SOA Governance: Adoption and Best Practices

Articles
Registration is free. Login or register to view/download this content.

Author(s)

BPMInstitute.org
Business Relationship Manager - Product Lifecycle Management, Chevron Corporation

Governance has been defined as: “the art and discipline of managing outcomes through structured relationships, procedures and policies.” Governance plays an important part in the adoption and ongoing operation of any SOA initiative. It enforces compliance with the architecture and common semantics, and facilitates managing the enterprise wide development, use and evolution of services.

When discussing SOA governance, it is important to make sure that everyone is on the same page about what type of governance they are referring to. In SOA, we often discuss governance in terms of three different aspects of a service’s lifecycle:

  • Design time governance – Policies and procedures to ensure that the right services are built and used.
  • Run-time governance – Policies that affect the binding of consumers and providers.
  • Change-time governance – Policies and procedures that affect the design, versioning and provisioning of service enhancements.
    Run-time governance is implemented by a repository or other component of the infrastructure and is not the subject of this article. Design-time and change-time governance are implemented through processes and are the responsibility of the SOA program. Governance of SOA should include:
  • Policies regulating service definition and enhancements, including ownership, roles, criteria, review guidelines, etc.
  • Identification of roles, responsibilities, and owners.
  • Procedures for designing conformant service interfaces.
  • Procedures for ensuring correct and appropriate services are used.
  • Review of service interface definitions for new services and enhancements to existing services. The review ensures that the service definition conforms to standards and aligns with the business and information models. The review is typically done by a service review board or the unit responsible for the service.
  • Architectural review of applications and services to ensure that they conform to the SOA and enterprise architecture. This review is typically done by an Architecture Review Board. Often, these two reviews are done together.
  • Guidelines, templates, checklists and examples that make it easy to conform to governance requirements.

An organizational and governance structure will need to be established to manage governance. But care should be taken to avoid the common mistake of over governance, typified by too much process. It is clearly the responsibility of the SOA program, and typically the architecture group, to ensure that services and applications conform to the architectural standards and requirements. However, it is much more effective to aid and enable applications to easily conform, than it is to try and force them into alignment after the fact. Architecture should be viewed as a help, not a hindrance to delivering business value. While part of governance is a final approval for conformance, the thrust of governance should be enablement.

Experience has shown that a proactive approach is generally more effective than a purely compliance based approach. This can be accomplished through the use of standard templates and conformance questionnaires. But, the SOA organization can go much farther than that. Providing examples of designs that conform to the architecture and standards (and why) is another important step. Most effective is to provide architecture assistance to projects to help them during the design phase to understand the architecture and develop conforming designs.

As with most enterprise issues, there is no one right solution for governance. It must match the culture and structure of the enterprise and meet the requirements of their development styles (e.g. in-house development has different governance requirements than outsourced development). The primary responsibilities of the governance organization are to:

  • Keep architecture current – There must be a mechanism for managing the lifecycle of the architecture itself. This includes feedback loops, periodic updating, releases, versioning, roadmaps, etc.
  • Manage lifecycle of shared services – Resources that are shared across the enterprise, such as common services, need to be managed by a central organization. The governance model will have to decide how those services are managed throughout their lifecycle, including both design-time and change-time issues.
  • Decision and issue resolution – Governance needs to define who is responsible for making certain decisions and how issues are resolved, escalated and appealed.
  • Conformance – Finally, the governance organization needs to ensure that applications conform to architectural standards. This includes a clear definition of how conformance will be verified and measured and how exceptions will be handled.

Warning: Developing the governance structure is not the first thing that should be addressed by the SOA organization as part of an adoption strategy. A common mistake is to put too much focus on the governance structure too early in the program. However, governance and conformance are not really needed until after the pilot phase of the rollout and can be developed during that phase. As with the adoption of any new technology or processes; start slow, figure out what works, grow it a little first, figure out how to scale it before rolling it out enterprise wide, and keep it current with feedback.

Similar Resources

Featured Certificate: BPM Specialist

Everyone starts here.

You're looking for a way to improve your process improvement skills, but you're not sure where to start.

Earning your Business Process Management Specialist (BPMS) Certificate will give you the competitive advantage you need in today's world. Our courses help you deliver faster and makes projects easier.

Your skills will include building hierarchical process models, using tools to analyze and assess process performance, defining critical process metrics, using best practice principles to redesign processes, developing process improvement project plans, building a center of excellence, and establishing process governance.

The BPMS Certificate is the perfect way to show employers that you are serious about business process management. With in-depth knowledge of process improvement and management, you'll be able to take your business career to the next level.

Learn more about the BPM Specialist Certificate

Courses

  •  

 
Certificates

  • Business Process Management Specialist
  • Earning your Business Process Management Specialist (BPMS) Certificate will provide you with a distinct competitive advantage in today’s rapidly evolving business landscape. With in-depth knowledge of process improvement and management, you’ll be able to take your business career to the next level.
  • BPM Professional Certificate
    Business Process Management Professional
  • Earning your Business Process Management Professional (BPMP) Certificate will elevate your expertise and professional standing in the field of business process management. Our BPMP Certificate is a tangible symbol of your achievement, demonstrating your in-depth knowledge of process improvement and management.

Certification

BPM Certification

  • Make the most of your hard-earned skills. Earn the respect of your peers and superiors with Business Process Management Certification from the industry's top BPM educational organization.

Courses

 
Certificates

  • Operational Excellence Specialist
  • Earning your Operational Excellence Specialist Certificate will provide you with a distinct advantage in driving organizational excellence and achieving sustainable improvements in performance.
 

 

OpEx Professional Certificate

  • Operational Excellence Professional
  • Earn your Operational Excellence Professional Certificate and gain a competitive edge in driving organizational excellence and achieving sustainable improvements in performance.

Courses
Certificate
  •  

  • Agile BPM Specialist
  • Earn your Agile BPM Specialist Certificate and gain a competitive edge in driving business process management (BPM) with agile methodologies. You’ll gain a strong understanding of how to apply agile principles and concepts to business process management initiatives.  
 

Business Architecture

 
Certificates

  • Business Architecture Specialist
  • The Business Architecture Specialist (BAIS) Certificate is proof that you’ve begun your business architecture journey by committing to the industry’s most meaningful and credible business architecture training program.

  • Business Architecture Professional
  • When you earn your Business Architecture Professional (BAIP) Certificate, you will be able to design and implement a governance structure for your organization, develop and optimize business processes, and manage business information effectively.

BA CertificationCertification

  • Make the most of your hard-earned skills. Earn the respect of your peers and superiors with Business Architecture Certification from the industry's top BPM educational organization.

Courses

 
Certificates

  • Digital Transformation Specialist
  • Earning your Digital Transformation Specialist Certificate will provide you with a distinct advantage in today’s rapidly evolving business landscape. 
 

 

  • Digital Transformation Professional
  • The Digital Transformation Professional Certificate is the first program in the industry to cover all the key pillars of Digital Transformation holistically with practical recommendations and exercises.

Courses
Certificate

  • Agile Business Analysis Specialist
  • Earning your Agile Business Analysis Specialist Certificate will provide you with a distinct advantage in the world of agile software development.

Courses
Certificate
  • DAS Certificate
  • Decision Automation Specialist
  • Earning your Decision Automation Certificate will empower you to excel in the dynamic field of automated decision-making, where data-driven insights are pivotal to driving business innovation and efficiency.