Defining Indicators for Risk Assessment in Software Development Projects

The usage of indicators acts in both strategic and tactical levels, it is effective for optimization of processes and also supports managerial decisions. Despite the relevance of risk management in software projects, it is in fact still usually overlooked by the organizations that develop software. One reason for this fact is that the concept of risk is abstract and subjective, and its management does not bring apparent immediate practical result. Differently, for example, in the financial market, where the risk management is consolidated and widely applied, and it is currently a need for the companies that work in this field. Briefly, risk management practices just became effectively consolidated in the financial market field when the uncertainties became measurable. In this context, this paper aims to define and propose indicators that are specific for environments of software projects in order to support risk assessment activities - risk identification and risk analysis. To achieve this objective, we first developed a systematic mapping study in order to collect evidences about metrics, indicators and relevant information for risk assessment. These findings were combined with the identification of measurable risk factors, providing, thus, a set of categorized indicators for software development environments.

[1]  Khaled El Emam,et al.  A Replicated Survey of IT Software Project Failures , 2008, IEEE Software.

[2]  Israel Spiegler,et al.  Developing risk breakdown structure for information technology organizations , 2011 .

[3]  W. Duncan A GUIDE TO THE PROJECT MANAGEMENT BODY OF KNOWLEDGE , 1996 .

[4]  Ellen Souza,et al.  Measurement and control for risk-based test cases and activities , 2009, 2009 10th Latin American Test Workshop.

[5]  Adolfo López-Paredes,et al.  An extension of the EVM analysis for project monitoring: The Cost Control Index and the Schedule Control Index , 2011 .

[6]  G. P. Kulk,et al.  Quantifying IT estimation risks , 2009, Sci. Comput. Program..

[7]  Ahmad Hosseingholizadeh A source-based risk analysis approach for software test optimization , 2010, 2010 2nd International Conference on Computer Engineering and Technology.

[8]  Suresh L. Konda,et al.  Taxonomy-Based Risk Identification , 1993 .

[9]  D. Gupta,et al.  Software Risk Assessment and Estimation Model , 2008, 2008 International Conference on Computer Science and Information Technology.

[10]  Cristine Gusmão,et al.  CBR RISK - RISK IDENTIFICATION METHOD USING CASE BASEDREASONING , 2008 .

[11]  Dale Karolak,et al.  Software engineering risk management , 1995 .

[12]  A. En-Nouaary,et al.  Catalog of Metrics for Assessing Security Risks of Software throughout the Software Development Life Cycle , 2008, 2008 International Conference on Information Security and Assurance (isa 2008).

[13]  Paula Gomes Mian,et al.  Systematic Review in Software Engineering , 2005 .

[14]  Blaize Horner Reich,et al.  The impact of size and volatility on IT project performance , 2007, CACM.

[15]  H.K.N. Leung,et al.  Notice of RetractionMeasuring Risks within a Program Consisting of Multiple Interdependent Projects , 2009, 2009 International Conference on Computational Intelligence and Software Engineering.

[16]  Marcos Esterman,et al.  The Development of Project Risk Metrics for Robust Concurrent Product Development (CPD) across the Supply Chain , 2005, Concurr. Eng. Res. Appl..

[17]  A. Krishnan,et al.  Overview analysis of reusability metrics in software development for risk reduction , 2010, 2010 International Conference on Innovative Computing Technologies (ICICT).

[18]  Pearl Brereton,et al.  Performing systematic literature reviews in software engineering , 2006, ICSE.

[19]  Chris Verhoef,et al.  Quantifying the value of IT-investments , 2005, Sci. Comput. Program..

[20]  Tore Dybå,et al.  Evidence-based software engineering , 2004, Proceedings. 26th International Conference on Software Engineering.

[21]  Lars Mathiassen,et al.  Managing Risks in Distributed Software Projects: An Integrative Framework , 2009, IEEE Transactions on Engineering Management.

[22]  Michael J. Gallivan,et al.  A framework for ex ante project risk assessment based on absorptive capacity , 2006, Eur. J. Oper. Res..

[23]  Juite Wang,et al.  A performance-oriented risk management framework for innovative R&D projects , 2010 .

[24]  Feng Tao,et al.  A model based on information entropy to measure developer turnover risk on software project , 2009, 2009 2nd IEEE International Conference on Computer Science and Information Technology.

[25]  Shengdong Zhang,et al.  A novel ultrathin elevated channel low-temperature poly-Si TFT , 1999, IEEE Electron Device Letters.

[26]  Kim Wikström,et al.  Defining uncertainty in projects – a new perspective , 2008 .

[27]  Stefan Fiedler,et al.  Managing resistance in an organizational transformation: A case study from a mobile operator company , 2010 .

[28]  Reza Ramazani Khorshid-Doust,et al.  A method of project selection based on capital asset pricing theories in a framework of mean–semideviation behavior , 2008 .

[29]  Tom DeMarco,et al.  The Deadline: A Novel About Project Management , 1997 .

[30]  Gregorio Robles,et al.  Using Software Archaeology to Measure Knowledge Loss in Software Projects Due to Developer Turnover , 2009 .

[31]  Jyrki Kontio,et al.  Software engineering risk management : a method, improvement framework, and empirical evaluation , 2001 .

[32]  Franco Caron,et al.  Engineering and contracting projects: A value at risk based approach to portfolio balancing , 2007 .

[33]  Chun-Hui Wu,et al.  Exploring impacts of software development process maturity on project risk , 2008, 2008 IEEE International Conference on Industrial Engineering and Engineering Management.

[34]  Michel Benaroch,et al.  Financial Pricing of Software Development Risk Factors , 2010, IEEE Software.

[35]  Cristine Martins Gomes de Gusmão Um Modelo de Processo de Gestão de Riscos para Ambientes de Múltiplos Projetos de Desenvolvimento de Software , 2009 .

[36]  Lisa Turnbaugh Risk Management on Large Capital Projects , 2005 .

[37]  Liao Hongzhi,et al.  An Approach to Measuring Software Development Risk Based on Information Entropy , 2009, 2009 International Conference on Computational Intelligence and Natural Computing.

[38]  Nuridawati Mustafa,et al.  Software risk assessment visualization tool design using probabilistic inference models , 2010, 2010 International Symposium on Information Technology.