API Governance
- Members: 2
- Architecture, Security & Compliance
Context
An API is a mechanism that allows one IT system to interact with the capabilities and data provided by another system in order to deliver value on top of these capabilities. APIs are essential to provide the necessary abstractions which make it possible to master the complexity of large, volatile IT landscapes.
API governance is the discipline which ensures that APIs are compliant with desired standards and regulatory requirements, and that they are aligned with strategic goals.
In an increasingly agile environment one of the main challenges is to keep the balance between team-autonomy and an overall compliance. We must ensure flexibility and team responsibility on one hand, and compliance, interoperability and the strategic coherence on the other, without creating impediments by administrative overhead and organisational bottlenecks.
Goals
Review the API Lifecycle and identify typical stakeholders and intentions, sketch influencing factors and aggregate them to typical requirements profiles.
Define a framework or catalogue of possible parameters and characteristics of governance-styles, with pre- and postconditions to address the various needs of the different profiles along the API-lifecycle.
Outline organizational, process and tool prerequisites and requirements for each API governance style and lifecycle stadium.
Required Expertise
Experienced expert who has filled one or more of the following roles or the manager of a respective department or team.
- IT architect
- Requirements engineer
- System owner
- Product owner
- Enterprise architect
