Stakeholder Requirements and Communication Questions
Skills for eliciting, synthesizing, and communicating requirements across diverse stakeholders, with an emphasis on translating specialized compliance and regulatory obligations into language and priorities that non compliance stakeholders understand. Candidates should demonstrate techniques for running one on one interviews and group workshops, managing different technical fluency levels and communication styles, reconciling conflicting priorities, and framing compliance tradeoffs in terms of business impact, financial implications, operational burden, and customer experience. Assessments will focus on concrete approaches to gather complete requirements, influence business owners, negotiate pragmatic solutions, and ensure alignment between legal, compliance, and engineering teams.
MediumTechnical
47 practiced
Legal insists on a 7-year retention for certain records; engineering warns of storage and performance costs. As the BI Analyst, what questions would you ask both teams, and what data and analyses would you prepare to reconcile positions and recommend a pragmatic retention policy (e.g., selective retention, anonymization after X years)?
Sample Answer
Situation: Legal requires 7-year retention for certain records; engineering is concerned about storage and performance. As the BI Analyst I’d act as the neutral analyst to quantify trade-offs and propose a pragmatic policy (selective retention, anonymization, tiering).Questions to ask- To Legal: - Which specific record types are covered? (schemas/tables, PII vs. non-PII) - Why 7 years? (statute/regulation, litigation hold, audit trail) - Are there minimum data elements required vs. full row? Can derived/aggregated forms satisfy the requirement? - Are there records subject to differing retention (e.g., contracts vs. logs)? - Acceptable controls for de-identification/anonymization?- To Engineering: - Current storage used by these records (GB/TB) and growth rate - Which systems store them (OLTP, data lake, analytics DB)? - Performance impact: which queries/ETL jobs reference older data and how often? - Cost per GB for hot vs. cold storage, backup, and retrieval latency - Feasibility and cost of tiering, partitioning, compression, or anonymization pipelinesData and analyses to prepare- Inventory: table-level catalog of affected datasets, row counts, schema, PII flags- Usage analysis: query logs showing frequency of access by data age (0–1y,1–3y,3–7y,7+)- Cost model: storage + compute + backup costs per year by storage tier; cost delta of keeping 7y vs. 3y vs. aggregated- Performance impact: latency/CPU for queries that scan historical partitions; estimate savings from partition pruning or archiving- Risk model: mapping legal risk severity vs. retention options (full retention, anonymize after X, keep metadata only)- Options comparison table: technical feasibility, cost, legal acceptability, operational complexityRecommendation framework (example)- Short term: preserve current data; run anonymization/aggregation proof-of-concept on non-critical dataset to validate legal acceptance.- Medium term: implement tiered retention: - 0–2 years: hot analytics store (full detail) - 2–7 years: cold/archival tier with compressed format and partitioning; restrict direct query; provide on-demand restore - After 7 years: delete or retain only anonymized aggregates/metadata that Legal confirms suffice- Include controls: audit logs, retention automation, documentation of legal sign-off, and test restores.Deliverables to stakeholders- Executive one-pager with cost vs. risk trade-offs- Detailed inventory + usage dashboards (Power BI/Looker) showing access by age- Cost model spreadsheet with scenarios- Proposed retention policy draft with legal and engineering action items and timelineThis approach quantifies impacts, aligns legal requirements with technical constraints, and offers concrete, low-risk alternatives (selective retention, anonymization, tiering) for a negotiated, auditable policy.
EasyTechnical
42 practiced
Explain common data sensitivity classification tiers (e.g., public, internal, confidential, restricted) and describe how each classification should influence BI design choices: masking, aggregation, row-level security, access approvals, and dashboard metadata. Provide concrete examples.
Sample Answer
Common classification tiers:- Public: Information safe to share externally (e.g., marketing collateral, aggregated KPIs).- Internal: For employees only (e.g., org charts, non-sensitive operational metrics).- Confidential: Business-sensitive (e.g., customer lists, contract terms, detailed financials).- Restricted (or Highly Sensitive): Regulated or personal identifiers (PII, PHI, payment data).How classification drives BI design choices:Masking- Public/Internal: no masking for aggregated metrics.- Confidential: mask partial identifiers (e.g., show customer ID as CUST-XXXX or hash emails).- Restricted: full redaction or tokenization in dashboards; only de‑tokenized via secure workflows.Example: In a customer churn dashboard, show full email for Internal but mask to *****@example.com for Confidential; hide for Restricted.Aggregation- Public: always present only aggregated metrics (e.g., monthly revenue).- Confidential/Restricted: enforce minimum cohort sizes (k-anonymity) and only expose aggregates to prevent re-identification.Example: Don’t show cohort of <10 customers in a segment report.Row-level security (RLS)- Internal: department-level RLS (finance vs. marketing).- Confidential/Restricted: strict user-based RLS tied to IAM/groups and attribute-based access (e.g., region, customer-owner).Example: Sales reps see only their accounts; execs see region aggregates.Access approvals & workflows- Confidential/Restricted: require approval, audit trail, and short-lived access tokens. Use ticketing (data steward sign-off) before granting dashboard view or drill-through to sensitive rows.- Internal/Public: self-service with standard onboarding.Dashboard metadata & labeling- Always surface classification badges, usage guidance, retention policy, data owner, and contact for approvals.Example: A dashboard header: [CONFIDENTIAL] — Do not export PII. Contact: data.steward@org.Putting it together: A sales performance dashboard might be labeled CONFIDENTIAL, display aggregated KPIs publicly, use RLS so reps see only their rows, mask customer emails, hide small cohorts, and require a steward approval to enable a drill-through that reveals customer contact details. These controls minimize risk while preserving analytical utility.
MediumTechnical
51 practiced
Write three user stories (with acceptance criteria) that capture requirements for an anonymization pipeline used by BI: (1) data consumer story, (2) compliance story, (3) engineering story. Ensure each story includes success metrics and at least one non-functional constraint (throughput, latency, or SLA).
Sample Answer
1) Data Consumer Story (BI Analyst)As a BI analyst, I want anonymized event- and user-level datasets that preserve analytical utility (aggregations, funnels, cohort membership) so I can build dashboards without exposing PII.Acceptance Criteria:- GIVEN raw event streams with PII, WHEN I query the anonymized dataset, THEN personal identifiers (name, email, SSN) are removed or tokenized and replaced with irreversible hashes or surrogate IDs.- Aggregations (counts, sums, uniques by surrogate ID) match raw data within an error tolerance of ±2% for weekly cohorts.- Dataset refresh latency ≤ 30 minutes from ingestion; SLA 99.5% availability.- Documentation includes data dictionary, mapping rules, and known analytical limitations.Success Metrics:- 95% of BI reports migrate to anonymized source without logic changes.- Analytical drift (difference vs. raw baseline) ≤ 2% for top 10 KPIs.Non-functional constraint: Throughput must support 10k events/sec ingestion with anonymization applied in-stream.2) Compliance StoryAs a Compliance Officer, I want the anonymization pipeline to meet regulatory requirements (GDPR/CCPA) and provide auditable proofs of anonymization so we can demonstrate lawful data handling.Acceptance Criteria:- GIVEN a data subject request, WHEN requested, THEN pipeline can produce an audit trail showing what transformations were applied to their records (no reversible PII in logs).- Anonymization techniques meet “pseudonymization” or “irreversible anonymization” standards per policy; reversible keys (if any) are stored in HSM with access logs.- Retention and deletion policies enforced automatically; delete operations completed within SLA 24 hours.Success Metrics:- 100% of audit requests answered with full audit trail within 48 hours.- Zero compliance incidents related to PII leakage in a 12-month period.Non-functional constraint: Latency of audit-export operations ≤ 2 hours; pipeline must support 10 concurrent audit exports.3) Engineering StoryAs a Data Engineer, I want a modular, testable anonymization pipeline component with automated tests and monitoring so it can be deployed and scaled reliably.Acceptance Criteria:- GIVEN a CI build, WHEN code changes are merged, THEN unit/integration tests for anonymization rules run and must pass before deployment.- Pipeline exposes metrics (records processed, error rate, processing latency) to monitoring and alerts when error rate > 0.1% or latency > 2× baseline.- Can scale horizontally to maintain end-to-end processing latency ≤ 5 seconds per event in stream mode.Success Metrics:- Deployments with zero production rollbacks for 6 months.- Mean time to detect/resolve anonymization incidents < 1 hour.Non-functional constraint: SLA for pipeline processing 99.9%; supports autoscaling to maintain throughput of 20k events/sec.
EasyTechnical
50 practiced
Design a one-page template you'd use during a kickoff to capture requirements for a compliance dashboard. Include required fields and short descriptions such as: purpose, audience, KPIs, frequency, data sources (tables/events), owners, sensitivity/classification, retention rules, acceptance criteria, and SLA. Explain why each field matters for compliance reporting.
Sample Answer
One‑Page Kickoff: Compliance Dashboard RequirementsProject title / ID:- Short name for tracking and linking to tickets.Purpose:- What question does the dashboard answer? (e.g., demonstrate regulatory adherence for GDPR/PCI)- Why it matters: defines scope and guides metric selection.Audience:- Primary users & consumers (e.g., Compliance team, C-suite, Ops)- Why: determines detail level, visuals, and access controls.Key KPIs / Metrics:- List metrics, definitions, calculation logic (numerator/denominator), thresholds- Why: ensures consistent, auditable measurements.Frequency / Refresh:- Real-time / hourly / daily / weekly; expected latency- Why: compliance often requires specific timeliness.Data Sources (tables/events):- Source systems, table names, event streams, and sample queries- Why: identifies ETL effort, lineage, and validation points.Owners & Stakeholders:- Data owner, dashboard owner, approver, technical contacts (names/emails)- Why: accountability for data quality and sign-off.Sensitivity / Classification:- Data classification (PII, PHI, confidential) and masking requirements- Why: drives access controls, masking, and storage rules.Retention / Archival rules:- How long data must be kept (per policy) and deletion schedule- Why: compliance mandates retention windows and supports audits.Acceptance Criteria:- Specific pass/fail checks (e.g., KPI matches audit sample within X%, row count parity, data latency < Y)- Why: objective sign-off conditions for launch.SLA / Support:- Uptime, data freshness SLA, incident response & on‑call contacts- Why: sets expectations for availability and remediation for regulators.Security & Access:- Roles allowed, RBAC groups, VPN/MFA needs- Why: protects sensitive compliance data.Auditability / Logging:- Required logs, versioning, change control (who changed calc/when)- Why: regulators require traceable history.Risks & Assumptions:- Known gaps, backfills, delayed sources- Why: flags issues that could delay compliance reporting.Notes / Next steps:- Implementation milestones, handoff date, validation checklistUse this form during kickoff, capture answers verbatim, then convert definitions into the dashboard spec and acceptance tests.
EasyTechnical
47 practiced
For a nightly SOX control over privileged user access, list the minimal set of fields and design considerations you'd include in an extract to support audit evidence (e.g., user_id, role, permission, access_granted_at, access_revoked_at, approval_id, approver, change_reason, source_log_id). Explain retention and tamper-evidence considerations.
Sample Answer
Minimal fields (each row = one privilege assignment/change event):- user_id (unique, immutable user identifier)- username / user_email (friendly lookup)- role_id and role_name (role or group assigned)- permission_id and permission_name (specific privilege)- access_granted_at (UTC timestamp)- access_revoked_at (UTC timestamp, nullable)- change_type (GRANT/REVOKE/MODIFY)- change_requested_at (timestamp)- approval_id (workflow request id)- approver_id and approver_name- approval_decision and approval_timestamp- change_reason / ticket_id (link to change request)- source_system and source_log_id (originating system & log pointer)- record_created_at and record_hashed_id (ingest timestamp and integrity hash)- effective_until (if temporary access)- ttl_or_expiry_flag (to flag stale privileges)Design considerations:- Include immutable event-per-row (append-only) for clear audit trail.- Use UTC ISO8601 timestamps and consistent types to allow deterministic comparisons.- Normalize identifiers but include denormalized labels for reporting convenience.- Include foreign-key links to IAM ticketing and PAM systems so auditors can drill through.- Capture both request/approval and enforcement events (grant vs. actual effective time).- Include retention metadata and versioning for corrected records.Retention and tamper-evidence:- Retention policy should meet SOX/legal requirements (typically 7 years); store raw extract snapshots daily plus aggregated indexes.- Keep append-only raw files (WORM storage or object lock) and write final nightly extract to immutable storage.- Generate and store a cryptographic hash (SHA-256) per file and per row (hashed_id) and publish/store hashes separately (e.g., in key-value store) to detect tampering.- Maintain an audit-log of extract creation: job_id, run_by, run_timestamp, checksum, and storage_location.- Implement access controls on the extract store (least privilege, MFA, RBAC) and monitor with alerts on modification attempts.- Periodically re-verify stored hashes and log results; retain verification logs.- Provide easy joins in BI layer to map IDs to human-readable fields while keeping raw immutable source for auditors.
Unlock Full Question Bank
Get access to hundreds of Stakeholder Requirements and Communication interview questions and detailed answers.