Architecture Governance and TOGAF

Architecture governance is the set of processes, roles, and standards that ensure architectural decisions are made consistently, communicated across teams, and validated against quality attribute requirements. Without governance, architecture is a recommendation, not a constraint. Teams make locally reasonable decisions that collectively produce an incoherent system.

Governance operates on a spectrum. Centralised governance (all architectural decisions approved by a central architecture team) provides consistency but creates a bottleneck that slows delivery. Decentralised governance (teams own their architecture entirely) maximises speed but produces fragmentation. Federated governance sits in the middle: a small architecture function sets standards, approved technology choices, and non-negotiable constraints; teams make decisions within those guardrails.

Most successful engineering organisations use federated governance. The fintech in the opening is an example of decentralised governance producing fragmentation that required expensive remediation. The architecture function that formed in Q3 2023 adopted federated governance.

The Architecture Review Board (ARB) reviews significant architectural decisions before implementation. It is not a bureaucratic approval gate for every decision. Its scope is decisions that are expensive to reverse, that cross team boundaries, or that affect shared infrastructure. The ARB should review new service or platform introductions, changes to shared APIs or event schemas, major infrastructure technology changes, and decisions affecting security, compliance, or data residency. It should not review technology choices within a team's bounded context, refactoring that does not change external interfaces, or implementation details that do not affect other teams.

TOGAF (The Open Group Architecture Framework) is an enterprise architecture framework providing a structured method for developing, managing, and governing enterprise IT architecture. The 10th edition was published in 2022. TOGAF organises architecture into four domains: Business Architecture (business strategy, processes, and organisational structure), Data Architecture (logical and physical data assets), Application Architecture (individual applications and their interactions), and Technology Architecture (infrastructure and platforms).

The Architecture Development Method (ADM) is the cyclical process TOGAF provides for developing and evolving architecture. It has nine phases. The Preliminary phase sets up governance and defines principles. Phase A (Architecture Vision) defines scope, identifies stakeholders, and produces a high-level vision. Phases B, C, and D develop the business, information systems, and technology architectures respectively. Phases E and F identify solutions and produce a migration roadmap. Phase G oversees implementation. Phase H manages ongoing changes. Requirements Management runs continuously through all phases.

The ADM is a reference cycle, not a mandatory waterfall. Organisations running iterative programmes apply the ADM in shorter cycles, re-entering at Phase A when priorities change. The TOGAF certification programme (Foundation and Practitioner) is one of the most widely held enterprise architecture certifications globally.

An architectural fitness function is an automated test that verifies a system's adherence to an architectural characteristic. The term was coined by Neal Ford, Rebecca Parsons, and Patrick Kua in Building Evolutionary Architectures(2017). Fitness functions shift architecture enforcement from documentation and periodic review to automated, continuous verification in the CI/CD pipeline.

A dependency direction fitness function verifies that the domain layer does not import from the infrastructure layer. In Java, ArchUnit provides a domain-specific language for writing these as JUnit tests. In Python, a custom script that inspects import statements achieves the same result. Both run in the CI pipeline on every commit and block the build if the constraint is violated.

A service coupling fitness function verifies that Service A's database user does not have direct access to Service B's database schema. This enforces the microservices rule that each service owns its own data. A PostgreSQL query against the information schema can verify this. Running it in CI means no deployment will ever introduce a direct cross-service database coupling without being caught automatically.

A 50-engineer organisation does not need a full TOGAF programme. An effective lightweight governance system combines four elements. A technology radar is a quarterly list of technologies in four categories: Adopt (use freely), Trial (experiment with ARB awareness), Assess (watch but do not adopt yet), and Hold (do not use for new work). The ThoughtWorks Technology Radar, published quarterly since 2010, is the model for this approach.

Architecture Decision Records (ADRs) as governance artefacts capture team-level decisions in version-controlled documents reviewed in pull requests. Cross-team decisions are escalated to the architecture channel or ARB. ADRs produce a searchable record of why each decision was made, making future governance decisions better-informed.

Fitness functions in CI automate enforcement of critical architectural rules: dependency direction, API contract compliance, security policies, and service coupling. These replace the most time-consuming manual review activities with automated checks that run on every commit.

Architecture office hours, a weekly 30-minute open session where teams discuss architectural questions without a formal review gate, reduce the friction of seeking architectural input. Engineers who might avoid a formal ARB review will ask a question in a low-stakes open session, catching problems earlier.