Language Translation
Governor Mike Braun
  Close Menu

training onboarding image

Onboarding Process for the IOT Custom Application Development Center of Excellence (CoE). This process ensures that new teams or projects align with compliance, security, and platform standards from day one. This can also be used to begin modernization of an existing application.

Phase 1: Intake & Assessment

Goal: Understand the project scope, stakeholders, and compliance needs.

  • Contact IOT Application Development
  • Select “IOT Project Request” tile
  • Include “Attn To: IOT Application Development Team” and “Application Development CoE” in the Idea Description.
  • Conduct initial discovery session with Application Development and/or Architecture teams
  • Identify NIST 800-53 applicability and EO 25-19 compliance requirements
  • Determine IDP readiness and paved path alignment

Phase 2: Planning & Alignment

Goal: Align project with CoE standards, tools, and governance.

  • Assign CoE liaison (architect or project advisor)
  • Define architecture and security requirements
  • Select appropriate paved path (tech stack, CI/CD pipeline, hosting model)
  • Review reusable components and shared services
  • Establish compliance roadmap (POA&M if needed)

Phase 3: Environment Setup

Goal: Provide the technical foundation for development.

  • Provision development environments via IDP
  • Configure CI/CD pipelines with security gates
  • Integrate automated compliance checks (e.g., static code analysis, dependency scanning)
  • Set up observability tools (logging, monitoring, alerting)

Phase 4: Enablement & Training

Goal: Equip the team with knowledge and tools.

  • Conduct onboarding workshop (CoE standards, IDP usage, NIST controls)
  • Provide access to documentation, templates, and paved path guides
  • Assign required training (e.g., secure coding, NIST awareness)
  • Schedule regular check-ins with CoE advisor

Phase 5: Development & Oversight

Goal: Support secure, compliant, and efficient delivery.

  • Conduct architecture and security reviews at key milestones
  • Monitor adherence to IDP and CoE best practices
  • Track compliance metrics (control coverage, POA&M progress)
  • Provide technical and compliance support as needed

Phase 6: Launch & Transition

Goal: Ensure production readiness and long-term sustainability.

  • Complete final security assessment and compliance checklist
  • Conduct go-live readiness review
  • Transition to operations/support team with documentation
  • Capture lessons learned and feedback for CoE improvement