Different roles within a firm have varying responsibilities towards the effective management of open source software.
Some roles involve evaluating the potential benefits and risks of using open source technology, creating and implementing policies, and managing legal or compliance risks. Others involve using open source libraries and tools as building blocks for software, contributing to open-source projects, and ensuring that new employees are trained on the company's policies.
Chief Information Officer
The Chief Information Officer (CIO) is The CIO oversees IT governance, data management, and information security, as well as the maintenance and enhancement of existing systems to support the organization's day-to-day operations.
CIO (Role)Developer
Development staff within the firms Information Technology (IT) departments are responsible for designing, coding, and testing software applications.
Developer (Role)Legal Team
The legal team is responsible for providing legal advice and support to the organization.
Legal (Role)Open Source Program Office
The Open Source Program Office (OSPO) is responsible for the overall management and direction of an organization's open source program.
Codebase RiskData Leakage RiskDependency RiskStaff RiskOSPO (Role)Human Resources and Training
Human Resources (HR) and training departments are responsible for the overall management of a company's human resources, including recruiting and hiring employees, managing employee benefits and compensation, and providing training and development opportunities.
HR/Training (Role)Chief Executive Officer
The CEO, or Chief Executive Officer, is the highest-ranking executive in a company and is responsible for leading and overseeing its overall direction and operations.
CEO (Role)Security Expert
Security Experts, headed by the Chief Information Security Officer (CISO) in a bank play a crucial role in maintaining security around the institution's sensitive data, IT systems, and digital assets.
Security Expert (Role)Risk Officer / Compliance
Although Risk and Compliance are separate roles within the bank, for the purposes of the body of knowledge we will be considering them a single concern. However, it's worth understanding the difference:
Risk/Compliance (Role)Chief Technology Officer
The Chief Technology Officer CTO is primarily responsible for driving the development and implementation of new technologies, products, and services.
CTO (Role)Internal Audit
Expected Activities
Internal Audit (Role)Line Of Business
The Line of Business (LOB) within a bank refers to a distinct unit or department that focuses on specific products, services, or customer segments, contributing to the overall revenue generation and growth of the institution.
Business (Role)Product Manager
Product managers are responsible for understanding market trends, customer preferences, and competitive landscape to identify new product opportunities and enhance existing offerings.
Product Manager (Role)External Regulators and External Audit
Regulators and External Audit are two distinct bodies external to the organisation:
Regulator (Role)Site Reliability Engineers
In addition to many traditional SysAdmin tasks, SREs spend significant time on development tasks such as new features, scaling, or automation.
SRE (Role)