SlideShare a Scribd company logo
SPM (5e) risk management© The McGraw-Hill Companies, 2011 1
Software Project Management
Chapter Seven
Risk
management
SPM (5e) risk management© The McGraw-Hill Companies, 2011 2
Risk management
This lecture will touch upon:
Definition of ‘risk’ and ‘risk management’
Some ways of categorizing risk
Risk management
Risk identification – what are the risks to a project?
Risk analysis – which ones are really serious?
Risk planning – what shall we do?
Risk monitoring – has the planning worked?
We will also look at PERT risk and critical chains
SPM (5e) risk management© The McGraw-Hill Companies, 2011 3
Some definitions of risk
‘the chance of exposure to the adverse consequences of future events’
PRINCE2
‘an uncertain event or condition that, if it occurs, has a positive or
negative effect on a project’s objectives’ PM-BOK
Risks relate to possible future problems, not current ones
They involve a possible cause and its effect(s) e.g. developer
leaves > task delayed
SPM (5e) risk management© The McGraw-Hill Companies, 2011 4
Categories of risk
SPM (5e) risk management© The McGraw-Hill Companies, 2011 5
A framework for dealing with risk
The planning for risk includes these steps:
Risk identification – what risks might there be?
Risk analysis and prioritization – which are the most
serious risks?
Risk planning – what are we going to do about them?
Risk monitoring – what is the current state of the
risk?
SPM (5e) risk management© The McGraw-Hill Companies, 2011 6
Risk identification
Approaches to identifying risks include:
Use of checklists – usually based on the experience
of past projects
Brainstorming – getting knowledgeable stakeholders
together to pool concerns
Causal mapping – identifying possible chains of
cause and effect
SPM (5e) risk management© The McGraw-Hill Companies, 2011 7
Boehm’s top 10 development risks
Risk Risk reduction techniques
Personnel shortfalls Staffing with top talent; job matching; teambuilding; training and
career development; early scheduling of key personnel
Unrealistic time and cost
estimates
Multiple estimation techniques; design to cost; incremental
development; recording and analysis of past projects;
standardization of methods
Developing the wrong software
functions
Improved software evaluation; formal specification methods; user
surveys; prototyping; early user manuals
Developing the wrong user
interface
Prototyping; task analysis; user involvement
SPM (5e) risk management© The McGraw-Hill Companies, 2011 8
Boehm’s top ten risk - continued
Gold plating Requirements scrubbing, prototyping,
design to cost
Late changes to
requirements
Change control, incremental development
Shortfalls in externally
supplied components
Benchmarking, inspections, formal specifications,
contractual agreements, quality controls
Shortfalls in externally
performed tasks
Quality assurance procedures, competitive design etc
Real time performance
problems
Simulation, prototyping, tuning
Development technically too
difficult
Technical analysis, cost-benefit analysis, prototyping ,
training
SPM (5e) risk management© The McGraw-Hill Companies, 2011 9
Risk prioritization
Risk exposure (RE)
= (potential damage) x (probability of occurrence)
Ideally
Potential damage: a money value e.g. a flood would cause £0.5
millions of damage
Probability 0.00 (absolutely no chance) to 1.00 (absolutely certain)
e.g. 0.01 (one in hundred chance)
RE = £0.5m x 0.01 = £5,000
Crudely analogous to the amount needed for an insurance premium
SPM (5e) risk management© The McGraw-Hill Companies, 2011 10
Risk probability: qualitative
descriptors
Probability level Range
High Greater than 50% chance of happening
Significant 30-50% chance of happening
Moderate 10-29% chance of happening
Low Less than 10% chance of happening
SPM (5e) risk management© The McGraw-Hill Companies, 2011 11
Qualitative descriptors of impact on cost and
associated range values
Impact level Range
High Greater than 30% above budgeted expenditure
Significant 20 to 29% above budgeted expenditure
Moderate 10 to 19% above budgeted expenditure
Low Within 10% of budgeted expenditure.
SPM (5e) risk management© The McGraw-Hill Companies, 2011 12
Probability impact matrix
SPM (5e) risk management© The McGraw-Hill Companies, 2011 13
Risk planning
Risks can be dealt with by:
Risk acceptance
Risk avoidance
Risk reduction
Risk transfer
Risk mitigation/contingency measures
SPM (5e) risk management© The McGraw-Hill Companies, 2011 14
Risk reduction leverage
Risk reduction leverage =
(REbefore- REafter)/ (cost of risk reduction)
REbeforeis risk exposure before risk reduction e.g. 1% chance of a
fire causing £200k damage
REafter is risk exposure after risk reduction e.g. fire alarm costing
£500 reduces probability of fire damage to 0.5%
RRL = (1% of £200k)-(0.5% of £200k)/£500 = 2
RRL > 1.00 therefore worth doing
SPM (5e) risk management© The McGraw-Hill Companies, 2011 15
Probability chart
SPM (5e) risk management© The McGraw-Hill Companies, 2011 16
Using PERT to evaluate the effects of
uncertainty
Three estimates are produced for each activity
Most likely time (m)
Optimistic time (a)
Pessimistic (b)
‘expected time’ te = (a + 4m +b) / 6
‘activity standard deviation’ S = (b-a)/6
SPM (5e) risk management© The McGraw-Hill Companies, 2011 17
A chain of activities
Task A Task B Task C
Task a m b te s
A 10 12 16 ? ?
B 8 10 14 ? ?
C 20 24 38 ? ?
SPM (5e) risk management© The McGraw-Hill Companies, 2011 18
A chain of activities
What would be the expected duration of the chain A + B
+ C?
Answer: 12.66 + 10.33 + 25.66 i.e. 48.65
What would be the standard deviation for A + B+ C?
Answer: square root of (12 + 12 + 32) i.e.
3.32
SPM (5e) risk management© The McGraw-Hill Companies, 2011 19
Assessing the likelihood of meeting a
target
Say the target for completing A+B+C was 52 days (T)
Calculate the z value thus
z = (T – te)/s
In this example z = (52-48.33)/3.32 i.e. 1.01
Look up in table of z values – see next overhead
SPM (5e) risk management© The McGraw-Hill Companies, 2011 20
Graph of z values
SPM (5e) risk management© The McGraw-Hill Companies, 2011 21
Monte Carlo Simulation
An alternative to PERT.
A class of general analysis techniques:
Valuable to solve any problem that is complex,
nonlinear, or involves more than just a couple of
uncertain parameters.
Monte Carlo simulations involve repeated random
sampling to compute the results.
Gives more realistic results as compared to manual
approaches.
SPM (5e) risk management© The McGraw-Hill Companies, 2011 22
Critical chain concept
Traditional planning approach
SPM (5e) risk management© The McGraw-Hill Companies, 2011 23
Critical chain approach
One problem with estimates of task duration:
Estimators add a safety zone to estimate to take
account of possible difficulties
Developers work to the estimate + safety zone, so
time is lost
No advantage is taken of opportunities where tasks
can finish early – and provide a buffer for later
activities
SPM (5e) risk management© The McGraw-Hill Companies, 2011 24
Critical chain approach
One answer to this:
1. Ask the estimators for two estimates
Most likely duration: 50% chance of meeting this
Comfort zone: additional time needed to have
95% chance
2. Schedule all activities suing most likely values and
starting all activities on latest start dates
SPM (5e) risk management© The McGraw-Hill Companies, 2011 25
Most likely and comfort zone estimates
SPM (5e) risk management© The McGraw-Hill Companies, 2011 26
Critical chain - continued
3. Identify the critical chain – same a critical path but
resource constraints also taken into account
4. Put a project buffer at the end of the critical chain
with duration 50% of sum of comfort zones of the
activities on the critical chain.
SPM (5e) risk management© The McGraw-Hill Companies, 2011 27
Critical chain -continued
5. Where subsidiary chains of activities feed into
critical chain, add feeding buffer
6. Duration of feeding buffer 50% of sum of comfort
zones of activities in the feeding chain
7. Where there are parallel chains, take the longest
and sum those activities
SPM (5e) risk management© The McGraw-Hill Companies, 2011 28
Plan employing critical chain concepts
SPM (5e) risk management© The McGraw-Hill Companies, 2011 29
Executing the critical chain-based plan
No chain of tasks is started earlier than scheduled,
but once it has started is finished as soon as possible
This means the activity following the current one
starts as soon as the current one is completed, even
if this is early – the relay race principle
SPM (5e) risk management© The McGraw-Hill Companies, 2011 30
Executing the critical chain-based plan
Buffers are divided into three zones:
Green: the first 33%. No action required
Amber : the next 33%. Plan is formulated
Red : last 33%. Plan is executed.

More Related Content

Similar to Ch07_risk_management.ppt

Event and Non-Event Risk - PMP/CAPM from PMI
Event and Non-Event Risk  - PMP/CAPM from PMIEvent and Non-Event Risk  - PMP/CAPM from PMI
Event and Non-Event Risk - PMP/CAPM from PMI
Mudassir Iqbal
 
Project Risk Management-Pankaj K Sinha
Project Risk Management-Pankaj K SinhaProject Risk Management-Pankaj K Sinha
Project Risk Management-Pankaj K Sinha
Pankaj K Sinha
 
Programmatic risk management workshop (slides)
Programmatic risk management workshop (slides)Programmatic risk management workshop (slides)
Programmatic risk management workshop (slides)
Glen Alleman
 
Risk mgt 07.pptx
Risk mgt 07.pptxRisk mgt 07.pptx
Risk mgt 07.pptx
Iftikhar1985
 
ECC_Black_Swan_2008_4
ECC_Black_Swan_2008_4ECC_Black_Swan_2008_4
ECC_Black_Swan_2008_4
Dean Wenner
 
Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011
Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011
Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011
Pedram Danesh-Mand
 
Risk Management CriteriaProject NameDateProject Manager.docx
Risk Management CriteriaProject NameDateProject Manager.docxRisk Management CriteriaProject NameDateProject Manager.docx
Risk Management CriteriaProject NameDateProject Manager.docx
daniely50
 
PAPERS72 September 2009 ■ Project Management.docx
PAPERS72 September 2009 ■ Project Management.docxPAPERS72 September 2009 ■ Project Management.docx
PAPERS72 September 2009 ■ Project Management.docx
herbertwilson5999
 
Session B3 - Introduction to Project Cost and Schedule Risk Analysis
Session B3 - Introduction to Project Cost and Schedule Risk AnalysisSession B3 - Introduction to Project Cost and Schedule Risk Analysis
Session B3 - Introduction to Project Cost and Schedule Risk Analysis
Project Controls Expo
 
Devry proj 595 final exam set 2 new
Devry proj 595 final exam set 2 newDevry proj 595 final exam set 2 new
Devry proj 595 final exam set 2 new
uopassignment
 
IRJET- Analysis of Risk Management in Construction Sector using Fault Tree...
IRJET- 	  Analysis of Risk Management in Construction Sector using Fault Tree...IRJET- 	  Analysis of Risk Management in Construction Sector using Fault Tree...
IRJET- Analysis of Risk Management in Construction Sector using Fault Tree...
IRJET Journal
 
Javier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk Analysis
Javier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk AnalysisJavier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk Analysis
Javier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk Analysis
J. García - Verdugo
 
Primavera Monte Carlo[1]
Primavera Monte Carlo[1]Primavera Monte Carlo[1]
Primavera Monte Carlo[1]
Mihai Buta
 
Ranga's 51 hot topics to remember for Risk Management Professional (RMP) exam
Ranga's 51 hot topics to remember for Risk Management Professional (RMP) examRanga's 51 hot topics to remember for Risk Management Professional (RMP) exam
Ranga's 51 hot topics to remember for Risk Management Professional (RMP) exam
rrangraj
 
Comprehensive Overview Of Risk Management
Comprehensive Overview Of Risk ManagementComprehensive Overview Of Risk Management
Comprehensive Overview Of Risk Management
Andrew Valenti
 
PROJ 595 RANK Education Counseling--proj595rank.com
PROJ 595 RANK Education Counseling--proj595rank.comPROJ 595 RANK Education Counseling--proj595rank.com
PROJ 595 RANK Education Counseling--proj595rank.com
venkat60045
 
Using Risk Analysis and Simulation in Project Management
Using Risk Analysis and Simulation in Project ManagementUsing Risk Analysis and Simulation in Project Management
Using Risk Analysis and Simulation in Project Management
Mike Tulkoff
 
Procept Risk Workshop 2007
Procept Risk Workshop 2007Procept Risk Workshop 2007
Procept Risk Workshop 2007
Procept Associates
 
PROJ 595 RANK Achievement Education / proj595rank.com
PROJ 595 RANK Achievement Education / proj595rank.comPROJ 595 RANK Achievement Education / proj595rank.com
PROJ 595 RANK Achievement Education / proj595rank.com
agathachristie149
 
8. project risk management
8. project risk management8. project risk management
8. project risk management
Mohamed Salah Eldien Mohamed Ali
 

Similar to Ch07_risk_management.ppt (20)

Event and Non-Event Risk - PMP/CAPM from PMI
Event and Non-Event Risk  - PMP/CAPM from PMIEvent and Non-Event Risk  - PMP/CAPM from PMI
Event and Non-Event Risk - PMP/CAPM from PMI
 
Project Risk Management-Pankaj K Sinha
Project Risk Management-Pankaj K SinhaProject Risk Management-Pankaj K Sinha
Project Risk Management-Pankaj K Sinha
 
Programmatic risk management workshop (slides)
Programmatic risk management workshop (slides)Programmatic risk management workshop (slides)
Programmatic risk management workshop (slides)
 
Risk mgt 07.pptx
Risk mgt 07.pptxRisk mgt 07.pptx
Risk mgt 07.pptx
 
ECC_Black_Swan_2008_4
ECC_Black_Swan_2008_4ECC_Black_Swan_2008_4
ECC_Black_Swan_2008_4
 
Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011
Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011
Cost Risk Analysis (CRA) by Pedram Daneshmand 19-Jan-2011
 
Risk Management CriteriaProject NameDateProject Manager.docx
Risk Management CriteriaProject NameDateProject Manager.docxRisk Management CriteriaProject NameDateProject Manager.docx
Risk Management CriteriaProject NameDateProject Manager.docx
 
PAPERS72 September 2009 ■ Project Management.docx
PAPERS72 September 2009 ■ Project Management.docxPAPERS72 September 2009 ■ Project Management.docx
PAPERS72 September 2009 ■ Project Management.docx
 
Session B3 - Introduction to Project Cost and Schedule Risk Analysis
Session B3 - Introduction to Project Cost and Schedule Risk AnalysisSession B3 - Introduction to Project Cost and Schedule Risk Analysis
Session B3 - Introduction to Project Cost and Schedule Risk Analysis
 
Devry proj 595 final exam set 2 new
Devry proj 595 final exam set 2 newDevry proj 595 final exam set 2 new
Devry proj 595 final exam set 2 new
 
IRJET- Analysis of Risk Management in Construction Sector using Fault Tree...
IRJET- 	  Analysis of Risk Management in Construction Sector using Fault Tree...IRJET- 	  Analysis of Risk Management in Construction Sector using Fault Tree...
IRJET- Analysis of Risk Management in Construction Sector using Fault Tree...
 
Javier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk Analysis
Javier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk AnalysisJavier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk Analysis
Javier Garcia - Verdugo Sanchez - Six Sigma Training - W1 Risk Analysis
 
Primavera Monte Carlo[1]
Primavera Monte Carlo[1]Primavera Monte Carlo[1]
Primavera Monte Carlo[1]
 
Ranga's 51 hot topics to remember for Risk Management Professional (RMP) exam
Ranga's 51 hot topics to remember for Risk Management Professional (RMP) examRanga's 51 hot topics to remember for Risk Management Professional (RMP) exam
Ranga's 51 hot topics to remember for Risk Management Professional (RMP) exam
 
Comprehensive Overview Of Risk Management
Comprehensive Overview Of Risk ManagementComprehensive Overview Of Risk Management
Comprehensive Overview Of Risk Management
 
PROJ 595 RANK Education Counseling--proj595rank.com
PROJ 595 RANK Education Counseling--proj595rank.comPROJ 595 RANK Education Counseling--proj595rank.com
PROJ 595 RANK Education Counseling--proj595rank.com
 
Using Risk Analysis and Simulation in Project Management
Using Risk Analysis and Simulation in Project ManagementUsing Risk Analysis and Simulation in Project Management
Using Risk Analysis and Simulation in Project Management
 
Procept Risk Workshop 2007
Procept Risk Workshop 2007Procept Risk Workshop 2007
Procept Risk Workshop 2007
 
PROJ 595 RANK Achievement Education / proj595rank.com
PROJ 595 RANK Achievement Education / proj595rank.comPROJ 595 RANK Achievement Education / proj595rank.com
PROJ 595 RANK Achievement Education / proj595rank.com
 
8. project risk management
8. project risk management8. project risk management
8. project risk management
 

Recently uploaded

1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf
1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf
1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf
MadhavJungKarki
 
Null Bangalore | Pentesters Approach to AWS IAM
Null Bangalore | Pentesters Approach to AWS IAMNull Bangalore | Pentesters Approach to AWS IAM
Null Bangalore | Pentesters Approach to AWS IAM
Divyanshu
 
Unit -II Spectroscopy - EC I B.Tech.pdf
Unit -II Spectroscopy - EC  I B.Tech.pdfUnit -II Spectroscopy - EC  I B.Tech.pdf
Unit -II Spectroscopy - EC I B.Tech.pdf
TeluguBadi
 
一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理
一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理
一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理
upoux
 
5G Radio Network Througput Problem Analysis HCIA.pdf
5G Radio Network Througput Problem Analysis HCIA.pdf5G Radio Network Througput Problem Analysis HCIA.pdf
5G Radio Network Througput Problem Analysis HCIA.pdf
AlvianRamadhani5
 
SENTIMENT ANALYSIS ON PPT AND Project template_.pptx
SENTIMENT ANALYSIS ON PPT AND Project template_.pptxSENTIMENT ANALYSIS ON PPT AND Project template_.pptx
SENTIMENT ANALYSIS ON PPT AND Project template_.pptx
b0754201
 
Applications of artificial Intelligence in Mechanical Engineering.pdf
Applications of artificial Intelligence in Mechanical Engineering.pdfApplications of artificial Intelligence in Mechanical Engineering.pdf
Applications of artificial Intelligence in Mechanical Engineering.pdf
Atif Razi
 
一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理
一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理
一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理
nedcocy
 
一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理
一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理
一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理
upoux
 
AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...
AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...
AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...
Paris Salesforce Developer Group
 
Supermarket Management System Project Report.pdf
Supermarket Management System Project Report.pdfSupermarket Management System Project Report.pdf
Supermarket Management System Project Report.pdf
Kamal Acharya
 
Introduction to Computer Networks & OSI MODEL.ppt
Introduction to Computer Networks & OSI MODEL.pptIntroduction to Computer Networks & OSI MODEL.ppt
Introduction to Computer Networks & OSI MODEL.ppt
Dwarkadas J Sanghvi College of Engineering
 
UNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICS
UNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICSUNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICS
UNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICS
vmspraneeth
 
Ericsson LTE Throughput Troubleshooting Techniques.ppt
Ericsson LTE Throughput Troubleshooting Techniques.pptEricsson LTE Throughput Troubleshooting Techniques.ppt
Ericsson LTE Throughput Troubleshooting Techniques.ppt
wafawafa52
 
一比一原版(USF毕业证)旧金山大学毕业证如何办理
一比一原版(USF毕业证)旧金山大学毕业证如何办理一比一原版(USF毕业证)旧金山大学毕业证如何办理
一比一原版(USF毕业证)旧金山大学毕业证如何办理
uqyfuc
 
openshift technical overview - Flow of openshift containerisatoin
openshift technical overview - Flow of openshift containerisatoinopenshift technical overview - Flow of openshift containerisatoin
openshift technical overview - Flow of openshift containerisatoin
snaprevwdev
 
Accident detection system project report.pdf
Accident detection system project report.pdfAccident detection system project report.pdf
Accident detection system project report.pdf
Kamal Acharya
 
Levelised Cost of Hydrogen (LCOH) Calculator Manual
Levelised Cost of Hydrogen  (LCOH) Calculator ManualLevelised Cost of Hydrogen  (LCOH) Calculator Manual
Levelised Cost of Hydrogen (LCOH) Calculator Manual
Massimo Talia
 
Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...
Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...
Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...
Transcat
 
Object Oriented Analysis and Design - OOAD
Object Oriented Analysis and Design - OOADObject Oriented Analysis and Design - OOAD
Object Oriented Analysis and Design - OOAD
PreethaV16
 

Recently uploaded (20)

1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf
1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf
1FIDIC-CONSTRUCTION-CONTRACT-2ND-ED-2017-RED-BOOK.pdf
 
Null Bangalore | Pentesters Approach to AWS IAM
Null Bangalore | Pentesters Approach to AWS IAMNull Bangalore | Pentesters Approach to AWS IAM
Null Bangalore | Pentesters Approach to AWS IAM
 
Unit -II Spectroscopy - EC I B.Tech.pdf
Unit -II Spectroscopy - EC  I B.Tech.pdfUnit -II Spectroscopy - EC  I B.Tech.pdf
Unit -II Spectroscopy - EC I B.Tech.pdf
 
一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理
一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理
一比一原版(uofo毕业证书)美国俄勒冈大学毕业证如何办理
 
5G Radio Network Througput Problem Analysis HCIA.pdf
5G Radio Network Througput Problem Analysis HCIA.pdf5G Radio Network Througput Problem Analysis HCIA.pdf
5G Radio Network Througput Problem Analysis HCIA.pdf
 
SENTIMENT ANALYSIS ON PPT AND Project template_.pptx
SENTIMENT ANALYSIS ON PPT AND Project template_.pptxSENTIMENT ANALYSIS ON PPT AND Project template_.pptx
SENTIMENT ANALYSIS ON PPT AND Project template_.pptx
 
Applications of artificial Intelligence in Mechanical Engineering.pdf
Applications of artificial Intelligence in Mechanical Engineering.pdfApplications of artificial Intelligence in Mechanical Engineering.pdf
Applications of artificial Intelligence in Mechanical Engineering.pdf
 
一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理
一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理
一比一原版(爱大毕业证书)爱荷华大学毕业证如何办理
 
一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理
一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理
一比一原版(osu毕业证书)美国俄勒冈州立大学毕业证如何办理
 
AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...
AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...
AI + Data Community Tour - Build the Next Generation of Apps with the Einstei...
 
Supermarket Management System Project Report.pdf
Supermarket Management System Project Report.pdfSupermarket Management System Project Report.pdf
Supermarket Management System Project Report.pdf
 
Introduction to Computer Networks & OSI MODEL.ppt
Introduction to Computer Networks & OSI MODEL.pptIntroduction to Computer Networks & OSI MODEL.ppt
Introduction to Computer Networks & OSI MODEL.ppt
 
UNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICS
UNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICSUNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICS
UNIT 4 LINEAR INTEGRATED CIRCUITS-DIGITAL ICS
 
Ericsson LTE Throughput Troubleshooting Techniques.ppt
Ericsson LTE Throughput Troubleshooting Techniques.pptEricsson LTE Throughput Troubleshooting Techniques.ppt
Ericsson LTE Throughput Troubleshooting Techniques.ppt
 
一比一原版(USF毕业证)旧金山大学毕业证如何办理
一比一原版(USF毕业证)旧金山大学毕业证如何办理一比一原版(USF毕业证)旧金山大学毕业证如何办理
一比一原版(USF毕业证)旧金山大学毕业证如何办理
 
openshift technical overview - Flow of openshift containerisatoin
openshift technical overview - Flow of openshift containerisatoinopenshift technical overview - Flow of openshift containerisatoin
openshift technical overview - Flow of openshift containerisatoin
 
Accident detection system project report.pdf
Accident detection system project report.pdfAccident detection system project report.pdf
Accident detection system project report.pdf
 
Levelised Cost of Hydrogen (LCOH) Calculator Manual
Levelised Cost of Hydrogen  (LCOH) Calculator ManualLevelised Cost of Hydrogen  (LCOH) Calculator Manual
Levelised Cost of Hydrogen (LCOH) Calculator Manual
 
Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...
Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...
Tools & Techniques for Commissioning and Maintaining PV Systems W-Animations ...
 
Object Oriented Analysis and Design - OOAD
Object Oriented Analysis and Design - OOADObject Oriented Analysis and Design - OOAD
Object Oriented Analysis and Design - OOAD
 

Ch07_risk_management.ppt

  • 1. SPM (5e) risk management© The McGraw-Hill Companies, 2011 1 Software Project Management Chapter Seven Risk management
  • 2. SPM (5e) risk management© The McGraw-Hill Companies, 2011 2 Risk management This lecture will touch upon: Definition of ‘risk’ and ‘risk management’ Some ways of categorizing risk Risk management Risk identification – what are the risks to a project? Risk analysis – which ones are really serious? Risk planning – what shall we do? Risk monitoring – has the planning worked? We will also look at PERT risk and critical chains
  • 3. SPM (5e) risk management© The McGraw-Hill Companies, 2011 3 Some definitions of risk ‘the chance of exposure to the adverse consequences of future events’ PRINCE2 ‘an uncertain event or condition that, if it occurs, has a positive or negative effect on a project’s objectives’ PM-BOK Risks relate to possible future problems, not current ones They involve a possible cause and its effect(s) e.g. developer leaves > task delayed
  • 4. SPM (5e) risk management© The McGraw-Hill Companies, 2011 4 Categories of risk
  • 5. SPM (5e) risk management© The McGraw-Hill Companies, 2011 5 A framework for dealing with risk The planning for risk includes these steps: Risk identification – what risks might there be? Risk analysis and prioritization – which are the most serious risks? Risk planning – what are we going to do about them? Risk monitoring – what is the current state of the risk?
  • 6. SPM (5e) risk management© The McGraw-Hill Companies, 2011 6 Risk identification Approaches to identifying risks include: Use of checklists – usually based on the experience of past projects Brainstorming – getting knowledgeable stakeholders together to pool concerns Causal mapping – identifying possible chains of cause and effect
  • 7. SPM (5e) risk management© The McGraw-Hill Companies, 2011 7 Boehm’s top 10 development risks Risk Risk reduction techniques Personnel shortfalls Staffing with top talent; job matching; teambuilding; training and career development; early scheduling of key personnel Unrealistic time and cost estimates Multiple estimation techniques; design to cost; incremental development; recording and analysis of past projects; standardization of methods Developing the wrong software functions Improved software evaluation; formal specification methods; user surveys; prototyping; early user manuals Developing the wrong user interface Prototyping; task analysis; user involvement
  • 8. SPM (5e) risk management© The McGraw-Hill Companies, 2011 8 Boehm’s top ten risk - continued Gold plating Requirements scrubbing, prototyping, design to cost Late changes to requirements Change control, incremental development Shortfalls in externally supplied components Benchmarking, inspections, formal specifications, contractual agreements, quality controls Shortfalls in externally performed tasks Quality assurance procedures, competitive design etc Real time performance problems Simulation, prototyping, tuning Development technically too difficult Technical analysis, cost-benefit analysis, prototyping , training
  • 9. SPM (5e) risk management© The McGraw-Hill Companies, 2011 9 Risk prioritization Risk exposure (RE) = (potential damage) x (probability of occurrence) Ideally Potential damage: a money value e.g. a flood would cause £0.5 millions of damage Probability 0.00 (absolutely no chance) to 1.00 (absolutely certain) e.g. 0.01 (one in hundred chance) RE = £0.5m x 0.01 = £5,000 Crudely analogous to the amount needed for an insurance premium
  • 10. SPM (5e) risk management© The McGraw-Hill Companies, 2011 10 Risk probability: qualitative descriptors Probability level Range High Greater than 50% chance of happening Significant 30-50% chance of happening Moderate 10-29% chance of happening Low Less than 10% chance of happening
  • 11. SPM (5e) risk management© The McGraw-Hill Companies, 2011 11 Qualitative descriptors of impact on cost and associated range values Impact level Range High Greater than 30% above budgeted expenditure Significant 20 to 29% above budgeted expenditure Moderate 10 to 19% above budgeted expenditure Low Within 10% of budgeted expenditure.
  • 12. SPM (5e) risk management© The McGraw-Hill Companies, 2011 12 Probability impact matrix
  • 13. SPM (5e) risk management© The McGraw-Hill Companies, 2011 13 Risk planning Risks can be dealt with by: Risk acceptance Risk avoidance Risk reduction Risk transfer Risk mitigation/contingency measures
  • 14. SPM (5e) risk management© The McGraw-Hill Companies, 2011 14 Risk reduction leverage Risk reduction leverage = (REbefore- REafter)/ (cost of risk reduction) REbeforeis risk exposure before risk reduction e.g. 1% chance of a fire causing £200k damage REafter is risk exposure after risk reduction e.g. fire alarm costing £500 reduces probability of fire damage to 0.5% RRL = (1% of £200k)-(0.5% of £200k)/£500 = 2 RRL > 1.00 therefore worth doing
  • 15. SPM (5e) risk management© The McGraw-Hill Companies, 2011 15 Probability chart
  • 16. SPM (5e) risk management© The McGraw-Hill Companies, 2011 16 Using PERT to evaluate the effects of uncertainty Three estimates are produced for each activity Most likely time (m) Optimistic time (a) Pessimistic (b) ‘expected time’ te = (a + 4m +b) / 6 ‘activity standard deviation’ S = (b-a)/6
  • 17. SPM (5e) risk management© The McGraw-Hill Companies, 2011 17 A chain of activities Task A Task B Task C Task a m b te s A 10 12 16 ? ? B 8 10 14 ? ? C 20 24 38 ? ?
  • 18. SPM (5e) risk management© The McGraw-Hill Companies, 2011 18 A chain of activities What would be the expected duration of the chain A + B + C? Answer: 12.66 + 10.33 + 25.66 i.e. 48.65 What would be the standard deviation for A + B+ C? Answer: square root of (12 + 12 + 32) i.e. 3.32
  • 19. SPM (5e) risk management© The McGraw-Hill Companies, 2011 19 Assessing the likelihood of meeting a target Say the target for completing A+B+C was 52 days (T) Calculate the z value thus z = (T – te)/s In this example z = (52-48.33)/3.32 i.e. 1.01 Look up in table of z values – see next overhead
  • 20. SPM (5e) risk management© The McGraw-Hill Companies, 2011 20 Graph of z values
  • 21. SPM (5e) risk management© The McGraw-Hill Companies, 2011 21 Monte Carlo Simulation An alternative to PERT. A class of general analysis techniques: Valuable to solve any problem that is complex, nonlinear, or involves more than just a couple of uncertain parameters. Monte Carlo simulations involve repeated random sampling to compute the results. Gives more realistic results as compared to manual approaches.
  • 22. SPM (5e) risk management© The McGraw-Hill Companies, 2011 22 Critical chain concept Traditional planning approach
  • 23. SPM (5e) risk management© The McGraw-Hill Companies, 2011 23 Critical chain approach One problem with estimates of task duration: Estimators add a safety zone to estimate to take account of possible difficulties Developers work to the estimate + safety zone, so time is lost No advantage is taken of opportunities where tasks can finish early – and provide a buffer for later activities
  • 24. SPM (5e) risk management© The McGraw-Hill Companies, 2011 24 Critical chain approach One answer to this: 1. Ask the estimators for two estimates Most likely duration: 50% chance of meeting this Comfort zone: additional time needed to have 95% chance 2. Schedule all activities suing most likely values and starting all activities on latest start dates
  • 25. SPM (5e) risk management© The McGraw-Hill Companies, 2011 25 Most likely and comfort zone estimates
  • 26. SPM (5e) risk management© The McGraw-Hill Companies, 2011 26 Critical chain - continued 3. Identify the critical chain – same a critical path but resource constraints also taken into account 4. Put a project buffer at the end of the critical chain with duration 50% of sum of comfort zones of the activities on the critical chain.
  • 27. SPM (5e) risk management© The McGraw-Hill Companies, 2011 27 Critical chain -continued 5. Where subsidiary chains of activities feed into critical chain, add feeding buffer 6. Duration of feeding buffer 50% of sum of comfort zones of activities in the feeding chain 7. Where there are parallel chains, take the longest and sum those activities
  • 28. SPM (5e) risk management© The McGraw-Hill Companies, 2011 28 Plan employing critical chain concepts
  • 29. SPM (5e) risk management© The McGraw-Hill Companies, 2011 29 Executing the critical chain-based plan No chain of tasks is started earlier than scheduled, but once it has started is finished as soon as possible This means the activity following the current one starts as soon as the current one is completed, even if this is early – the relay race principle
  • 30. SPM (5e) risk management© The McGraw-Hill Companies, 2011 30 Executing the critical chain-based plan Buffers are divided into three zones: Green: the first 33%. No action required Amber : the next 33%. Plan is formulated Red : last 33%. Plan is executed.