Product backlog management, user stories, acceptance criteria, sprint planning, and stakeholder management for agile development
This skill provides strategic guidance for product management activities in the CIA platform, including backlog prioritization, user story creation, acceptance criteria definition, and stakeholder communication. It ensures product decisions align with user needs, business goals, and ISMS compliance requirements.
Format: As a [user type], I want [goal] so that [benefit]
## User Story
As a **political researcher**, I want to **filter politicians by risk score** so that I can **quickly identify high-risk entities for investigation**.
## Acceptance Criteria
✅ Risk score filter with range slider (0-100)
✅ Filter applies to politician list in real-time
✅ Filtered results show risk score badge
✅ Filter state persists across page refreshes
✅ Filter respects existing search/filter combinations
✅ Loading state shown during filter application
## Technical Notes
- Use Vaadin Slider component
- Backend: RiskScoreService.filterByRange()
- Cache filtered results for 5 minutes
- Log filter usage for analytics
## ISMS Compliance
- Ensure GDPR compliance for filtered data display
- Audit log all risk score queries
- Apply RBAC to sensitive risk data
## Definition of Done
- [ ] Unit tests with 80%+ coverage
- [ ] Integration tests pass
- [ ] Code review approved
- [ ] Security review passed
- [ ] Documentation updated
- [ ] Accessibility WCAG 2.1 AA validated
MoSCoW Method:
Must Have - Core functionality, regulatory requirements, security fixes
Should Have - Important but not critical, improves UX
Could Have - Nice to have, low impact if dropped
Won't Have - Out of scope, future consideration
A.8.8 - Management of technical vulnerabilities
A.5.1 - Policies for information security
Govern (GV)
Identify (ID)
Control 4: Secure Configuration
Control 18: Penetration Testing