Authors:

Tanja Hall, Lead Requirements Engineer at BAYOOMED

Julia Schliesch, Marketing Generalist at BAYOOMED

Digital services, new healthcare offerings, changes in the law, or the further development of existing systems—health insurance companies are constantly faced with the challenge of turning complex requirements into workable solutions.

Yet the role that requirements engineering plays in a project’s success is often underestimated. Many challenges do not arise during implementation, but rather as early as the requirements definition phase. When business units, IT, data protection teams, or other stakeholders have differing expectations, delays, rework, and additional costs are often inevitable.

This is exactly where requirements engineering comes in. The term describes the structured handling of requirements—from gathering and analyzing them to coordinating, documenting, and managing them. The goal is to understand the needs of all stakeholders and ensure that the developed solution meets those requirements.

Five key lessons have emerged from training sessions, reviews, and projects in the health insurance sector.

1. Communication is more important than any tool

The most important factor for success in requirements engineering is not the method, the tool, or the chosen process model—but communication.

Health insurance companies bring together a variety of departments: benefits, nursing care, premiums, customer service, IT, data protection, legal affairs, and financial control. Each department has its own requirements, perspectives, and terminology.

This is exactly where misunderstandings often arise. While some teams work with tickets or user stories, others use business concepts or process descriptions. If a common understanding isn’t established, ambiguities can arise that may carry over into the entire project.

Successful requirements engineering therefore begins with a common language and a shared understanding of the goals, requirements, and expectations of all stakeholders.

2. Requirements engineering affects more employees than expected

Many employees work with requirements on a daily basis without consciously recognizing this as requirements engineering.

Whether it’s a change request, a business concept, a process description, or a user story—requirements arise in many parts of the organization. That’s why requirements engineering isn’t exclusively the responsibility of business analysts or project teams.

A shared understanding helps to capture requirements in a structured manner, document them in a transparent way, and implement them in a targeted manner.

3. Data protection, regulatory requirements, and information security must be taken into account from the very beginning

Health insurance companies process highly sensitive health and social data. The requirements for data protection, information security, and regulatory compliance are correspondingly high.

When gathering requirements, the following factors, among others, must be taken into account:

  • General Data Protection Regulation (GDPR)

  • Provisions of the Social Code (SGB)

  • Requirements of the GKV-Spitzenverband

  • Guidelines from the Federal Office for Social Security (BAS)

  • Information Security Requirements

If these aspects are not considered until late in the project, this often leads to time-consuming adjustments, delays, or additional costs.

4. Not every area requires the same approach

A common mistake is trying to establish a single, uniform process for the entire organization.

In practice, however, the requirements differ significantly. Developing a digital service for policyholders involves different requirements than optimizing internal business processes or implementing regulatory changes.

Successful requirements engineering takes these differences into account and adapts approaches to the respective business processes and functional areas.

5. Well-defined requirements save time and money down the road

Requirements engineering is often perceived as an extra burden. In fact, the opposite is usually true.

The sooner requirements are documented in a complete, clear, and transparent manner, the lower the costs will be in later project phases.

The benefits are evident, among other things, in:

  • fewer undesirable developments

  • lower adjustment costs

  • fewer bugs and less rework

  • More efficient verification and validation

  • greater focus on users and the market

Especially in complex health insurance projects, a structured approach to requirements can play a crucial role in reducing risks and using resources efficiently.

Conclusion

The biggest challenge in requirements engineering is communication among all stakeholders. Business units, IT, data protection, legal, and other departments each bring different perspectives, requirements, and priorities to the table. Bringing these together early on and establishing a common understanding is the foundation for successful projects.

Only on this basis can requirements be identified, documented, and implemented in a comprehensive, transparent, and context-appropriate manner.

If professional, technical, and regulatory requirements are taken into account early on, misunderstandings can be reduced, risks minimized, and digital transformation projects implemented more successfully.

If you have any questions about requirements engineering, please feel free to contact us:

Preferred contact method
Data protection notice *