Professional Documents
Culture Documents
Risk Managament in SE
Risk Managament in SE
Risk Managament in SE
Objectives
– To explain the concept of risk & to develop its role
within the software development process
– To introduce the use of risk management as a
means of identifying & controlling risk in software
development
1
What is risk?
Definitions of risk
2
Risks in the everyday world
3
Why is the software world interested in risk?
Technology
Hardware Software
SYSTEM
People Schedule
Cost
4
Why is it often forgotten?
• Premature coding
• Legal implications
• Objectives
– To identify, address & eliminate risk items before
they become either threats to successful software
operation or major sources of software rework
– Necessary that some form of measurement is
undertaken to determine & classify the range of
risks a software development project faces, & to
identify areas where a significant exposure exists
5
The need to manage risk
Expert knowledge,
judgement & experience
Individual knowledge,
judgement & experience
System complexity
The questions
6
Software risk management steps & techniques
Checklists
Risk identification Decision-driver analysis
Assumption analysis
Decomposition
Performance models
Cost models
Risk assessment Risk analysis Network analysis
Decision analysis
Quality-factor analysis
Risk exposure
Risk prioritisation Risk leverage
Risk management Compound -risk reduction
Buying information
Risk avoidance
Risk transfer
Risk-management planning Risk reduction
Risk-element planning
Risk-plan integration
Prototypes
Risk control Risk resolution Simulations
Benchmarks
Analyses
Staffing Milestone tracking
Top 10 tracking
[Boehm 1991] Risk monitoring Risk reassessment
Corrective action
© Wolfgang Emmerich & Anthony Finkelstein 13
Risk assessment
7
Risk control
8
E.g. project sizing matrix
Always a question
of balance
- full risk analysis
may not
improve risk
probability
estimation
significantly!
[Used @ DERA]
© Wolfgang Emmerich & Anthony Finkelstein 17
9
E.g. risk management plan
[Used @ DERA]
© Wolfgang Emmerich & Anthony Finkelstein 20
10
Ways of dealing with risks
11
Putting risk management into practice
Not knowing
what the
risks are!
© Wolfgang Emmerich & Anthony Finkelstein 24
12
Key points
Core references
13
Supplementary references
14