comprehensive overview of this scattered field is still missing. To close this gap, we report on a systematic mapping study.Starting with a set of 2,383 papers, this work distills 11 relevant publications addressing security compliance in agile software development. With this study, we contribute by providing a description of the maturity of the field, as well as domains where security compliant agile software engineering was investigated.