Agil Regelefterlevnad : Agila tankesätt för Compliance & PCI DSS

Sammanfattning: Regulatory compliance is an important and growing topic that requires companies to adapt to rules and regulations. All organizations that want to be active in the business market must follow and adapt to these rules regardless of company size and capital. The consequences of not following the regulations are to a large extent fines or increased transaction costs. This study focuses on the usefulness of agile approaches in compliance and specifically PCI DSS regulations. PCI DSS is a framework that regulates the credit card payment system used by an organization. All security involving customer data during a card payment is also included in this ruleset. To execute the research on how agile methods function within compliance, a qualitative research strategy has been implemented. Empirical material has been collected through interviews with the company CGI. The respondents in this inquiry work in the compliance sector and have great knowledge of the subject. The result of the study show that respondents view agile methods within compliance projects in a positive light. That the obstacles experienced in these projects can be alleviated with the help of agile tools such as morning meetings and structured responsibilities.