How do we defend what we built?
The Operate stage is about defending product boundaries against scope creep. The product that tries to be everything becomes nothing. This stage provides the operational framework for defining, communicating, and defending product boundaries once the product is in the field.
Stage Objectives
- Define four product boundary zones (Core, Configurable, Optional Modules, Excluded Scope)
- Align product boundaries with ATO authorization boundaries
- Build the operational framework for saying no constructively
- Track and categorize scope creep requests
- Protect product margins through clear boundary communication
Key Activities
Boundary Zone Definition
Define your four product boundary zones: Zone 1 (Core Product -- always included), Zone 2 (Configurable Elements), Zone 3 (Optional Modules -- additional CLINs), Zone 4 (Excluded Scope -- professional services only).
ATO Boundary Alignment
Ensure product boundaries and authorization boundaries align. Feature changes that expand the authorization boundary trigger security assessment ($75K-$150K and 2-4 months).
Scope Creep Defense
Build your defense playbook for protecting product margins. Every 'small' customer request has real costs. Offer boundary-compliant alternatives.
Boundary Communication
Create clear communication templates for Zone 3 (optional module pricing) and Zone 4 (custom development estimates) requests.