Managing risk in software development projects: a case study

Purpose - The main objective of the paper is to develop a risk management framework for software development projects from developers' perspective. Design/methodology/approach - This study uses a combined qualitative and quantitative technique with the active involvement of stakeholders in order to identify, analyze and respond to risks. The entire methodology has been explained using a case study on software development project in a public sector organization in Barbados. Findings - Analytical approach to managing risk in software development ensures effective delivery of projects to clients. Research limitations/implications - The proposed risk management framework has been applied to a single case. Practical implications - Software development projects are characterized by technical complexity, market and financial uncertainties and competent manpower availability. Therefore, successful project accomplishment depends on addressing those issues throughout the project phases. Effective risk management ensures the success of projects. Originality/value - There are several studies on managing risks in software development and information technology (IT) projects. Most of the studies identify and prioritize risks through empirical research in order to suggest mitigating measures. Although they are important to clients for future projects, these studies fail to provide any framework for risk management from software developers' perspective. Although a few studies introduced framework of risk management in software development, most of them are presented from clients' perspectives and very little effort has been made to integrate this with the software development cycle. As software developers absorb considerable amount of risks, an integrated framework for managing risks in software development from developers' perspective is needed. © Emerald Group Publishing Limited.

[1]  Jan H. P. Eloff,et al.  A comparative framework for risk analysis methods , 1993, Comput. Secur..

[2]  Yacov Y. Haimes,et al.  Multiobjective Decision‐Tree Analysis , 1990 .

[3]  David K. H. Chua,et al.  Model for Construction Budget Performance—Neural Network Approach , 1997 .

[4]  K. T. Yeo Risks, Classification of Estimates, and Contingency Management , 1990 .

[5]  F. W. McFarlan,et al.  Portfolio approach to information systems , 1989 .

[6]  Suzanne Rivard,et al.  Toward an Assessment of Software Development Risk , 1993, J. Manag. Inf. Syst..

[7]  Osama Moselhi,et al.  Project-network analysis using fuzzy sets theory , 1996 .

[8]  Prasanta Kumar Dey Decision support system for risk management: a case study , 2001 .

[9]  Osama Moselhi,et al.  Project Selection Considering Risk , 1993 .

[10]  Kathy Schwalbe,et al.  Information Technology Project Management , 1999 .

[11]  M. A. Mustafa,et al.  Project risk assessment using the analytic hierarchy process , 1991 .

[12]  Stephen O. Ogunlana,et al.  Selection and application of risk management tools and techniques for build-operate-transfer projects , 2004, Ind. Manag. Data Syst..

[13]  Barry W. Boehm,et al.  Theory-W Software Project Management: Principles and Examples , 1989, IEEE Trans. Software Eng..

[14]  David B. Ashley,et al.  Political Risks in International Construction , 1987 .

[15]  Shouhong Wang,et al.  Designing information systems for electronic commerce , 2001, Ind. Manag. Data Syst..

[16]  Martin Skitmore,et al.  Assessment and evaluation of contractor data against client goals using PERT approach , 1997 .

[17]  Prasanta Kumar Dey Process re-engineering for effective implementation of projects , 1999 .

[18]  Capers Jones,et al.  Assessment and control of software risks , 1994, Yourdon Press Computing Series.

[19]  Ammar Peter Kaka,et al.  A neural networks approach for cost flow forecasting , 1998 .

[20]  Terry Williams,et al.  The two-dimensionality of project risk , 1996 .

[21]  Terry Williams,et al.  A classified bibliography of recent research relating to project risk management , 1995 .

[22]  Prasanta Kumar Dey,et al.  An integrated assessment model for cross-country pipelines , 2002 .

[23]  David M. Wall,et al.  Distributions and correlations in Monte Carlo simulation , 1997 .

[24]  J. Perry,et al.  RISK AND ITS MANAGEMENT IN CONSTRUCTION PROJECTS. , 1985 .

[25]  Houston H. Carr,et al.  Risk Analysis for Information Technology , 1991, J. Manag. Inf. Syst..

[26]  R VitaleMichael The growing risks of information systems success , 1986 .

[27]  Anthony D. Songer,et al.  Risk analysis for revenue dependent infrastructure projects , 1997 .

[28]  Michael R. Vitale,et al.  The Growing Risks of Information Systems Success , 1986, MIS Q..

[29]  J. Berny A New Distribution Function for Risk Analysis , 1989 .

[30]  Y. Helio Yang Software quality management and ISO 9000 implementation , 2001, Ind. Manag. Data Syst..

[31]  Simaan M. AbouRizk,et al.  UTILITY-THEORY MODEL FOR BID MARKUP DECISIONS , 1996 .

[32]  Robert N. Charette,et al.  Software Engineering Risk Analysis and Management , 1989 .

[33]  Stephen O. Ogunlana,et al.  Project time risk analysis through simulation , 2001 .

[34]  Nicholas R. Farnum,et al.  Some Results Concerning the Estimation of Beta Distribution Parameters in PERT , 1987 .

[35]  B. Boehm Software risk management: principles and practices , 1991, IEEE Software.

[36]  Peter-Marc Fortune,et al.  Assessment and Control , 2008 .

[37]  Kt Yeo Project cost sensitivity and variability analysis , 1991 .

[38]  Kw Chau The validity of the triangular distribution assumption in Monte Carlo simulation of construction costs: empirical evidence from Hong Kong , 1995 .

[39]  Chris Chapman,et al.  Risk analysis: Testing some prejudices , 1983 .

[40]  Carl Martin Allwood,et al.  IT and strategic decision making , 2002, Ind. Manag. Data Syst..

[41]  He Zhi,et al.  Risk management for overseas construction projects , 1995 .

[42]  James E. Diekmann,et al.  Risk analysis: lessons from artificial intelligence , 1992 .

[43]  Osama Moselhi Pricing Construction Risk: Fuzzy Set Application , 1995 .

[44]  M. Meek,et al.  IT risk management , 2014 .

[45]  Prasanta Kumar Dey Re-engineering materials management: A case study on an Indian refinery , 2001, Bus. Process. Manag. J..

[46]  J. Rodney Turner,et al.  THE HANDBOOK OF PROJECT-BASED MANAGEMENT , 2008 .

[47]  Roozbeh Kangari,et al.  Construction risk assessment by linguistics , 1989 .

[48]  Kalle Lyytinen,et al.  A framework for identifying software project risks , 1998, CACM.

[49]  Paul S. Royer Risk Management: The Undiscovered Dimension of Project Management , 2000 .

[50]  Jack R. Meredith,et al.  Project Management: A Managerial Approach , 1989 .

[51]  Stephen O. Ogunlana,et al.  Planning for project control through risk analysis: a petroleum pipeline-laying project , 1994 .

[52]  Kakoli Bandyopadhyay,et al.  A framework for integrated risk management in information technology , 1999 .

[53]  Shi-Ming Huang,et al.  Assessing risk in ERP projects: identify and prioritize the factors , 2004, Ind. Manag. Data Syst..

[54]  David G Woodward Use of sensitivity analysis in build-own-operate-transfer project evaluation , 1995 .

[55]  Stephen O. Ogunlana,et al.  Decision support system for pipeline route selection , 1999 .

[56]  Yacov Y. Haimes,et al.  Distribution Analyzer and Risk Evaluator (DARE) Using Fault Trees , 1990 .

[57]  Ja Jimme Keizer,et al.  Risk management in product innovation projects , 1993 .

[58]  Peter E. D. Love,et al.  Management of risks in information technology projects , 2004, Ind. Manag. Data Syst..

[59]  V. M. Rao Tummala,et al.  Applying a Risk Management Process (RMP) to manage cost risk for an EHV transmission line project , 1999 .