A New Method and Metric for Quantitative Risk Analysis

Quantitative risk analysis provides practitioners a deeper understanding of the risks in their projects. However, the existing methods for impact assessment are inaccurate and the metrics for risk prioritization also can not properly prioritize the risks for certain cases. In this paper, we propose a method for measuring risk impact by using AHP. We also propose a new indicator, risk intensity (RI), to prioritize the risks of a project. Compared with the widely used metric Risk Exposure (RE), the contours of RI show a convex pattern whereas the contours of RE show a concave pattern. RI allows practitioners weight probability and risk impact differently and can better satisfy the needs of risk prioritization. Through a case study, we found that RI could better prioritize the risks than RE.

[1]  B. Boehm Software risk management: principles and practices , 1991, IEEE Software.

[2]  C. Ravindranath Pandian,et al.  Applied Software Risk Management: A Guide for Software Project Managers , 2006 .

[3]  Louis Anthony Cox,et al.  What's Wrong with Risk Matrices? , 2008, Risk analysis : an official publication of the Society for Risk Analysis.

[4]  Susan A. Sherer,et al.  Managing risk beyond the control of IS managers: the role of business management , 2004, 37th Annual Hawaii International Conference on System Sciences, 2004. Proceedings of the.

[5]  Saul I. Gass,et al.  The Analytic Hierarchy Process - An Exposition , 2001, Oper. Res..

[6]  David P. Gluch,et al.  A Construct for Describing Software Development Risks , 1994 .

[7]  T. Saaty Relative measurement and its generalization in decision making why pairwise comparisons are central in mathematics for the measurement of intangible factors the analytic hierarchy/network process , 2008 .

[8]  Sergey M. Avdoshin,et al.  Software risk management , 2011, 2011 7th Central and Eastern European Software Engineering Conference (CEE-SECR).

[9]  Brian White Enterprise Opportunity and Risk , 2011 .

[10]  John McManus Risk Management in Software Development Projects , 2003 .

[11]  Shin Ta Liu,et al.  Project Management: A Systems Approach To Planning, Scheduling and Controlling (Book) , 2004 .

[12]  N. Bhushan,et al.  Strategic Decision Making: Applying the Analytic Hierarchy Process , 2004 .

[13]  Thomas L. Saaty Fundamentals of decision making and priority theory , 2000 .

[14]  S. Lipovetsky The synthetic hierarchy method: An optimizing approach to obtaining priorities in the AHP , 1996 .

[15]  Stan Lipovetsky,et al.  Linear methods in multimode data analysis for decision making , 1994, Comput. Oper. Res..

[16]  Louis Anthony (Tony) Cox,et al.  Some Limitations of Qualitative Risk Rating Systems , 2005, Risk analysis : an official publication of the Society for Risk Analysis.