I saw a great quote from MySQL CEO Marten Mickos in a Slashdot interview:
"But we also need to know that it is very difficult to walk the fine line between freedom of software and freedom to pursue profits. The two are not at odds with each other, but there are overlapping areas where you need to have all details right."
I see this as being very similar to Agility and Security - the goals are not necessarily in opposition to one another but in the areas where there are competing concerns you have to work to get the details right. How much documentation is "too much" for an Agile process? How little central control is "too little" for a secure development process. These can be tricky issues and the right answers are likely to be different from organization to organization and from project to project within an organization.
Comments