ITAC-14

Can you provide a current, detailed accessibility roadmap with delivery timelines?

Explanation

This question is asking whether your organization has a documented plan (roadmap) for improving the accessibility of your IT systems or products, with specific timelines for when these improvements will be delivered. IT accessibility refers to making technology usable by people with various disabilities (visual, hearing, motor, or cognitive impairments). This includes ensuring software, websites, and applications can be used by people who rely on assistive technologies like screen readers, voice recognition, or alternative input devices. Why it's asked in a security assessment: 1. Compliance requirements: Many organizations must comply with accessibility laws and regulations (like ADA, Section 508, WCAG standards). 2. Risk management: Inaccessible systems can create legal and reputational risks. 3. Inclusive security: Security measures should not exclude users with disabilities. 4. Institutional commitment: Shows your organization has a structured approach to addressing accessibility issues. The guidance clarifies that your roadmap should focus on addressing known accessibility issues and planned improvements, not necessarily unreleased product features. This means you should document how you plan to fix existing accessibility problems and improve overall accessibility over time. To best answer this question: 1. Provide your current accessibility roadmap document or a summary of it. 2. Include specific timelines for implementing accessibility improvements. 3. Highlight how you prioritize and track accessibility issues. 4. Mention any accessibility standards you're working toward (WCAG 2.1 AA, for example). 5. If you don't have a formal roadmap, explain your current approach to accessibility and plans to develop a more structured roadmap.

Guidance

A detailed accessibility roadmap should reference improvements and progress on known accessibility issues as appropriate but does not necessarily need to list unreleased product features.

Example Responses

Example Response 1

Yes, we maintain a comprehensive accessibility roadmap that is updated quarterly Our current roadmap (attached as 'AccessibilityRoadmap_2023Q3.pdf') details our plan to achieve WCAG 2.1 AA compliance across all our products by Q2 2024 The roadmap includes: 1) Remediation of 24 high-priority accessibility issues identified in our most recent audit (scheduled for completion by December 2023), 2) Implementation of improved keyboard navigation across all user interfaces (Q1 2024), 3) Enhancement of screen reader compatibility for our reporting dashboards (Q1-Q2 2024), 4) Color contrast improvements across all user interfaces (Q2 2024), and 5) Accessibility training program for all development staff (ongoing, with completion by Q1 2024) We track progress against this roadmap in our project management system with monthly reviews by our Accessibility Steering Committee.

Example Response 2

Yes, we have developed an accessibility roadmap based on our recent third-party accessibility audit Our roadmap is divided into three phases with specific deliverables: Phase 1 (Current-Q4 2023): Addressing critical barriers including fixing non-compliant form labels, improving keyboard focus indicators, and adding proper ARIA attributes to dynamic content Phase 2 (Q1-Q2 2024): Enhancing user experience with improved screen reader announcements, keyboard shortcuts, and text resizing capabilities Phase 3 (Q3-Q4 2024): Achieving full WCAG 2.1 AA compliance including implementing accessible authentication processes and improving PDF accessibility We've allocated dedicated development resources to this initiative and progress is reviewed monthly by our product and engineering leadership Our accessibility specialist can provide additional details on specific implementation timelines if needed.

Example Response 3

No, we currently do not have a detailed accessibility roadmap with delivery timelines While we recognize the importance of accessibility, our approach has been more reactive than proactive We address accessibility issues as they are reported by users, but we haven't conducted a comprehensive accessibility audit or developed a structured plan for improvements We do have general guidelines for developers to follow regarding accessibility, but compliance is inconsistent We are planning to engage an accessibility consultant in the next quarter to help us develop a formal roadmap and establish proper processes for accessibility testing and remediation In the meantime, we can provide documentation of our current accessibility guidelines and the accessibility features we currently support.

Context

Tab
IT Accessibility
Category
IT Accessibility

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron